docs: improve comments on SSE-KMS/S3 encryption

ricardolsmendes · May 24, 2024 · 03be899 · 03be899
1 parent fbfe837
commit 03be899
Showing 1 changed file with 5 additions and 3 deletions.
diff --git a/infrastructure/modules/core/kms.tf b/infrastructure/modules/core/kms.tf
@@ -1,9 +1,11 @@
+# This KMS key is used to implement SSE-KMS encryption in S3.
+#
 # Since January, 2023, AWS applies server-side encryption with Amazon S3 managed keys
 # (SSE-S3) as the base level of encryption for every bucket in S3. However, users can
 # choose to configure buckets to use server-side encryption with AWS Key Management
-# Service (KMS) keys (SSE-KMS) instead. This KMS key is used to implement SSE-KMS.
-# Please refer to https://docs.aws.amazon.com/AmazonS3/latest/userguide/UsingEncryption.html
-# for further details.
+# Service keys (SSE-KMS) instead. Please refer to
+# https://docs.aws.amazon.com/AmazonS3/latest/userguide/UsingEncryption.html for further
+# details.
 resource "aws_kms_key" "s3" {
   description         = "This key that protects S3 objects tackled by the AWS Glue CI/CD Blueprint"
   enable_key_rotation = true