community icon indicating copy to clipboard operation
community copied to clipboard

Published 20 hours ago verified publisher icon aws-controllers-k8s

WAFv2 service controller

Open yuyuvn opened this issue 2 years ago • 12 comments

New ACK Service Controller

Support for WAFv2

List of API resources

List the API resources in order of importance to you:

  1. WAF ACL
  2. WAF ip set
  3. WAF rules group

yuyuvn avatar May 23 '22 06:05 yuyuvn

/lifecycle frozen

RedbackThomson avatar May 23 '22 20:05 RedbackThomson

+1

jescarri avatar Jan 23 '23 19:01 jescarri

PCI DSS v4 has a requirement for WAFs for all public apps, coming into effect in Q1 2025, and we'd love to use this in our environments. https://www.schellman.com/blog/new-requirements-in-pci-dss-v4

camclay avatar Jan 23 '23 19:01 camclay

+1.

gopinaath avatar Jan 23 '23 20:01 gopinaath

This would be quite useful for our use case of EKS cluster(s) in an AWS account where the stance is to limit creation of resources outside Kubernetes, and the primary mode of interaction is via clusters. Consuming teams can then provision WAF for their applications via kubectl or relevant Kubernetes commands and tooling. WAF is particularly problematic because of the inability to have cross account resources, so while some resources could be created in a separate AWS account via any method, WAF must be in the same account, and limiting creation to only use Kubernetes methods, this becomes problematic.

rjmorse avatar Jan 27 '23 21:01 rjmorse

+1

Thedonutz avatar Jan 30 '23 19:01 Thedonutz

+1

abebars avatar May 24 '23 01:05 abebars

+1

marksteele avatar Jun 29 '23 13:06 marksteele

+1

david-shato-sisense avatar Dec 21 '23 13:12 david-shato-sisense

+1

burninmedia avatar Jan 09 '24 19:01 burninmedia

+1

rmnicholson0612 avatar Apr 04 '24 04:04 rmnicholson0612