don't use default SG for lambda (#25)

oavdeev · web-flow · commit 61e67e963921 · 2022-05-09T14:49:24.000-07:00
diff --git a/modules/metadata-service/data.tf b/modules/metadata-service/data.tf
@@ -1,8 +1,3 @@
 data "aws_caller_identity" "current" {}
 
 data "aws_region" "current" {}
-
-data "aws_security_group" "vpc_default" {
-  name   = "default"
-  vpc_id = var.metaflow_vpc_id
-}
diff --git a/modules/metadata-service/lambda.tf b/modules/metadata-service/lambda.tf
@@ -132,6 +132,6 @@ resource "aws_lambda_function" "db_migrate_lambda" {
 
   vpc_config {
     subnet_ids         = [var.subnet1_id, var.subnet2_id]
-    security_group_ids = [data.aws_security_group.vpc_default.id]
+    security_group_ids = [aws_security_group.metadata_service_security_group.id]
   }
 }

Original file line number	Diff line number	Diff line change
`@@ -132,6 +132,6 @@ resource "aws_lambda_function" "db_migrate_lambda" {`
`132`	`132`
`133`	`133`	`vpc_config {`
`134`	`134`	`subnet_ids = [var.subnet1_id, var.subnet2_id]`
`135`		`- security_group_ids = [data.aws_security_group.vpc_default.id]`
	`135`	`+ security_group_ids = [aws_security_group.metadata_service_security_group.id]`
`136`	`136`	`}`
`137`	`137`	`}`