From 61431270354c2c5649448c62f05e913ab770955e Mon Sep 17 00:00:00 2001
From: Vincent Chau <99756290+vincentwschau@users.noreply.github.com>
Date: Wed, 16 Oct 2024 11:20:26 -0400
Subject: [PATCH 1/2] Update load balancer SSL policy.

---
 indexer/load_balancer.tf | 4 ++++
 1 file changed, 4 insertions(+)

diff --git a/indexer/load_balancer.tf b/indexer/load_balancer.tf
index ebdfeddc..be50e21c 100644
--- a/indexer/load_balancer.tf
+++ b/indexer/load_balancer.tf
@@ -44,6 +44,8 @@ resource "aws_lb_listener" "public_https" {
   certificate_arn   = aws_acm_certificate.cert[0].arn
   port              = "443"
   protocol          = "HTTPS"
+  // Refer to https://docs.aws.amazon.com/elasticloadbalancing/latest/application/describe-ssl-policies.html
+  ssl_policy = "ELBSecurityPolicy-TLS13-1-2-2021-06"
 
   default_action {
     type = "fixed-response"
@@ -154,3 +156,5 @@ resource "aws_lb_target_group" "services" {
     Environment = var.environment
   }
 }
+
+

From 3398eff09b3b9f992acb737d393a2faa538dde4e Mon Sep 17 00:00:00 2001
From: Vincent Chau <99756290+vincentwschau@users.noreply.github.com>
Date: Wed, 16 Oct 2024 11:23:54 -0400
Subject: [PATCH 2/2] Remove extra lines.

---
 indexer/load_balancer.tf | 2 --
 1 file changed, 2 deletions(-)

diff --git a/indexer/load_balancer.tf b/indexer/load_balancer.tf
index be50e21c..c6a912cf 100644
--- a/indexer/load_balancer.tf
+++ b/indexer/load_balancer.tf
@@ -156,5 +156,3 @@ resource "aws_lb_target_group" "services" {
     Environment = var.environment
   }
 }
-
-