Correct Table of Contents anchor links

README.md

@@ -1,82 +1,82 @@
-
 # AWS Bootstrap Kit Examples Overview
 
 - [AWS Bootstrap Kit Examples Overview](#aws-bootstrap-kit-examples-overview)
-  * [Who is this for ?](#who-is-this-for--)
-  * [What you will get with it ?](#what-you-will-get-with-it--)
-    + [As an Operator](#as-an-operator)
-    + [As a developer](#as-a-developer)
-    + [As a developer oncall](#as-a-developer-oncall)
-  * [What you will get with it ? (the AWS infrastructure)](#what-you-will-get-with-it----the-aws-infrastructure-)
-  * [Getting started](#getting-started)
-  * [Tenets](#tenets)
-  * [What you will find in this repository](#what-you-will-find-in-this-repository)
-  * [What you won't find in this repository](#what-you-won-t-find-in-this-repository)
-  * [Do I need to be familiar with the AWS Services used under the hood?](#do-i-need-to-be-familiar-with-the-aws-services-used-under-the-hood-)
-  * [Concept](#concept)
-    + [Infrastructure as Code](#infrastructure-as-code)
-    + [CI/CD](#ci-cd)
-    + [Multi accounts strategy](#multi-accounts-strategy)
-  * [Security](#security)
-    + [Control deployment](#control-deployment)
-    + [Control access to AWS](#control-access-to-aws)
-    + [Minimal security best practices](#minimal-security-best-practices)
-  * [Costs](#costs)
-  * [Known limitations](#known-limitations)
-    + [SDLC Organization](#sdlc-organization)
+  - [Who is this for?](#who-is-this-for)
+  - [What you will get with it?](#what-you-will-get-with-it)
+    - [As an Operator](#as-an-operator)
+    - [As a developer](#as-a-developer)
+    - [As a developer oncall](#as-a-developer-oncall)
+  - [What you will get with it? (the AWS infrastructure)](#what-you-will-get-with-it-the-aws-infrastructure)
+  - [Getting started](#getting-started)
+  - [Tenets](#tenets)
+  - [What you will find in this repository](#what-you-will-find-in-this-repository)
+  - [What you won't find in this repository](#what-you-wont-find-in-this-repository)
+  - [Do I need to be familiar with the AWS Services used under the hood?](#do-i-need-to-be-familiar-with-the-aws-services-used-under-the-hood)
+  - [Concept](#concept)
+    - [Infrastructure as Code](#infrastructure-as-code)
+    - [CI/CD](#cicd)
+    - [Multi accounts strategy](#multi-accounts-strategy)
+  - [Security](#security)
+    - [Control deployment](#control-deployment)
+    - [Control access to AWS](#control-access-to-aws)
+    - [Minimal security best practices](#minimal-security-best-practices)
+  - [Costs](#costs)
+  - [Known limitations](#known-limitations)
+    - [SDLC Organization](#sdlc-organization)
 
 This repository contains examples of using the AWS Bootstrap Kit to set your development and deployment environment on AWS. The AWS Bootstrap Kit is a strongly opinionated CDK set of constructs built for companies looking to follow AWS best practices on Day 1.
 
 Let's start small but with potential for future growth without adding tech debt.
 
-## Who is this for ?
+## Who is this for?
 
 Here is the list of the personas targeted by this solution:
 
-* Operators
-* Developers
-* Oncall developers (aka Ops)
+- Operators
+- Developers
+- Oncall developers (aka Ops)
 
-## What you will get with it ?
+## What you will get with it?
 
 A structured set of environments to develop and operate your software on AWS for your different team roles:
 
 ### As an Operator
 
-* An isolated set of secure environments enabling you to ensure the reliability of your system by limiting blast radius of issues (being security, code change, manual operations ...)
-* A Web Portal enabling to log in to your different environment (dev, staging, prod, CI/CD ...)
-* A central billing system enabling you to control your spend accross your environments
-* A central activity view enabling to control what is done across your environments
-* A central users and permissions management service enabling you to control what your team members can do or not in your different environments
+- An isolated set of secure environments enabling you to ensure the reliability of your system by limiting blast radius of issues (being security, code change, manual operations ...)
+- A Web Portal enabling to log in to your different environment (dev, staging, prod, CI/CD ...)
+- A central billing system enabling you to control your spend accross your environments
+- A central activity view enabling to control what is done across your environments
+- A central users and permissions management service enabling you to control what your team members can do or not in your different environments
 
 Most of it as Infrastructure as Code artifact.
 
 ![A diagram describing what as been listed above](doc/AWSBootstrapKit-Overview-Operator.png)
 
 ### As a developer
 
-* An environment with wide permissions to experiment, test and develop
-* A Web Portal enabling to log in to your different environment (dev, staging, prod, CI/CD ...)
-* A simple way to add multi stages CI/CD pipeline to deploy securely your code to production
+- An environment with wide permissions to experiment, test and develop
+- A Web Portal enabling to log in to your different environment (dev, staging, prod, CI/CD ...)
+- A simple way to add multi stages CI/CD pipeline to deploy securely your code to production
 
 ![A diagram describing what as been listed above](doc/AWSBootstrapKit-Overview-Developer.png)
 
 ### As a developer oncall
 
-* A Web Portal enabling to log in to the different environment you are in charge to monitor
+- A Web Portal enabling to log in to the different environment you are in charge to monitor
 
-## What you will get with it ? (the AWS infrastructure)
+## What you will get with it? (the AWS infrastructure)
 
 Basically the same as above but:
-* Environments = [AWS Accounts](https://aws.amazon.com/organizations/faqs/#Organizing_AWS_accounts) (not a *user* account but actually a isolated environment tight to an email (& password) and unique id)
-* Set of Environments = Set of AWS Accounts under a main one = [AWS Organizations](https://aws.amazon.com/organizations/faqs/)
-* Users and Permissions management solution = [AWS SSO](https://aws.amazon.com/single-sign-on/faqs)
-* Login Web Portal = AWS SSO endpoint
-* Central Activity logs = Centralized [AWS Cloudtrail](https://docs.aws.amazon.com/awscloudtrail/latest/userguide/cloudtrail-user-guide.html)
-* Central Bills = [AWS Consolidated Billing](https://docs.aws.amazon.com/fr_fr/awsaccountbilling/latest/aboutv2/consolidated-billing.html)
-* CI/CD Pipeline = [AWS CodePipeline](https://aws.amazon.com/codepipeline)
-* Infrastructure as code Artifact = [AWS CDK](https://docs.aws.amazon.com/cdk/latest/guide/home.html) construct/App
-* Security monitoring rule = [AWS Config rule](https://aws.amazon.com/config/faq/)
+
+- Environments = [AWS Accounts](https://aws.amazon.com/organizations/faqs/#Organizing_AWS_accounts) (not a _user_ account but actually a isolated environment tight to an email (& password) and unique id)
+- Set of Environments = Set of AWS Accounts under a main one = [AWS Organizations](https://aws.amazon.com/organizations/faqs/)
+- Users and Permissions management solution = [AWS SSO](https://aws.amazon.com/single-sign-on/faqs)
+- Login Web Portal = AWS SSO endpoint
+- Central Activity logs = Centralized [AWS Cloudtrail](https://docs.aws.amazon.com/awscloudtrail/latest/userguide/cloudtrail-user-guide.html)
+- Central Bills = [AWS Consolidated Billing](https://docs.aws.amazon.com/fr_fr/awsaccountbilling/latest/aboutv2/consolidated-billing.html)
+- CI/CD Pipeline = [AWS CodePipeline](https://aws.amazon.com/codepipeline)
+- Infrastructure as code Artifact = [AWS CDK](https://docs.aws.amazon.com/cdk/latest/guide/home.html) construct/App
+- Security monitoring rule = [AWS Config rule](https://aws.amazon.com/config/faq/)
 
 Here is a diagram showing the different services involved and how they are interconnected.
 
@@ -90,33 +90,32 @@ Let's deploy your [Software Development Life Cycle Organization](./source/1-SDLC
 
 What this setup fight for:
 
-* **Bootstrapping an organization on AWS should be easy**: whatever the size of an organization, bootstrapping it on AWS should be as simple as running a command line
+- **Bootstrapping an organization on AWS should be easy**: whatever the size of an organization, bootstrapping it on AWS should be as simple as running a command line
 
-* **AWS best practices is for everyone**: whatever the size of an organization, their end customers deserve a secured, reliable and cost efficient solution so we don't compromise on AWS best practices for simplicity
+- **AWS best practices is for everyone**: whatever the size of an organization, their end customers deserve a secured, reliable and cost efficient solution so we don't compromise on AWS best practices for simplicity
 
-* **Everything is code** (when possible): infrastructure management is a lot easier and more reliable when everything is managed by code.
+- **Everything is code** (when possible): infrastructure management is a lot easier and more reliable when everything is managed by code.
 
-* **CI/CD everywhere**: Human is flawed, let's automate any deployment on any stage
+- **CI/CD everywhere**: Human is flawed, let's automate any deployment on any stage
 
-* **Think of the future**: what's created by the resources available here aims to limit future tech debt and ease future growth by being easily migratable to large enterprise solutions such as AWS Control Tower.
+- **Think of the future**: what's created by the resources available here aims to limit future tech debt and ease future growth by being easily migratable to large enterprise solutions such as AWS Control Tower.
 
-* **Keep it simple**: keeping things simple is the best way to avoid technical debt
+- **Keep it simple**: keeping things simple is the best way to avoid technical debt
 
-* **Keep it open**: our code is open source so that you can contribute or adapt it to fit your needs
+- **Keep it open**: our code is open source so that you can contribute or adapt it to fit your needs
 
 ## What you will find in this repository
 
 In this respository, you will find:
-* the source code of the examples used in the documentation
+
+- the source code of the examples used in the documentation
   1. the [SDLC Organization CDK app](./source/1-SDLC-organization/README.md) that creates several accounts for you through AWS Organizations and sets up the appropriate centralized audit logs.
   1. the [Landing Page CDK app](./source/2-landing-page/README.md) that demonstrates how to deploy a static web site in the Dev account.
   1. the [Landing Page with Pipeline CDK app](./source/3-landing-page/README.md) that demonstrates how to deploy a static web site accross your Staging and Prod environment thanks to a CI/CD pipeline.
 
-
 ## What you won't find in this repository
 
-If you are looking for the source code of the AWS Bootstrap Kit, go there: https://www.github.com/awslabs/aws-bootstrap-kit. 
-
+If you are looking for the source code of the AWS Bootstrap Kit, go there: https://www.github.com/awslabs/aws-bootstrap-kit.
 
 ## Do I need to be familiar with the AWS Services used under the hood?
 
@@ -126,13 +125,13 @@ No, to set up your multi-account strategy with the AWS Bootstrap Kit, you don't
 
 ### Infrastructure as Code
 
-The AWS Bootstrap Kit is based on AWS CDK, the AWS Cloud Development Kit, which is a software development framework for defining cloud infrastructure in code and provisioning it through AWS CloudFormation. 
+The AWS Bootstrap Kit is based on AWS CDK, the AWS Cloud Development Kit, which is a software development framework for defining cloud infrastructure in code and provisioning it through AWS CloudFormation.
 
 With AWS CDK, you define your cloud resources in a familiar programming language. You don't need to learn the syntax of CloudFormation templates. The AWS CDK supports TypeScript, JavaScript, Python, Java, and C#/.Net. If you want to know more about CDK, please visit [AWS CDK documentation](https://docs.aws.amazon.com/cdk/latest/guide/home.html).
 
 AWS CDK is based on the concept of construct. A construct represents an AWS resource or a set of AWS resources. A low-level construct directly maps to a CloudFormation resource while higher level of construct can represent a set of resources that represents a pattern.
 
-In addition, AWS CDK uses the concept of stack. It is the unit of deployment. All AWS resources defined within the scope of a stack, either directly or indirectly, are provisioned as a single unit. 
+In addition, AWS CDK uses the concept of stack. It is the unit of deployment. All AWS resources defined within the scope of a stack, either directly or indirectly, are provisioned as a single unit.
 
 ### CI/CD
 
@@ -163,26 +162,26 @@ Going with AWS SSO will enforce temporary credentials usage while simplifying de
 ### Minimal security best practices
 
 In this solution, we included what we think are a minimal set of security best practices:
-* Centralized activity log (AWS Cloudtrail accounts' trails centralized to main account) is a must. It enables you to easily control what is done in each account.
-* Check on Multi factor authentication for root user (AWS Config rule)
-* Creation of a dedicated administrator user to replace root user (IAM user)
+
+- Centralized activity log (AWS Cloudtrail accounts' trails centralized to main account) is a must. It enables you to easily control what is done in each account.
+- Check on Multi factor authentication for root user (AWS Config rule)
+- Creation of a dedicated administrator user to replace root user (IAM user)
 
 ## Costs
 
-By default, this solution occurs less than 1$ / month bill (price may slightly vary by region) by focusing more on structure of your accounts and using serverless technology.
+By default, this solution occurs less than 1\$ / month bill (price may slightly vary by region) by focusing more on structure of your accounts and using serverless technology.
 
 ## Known limitations
 
 ### SDLC Organization
 
-* Rollback of the SDLC Organization is tricky since AWS Accounts can't be easily deleted
-* Change of the organization structure is not supported (especially accounts' name needs to stay as is).
-* No check will be done on email given the configuration and can't be changed afterwards
-* Deployment won't work if:
-  * You already have an AWS Organizations setup
-  * You already have a [AWS Config recorder](https://docs.aws.amazon.com/config/latest/developerguide/stop-start-recorder.html) (created automatically if you used AWS Config before)
-* Auto CDK bootstrap is only done in the original deployment region
-
+- Rollback of the SDLC Organization is tricky since AWS Accounts can't be easily deleted
+- Change of the organization structure is not supported (especially accounts' name needs to stay as is).
+- No check will be done on email given the configuration and can't be changed afterwards
+- Deployment won't work if:
+  - You already have an AWS Organizations setup
+  - You already have a [AWS Config recorder](https://docs.aws.amazon.com/config/latest/developerguide/stop-start-recorder.html) (created automatically if you used AWS Config before)
+- Auto CDK bootstrap is only done in the original deployment region
 
 ## Getting Help
 
@@ -191,4 +190,3 @@ The best way to interact with our team is through GitHub. You can open an issue
 ## Next
 
 Let's deploy your [Software Development Life Cycle Organization](./source/1-SDLC-organization/README.md).
-