Merge pull request #21 from clouddrove/issue-546

13archit · web-flow · commit 0414cfef0808 · 2023-09-08T22:02:20.000+05:30
fix: add security group module count
diff --git a/main.tf b/main.tf
@@ -168,7 +168,7 @@ resource "aws_ec2_client_vpn_endpoint" "default" {
   split_tunnel           = var.split_tunnel_enable
   vpc_id                 = var.vpc_id
   session_timeout_hours  = var.session_timeout_hours
-  security_group_ids     = concat([aws_security_group.this.id], var.security_group_ids)
+  security_group_ids     = concat([aws_security_group.this[0].id], var.security_group_ids)
   vpn_port               = var.vpn_port
   self_service_portal    = var.self_service_portal
 
@@ -200,6 +200,7 @@ resource "aws_ec2_client_vpn_endpoint" "default" {
 #tfsec:ignore:aws-ec2-add-description-to-security-group
 #tfsec:ignore:aws-ec2-add-description-to-security-group-rule
 resource "aws_security_group" "this" {
+  count       = var.enabled && var.enable_security_group ? 1 : 0
   name_prefix = var.name
   vpc_id      = var.vpc_id
   tags        = module.labels.tags
diff --git a/variables.tf b/variables.tf
@@ -214,3 +214,9 @@ variable "security_group_egress" {
   ]
   description = "List of maps of egress rules to set on the default security group"
 }
+
+variable "enable_security_group" {
+  type        = bool
+  default     = true
+  description = "create for security group module this value is enable 'true'"
+}

Original file line number	Diff line number	Diff line change
`@@ -214,3 +214,9 @@ variable "security_group_egress" {`
`214`	`214`	`]`
`215`	`215`	`description = "List of maps of egress rules to set on the default security group"`
`216`	`216`	`}`
	`217`	`+`
	`218`	`+variable "enable_security_group" {`
	`219`	`+ type = bool`
	`220`	`+ default = true`
	`221`	`+ description = "create for security group module this value is enable 'true'"`
	`222`	`+}`