From 899b071c7a24ad82838a63f3e285e9dcdf277b3d Mon Sep 17 00:00:00 2001
From: mahaputrailhamawal <mahaputrailhamawal@gmail.com>
Date: Tue, 19 Nov 2024 15:06:03 +0700
Subject: [PATCH 1/2] change deprecated resource

---
 terraform/aws/modules/storage/main.tf | 18 +++++++++++++++++-
 1 file changed, 17 insertions(+), 1 deletion(-)

diff --git a/terraform/aws/modules/storage/main.tf b/terraform/aws/modules/storage/main.tf
index 73a6d8f5..02b2bba3 100644
--- a/terraform/aws/modules/storage/main.tf
+++ b/terraform/aws/modules/storage/main.tf
@@ -103,12 +103,28 @@ resource "aws_ssm_parameter" "km_ssm_db_name" {
 
 resource "aws_s3_bucket" "km_blob_storage" {
   bucket = "km-blob-storage-${var.environment}"
-  acl    = "private"
+  # acl    = "private"
   tags = merge(var.default_tags, {
     name = "km_blob_storage_${var.environment}"
   })
 }
 
+resource "aws_s3_bucket_ownership_controls" "km_blob_storage" {
+  depends_on = [aws_s3_bucket.km_blob_storage]
+  
+  bucket = aws_s3_bucket.km_blob_storage.id
+  rule {
+    object_ownership = "BucketOwnerPreferred"
+  }
+}
+
+resource "aws_s3_bucket_acl" "km_blob_storage" {
+  depends_on = [aws_s3_bucket_ownership_controls.km_blob_storage]
+
+  bucket = "km-blob-storage${var.environment}"
+  acl    = "private"
+}
+
 resource "aws_s3_bucket" "km_public_blob" {
   bucket = "km-public-blob"
 }

From 7701cbac9f5f7ae3a7c75ccd7c5d78e156ff8338 Mon Sep 17 00:00:00 2001
From: mahaputrailhamawal <mahaputrailhamawal@gmail.com>
Date: Wed, 20 Nov 2024 11:05:05 +0700
Subject: [PATCH 2/2] change postgres version

---
 terraform/aws/modules/storage/main.tf | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/terraform/aws/modules/storage/main.tf b/terraform/aws/modules/storage/main.tf
index 02b2bba3..52369e4f 100644
--- a/terraform/aws/modules/storage/main.tf
+++ b/terraform/aws/modules/storage/main.tf
@@ -46,7 +46,7 @@ resource "aws_db_instance" "km_db" {
   name                      = "km_db_${var.environment}"
   allocated_storage         = 20
   engine                    = "postgres"
-  engine_version            = "10.6"
+  engine_version            = "11.22"
   instance_class            = "db.t3.medium"
   storage_type              = "gp2"
   password                  = var.db_password
@@ -121,7 +121,7 @@ resource "aws_s3_bucket_ownership_controls" "km_blob_storage" {
 resource "aws_s3_bucket_acl" "km_blob_storage" {
   depends_on = [aws_s3_bucket_ownership_controls.km_blob_storage]
 
-  bucket = "km-blob-storage${var.environment}"
+  bucket = aws_s3_bucket.km_blob_storage.id
   acl    = "private"
 }