From cde973293b6c116d91b9d00197daae4ae267f762 Mon Sep 17 00:00:00 2001
From: KanchiMoe <5897898+KanchiMoe@users.noreply.github.com>
Date: Wed, 21 Sep 2022 19:25:08 +0100
Subject: [PATCH] server_side_encryption_configuration attribute is deprecated
 (#7866)

---
 .../loadtesting/terraform/firehose.tf          | 18 +++++++++++-------
 1 file changed, 11 insertions(+), 7 deletions(-)

diff --git a/infrastructure/loadtesting/terraform/firehose.tf b/infrastructure/loadtesting/terraform/firehose.tf
index f7047f9d8..2d0617352 100644
--- a/infrastructure/loadtesting/terraform/firehose.tf
+++ b/infrastructure/loadtesting/terraform/firehose.tf
@@ -43,17 +43,21 @@ resource "aws_s3_bucket" "osquery-status" { #tfsec:ignore:aws-s3-encryption-cust
     }
   }
 
-  server_side_encryption_configuration {
-    rule {
-      apply_server_side_encryption_by_default {
-        sse_algorithm = "aws:kms"
-      }
-    }
-  }
   #checkov:skip=CKV_AWS_18:dev env
   #checkov:skip=CKV_AWS_144:dev env
   #checkov:skip=CKV_AWS_21:dev env
 }
+
+resource "aws_s3_bucket_server_side_encryption_configuration" "osquery-status" {
+  bucket = aws_s3_bucket.osquery-status.id
+
+  rule {
+    apply_server_side_encryption_by_default {
+      sse_algorithm     = "aws:kms"
+    }
+  }
+}
+
 resource "aws_s3_bucket_public_access_block" "osquery-status" {
   bucket = aws_s3_bucket.osquery-status.id