DEPRECATION NOTICE: please use serverless-default-aws-resource-attributes instead, as it supports a superset of the functionality provided by this plugin. This plugin will no longer be maintained.
This plugin allows you to set default properties a given CloudFormation resource should have based on type.
Install the plugin:
npm install -D serverless-default-aws-resource-properties
Register the plugin in serverless.yml
:
plugins:
- serverless-default-aws-resource-properties
Example:
custom:
defaultAwsProperties:
# Enable SSE and block public access for all S3 buckets
- Type: AWS::S3::Bucket
Properties:
BucketEncryption:
ServerSideEncryptionConfiguration:
- ServerSideEncryptionByDefault:
SSEAlgorithm: AES256
PublicAccessBlockConfiguration:
BlockPublicAcls: true
BlockPublicPolicy: true
IgnorePublicAcls: true
RestrictPublicBuckets: true
# Add logging configuration to all S3 buckets except resource with
# logical ID 'LoggingBucket'
- Type: AWS::S3::Bucket
Exclude:
- LoggingBucket
Properties:
LoggingConfiguration:
DestinationBucketName:
Ref: LoggingBucket