Added support for multiple SGs to main module

nichollri · nichollri · commit f890bb228513 · 2024-08-30T15:48:51.000-05:00
diff --git a/Terraform/deploy-fsx-ontap/module/main.tf b/Terraform/deploy-fsx-ontap/module/main.tf
@@ -14,7 +14,7 @@ resource "aws_fsx_ontap_file_system" "terraform-fsxn" {
   preferred_subnet_id = var.subnets["primarysub"]
 
   storage_capacity                  = var.capacity_size_gb
-  security_group_ids                = var.create_sg ? [element(aws_security_group.fsx_sg[*].id, 0)] : [var.security_group_id]
+  security_group_ids                = var.create_sg ? [element(aws_security_group.fsx_sg[*].id, 0)] : var.security_group_ids
   deployment_type                   = var.deployment_type
   throughput_capacity_per_ha_pair   = var.throughput_in_MBps
   ha_pairs                          = var.ha_pairs
@@ -41,7 +41,7 @@ resource "aws_fsx_ontap_file_system" "terraform-fsxn" {
       error_message = "You must specify EITHER cidr_block OR source_sg_id when creating a security group, not both."
     }
     precondition {
-      condition = var.create_sg || var.security_group_id != ""
+      condition = var.create_sg || length(var.security_group_ids) > 0
       error_message = "You must specify a security group ID when not creating a security group."
     }
   }
diff --git a/Terraform/deploy-fsx-ontap/module/variables.tf b/Terraform/deploy-fsx-ontap/module/variables.tf
@@ -174,10 +174,10 @@ variable "create_sg" {
   default     = true
 }
 
-variable "security_group_id" {
-  description = "If you are not creating the security group, provide the ID of the security group to be used."
-  type        = string
-  default     = ""
+variable "security_group_ids" {
+  description = "If you are not creating the security group, provide a list of IDs of the security groups to be used."
+  type        = list(string)
+  default     = []
 }
 
 variable "security_group_name_prefix" {

Original file line number	Diff line number	Diff line change
`@@ -14,7 +14,7 @@ resource "aws_fsx_ontap_file_system" "terraform-fsxn" {`
`14`	`14`	`preferred_subnet_id = var.subnets["primarysub"]`
`15`	`15`
`16`	`16`	`storage_capacity = var.capacity_size_gb`
`17`		`- security_group_ids = var.create_sg ? [element(aws_security_group.fsx_sg[*].id, 0)] : [var.security_group_id]`
	`17`	`+ security_group_ids = var.create_sg ? [element(aws_security_group.fsx_sg[*].id, 0)] : var.security_group_ids`
`18`	`18`	`deployment_type = var.deployment_type`
`19`	`19`	`throughput_capacity_per_ha_pair = var.throughput_in_MBps`
`20`	`20`	`ha_pairs = var.ha_pairs`
`@@ -41,7 +41,7 @@ resource "aws_fsx_ontap_file_system" "terraform-fsxn" {`
`41`	`41`	`error_message = "You must specify EITHER cidr_block OR source_sg_id when creating a security group, not both."`
`42`	`42`	`}`
`43`	`43`	`precondition {`
`44`		`- condition = var.create_sg \|\| var.security_group_id != ""`
	`44`	`+ condition = var.create_sg \|\| length(var.security_group_ids) > 0`
`45`	`45`	`error_message = "You must specify a security group ID when not creating a security group."`
`46`	`46`	`}`
`47`	`47`	`}`
Original file line number	Diff line number	Diff line change
`@@ -174,10 +174,10 @@ variable "create_sg" {`
`174`	`174`	`default = true`
`175`	`175`	`}`
`176`	`176`
`177`		`-variable "security_group_id" {`
`178`		`- description = "If you are not creating the security group, provide the ID of the security group to be used."`
`179`		`- type = string`
`180`		`- default = ""`
	`177`	`+variable "security_group_ids" {`
	`178`	`+ description = "If you are not creating the security group, provide a list of IDs of the security groups to be used."`
	`179`	`+ type = list(string)`
	`180`	`+ default = []`
`181`	`181`	`}`
`182`	`182`
`183`	`183`	`variable "security_group_name_prefix" {`