AWS AWSCloudFormation documentation change
Summary
Added domain name creation example with ROUTING_RULE_ONLY mode and TLS 1.2 configuration
Security assessment
The change documents security policy configuration (TLS_1_2) as part of a routing mode example, but shows standard security practices rather than addressing a vulnerability. The primary focus is on routing configuration.
Diff
diff --git a/AWSCloudFormation/latest/TemplateReference/aws-resource-apigatewayv2-domainname.md b/AWSCloudFormation/latest/TemplateReference/aws-resource-apigatewayv2-domainname.md index 543349c8c..f1584d001 100644 --- a//AWSCloudFormation/latest/TemplateReference/aws-resource-apigatewayv2-domainname.md +++ b//AWSCloudFormation/latest/TemplateReference/aws-resource-apigatewayv2-domainname.md @@ -140,0 +141,9 @@ The region-specific Amazon Route 53 Hosted Zone ID of the regional endpoint. +###### + + * Domain name creation example + + * Domain name with routing mode creation example + + + + @@ -177,0 +187,40 @@ The following example creates a `DomainName` resource called `MyDomainName`. +### Domain name with routing mode creation example + +The following example creates a `DomainName` resource with the `RoutingMode` parameter of `ROUTING_RULES_ONLY`. + +#### JSON + + + { + "Resources": { + "TestDomainName": { + "Type": "AWS::ApiGatewayV2::DomainName", + "Properties": { + "DomainName": "mydomainame.example.com", + "DomainNameConfigurations": [ + { + "EndpointType": "REGIONAL", + "CertificateArn": "arn:aws:acm:us-east-1:111122223333:certificate/fb1b9770-a305-495d-aefb-27e5e101ff3", + "SecurityPolicy": "TLS_1_2" + } + ], + "RoutingMode": "ROUTING_RULE_ONLY" + } + } + } + } + +#### YAML + + + Resources: + TestDomainName: + Type: AWS::ApiGatewayV2::DomainName + Properties: + DomainName: mydomainame.example.com + DomainNameConfigurations: + - EndpointType: REGIONAL + CertificateArn: arn:aws:acm:us-east-1:111122223333:certificate/fb1b9770-a305-495d-aefb-27e5e101ff3 + SecurityPolicy: TLS_1_2 + RoutingMode: "ROUTING_RULE_ONLY" +