aws-db-backup-off

Ensure that database backup is enabled

This rule currently applies to the following list of resources:

• DynamoDB

Examples

Insecure Example

Terraform

resource "aws_dynamodb_table" "example" {
  name             = "example"
  hash_key         = "TestTableHashKey"

  attribute {
    name = "TestTableHashKey"
    type = "S"
  }

  # point_in_time_recovery is optional by default
}

CloudFormation

AWSTemplateFormatVersion: "2010-09-09"
Resources:
  myDynamoDBTable:
    Type: AWS::DynamoDB::Table
      PointInTimeRecoverySpecification:
        PointInTimeRecoveryEnabled: False

Secure Example

Terraform

resource "aws_dynamodb_table" "example" {
  name             = "example"
  hash_key         = "TestTableHashKey"

  attribute {
    name = "TestTableHashKey"
    type = "S"
  }

  point_in_time_recovery {
    enabled = true
  }
}

CloudFormation

AWSTemplateFormatVersion: "2010-09-09"
Resources:
  myDynamoDBTable:
    Type: AWS::DynamoDB::Table
      PointInTimeRecoverySpecification:
        PointInTimeRecoveryEnabled: True

More information

• AWS Docs
• Terraform Docs
• Cloudformation Docs