-
Notifications
You must be signed in to change notification settings - Fork 0
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
AWS WAF-Cognito setup for the MVP-environments #41
Conversation
lsipii
commented
Aug 19, 2023
•
edited
Loading
edited
- restrict access to the mvp-environments using the tech combinations of WAF (Web Application Firewall) and AWS Cognito
- note: the solution is not secure, but good for the current requirements
- note: the first-time deployment must be done twice to resolve the circular dependency loop: How to solve Chicken & Egg problem / cyclic dependencies / update resources? pulumi/pulumi#3021 (comment)
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Tämä näyttää eheältä. 👍 Ainut asia mikä tuli mieleen että irrottaisiko tuon cognito-osuuden vielä omaan moduuliinsa, niin sit ois kivasti kaikki resut omissa lokeroissaan. Tosin tuo on aika tightly coupled tuon waffin kanssa joten eipä tarvis ylikomplikoida.
Ja heh, "hauska" tämä circular deps tilanne. Varmaan jos ois jostain giganttisesta setupista kyse, niin ehkä yks ratkaisu vois olla kahteen/useampaan pulumiäppsiin jaottelu, mitkä olisivat toisiinsa sidoksissa ja ci-pipessä ajella deplaukset oikeassa järjestyksessä.