Refactor VPC firewall module for Terraform 1.3 (#949)

* module and module tests/examples * align blueprints and fast * fix null ranges * make ports optional * tfdoc * make rules optional defaulting to all protocols * review comments * last round of comments * invert precedence of template variables * add option to disable all default rules * add option to disable all default rules * split egress/ingress * tests * fix tests
2022-11-04 13:56:07 +01:00
parent b166938435
commit fae5654e33
54 changed files with 935 additions and 933 deletions
--- a/blueprints/cloud-operations/vm-migration/single-project/main.tf
+++ b/blueprints/cloud-operations/vm-migration/single-project/main.tf
@@ -66,24 +66,7 @@ module "landing-vpc" {
 }

 module "landing-vpc-firewall" {
-  source              = "../../../../modules/net-vpc-firewall"
-  project_id          = module.landing-project.project_id
-  network             = module.landing-vpc.name
-  admin_ranges        = []
-  http_source_ranges  = []
-  https_source_ranges = []
-  ssh_source_ranges   = []
-  custom_rules = {
-    allow-ssh = {
-      description          = "Allow SSH from IAP"
-      direction            = "INGRESS"
-      action               = "allow"
-      sources              = []
-      ranges               = ["35.235.240.0/20"]
-      targets              = []
-      use_service_accounts = false
-      rules                = [{ protocol = "tcp", ports = ["22"] }]
-      extra_attributes     = {}
-    }
-  }
+  source     = "../../../../modules/net-vpc-firewall"
+  project_id = module.landing-project.project_id
+  network    = module.landing-vpc.name
 }