Skip to content

Commit 3794a6f

Browse files
author
vijay-stephen
committed
Merge pull request #28 from sourcefuse/feature/client-vpn-refactor
Removed Cloudposse dependency for Client VPN
1 parent 74b0014 commit 3794a6f

File tree

1 file changed

+2
-2
lines changed
  • docs/arc-iac-docs/modules/terraform-aws-arc-vpn

1 file changed

+2
-2
lines changed

docs/arc-iac-docs/modules/terraform-aws-arc-vpn/README.md

Lines changed: 2 additions & 2 deletions
Original file line numberDiff line numberDiff line change
@@ -75,7 +75,7 @@ No resources.
7575

7676
| Name | Description | Type | Default | Required |
7777
|------|-------------|------|---------|:--------:|
78-
| <a name="input_client_vpn_config"></a> [client\_vpn\_config](#input\_client\_vpn\_config) | VPN configuration options including certs and vpn settings | <pre>object({<br> create = optional(bool, false)<br> # certs<br> self_signed_cert_data = optional(object({<br> create = optional(bool, true)<br> secret_path_format = optional(string, "/%s.%s")<br> server_common_name = optional(string, "")<br> organization_name = optional(string, "")<br> allowed_uses = optional(list(string), [<br> "key_encipherment",<br> "digital_signature",<br> "server_auth"<br> ])<br> ca_pem = optional(string, "")<br> private_ca_key_pem = optional(string, "")<br> }))<br><br><br> # vpn settings<br> iam_saml_provider_enabled = optional(bool, false)<br> iam_saml_provider_name = optional(string, null)<br> saml_metadata_document_content = optional(string, null)<br> client_cidr_block = string<br> split_tunnel = optional(bool, true)<br> self_service_portal = optional(string, "disabled")<br> dns_servers = optional(list(string), ["1.1.1.1", "1.0.0.1"])<br><br> # logging options<br> log_options = optional(object({<br> enabled = bool<br> cloudwatch_log_stream = optional(string, null)<br> cloudwatch_log_group = optional(string, null)<br> }), {<br> enabled = false<br> })<br><br> # authentication options<br> authentication_options = list(object({<br> active_directory_id = optional(string, null)<br> root_certificate_chain_arn = optional(string, null)<br> saml_provider_arn = optional(string, null)<br> self_service_saml_provider_arn = optional(string, null)<br> type = string<br> }))<br><br> # server and transport protocol<br> client_server_certificate_arn = optional(string, null)<br> client_server_transport_protocol = optional(string, "tcp")<br><br> # security and network associations<br> security_group_data = optional(object({<br> client_vpn_additional_security_group_ids = optional(list(string), [])<br> ingress_rules = list(object({<br> description = optional(string, "")<br> from_port = number<br> to_port = number<br> protocol = any<br> cidr_blocks = optional(list(string), [])<br> security_group_ids = optional(list(string), [])<br> ipv6_cidr_blocks = optional(list(string), [])<br> }))<br> egress_rules = list(object({<br> description = optional(string, "")<br> from_port = number<br> to_port = number<br> protocol = any<br> cidr_blocks = optional(list(string), [])<br> security_group_ids = optional(list(string), [])<br> ipv6_cidr_blocks = optional(list(string), [])<br> }))<br> }),<br> {<br> ingress_rules = [<br> {<br> description = "VPN ingress to 443"<br> from_port = 443<br> to_port = 443<br> protocol = "tcp"<br> }<br> ]<br> egress_rules = [<br> {<br> description = "VPN egress to internet"<br> from_port = 0<br> to_port = 0<br> protocol = -1<br> cidr_blocks = ["0.0.0.0/0"]<br> }<br> ]<br> }<br> )<br><br> subnet_ids = list(string)<br><br> # authorization options<br> authorization_options = map(object({<br> target_network_cidr = string<br> access_group_id = optional(string, null)<br> authorize_all_groups = optional(bool, true)<br> }))<br> })</pre> | <pre>{<br> "authentication_options": null,<br> "authorization_options": null,<br> "client_cidr_block": null,<br> "create": false,<br> "subnet_ids": []<br>}</pre> | no |
78+
| <a name="input_client_vpn_config"></a> [client\_vpn\_config](#input\_client\_vpn\_config) | VPN configuration options including certs and vpn settings | <pre>object({<br> create = optional(bool, false)<br> # certs<br> server_certificate_data = optional(object({<br> create = optional(bool, true)<br> common_name = string<br> organization = string<br> allowed_uses = optional(list(string), [<br> "key_encipherment",<br> "digital_signature",<br> "server_auth"<br> ])<br> ca_cert_pem = string<br> ca_private_key_pem = string<br> certificate_arn = optional(string, null)<br> }))<br><br><br> # vpn settings<br> iam_saml_provider_enabled = optional(bool, false)<br> iam_saml_provider_name = optional(string, null)<br> saml_metadata_document_content = optional(string, null)<br> client_cidr_block = string<br> split_tunnel = optional(bool, true)<br> self_service_portal = optional(string, "disabled")<br> dns_servers = optional(list(string), ["1.1.1.1", "1.0.0.1"])<br><br> # logging options<br> log_options = optional(object({<br> enabled = bool<br> cloudwatch_log_stream = optional(string, null)<br> cloudwatch_log_group = optional(string, null)<br> }), {<br> enabled = false<br> })<br><br> # authentication options<br> authentication_options = list(object({<br> active_directory_id = optional(string, null)<br> root_certificate_chain_arn = optional(string, null)<br> saml_provider_arn = optional(string, null)<br> self_service_saml_provider_arn = optional(string, null)<br> type = string<br> }))<br><br> transport_protocol = optional(string, "tcp")<br><br> # security and network associations<br> security_group_data = optional(object({<br> client_vpn_additional_security_group_ids = optional(list(string), [])<br> ingress_rules = list(object({<br> description = optional(string, "")<br> from_port = number<br> to_port = number<br> protocol = any<br> cidr_blocks = optional(list(string), [])<br> security_group_ids = optional(list(string), [])<br> ipv6_cidr_blocks = optional(list(string), [])<br> }))<br> egress_rules = list(object({<br> description = optional(string, "")<br> from_port = number<br> to_port = number<br> protocol = any<br> cidr_blocks = optional(list(string), [])<br> security_group_ids = optional(list(string), [])<br> ipv6_cidr_blocks = optional(list(string), [])<br> }))<br> }),<br> {<br> ingress_rules = [<br> {<br> description = "VPN ingress to 443"<br> from_port = 443<br> to_port = 443<br> protocol = "tcp"<br> }<br> ]<br> egress_rules = [<br> {<br> description = "VPN egress to internet"<br> from_port = 0<br> to_port = 0<br> protocol = -1<br> cidr_blocks = ["0.0.0.0/0"]<br> }<br> ]<br> }<br> )<br><br> subnet_ids = list(string)<br><br> # authorization options<br> authorization_options = map(object({<br> target_network_cidr = string<br> access_group_id = optional(string, null)<br> authorize_all_groups = optional(bool, true)<br> }))<br> })</pre> | <pre>{<br> "authentication_options": null,<br> "authorization_options": null,<br> "client_cidr_block": null,<br> "create": false,<br> "subnet_ids": []<br>}</pre> | no |
7979
| <a name="input_environment"></a> [environment](#input\_environment) | Environmenr name | `string` | n/a | yes |
8080
| <a name="input_name"></a> [name](#input\_name) | Name of Client VPN or Site to site VPN | `string` | n/a | yes |
8181
| <a name="input_namespace"></a> [namespace](#input\_namespace) | Namespace name | `string` | n/a | yes |
@@ -87,10 +87,10 @@ No resources.
8787

8888
| Name | Description |
8989
|------|-------------|
90-
| <a name="output_client_self_signed_cert_server_certificate_arn"></a> [client\_self\_signed\_cert\_server\_certificate\_arn](#output\_client\_self\_signed\_cert\_server\_certificate\_arn) | Self signed certificate server certificate ARN |
9190
| <a name="output_client_vpn_arn"></a> [client\_vpn\_arn](#output\_client\_vpn\_arn) | The client vpn ARN |
9291
| <a name="output_client_vpn_id"></a> [client\_vpn\_id](#output\_client\_vpn\_id) | The client vpn ID |
9392
| <a name="output_customer_gateway_id"></a> [customer\_gateway\_id](#output\_customer\_gateway\_id) | Customer Gateway ID |
93+
| <a name="output_server_certificate"></a> [server\_certificate](#output\_server\_certificate) | Server certificate ARN |
9494
| <a name="output_site_to_site_vpn_id"></a> [site\_to\_site\_vpn\_id](#output\_site\_to\_site\_vpn\_id) | The site to site vpn ID |
9595
| <a name="output_vpn_gateway_id"></a> [vpn\_gateway\_id](#output\_vpn\_gateway\_id) | The VPN Gateway ID |
9696
<!-- END OF PRE-COMMIT-TERRAFORM DOCS HOOK -->

0 commit comments

Comments
 (0)