kovagoadi/hunfabric
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

fix previous change to vpc sc module (#3629)

Browse Source
This commit is contained in:
Ludovico Magnocavallo
2026-01-08 13:53:05 +01:00
committed by GitHub
parent 6ab071da8d
commit dc35ce15ee
2 changed files with 43 additions and 12 deletions
Download Patch File Download Diff File Expand all files Collapse all files

44
modules/vpc-sc/perimeters-additive.tf
View File

@@ -17,28 +17,56 @@
# tfdoc:file:description Regular service perimeter resources which ignore resource changes.
locals {
perimeters_additive = {
for k, v in google_access_context_manager_service_perimeter.additive :
k => v.id
}
spec_additive_resources = flatten([
_spec_resource_sets = flatten([
for k, v in local.perimeters : [
for vv in try(v.spec.resources, []) : [
for vvv in lookup(local.ctx.resource_sets, vv, []) : {
key = "${k}/${vvv}"
perimeter = k
resource = vvv
}
] if startswith(vv, "$resource_sets:")
] if v.ignore_resource_changes
])
_spec_resources = flatten([
for k, v in local.perimeters : [
for vv in try(v.spec.resources, []) : {
key = "${k}/${vv}"
perimeter = k
resource = vv
}
} if !startswith(vv, "$resource_sets:")
] if v.ignore_resource_changes
])
status_additive_resources = flatten([
_status_resource_sets = flatten([
for k, v in local.perimeters : [
for vv in try(v.status.resources, []) : [
for vvv in lookup(local.ctx.resource_sets, vv, []) : {
key = "${k}/${vvv}"
perimeter = k
resource = vvv
}
] if startswith(vv, "$resource_sets:")
] if v.ignore_resource_changes
])
_status_resources = flatten([
for k, v in local.perimeters : [
for vv in try(v.status.resources, []) : {
key = "${k}/${vv}"
perimeter = k
resource = vv
}
} if !startswith(vv, "$resource_sets:")
] if v.ignore_resource_changes
])
perimeters_additive = {
for k, v in google_access_context_manager_service_perimeter.additive :
k => v.id
}
spec_additive_resources = concat(
local._spec_resource_sets, local._spec_resources
)
status_additive_resources = concat(
local._status_resource_sets, local._status_resources
)
}
resource "google_access_context_manager_service_perimeter" "additive" {

11
tests/modules/vpc_sc/context.yaml
View File

@@ -105,13 +105,16 @@ values:
google_access_context_manager_service_perimeter_resource.default["default/$project_numbers:test-1"]:
resource: projects/222222
timeouts: null
google_access_context_manager_service_perimeter_resource.default["default/$resource_sets:test"]:
resource: $resource_sets:test
google_access_context_manager_service_perimeter_resource.default["default/projects/321"]:
resource: projects/321
timeouts: null
google_access_context_manager_service_perimeter_resource.default["default/projects/654"]:
resource: projects/654
timeouts: null
counts:
google_access_context_manager_access_level: 1
google_access_context_manager_service_perimeter: 1
google_access_context_manager_service_perimeter_resource: 3
google_access_context_manager_service_perimeter_resource: 4
modules: 0
resources: 5
resources: 6