Merge pull request #152 from jplock/jp-docs

jplock · web-flow · commit 45938c8ed1b9 · 2025-03-06T07:51:39.000-05:00
[chore] clean up Known Issues
diff --git a/docs/support.md b/docs/support.md
@@ -12,13 +12,11 @@ Unordered list of future improvement ideas.
 
 ## Known Issues
 
-1. The [VPC template](https://github.com/aws-samples/sample-code-for-a-secure-vault-using-aws-nitro-enclaves/blob/main/vpc_template.yml) has a CloudFormation parameter called `pEnableVpcEndpoints` that will provision the VPC with VPC Interface Endpoints instead of public subnets and NAT Gateways. VPC Interface Endpoints are currently not supported due to [aws-nitro-enclaves-acm#130](https://github.com/aws/aws-nitro-enclaves-acm/pull/130) (GitHub Issue)
+1. The [KMS template](https://github.com/aws-samples/sample-code-for-a-secure-vault-using-aws-nitro-enclaves/blob/main/kms_template.yml) has a CloudFormation parameter called `pPrimaryKeyArn` that will provision a replica KMS key in another region referencing the primary key. DynamoDB is also configured as a [global table](https://aws.amazon.com/dynamodb/global-tables/) to support multi-region workloads. A multi-region configuration hasn't been tested, but should be supported using the chosen services.
 
-2. The [KMS template](https://github.com/aws-samples/sample-code-for-a-secure-vault-using-aws-nitro-enclaves/blob/main/kms_template.yml) has a CloudFormation parameter called `pPrimaryKeyArn` that will provision a replica KMS key in another region referencing the primary key. DynamoDB is also configured as a [global table](https://aws.amazon.com/dynamodb/global-tables/) to support multi-region workloads. A multi-region configuration hasn't been tested, but should be supported using the chosen services.
+2. The [CI template](https://github.com/aws-samples/sample-code-for-a-secure-vault-using-aws-nitro-enclaves/blob/main/ci_template.yml) has a CloudFormation parameter called `pUseCodeBuildFleet` that will provision two [reserved capacity](https://docs.aws.amazon.com/codebuild/latest/userguide/fleets.html) AWS CodeBuild compute instances for the builds. This will dramatically speed up the `BuildVault` project as the Docker images will now be cached between runs. CodeBuild Fleets are more expensive than on-demand CodeBuild compute, so they are not enabled by default.
 
-3. The [CI template](https://github.com/aws-samples/sample-code-for-a-secure-vault-using-aws-nitro-enclaves/blob/main/ci_template.yml) has a CloudFormation parameter called `pUseCodeBuildFleet` that will provision two [reserved capacity](https://docs.aws.amazon.com/codebuild/latest/userguide/fleets.html) AWS CodeBuild compute instances for the builds. This will dramatically speed up the `BuildParent` and `BuildEnclave` projects as the Docker images will now be cached between runs. CodeBuild Fleets are more expensive than on-demand CodeBuild compute, so they are not enabled by default.
-
-4. The [API template](https://github.com/aws-samples/sample-code-for-a-secure-vault-using-aws-nitro-enclaves/blob/main/api/template.yml) has a CloudFormation parameter called `pVpcEndpointIds` that will provision a [private api](https://docs.aws.amazon.com/apigateway/latest/developerguide/apigateway-private-apis.html) in Amazon API Gateway if [VPC Interface Endpoints](https://docs.aws.amazon.com/apigateway/latest/developerguide/apigateway-vpc-endpoint-policies.html) for API Gateway are provided.
+3. The [API template](https://github.com/aws-samples/sample-code-for-a-secure-vault-using-aws-nitro-enclaves/blob/main/api/template.yml) has a CloudFormation parameter called `pVpcEndpointId` that will provision a [private api](https://docs.aws.amazon.com/apigateway/latest/developerguide/apigateway-private-apis.html) in Amazon API Gateway if [VPC Interface Endpoints](https://docs.aws.amazon.com/apigateway/latest/developerguide/apigateway-vpc-endpoint-policies.html) for API Gateway are provided.
 
 ---
 
