Is your feature request related to a problem?
The WAFv2 controller does not support creating or adopting/editing ManagedRuleGroupConfig.AWSManagedRulesAntiDDoSRuleSet. This prevents solely enabling all WAF Shield features via ACK.
Describe the solution you'd like
The WAFv2 Controller's CRD webACL gets a new Property AWSManagedRulesAntiDDoSRuleSet for its ManagedRuleGroupConfigs that enables the anti-DDoS managed rule group.
Describe alternatives you've considered
Using AWS CLI to append the rule to the WebACL after it is created would just get reverted by our state controller (FluxCD).
Is your feature request related to a problem?
The WAFv2 controller does not support creating or adopting/editing
ManagedRuleGroupConfig.AWSManagedRulesAntiDDoSRuleSet. This prevents solely enabling all WAF Shield features via ACK.Describe the solution you'd like
The WAFv2 Controller's CRD
webACLgets a new PropertyAWSManagedRulesAntiDDoSRuleSetfor itsManagedRuleGroupConfigsthat enables the anti-DDoS managed rule group.Describe alternatives you've considered
Using AWS CLI to append the rule to the WebACL after it is created would just get reverted by our state controller (FluxCD).