ALIYUN::ALB::SecurityPolicy is used to create a custom security policy.
Syntax
{
"Type": "ALIYUN::ALB::SecurityPolicy",
"Properties": {
"Ciphers": List,
"ResourceGroupId": String,
"TLSVersions": List,
"SecurityPolicyName": String
}
}
Properties
Property | Type | Required | Editable | Description | Constraint |
---|---|---|---|---|---|
Ciphers | List | Yes | Yes | The cipher suites supported. | Valid values:
|
ResourceGroupId | String | No | No | The ID of the resource group. | None. |
TLSVersions | List | Yes | Yes | The version of the TLS protocol. | Valid values:
|
SecurityPolicyName | String | Yes | Yes | The name of the security policy. | The name must be 2 to 128 characters in length and can contain letters, digits, periods (.), underscores (_), and hyphens (-). The name must start with a letter. |
Return values
Fn::GetAtt
SecurityPolicyId: the ID of the security policy.
Examples
-
JSON
format{ "ROSTemplateFormatVersion": "2015-09-01", "Parameters": { "Ciphers": { "Type": "Json", "Description": "The supported cipher suites, which are determined by the TLS protocol version.\nThe specified cipher suites must be supported by at least one TLS protocol version that you specify.\nNote For example, if you set the TLSVersions parameter to TLSv1.3, you must specify cipher suites that are supported by TLS 1.3.", "MinLength": 1, "MaxLength": 20 }, "TLSVersions": { "Type": "Json", "Description": "The supported versions of the Transport Layer Security (TLS) protocol. Valid values: TLSv1.0, TLSv1.1, TLSv1.2, and TLSv1.3 and so on.", "MinLength": 1, "MaxLength": 5 }, "SecurityPolicyName": { "Type": "String", "Description": "The name of the security policy.\nThe name must be 2 to 128 characters in length, and can contain letters, digits, periods\n(.), underscores (_), and hyphens (-). The name must start with a letter." } }, "Resources": { "SecurityPolicy": { "Type": "ALIYUN::ALB::SecurityPolicy", "Properties": { "Ciphers": { "Ref": "Ciphers" }, "TLSVersions": { "Ref": "TLSVersions" }, "SecurityPolicyName": { "Ref": "SecurityPolicyName" } } } }, "Outputs": { "SecurityPolicyId": { "Description": "The ID of the security policy.", "Value": { "Fn::GetAtt": [ "SecurityPolicy", "SecurityPolicyId" ] } } } }