Skip to content

feat(event-bridge): api destinations (SSPROD-53939) #49

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 6 commits into from
Apr 16, 2025
Merged

feat(event-bridge): api destinations (SSPROD-53939) #49

merged 6 commits into from
Apr 16, 2025

Conversation

matteopasa
Copy link
Contributor

@matteopasa matteopasa commented Apr 3, 2025
edited
Loading

This pull request includes significant updates to the AWS Event Bridge integration module to enhance its functionality and improve security. The main changes involve updating the module to use EventBridge API Destinations, adding new IAM roles and policies, and updating documentation to reflect these changes.

Enhancements to EventBridge Integration:

  • Updated README.md to describe the use of EventBridge API Destinations and the new resources created, including EventBridge API Destination and EventBridge Connection.
  • Modified IAM roles and policies to support the new EventBridge API Destination, including renaming roles and updating permissions. [1] [2] [3]

Documentation Updates:

  • Updated the README.md to reflect the changes in the module, including new resource descriptions and updated requirements and providers. [1] [2]
  • Added a new input variable api_dest_rate_limit to control the rate limit for API Destinations.

Code Refactoring:

  • Refactored main.tf to include new data sources and local variables for the EventBridge API Destination configuration. [1] [2]
  • Updated the CloudFormation stack set and instance resources to deploy the new EventBridge Rule and API Destination. [1] [2]

Deprecation Notices:

  • Marked the org_units input as deprecated, advising users to migrate to include_ouids.

These changes enhance the module's capabilities for log ingestion and threat detection, making it more robust and secure.

@matteopasa matteopasa requested a review from a team as a code owner April 3, 2025 10:01
@matteopasa matteopasa force-pushed the pasa/event-bridge/api-dest branch from 530c57e to ae20f9c Compare April 8, 2025 08:20
ravinadhruve10
ravinadhruve10 reviewed Apr 10, 2025
View reviewed changes
matteopasa and others added 4 commits April 10, 2025 10:07
@matteopasa
feat(event-bridge): event bridge api dest (SSPROD-53939) (#42)
585d5a1 
* first draft of api dest tf

* update tfs after testing

* update readme

* use provider version

* use event-bridge folder

* rename

* add cloudwatch permissions and newlines

* one locals block
@matteopasa
add cloudwatch policies
408cc74
@matteopasa
fix org
857285f
@matteopasa
add back some comments
3fb73e7
@matteopasa matteopasa force-pushed the pasa/event-bridge/api-dest branch from 6bf95e0 to 3fb73e7 Compare April 10, 2025 08:08
@matteopasa matteopasa merged commit eb5fb6c into main Apr 16, 2025
@matteopasa matteopasa deleted the pasa/event-bridge/api-dest branch April 16, 2025 13:25
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@legobrick legobrick legobrick left review comments

@lorenzo-merici lorenzo-merici lorenzo-merici approved these changes

@ravinadhruve10 ravinadhruve10 ravinadhruve10 approved these changes

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
4 participants
@matteopasa @legobrick @lorenzo-merici @ravinadhruve10