add support for remote peering connection

snafuz · hyder · commit 3a298969e538 · 2023-04-11T16:07:59.000+10:00
diff --git a/docs/terraformoptions.adoc b/docs/terraformoptions.adoc
@@ -175,6 +175,16 @@ EOT
 |""
 |drg
 
+|remote_peering_connections
+|Map of parameters to add and optionally to peer to remote peering connections. Key-only items represent represent local acceptors no peering attempted; items containing key and values represent local requestor and must have the OCID and region of the remote acceptor to peer to
+|{
+  "rpc_name_1" = {}
+  "rpc_name_2" = {
+      rpc_acceptor_id = "ocid1.remotepeeringconnection.oc1.aaaaaa..." # 
+      rpc_acceptor_region = "us-ashburn-1"
+  }
+|{}
+
 |enable_waf
 |Whether to enable WAF monitoring of load balancers
 |`true/false`
diff --git a/main.tf b/main.tf
@@ -36,7 +36,7 @@ module "vcn" {
 
 module "drg" {
   source  = "oracle-terraform-modules/drg/oci"
-  version = "1.0.3"
+  version = "1.0.5"
 
   # general oci parameters
   compartment_id = local.compartment_id
@@ -51,9 +51,17 @@ module "drg" {
     drg_route_table_id : null
     }
   }
+  
   # var.drg_id can either contain an existing DRG ID or be null. 
   drg_id = var.drg_id
 
+  # rpc parameters
+  remote_peering_connections = { for k, v in var.remote_peering_connections: k => {
+    "rpc_acceptor_id"     = try(v.rpc_acceptor_id,null),
+    "rpc_acceptor_region" = try(v.rpc_acceptor_region, null)
+    } 
+  }
+  
   count = var.create_drg || var.drg_id != null ? 1 : 0
 }
 
diff --git a/outputs.tf b/outputs.tf
@@ -56,6 +56,12 @@ output "drg_id" {
   value       = var.create_drg || var.drg_id != null ? module.drg[0].drg_id : null
 }
 
+output "rpcs_ids" {
+  description = "IDs of remote peering connections"
+  value = (var.create_drg || var.drg_id != null) && length(var.remote_peering_connections) > 0  ? { for k, v in module.drg[0].rpc_all_attributes : k => v.id } : null 
+
+}
+
 # convenient output
 
 output "bastion_public_ip" {
diff --git a/terraform.tfvars.example b/terraform.tfvars.example
@@ -37,6 +37,18 @@ ssh_private_key_path = "~/.ssh/id_rsa"
 create_drg       = false
 drg_display_name = "drg"
 drg_id           = null
+remote_peering_connections = {} 
+#
+# map of remote peering connections
+# - key-only items represent represent local acceptors with no info about the remote peer
+# - items containing key and values represent local requestor and must have the OCID and region of the remote acceptor
+# remote_peering_connections = {
+#    "rpc_name_1" : {}
+#    "rpc_name_2" : {
+#        "rpc_acceptor_id" : "ocid1.remotepeeringconnection.oc1.aaaaaa" # <-- edit this OCID
+#        "rpc_acceptor_region" : "us-ashburn-1" #<-- replace the region
+#    }
+# }
 
 internet_gateway_route_rules = [
   #   {
diff --git a/variables.tf b/variables.tf
@@ -180,6 +180,12 @@ variable "drg_id" {
   default     = null
 }
 
+variable "remote_peering_connections" {
+  description = "Map of parameters to add and optionally to peer to remote peering connections. Key-only items represent local acceptors and no peering attempted; items containing key and values represent local requestor and must have the OCID and region of the remote acceptor to peer to"
+  type = map(any)
+  default = {}
+}
+
 variable "internet_gateway_route_rules" {
   description = "(Updatable) List of routing rules to add to Internet Gateway Route Table"
   type        = list(map(string))
