terraform-aws-secure-baseline icon indicating copy to clipboard operation
terraform-aws-secure-baseline copied to clipboard

Published 20 hours ago verified publisher icon nozaq

Enable Object Lock for CloudTrail S3 Buckets

Open dmytro-dorofeiev opened this issue 1 year ago • 0 comments

Is your feature request related to a problem? Please describe.

Using target S3 buckets with Object Lock for your Amazon CloudTrail trails will help ensure log data integrity as the log files stored within these buckets can't be accidentally or intentionally deleted. S3 Object Lock feature can also help you meet regulatory requirements within your organization when it comes to data protection.

Describe the solution you'd like

Current code doesn't support ability to enable object lock during s3 bucket creation. It would be nice to add such variable for S3 bucket.

Additional context

This is known as Medium risk level

dmytro-dorofeiev avatar Dec 20 '22 18:12 dmytro-dorofeiev