Hello,
Here is the challenge I'm working on. I've established a CloudFormation Template that configures a source S3 bucket replicating objects to a destination S3 bucket in another region. Both buckets are encrypted with KMS.
I'm trying to luanch this CloudFormation template and other templates through GitHub actions.
Here is the challenge I'm facing. By default, S3 doesn't replicate objects that are encrypted with KMS and it seems that CloudFormation doesn't have a property to enable this replication.
Therefore, after teh CloudFormation tempaltes deploy, I'm left configuring the replication rule from "do not replicate" to "replicate" through other means.
I'm thinking I could explore a script through the CLI? How would others go about this?
Here is documentation on replication configuration for cloudformation.
https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-s3-bucket-replicationconfiguration-rules.html
Here is documentation on how KMS encrypted s3 buckets default to do not replicate.
https://docs.aws.amazon.com/AmazonS3/latest/userguide/replication-config-for-kms-objects.html
