NRL-1385 remove unused security group

jackleary · jackleary · commit 1bbcbd381f47 · 2025-05-28T15:00:32.000+01:00
diff --git a/terraform/account-wide-infrastructure/modules/vpc/outputs.tf b/terraform/account-wide-infrastructure/modules/vpc/outputs.tf
@@ -6,10 +6,6 @@ output "private_subnet_id" {
   value = aws_subnet.private_subnet.id
 }
 
-output "security_group" {
-  value = [aws_security_group.sg.id]
-}
-
 output "powerbi_gw_security_group_id" {
   value = aws_security_group.powerbi_gw_sg.id
 }
diff --git a/terraform/account-wide-infrastructure/modules/vpc/vpc.tf b/terraform/account-wide-infrastructure/modules/vpc/vpc.tf
@@ -77,37 +77,6 @@ resource "aws_route_table_association" "private_rt_asso" {
   route_table_id = aws_route_table.private_rt.id
 }
 
-resource "aws_security_group" "sg" {
-  name        = "allow_ssh_http"
-  description = "Allow ssh http inbound traffic"
-  vpc_id      = aws_vpc.app_vpc.id
-
-  ingress {
-    from_port        = 3389
-    to_port          = 3389
-    protocol         = "tcp"
-    cidr_blocks      = ["0.0.0.0/0"]
-    ipv6_cidr_blocks = ["::/0"]
-  }
-
-  ingress {
-    description      = "HTTP from VPC"
-    from_port        = 80
-    to_port          = 80
-    protocol         = "tcp"
-    cidr_blocks      = ["0.0.0.0/0"]
-    ipv6_cidr_blocks = ["::/0"]
-  }
-
-  egress {
-    from_port        = 0
-    to_port          = 0
-    protocol         = "-1"
-    cidr_blocks      = ["0.0.0.0/0"]
-    ipv6_cidr_blocks = ["::/0"]
-  }
-}
-
 resource "aws_security_group" "powerbi_gw_sg" {
   name        = "powerbi-gw-sg"
   description = "Only allow egress traffic"

Original file line number	Diff line number	Diff line change
`@@ -6,10 +6,6 @@ output "private_subnet_id" {`
`6`	`6`	`value = aws_subnet.private_subnet.id`
`7`	`7`	`}`
`8`	`8`
`9`		`-output "security_group" {`
`10`		`- value = [aws_security_group.sg.id]`
`11`		`-}`
`12`		`-`
`13`	`9`	`output "powerbi_gw_security_group_id" {`
`14`	`10`	`value = aws_security_group.powerbi_gw_sg.id`
`15`	`11`	`}`