From 2eb4eeae5846f8308b6573a21cdc5bf4c0b15f0c Mon Sep 17 00:00:00 2001
From: xshot9011 <40098197+xshot9011@users.noreply.github.com>
Date: Tue, 30 Jan 2024 15:31:02 +0700
Subject: [PATCH] chore: update minimum_protocol_version

---
 CHANGELOG.md | 8 ++++++++
 main.tf      | 2 +-
 2 files changed, 9 insertions(+), 1 deletion(-)

diff --git a/CHANGELOG.md b/CHANGELOG.md
index 0f062e2..a0fc1ec 100644
--- a/CHANGELOG.md
+++ b/CHANGELOG.md
@@ -2,8 +2,16 @@
 
 All notable changes to this module will be documented in this file.
 
+## [v1.2.2] - 2024-01-30
+
+### Changed
+
+- Update minimum protocol version to `TLSv1.2_2021`
+
 ## [v1.2.1] - 2023-10-26
 
+### Changed
+
 - Update WAF module version to v1.1.1
   - Resource: `module.waf`
   - Variable: `waf_custom_response_body`
diff --git a/main.tf b/main.tf
index 1e6570a..49df192 100644
--- a/main.tf
+++ b/main.tf
@@ -295,7 +295,7 @@ resource "aws_cloudfront_distribution" "distribution" {
   viewer_certificate {
     acm_certificate_arn            = local.is_use_cloudfront_cert_viewer ? null : var.cdn_certificate_arn
     cloudfront_default_certificate = local.is_use_cloudfront_cert_viewer ? true : false
-    minimum_protocol_version       = local.is_use_cloudfront_cert_viewer ? "TLSv1" : "TLSv1.2_2018"
+    minimum_protocol_version       = local.is_use_cloudfront_cert_viewer ? "TLSv1" : "TLSv1.2_2021"
     ssl_support_method             = local.is_use_cloudfront_cert_viewer ? null : "sni-only"
   }