You must be logged in to view saved presets
AWS AppSync
A collection of configuration templates for AWS AppSync as well as security controls for monitoring and protecting AWS AppSync configuration such as Config Rules, CloudWatch Alarms, EventBridge Rules, IAM policies, and more.
AppSync
AppSync GraphQL API Example
This template creates a new AWS AppSync GraphQL API `my-appsync-api`. It uses Cognito for authentication (user pool us-east-1_123456789)
AppSync API Key
This template creates an API key and associates it with a new GraphQL API. You can optionally add a parameter to set key expiry
AppSync API Cache
This template creates an ApiCache for a GraphQL API. The `ApiCache` resource is of type `AWS::AppSync::ApiCache` and has properties such as `Type` which is set to `SMALL`, `ApiCachingBehavior` which is set to `FULL_REQUEST_CACHING`, `Ttl` which is set to 1200, `TransitEncryptionEnabled` which is set to true, and `AtRestEncryptionEnabled` which is set to true.
Config Rule
Check if AppSync APIs are associated with WAFv2 ACLs
Checks if AWS AppSync APIs are associated with AWS WAFv2 web access control lists (ACLs). The rule is NON_COMPLIANT for an AWS AppSync API if it is not associated with a web ACL.
Check if AWS AppSync API cache has encryption at rest enabled
Checks if an AWS AppSync API cache has encryption at rest enabled. This rule is NON_COMPLIANT if 'AtRestEncryptionEnabled' is false.
Ensure AWS AppSync API has logging enabled
Checks if an AWS AppSync API has logging enabled. The rule is NON_COMPLIANT if logging is not enabled, or 'fieldLogLevel' is neither ERROR nor ALL.
© 2024 asecurecloud. All rights reserved.