Almost there but not quite - change of direction coming.

Author: apolloakora

security.group-main.tf

@@ -1,22 +1,31 @@
 
+### ####################### ###
+### [[data source]] aws_vpc ###
+### ####################### ###
+
+data aws_vpc default
+{
+    default = true
+}
+
+
 ### ####################################### ###
 ### [[resource]] aws_default_security_group ###
 ### ####################################### ###
 
 resource aws_security_group new
 {
-    count = "${ var.in_use_default ? 1 : 0 }"
-
+#################################    count       = "${ var.in_use_default ? 0 : 1 }"
+    vpc_id      = "${ length(var.in_vpc_id) == 0 ? data.aws_vpc.default.id : var.in_vpc_id }"
     name        = "security-group-${ var.in_ecosystem }-${ module.ecosys.out_stamp }-n"
     description = "This new security group ${ module.ecosys.out_history_note }"
-    vpc_id      = "${var.in_vpc_id}"
 
     tags
     {
-        Name   = "security-group-${ var.in_ecosystem }-${ module.ecosys.out_stamp }-n"
-        Class = "${ var.in_ecosystem }"
+        Name     = "security-group-${ var.in_ecosystem }-${ module.ecosys.out_stamp }-n"
+        Class    = "${ var.in_ecosystem }"
         Instance = "${ var.in_ecosystem }-${ module.ecosys.out_stamp }"
-        Desc   = "Newly created security group for ${ var.in_ecosystem } ${ module.ecosys.out_history_note }"
+        Desc     = "Newly created security group for ${ var.in_ecosystem } ${ module.ecosys.out_history_note }"
     }
 
 }
@@ -28,14 +37,15 @@ resource aws_security_group new
 
 resource aws_default_security_group default
 {
-    vpc_id      = "${var.in_vpc_id}"
+###########################    count  = "${ var.in_use_default ? 1 : 0 }"
+    vpc_id = "${ length(var.in_vpc_id) == 0 ? data.aws_vpc.default.id : var.in_vpc_id }"
 
     tags
     {
-        Name   = "security-group-${ var.in_ecosystem }-${ module.ecosys.out_stamp }-d"
-        Class = "${ var.in_ecosystem }"
+        Name     = "security-group-${ var.in_ecosystem }-${ module.ecosys.out_stamp }-d"
+        Class    = "${ var.in_ecosystem }"
         Instance = "${ var.in_ecosystem }-${ module.ecosys.out_stamp }"
-        Desc   = "The default security group in the VPC for ${ var.in_ecosystem } ${ module.ecosys.out_history_note }"
+        Desc     = "The default security group in vpc for ${ var.in_ecosystem } ${ module.ecosys.out_history_note }"
     }
 
 }
@@ -49,8 +59,7 @@ resource aws_security_group_rule ingress
 {
     count = "${length(var.in_ingress)}"
 
-# ---@----@-->    security_group_id = "${var.in_use_default == true ? aws_default_security_group.default.id : aws_security_group.sgroup-new.id}"
-    security_group_id = "${aws_default_security_group.default.id}"
+    security_group_id = "${ var.in_use_default ? aws_default_security_group.default.id : aws_security_group.new.id }"
 
     type        = "ingress"
     cidr_blocks = ["${var.in_ingress_cidr_blocks}"]
@@ -61,6 +70,7 @@ resource aws_security_group_rule ingress
     protocol    = "${element(var.rules[var.in_ingress[count.index]], 2)}"
 }
 
+
 ### #################################### ###
 ### [[resource]] aws_security_group_rule ###
 ### #################################### ###
@@ -69,8 +79,7 @@ resource aws_security_group_rule egress
 {
     count = "${length(var.in_egress)}"
 
-# ---@----@-->    security_group_id = "${var.in_use_default == true ? aws_default_security_group.default.id : aws_security_group.sgroup-new.id}"
-    security_group_id = "${aws_default_security_group.default.id}"
+    security_group_id = "${ var.in_use_default ? aws_default_security_group.default.id : aws_security_group.new.id }"
 
     type        = "egress"
     cidr_blocks = ["${var.in_egress_cidr_blocks}"]

security.group-outputs.tf

@@ -7,19 +7,22 @@
 ### [[output]] out_security_group_ids ###
 ### ################################# ###
 
+/*
 output out_security_group_ids
 {
     description = "One element list with ID of either the default security group or the new one."
     value       = [ "${ var.in_use_default ? aws_default_security_group.default.*.id : aws_security_group.new.*.id }" ]
 }
-
+*/
 
 ### ################################ ###
 ### [[output]] out_security_group_id ###
 ### ################################ ###
 
+/*
 output out_security_group_id
 {
     description = "The string ID of either the default security group or the just created new one."
     value       = "${ var.in_use_default ? aws_default_security_group.default.*.id : aws_security_group.new.*.id }"
 }
+*/

security.group-variables.tf

@@ -33,7 +33,7 @@ variable in_egress
 
 variable in_vpc_id
 {
-    description = "ID of umbrella VPC the security group falls under - if not set the default VPC is used."
+    description = "umbrella vpc the security group falls under which reverts to the default VPC if not set."
     default     = ""
 }
 

test-security.group/security.group-test.tf

@@ -17,7 +17,7 @@ module vpc-subnets
 
 module zero-param-test
 {
-    source = "github.com/devops-ip/terraform-aws-security-group"
+    source       = ".."
 }
 
 /*
@@ -31,17 +31,18 @@ module last-stable-release-test-0
 
 module security-group-test-1
 {
-    source         = "github.com/devops-ip/terraform-aws-security-group"
+    source       = ".."
     in_vpc_id      = "${ module.vpc-subnets.out_vpc_id }"
     in_use_default = "true"
     in_ecosystem   = "${ local.ecosystem_id }-01"
 }
 
 module security-group-test-2
 {
-    source         = "github.com/devops-ip/terraform-aws-security-group"
+    source       = ".."
     in_vpc_id      = "${ module.vpc-subnets.out_vpc_id }"
-    in_use_default = "false"
+    in_use_default = "true"
+#####################    in_use_default = "false"
     in_ecosystem   = "${ local.ecosystem_id }-02"
 }
 
@@ -119,9 +120,11 @@ module vpc-subnets-test-9
 
 */
 
+/*
 output subnet_ids_1{ value = "${module.vpc-subnets.out_subnet_ids}" }
 output private_subnet_ids_1{ value = "${module.vpc-subnets.out_private_subnet_ids}" }
 output public_subnet_ids_1{ value = "${module.vpc-subnets.out_public_subnet_ids}" }
 
 output security_group_id_1 { value = "${module.security-group-test-1.out_security_group_id}"  }
 output security_group_ids_1{ value = "${module.security-group-test-1.out_security_group_ids}" }
+*/