Control: 4.10 Ensure that App Engine applications enforce HTTPS connections
Description
In order to maintain the highest level of security all connections to an application should be secure by default.
Insecure HTTP connections maybe subject to eavesdropping which can expose sensitive data.
Remediation
Add a line to the app.yaml file controlling the application which enforces secure connections. For example
handlers:- url: /.* **secure: always** redirect_http_response_code: 301 script: auto
For more details see here
Usage
Run the control in your terminal:
powerpipe control run gcp_compliance.control.cis_v120_4_10
Snapshot and share results via Turbot Pipes:
powerpipe loginpowerpipe control run gcp_compliance.control.cis_v120_4_10 --share
SQL
This control uses a named query:
manual_control