Skip to content

Commit 6d97983

Browse files
hyderhyder
committed
trailing variables and outputs after switch to admin server
1 parent 2249487 commit 6d97983

File tree

4 files changed

+7
-11
lines changed

4 files changed

+7
-11
lines changed

modules/base/bastion/outputs.tf

Lines changed: 1 addition & 5 deletions
Original file line numberDiff line numberDiff line change
@@ -3,8 +3,4 @@
33

44
output "bastion_public_ip" {
55
value = join(",", data.oci_core_vnic.bastion_vnic.*.public_ip_address)
6-
}
7-
8-
output "bastion_instance_principal_group_name" {
9-
value = (var.oci_bastion.enable_instance_principal == true) ? oci_identity_dynamic_group.bastion_instance_principal[0].name : null
10-
}
6+
}

modules/policies/groups.tf

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -59,5 +59,5 @@ resource null_resource "update_dynamic_group" {
5959
]
6060
}
6161

62-
count = (var.oke_kms.use_encryption == true && var.bastion.create_bastion == true && var.bastion.enable_instance_principal == true) ? 1 : 0
62+
count = (var.oke_kms.use_encryption == true && var.admin.bastion_enabled == true && var.admin.admin_instance_principal == true) ? 1 : 0
6363
}

modules/policies/policies.tf

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -7,7 +7,7 @@ resource "oci_identity_policy" "admin_instance_principal_dynamic_group" {
77
description = "policy to allow admin host to manage dynamic group"
88
name = "${var.label_prefix}-admin-instance-principal-dynamic-group"
99
statements = ["Allow dynamic-group ${var.dynamic_group} to use dynamic-groups in tenancy"]
10-
count = (var.oke_kms.use_encryption == true && var.bastion.create_bastion == true && var.bastion.enable_instance_principal == true) ? 1 : 0
10+
count = (var.oke_kms.use_encryption == true && var.admin.bastion_enabled == true && var.admin.admin_instance_principal == true) ? 1 : 0
1111
}
1212

1313
resource "oci_identity_policy" "oke-kms" {

modules/policies/variables.tf

Lines changed: 4 additions & 4 deletions
Original file line numberDiff line numberDiff line change
@@ -27,10 +27,10 @@ variable "label_prefix" {}
2727

2828
variable "admin" {
2929
type = object({
30-
bastion_public_ip = string
31-
admin_private_ip = string
32-
bastion_enabled = bool
33-
admin_enabled = bool
30+
bastion_public_ip = string
31+
admin_private_ip = string
32+
bastion_enabled = bool
33+
admin_enabled = bool
3434
admin_instance_principal = bool
3535
})
3636
}

0 commit comments

Comments
 (0)