added conditional checks (#315)

hyder · web-flow · commit ac824e19854d · 2021-07-30T20:02:08.000+10:00
diff --git a/modules/okenetwork/datasources.tf b/modules/okenetwork/datasources.tf
@@ -20,4 +20,5 @@ data "oci_core_subnets" "oke_subnets" {
 }
 
 data "oci_waas_edge_subnets" "waf_cidr_blocks" {
+  count = var.waf_enabled ? 1 : 0
 }
diff --git a/modules/okenetwork/security.tf b/modules/okenetwork/security.tf
@@ -258,7 +258,7 @@ resource "oci_core_security_list" "pub_lb_seclist" {
   # allow only from WAF
   dynamic "ingress_security_rules" {
     iterator = waf_iterator
-    for_each = var.waf_enabled == true ? data.oci_waas_edge_subnets.waf_cidr_blocks.edge_subnets : []
+    for_each = var.waf_enabled == true ? data.oci_waas_edge_subnets.waf_cidr_blocks[0].edge_subnets : []
 
     content {
       description = "allow public ingress only from WAF CIDR blocks"

Original file line number	Diff line number	Diff line change
`@@ -20,4 +20,5 @@ data "oci_core_subnets" "oke_subnets" {`
`20`	`20`	`}`
`21`	`21`
`22`	`22`	`data "oci_waas_edge_subnets" "waf_cidr_blocks" {`
	`23`	`+ count = var.waf_enabled ? 1 : 0`
`23`	`24`	`}`