Added a flaf to create virtual private gateway

vijay-stephen · vijay-stephen · commit f562daba392f · 2024-02-23T23:23:55.000+05:30
diff --git a/README.md b/README.md
@@ -100,6 +100,7 @@ module "this" {
 | <a name="input_client_vpn_subnet_ids"></a> [client\_vpn\_subnet\_ids](#input\_client\_vpn\_subnet\_ids) | The ID of the subnets to associate with the Client VPN endpoint. | `list(string)` | n/a | yes |
 | <a name="input_client_vpn_target_network_cidr"></a> [client\_vpn\_target\_network\_cidr](#input\_client\_vpn\_target\_network\_cidr) | The IPv4 address range, in CIDR notation, of the network to which the authorization rule applies. | `string` | n/a | yes |
 | <a name="input_create_self_signed_server_cert"></a> [create\_self\_signed\_server\_cert](#input\_create\_self\_signed\_server\_cert) | Create a self signed certificate to use for the VPN server. | `bool` | `true` | no |
+| <a name="input_create_vpn_gateway"></a> [create\_vpn\_gateway](#input\_create\_vpn\_gateway) | Whether to create VPN Gateway, as for a VPC only one Gateway is allowed | `bool` | `true` | no |
 | <a name="input_dns_servers"></a> [dns\_servers](#input\_dns\_servers) | The list of dns server ip address | `list(string)` | <pre>[<br>  "1.1.1.1",<br>  "1.0.0.1"<br>]</pre> | no |
 | <a name="input_iam_saml_provider_enabled"></a> [iam\_saml\_provider\_enabled](#input\_iam\_saml\_provider\_enabled) | Enable the SAML provider for SSO login to Client VPN. If enabled, `var.iam_saml_provider_name` and `var.saml_metadata_document_content` must be set. | `bool` | `false` | no |
 | <a name="input_iam_saml_provider_name"></a> [iam\_saml\_provider\_name](#input\_iam\_saml\_provider\_name) | The name of the IAM SAML Provider | `string` | `null` | no |
diff --git a/docs/module-usage-guide/README.md b/docs/module-usage-guide/README.md
@@ -6,7 +6,7 @@
 
 This document provides guidelines and instructions for users looking to implement Terraform ARC module for managing a AWS Client VPN.
 
-#### What is AWS Client VPN ? 
+#### What is AWS Client VPN ?
 AWS Client VPN is a managed remote access VPN solution used by your remote workforce to securely access resources within both AWS and your on-premises network. Fully elastic, it automatically scales up, or down, based on demand.
 
 ### Module Overview
@@ -51,7 +51,7 @@ Integrate the module with your existing Terraform mono repo configuration, follo
 
 ### Required AWS Permissions
 
-Ensure that the AWS credentials used to execute Terraform have the necessary permissions to create 
+Ensure that the AWS credentials used to execute Terraform have the necessary permissions to create
  - Client VPN Endpoint
  - Virtual Private Gateway
 
diff --git a/example/README.md b/example/README.md
@@ -18,10 +18,10 @@
 
 | Name | Source | Version |
 |------|--------|---------|
-| <a name="module_self_signed_cert_ca"></a> [self\_signed\_cert\_ca](#module\_self\_signed\_cert\_ca) | git::https://github.com/cloudposse/terraform-aws-ssm-tls-self-signed-cert.git | 1.3.0 |
+| <a name="module_self_signed_cert_ca"></a> [self\_signed\_cert\_ca](#module\_self\_signed\_cert\_ca) | git::https://github.com/cloudposse/terraform-aws-ssm-tls- self-signed-cert.git | 1.3.0 |
 | <a name="module_self_signed_cert_root"></a> [self\_signed\_cert\_root](#module\_self\_signed\_cert\_root) | git::https://github.com/cloudposse/terraform-aws-ssm-tls-self-signed-cert.git | 1.3.0 |
 | <a name="module_tags"></a> [tags](#module\_tags) | sourcefuse/arc-tags/aws | 1.2.3 |
-| <a name="module_vpn"></a> [vpn](#module\_vpn) | sourcefuse/arc-vpn/aws | 0.0.4 |
+| <a name="module_vpn"></a> [vpn](#module\_vpn) | sourcefuse/arc-vpn/aws | 1.0.0 |
 
 ## Resources
 
diff --git a/example/main.tf b/example/main.tf
@@ -105,7 +105,7 @@ module "self_signed_cert_root" {
   attributes = ["self", "signed", "cert", "root"]
 
   namespace = var.namespace
-  stage     = var.environment   
+  stage     = var.environment
   name      = "demo"
 
   secret_path_format = var.secret_path_format
@@ -141,7 +141,7 @@ module "self_signed_cert_root" {
 ################################################################################
 module "vpn" {
   source  = "sourcefuse/arc-vpn/aws"
-  //version = "1.0.0" # pin the correct version
+  version = "1.0.0" # pin the correct version
 
   vpc_id = data.aws_vpc.this.id
 
@@ -165,7 +165,5 @@ module "vpn" {
   client_vpn_name         = "${var.namespace}-${var.environment}-client-vpn-example"
   client_vpn_gateway_name = "${var.namespace}-${var.environment}-vpn-gateway-example"
 
-  create_vpn_gateway = true
-
   tags = module.tags.tags
 }
diff --git a/main.tf b/main.tf
@@ -67,7 +67,7 @@ module "self_signed_cert" {
   attributes         = ["self", "signed", "cert", "server"]
   secret_path_format = var.self_signed_server_cert_secret_path_format
 
-   name = var.client_vpn_name
+  name = var.client_vpn_name
 
 
   subject = {
@@ -96,7 +96,7 @@ module "self_signed_cert" {
 ## vpn
 ################################################################################
 resource "aws_vpn_gateway" "this" {
-  count = var.create_vpn_gateway ? 1 : 0
+  count  = var.create_vpn_gateway ? 1 : 0
   vpc_id = var.vpc_id
 
   tags = merge(var.tags, tomap({
diff --git a/variables.tf b/variables.tf
@@ -265,5 +265,5 @@ variable "client_vpn_authorize_all_groups" {
 variable "create_vpn_gateway" {
   type        = bool
   description = "Whether to create VPN Gateway, as for a VPC only one Gateway is allowed"
-  default     = true  
+  default     = true
 }

Original file line number	Diff line number	Diff line change
`@@ -265,5 +265,5 @@ variable "client_vpn_authorize_all_groups" {`
`265`	`265`	`variable "create_vpn_gateway" {`
`266`	`266`	`type = bool`
`267`	`267`	`description = "Whether to create VPN Gateway, as for a VPC only one Gateway is allowed"`
`268`		`- default = true`
	`268`	`+ default = true`
`269`	`269`	`}`