From 5f003f6ee15fd9a5543de70382fbd89900837fa2 Mon Sep 17 00:00:00 2001
From: Jakob Krigovsky <jakob@krigovsky.com>
Date: Thu, 13 Feb 2020 11:06:16 +0100
Subject: [PATCH] Update Intermediate security policy for AWS ALB

---
 src/templates/partials/awsalb.hbs | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/src/templates/partials/awsalb.hbs b/src/templates/partials/awsalb.hbs
index 958a1fe..990a8e7 100644
--- a/src/templates/partials/awsalb.hbs
+++ b/src/templates/partials/awsalb.hbs
@@ -41,7 +41,7 @@ Resources:
       LoadBalancerArn: !Ref ExampleALB
       Port: 443
       Protocol: HTTPS
-      SslPolicy: {{#if (includes "TLSv1" output.protocols)}}ELBSecurityPolicy-TLS-1-0-2015-04{{else}}ELBSecurityPolicy-TLS-1-2-2017-01{{/if}}
+      SslPolicy: {{#if (includes "TLSv1" output.protocols)}}ELBSecurityPolicy-TLS-1-0-2015-04{{else}}ELBSecurityPolicy-FS-1-2-Res-2019-08{{/if}}
 {{#if form.hsts}}
 
   # {{form.serverName}} doesn't support HSTS, but it can redirect to HTTPS