feat: Update default CA identifier for aws-aurora modules to rds-ca-r…

…sa2048-g1 (#591)

aws-aurora-mysql/README.md

@@ -58,7 +58,7 @@ No resources.
 | <a name="input_apply_immediately"></a> [apply\_immediately](#input\_apply\_immediately) | If false changes will not be applied until next maintenance window. | `string` | `false` | no |
 | <a name="input_auto_minor_version_upgrade"></a> [auto\_minor\_version\_upgrade](#input\_auto\_minor\_version\_upgrade) | Set the databases to automatically upgrade minor versions. | `bool` | `true` | no |
 | <a name="input_backtrack_window"></a> [backtrack\_window](#input\_backtrack\_window) | Turns on Backgrack for this many seconds. [Doc](https://aws.amazon.com/blogs/aws/amazon-aurora-backtrack-turn-back-time/) | `string` | `0` | no |
-| <a name="input_ca_cert_identifier"></a> [ca\_cert\_identifier](#input\_ca\_cert\_identifier) | Identifier for the certificate authority. rds-ca-ecc384-g1 is the latest available version. | `string` | `"rds-ca-ecc384-g1"` | no |
+| <a name="input_ca_cert_identifier"></a> [ca\_cert\_identifier](#input\_ca\_cert\_identifier) | Identifier for the certificate authority. rds-ca-rsa2048-g1 is the latest available version. | `string` | `"rds-ca-rsa2048-g1"` | no |
 | <a name="input_database_name"></a> [database\_name](#input\_database\_name) | The name of the database to be created in the cluster. | `string` | n/a | yes |
 | <a name="input_database_password"></a> [database\_password](#input\_database\_password) | Password for user that will be created. | `string` | n/a | yes |
 | <a name="input_database_subnet_group"></a> [database\_subnet\_group](#input\_database\_subnet\_group) | The name of an existing database subnet group to use. | `string` | n/a | yes |

aws-aurora-mysql/variables.tf

@@ -177,8 +177,8 @@ variable "engine_version" {
 
 variable "ca_cert_identifier" {
   type        = string
-  description = "Identifier for the certificate authority. rds-ca-ecc384-g1 is the latest available version."
-  default     = "rds-ca-ecc384-g1"
+  description = "Identifier for the certificate authority. rds-ca-rsa2048-g1 is the latest available version."
+  default     = "rds-ca-rsa2048-g1"
 }
 
 variable "auto_minor_version_upgrade" {

aws-aurora-postgres/README.md

@@ -56,7 +56,7 @@ No resources.
 |------|-------------|------|---------|:--------:|
 | <a name="input_apply_immediately"></a> [apply\_immediately](#input\_apply\_immediately) | If false changes will not be applied until next maintenance window. | `string` | `false` | no |
 | <a name="input_auto_minor_version_upgrade"></a> [auto\_minor\_version\_upgrade](#input\_auto\_minor\_version\_upgrade) | Set the databases to automatically upgrade minor versions. WARNING - if this is enabled, make sure engine\_version is set to a *prefix* rather that a specific version so that TF won't try to downgrade DB's that have been auto-upgraded. Docs: https://registry.terraform.io/providers/hashicorp/aws/latest/docs/resources/db_instance#engine_version | `bool` | `false` | no |
-| <a name="input_ca_cert_identifier"></a> [ca\_cert\_identifier](#input\_ca\_cert\_identifier) | Identifier for the certificate authority. | `string` | `"rds-ca-ecc384-g1"` | no |
+| <a name="input_ca_cert_identifier"></a> [ca\_cert\_identifier](#input\_ca\_cert\_identifier) | Identifier for the certificate authority. | `string` | `"rds-ca-rsa2048-g1"` | no |
 | <a name="input_database_name"></a> [database\_name](#input\_database\_name) | The name of the database to be created in the cluster. | `string` | n/a | yes |
 | <a name="input_database_password"></a> [database\_password](#input\_database\_password) | Password for user that will be created. | `string` | n/a | yes |
 | <a name="input_database_subnet_group"></a> [database\_subnet\_group](#input\_database\_subnet\_group) | The name of an existing database subnet group to use. | `string` | n/a | yes |

aws-aurora-postgres/variables.tf

@@ -128,7 +128,7 @@ variable "iam_database_authentication_enabled" {
 variable "ca_cert_identifier" {
   type        = string
   description = "Identifier for the certificate authority."
-  default     = "rds-ca-ecc384-g1"
+  default     = "rds-ca-rsa2048-g1"
 }
 
 variable "auto_minor_version_upgrade" {

aws-aurora/README.md

@@ -36,7 +36,7 @@ No modules.
 | <a name="input_apply_immediately"></a> [apply\_immediately](#input\_apply\_immediately) | n/a | `bool` | `false` | no |
 | <a name="input_auto_minor_version_upgrade"></a> [auto\_minor\_version\_upgrade](#input\_auto\_minor\_version\_upgrade) | Set the databases to automatically upgrade minor versions. | `bool` | `true` | no |
 | <a name="input_backtrack_window"></a> [backtrack\_window](#input\_backtrack\_window) | n/a | `number` | `0` | no |
-| <a name="input_ca_cert_identifier"></a> [ca\_cert\_identifier](#input\_ca\_cert\_identifier) | Identifier for the certificate authority. Use rds-ca-ecc384-g1 for anything new. | `string` | `"rds-ca-ecc384-g1"` | no |
+| <a name="input_ca_cert_identifier"></a> [ca\_cert\_identifier](#input\_ca\_cert\_identifier) | Identifier for the certificate authority. Use rds-ca-rsa2048-g1 for anything new. | `string` | `"rds-ca-rsa2048-g1"` | no |
 | <a name="input_database_name"></a> [database\_name](#input\_database\_name) | n/a | `string` | n/a | yes |
 | <a name="input_database_password"></a> [database\_password](#input\_database\_password) | n/a | `string` | n/a | yes |
 | <a name="input_database_subnet_group"></a> [database\_subnet\_group](#input\_database\_subnet\_group) | n/a | `string` | n/a | yes |

aws-aurora/variables.tf

@@ -135,8 +135,8 @@ variable "db_deletion_protection" {
 
 variable "ca_cert_identifier" {
   type        = string
-  description = "Identifier for the certificate authority. Use rds-ca-ecc384-g1 for anything new."
-  default     = "rds-ca-ecc384-g1"
+  description = "Identifier for the certificate authority. Use rds-ca-rsa2048-g1 for anything new."
+  default     = "rds-ca-rsa2048-g1"
 }
 
 variable "auto_minor_version_upgrade" {