From c14bc01f0b9e751890c67fe28bda7edc9c21cc6d Mon Sep 17 00:00:00 2001
From: topher-lo <46541035+topher-lo@users.noreply.github.com>
Date: Thu, 9 Jan 2025 16:14:59 -0800
Subject: [PATCH] ci(infra): Use restrictive ssl policy as default in alb
 fargate

---
 deployments/aws/ecs/alb.tf | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/deployments/aws/ecs/alb.tf b/deployments/aws/ecs/alb.tf
index fca3ab8c7..23eca447c 100644
--- a/deployments/aws/ecs/alb.tf
+++ b/deployments/aws/ecs/alb.tf
@@ -36,7 +36,7 @@ resource "aws_alb_listener" "https" {
   port              = "443"
   protocol          = "HTTPS"
 
-  ssl_policy      = "ELBSecurityPolicy-TLS13-1-2-2021-06"
+  ssl_policy      = "ELBSecurityPolicy-TLS13-1-2-Res-2021-06"
   certificate_arn = var.acm_certificate_arn
 
   default_action {