Merge pull request #4 from companieshouse/feature/initial-implementation

Add security group rule for backend server requests

Author: marcransome

groups/frontend/instance.tf

@@ -85,6 +85,18 @@ resource "aws_security_group" "services" {
     }
   }
 
+  dynamic "ingress" {
+    for_each = each.value
+    iterator = service
+    content {
+      description = "Allow client requests from backend servers to ${service.key} service in ${each.key} server group"
+      from_port   = service.value
+      to_port     = service.value
+      protocol    = "TCP"
+      cidr_blocks = data.aws_subnet.application.*.cidr_block
+    }
+  }
+
   tags = merge(local.common_tags, {
     Name             = "${each.key}-${local.common_resource_name}"
     TuxedoServerType = each.key