[#316] Separate data and local into individual files

tung-nimblehq · tung-nimblehq · commit 220e3c590ef8 · 2025-10-17T10:46:06.000+07:00
diff --git a/templates/addons/aws/modules/vpc_flow_log/data.tf b/templates/addons/aws/modules/vpc_flow_log/data.tf
@@ -0,0 +1,3 @@
+data "aws_caller_identity" "current" {}
+data "aws_partition" "current" {}
+data "aws_region" "current" {}
diff --git a/templates/addons/aws/modules/vpc_flow_log/locals.tf b/templates/addons/aws/modules/vpc_flow_log/locals.tf
@@ -0,0 +1,54 @@
+locals {
+  ordered_partition_keys = [
+    { key = "aws_account_id", value = "string" },
+    { key = "aws_service", value = "string" },
+    { key = "aws_region", value = "string" },
+    { key = "year", value = "string" },
+    { key = "month", value = "string" },
+    { key = "day", value = "string" },
+    { key = "hour", value = "string" }
+  ]
+
+  //https://docs.aws.amazon.com/vpc/latest/userguide/flow-log-records.html#flow-logs-fields
+  ordered_table_columns = [
+    { key = "version", value = "int" },
+    { key = "account_id", value = "string" },
+    { key = "action", value = "string" },
+    { key = "interface_id", value = "string" },
+    { key = "srcaddr", value = "string" },
+    { key = "dstaddr", value = "string" },
+    { key = "srcport", value = "int" },
+    { key = "dstport", value = "int" },
+    { key = "protocol", value = "int" },
+    { key = "packets", value = "bigint" },
+    { key = "bytes", value = "bigint" },
+    { key = "start", value = "bigint" },
+    { key = "end", value = "bigint" },
+    { key = "log_status", value = "string" },
+    { key = "vpc_id", value = "string" },
+    { key = "subnet_id", value = "string" },
+    { key = "instance_id", value = "string" },
+    { key = "tcp_flags", value = "int" },
+    { key = "type", value = "string" },
+    { key = "pkt_srcaddr", value = "string" },
+    { key = "pkt_dstaddr", value = "string" },
+    { key = "region", value = "string" },
+    { key = "az_id", value = "string" },
+    { key = "sublocation_type", value = "string" },
+    { key = "sublocation_id", value = "string" },
+    { key = "pkt_src_aws_service", value = "string" },
+    { key = "pkt_dst_aws_service", value = "string" },
+    { key = "flow_direction", value = "string" },
+    { key = "traffic_path", value = "int" },
+    { key = "ecs_task_id", value = "string" },
+    { key = "reject_reason", value = "string" },
+  ]
+
+  log_format = join(
+    " ",
+    [
+      for col in local.ordered_table_columns :
+      "$${${replace(col.key, "_", "-")}}"
+    ]
+  )
+}
diff --git a/templates/addons/aws/modules/vpc_flow_log/main.tf b/templates/addons/aws/modules/vpc_flow_log/main.tf
@@ -1,62 +1,3 @@
-data "aws_caller_identity" "current" {}
-data "aws_partition" "current" {}
-data "aws_region" "current" {}
-
-locals {
-  ordered_partition_keys = [
-    { key = "aws_account_id", value = "string" },
-    { key = "aws_service", value = "string" },
-    { key = "aws_region", value = "string" },
-    { key = "year", value = "string" },
-    { key = "month", value = "string" },
-    { key = "day", value = "string" },
-    { key = "hour", value = "string" }
-  ]
-
-  //https://docs.aws.amazon.com/vpc/latest/userguide/flow-log-records.html#flow-logs-fields
-  ordered_table_columns = [
-    { key = "version", value = "int" },
-    { key = "account_id", value = "string" },
-    { key = "action", value = "string" },
-    { key = "interface_id", value = "string" },
-    { key = "srcaddr", value = "string" },
-    { key = "dstaddr", value = "string" },
-    { key = "srcport", value = "int" },
-    { key = "dstport", value = "int" },
-    { key = "protocol", value = "int" },
-    { key = "packets", value = "bigint" },
-    { key = "bytes", value = "bigint" },
-    { key = "start", value = "bigint" },
-    { key = "end", value = "bigint" },
-    { key = "log_status", value = "string" },
-    { key = "vpc_id", value = "string" },
-    { key = "subnet_id", value = "string" },
-    { key = "instance_id", value = "string" },
-    { key = "tcp_flags", value = "int" },
-    { key = "type", value = "string" },
-    { key = "pkt_srcaddr", value = "string" },
-    { key = "pkt_dstaddr", value = "string" },
-    { key = "region", value = "string" },
-    { key = "az_id", value = "string" },
-    { key = "sublocation_type", value = "string" },
-    { key = "sublocation_id", value = "string" },
-    { key = "pkt_src_aws_service", value = "string" },
-    { key = "pkt_dst_aws_service", value = "string" },
-    { key = "flow_direction", value = "string" },
-    { key = "traffic_path", value = "int" },
-    { key = "ecs_task_id", value = "string" },
-    { key = "reject_reason", value = "string" },
-  ]
-
-  log_format = join(
-    " ",
-    [
-      for col in local.ordered_table_columns :
-      "$${${replace(col.key, "_", "-")}}"
-    ]
-  )
-}
-
 # S3 Bucket for VPC Flow Logs
 # trivy:ignore:AVD-AWS-0088 S3 Buckets should be encrypted to protect the data that is stored within them if access is compromised.
 # trivy:ignore:AVD-AWS-0132 S3 Encryption using AWS keys provides protection for your S3 buckets. To increase control of the encryption and manage factors like rotation use customer managed keys.

Original file line number	Diff line number	Diff line change
`@@ -0,0 +1,3 @@`
	`1`	`+data "aws_caller_identity" "current" {}`
	`2`	`+data "aws_partition" "current" {}`
	`3`	`+data "aws_region" "current" {}`