Add option to create internal load balancer (#35)

* Add option to create internal load balancer

* terraform-docs: automated action

---------

Co-authored-by: github-actions[bot] <github-actions[bot]@users.noreply.github.com>

Author: OlamideOl1

README.md

@@ -223,6 +223,7 @@ module "ingress" {
 | <a name="input_enable_stickiness"></a> [enable\_stickiness](#input\_enable\_stickiness) | Set to true to use a cookie for load balancer stickiness | `bool` | `false` | no |
 | <a name="input_failure_threshold"></a> [failure\_threshold](#input\_failure\_threshold) | Percentage of failed requests considered an anomaly | `number` | `5` | no |
 | <a name="input_hosted_zone_name"></a> [hosted\_zone\_name](#input\_hosted\_zone\_name) | Hosted zone for AWS Route53 | `string` | `null` | no |
+| <a name="input_internal_alb"></a> [internal\_alb](#input\_internal\_alb) | If true, the LB will be internal. Defaults to false | `bool` | `false` | no |
 | <a name="input_issue_certificate_domains"></a> [issue\_certificate\_domains](#input\_issue\_certificate\_domains) | List of domains for which certificates should be issued | `list(string)` | `[]` | no |
 | <a name="input_legacy_target_group_names"></a> [legacy\_target\_group\_names](#input\_legacy\_target\_group\_names) | Names of legacy target groups which should be included | `list(string)` | `[]` | no |
 | <a name="input_name"></a> [name](#input\_name) | Name for this load balancer | `string` | n/a | yes |

main.tf

@@ -9,6 +9,7 @@ module "alb" {
   tags                = var.tags
   vpc_id              = var.vpc_id
   enable_access_logs  = var.enable_access_logs
+  internal_alb        = var.internal_alb
   s3_logs_bucket_name = var.s3_logs_bucket_name
 }
 

modules/alb/README.md

@@ -37,6 +37,7 @@ No modules.
 | <a name="input_description"></a> [description](#input\_description) | Human description for this load balancer | `string` | n/a | yes |
 | <a name="input_enable_access_logs"></a> [enable\_access\_logs](#input\_enable\_access\_logs) | Enable or disable ALB access logs. If set to true, logs will be stored in an S3 bucket. | `bool` | `false` | no |
 | <a name="input_enable_connection_logs"></a> [enable\_connection\_logs](#input\_enable\_connection\_logs) | Enable or disable ALB connection logs. If set to true, logs will be stored in an S3 bucket. | `bool` | `false` | no |
+| <a name="input_internal_alb"></a> [internal\_alb](#input\_internal\_alb) | If true, the LB will be internal. Defaults to false | `bool` | `false` | no |
 | <a name="input_name"></a> [name](#input\_name) | Name for this load balancer | `string` | n/a | yes |
 | <a name="input_s3_logs_bucket_name"></a> [s3\_logs\_bucket\_name](#input\_s3\_logs\_bucket\_name) | Optional S3 bucket name for storing ALB access logs. If not provided, a new bucket will be created. | `string` | `""` | no |
 | <a name="input_security_group_name"></a> [security\_group\_name](#input\_security\_group\_name) | Name for the load balancer security group; defaults to name | `string` | `null` | no |

modules/alb/main.tf

@@ -1,5 +1,6 @@
 resource "aws_alb" "this" {
   name            = var.name
+  internal        = var.internal_alb
   security_groups = [aws_security_group.this.id]
 
   dynamic "connection_logs" {

modules/alb/variables.tf

@@ -15,6 +15,12 @@ variable "enable_connection_logs" {
   description = "Enable or disable ALB connection logs. If set to true, logs will be stored in an S3 bucket."
 }
 
+variable "internal_alb" {
+  description = "If true, the LB will be internal. Defaults to false"
+  type        = bool
+  default     = false
+}
+
 variable "name" {
   description = "Name for this load balancer"
   type        = string

variables.tf

@@ -67,7 +67,11 @@ variable "issue_certificate_domains" {
   type        = list(string)
   default     = []
 }
-
+variable "internal_alb" {
+  description = "If true, the LB will be internal. Defaults to false"
+  type        = bool
+  default     = false
+}
 variable "legacy_target_group_names" {
   description = "Names of legacy target groups which should be included"
   type        = list(string)