Allow CloudTrail encryption with SSE-S3

## Is your feature request related to a problem? Please describe.

Using this module will always create a KMS key in order to encrypt CloudTrail logs.  This KMS key comes with a financial cost that the user has to pay.

## Describe the solution you'd like

It should be possible to opt out of using SSE-KMS for CloudTrail logs.  If the KMS parameter is not passed in the `aws_cloudtrail` resource, logs will still be encrypted using SSE-S3 but at no cost to the user.  

## Describe alternatives you've considered

None

## Additional context

AWS docs describing how CloudTrail logs are encrypted - https://docs.aws.amazon.com/awscloudtrail/latest/userguide/encrypting-cloudtrail-log-files-with-aws-kms.html


Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Allow CloudTrail encryption with SSE-S3 #320

Is your feature request related to a problem? Please describe.

Describe the solution you'd like

Describe alternatives you've considered

Additional context

Metadata

Assignees

Labels

Projects

Milestone

Relationships

Development

Allow CloudTrail encryption with SSE-S3 #320

Description

Is your feature request related to a problem? Please describe.

Describe the solution you'd like

Describe alternatives you've considered

Additional context

Metadata

Metadata

Assignees

Labels

Projects

Milestone

Relationships

Development

Issue actions