Disable provider role assumption if enabled is false (#56)

nitrocode · web-flow · commit 0cad62a594f9 · 2021-11-22T14:09:36.000-06:00
* Check if enabled

* Update requester.tf
diff --git a/accepter.tf b/accepter.tf
@@ -6,7 +6,7 @@ provider "aws" {
   skip_metadata_api_check = var.skip_metadata_api_check
 
   dynamic "assume_role" {
-    for_each = var.accepter_aws_assume_role_arn != "" ? ["true"] : []
+    for_each = local.enabled && var.accepter_aws_assume_role_arn != "" ? ["true"] : []
     content {
       role_arn = var.accepter_aws_assume_role_arn
     }
diff --git a/requester.tf b/requester.tf
@@ -64,7 +64,7 @@ provider "aws" {
   skip_metadata_api_check = var.skip_metadata_api_check
 
   dynamic "assume_role" {
-    for_each = var.requester_aws_assume_role_arn != "" ? ["true"] : []
+    for_each = local.enabled && var.requester_aws_assume_role_arn != "" ? ["true"] : []
     content {
       role_arn = var.requester_aws_assume_role_arn
     }

Original file line number	Diff line number	Diff line change
`@@ -6,7 +6,7 @@ provider "aws" {`
`6`	`6`	`skip_metadata_api_check = var.skip_metadata_api_check`
`7`	`7`
`8`	`8`	`dynamic "assume_role" {`
`9`		`- for_each = var.accepter_aws_assume_role_arn != "" ? ["true"] : []`
	`9`	`+ for_each = local.enabled && var.accepter_aws_assume_role_arn != "" ? ["true"] : []`
`10`	`10`	`content {`
`11`	`11`	`role_arn = var.accepter_aws_assume_role_arn`
`12`	`12`	`}`
Original file line number	Diff line number	Diff line change
`@@ -64,7 +64,7 @@ provider "aws" {`
`64`	`64`	`skip_metadata_api_check = var.skip_metadata_api_check`
`65`	`65`
`66`	`66`	`dynamic "assume_role" {`
`67`		`- for_each = var.requester_aws_assume_role_arn != "" ? ["true"] : []`
	`67`	`+ for_each = local.enabled && var.requester_aws_assume_role_arn != "" ? ["true"] : []`
`68`	`68`	`content {`
`69`	`69`	`role_arn = var.requester_aws_assume_role_arn`
`70`	`70`	`}`