fix: The network_connections option has been removed from the network_acls variable as it was not being used in the code (#488)

imprateeksh · web-flow · commit 276e463cfdac · 2023-04-12T19:22:14.000+01:00
BREAKING CHANGE: If you are upgrading to this version, and you have the `network_connections` option in the `network_acls` variable, it should be removed.
diff --git a/README.md b/README.md
@@ -118,7 +118,7 @@ You need the following permissions to run this module.
 | <a name="input_existing_storage_bucket_name"></a> [existing\_storage\_bucket\_name](#input\_existing\_storage\_bucket\_name) | Name of the COS bucket to collect VPC flow logs | `string` | `null` | no |
 | <a name="input_is_flow_log_collector_active"></a> [is\_flow\_log\_collector\_active](#input\_is\_flow\_log\_collector\_active) | Indicates whether the collector is active. If false, this collector is created in inactive mode. | `bool` | `true` | no |
 | <a name="input_name"></a> [name](#input\_name) | Name for VPC | `string` | n/a | yes |
-| <a name="input_network_acls"></a> [network\_acls](#input\_network\_acls) | List of ACLs to create. Rules can be automatically created to allow inbound and outbound traffic from a VPC tier by adding the name of that tier to the `network_connections` list. Rules automatically generated by these network connections will be added at the beginning of a list, and will be web-tierlied to traffic first. At least one rule must be provided for each ACL. | <pre>list(<br>    object({<br>      name                         = string<br>      network_connections          = optional(list(string))<br>      add_ibm_cloud_internal_rules = optional(bool)<br>      add_vpc_connectivity_rules   = optional(bool)<br>      prepend_ibm_rules            = optional(bool)<br>      rules = list(<br>        object({<br>          name        = string<br>          action      = string<br>          destination = string<br>          direction   = string<br>          source      = string<br>          tcp = optional(<br>            object({<br>              port_max        = optional(number)<br>              port_min        = optional(number)<br>              source_port_max = optional(number)<br>              source_port_min = optional(number)<br>            })<br>          )<br>          udp = optional(<br>            object({<br>              port_max        = optional(number)<br>              port_min        = optional(number)<br>              source_port_max = optional(number)<br>              source_port_min = optional(number)<br>            })<br>          )<br>          icmp = optional(<br>            object({<br>              type = optional(number)<br>              code = optional(number)<br>            })<br>          )<br>        })<br>      )<br>    })<br>  )</pre> | <pre>[<br>  {<br>    "add_ibm_cloud_internal_rules": true,<br>    "add_vpc_connectivity_rules": true,<br>    "name": "vpc-acl",<br>    "prepend_ibm_rules": true,<br>    "rules": []<br>  }<br>]</pre> | no |
+| <a name="input_network_acls"></a> [network\_acls](#input\_network\_acls) | The list of ACLs to create. Provide at least one rule for each ACL. | <pre>list(<br>    object({<br>      name                         = string<br>      add_ibm_cloud_internal_rules = optional(bool)<br>      add_vpc_connectivity_rules   = optional(bool)<br>      prepend_ibm_rules            = optional(bool)<br>      rules = list(<br>        object({<br>          name        = string<br>          action      = string<br>          destination = string<br>          direction   = string<br>          source      = string<br>          tcp = optional(<br>            object({<br>              port_max        = optional(number)<br>              port_min        = optional(number)<br>              source_port_max = optional(number)<br>              source_port_min = optional(number)<br>            })<br>          )<br>          udp = optional(<br>            object({<br>              port_max        = optional(number)<br>              port_min        = optional(number)<br>              source_port_max = optional(number)<br>              source_port_min = optional(number)<br>            })<br>          )<br>          icmp = optional(<br>            object({<br>              type = optional(number)<br>              code = optional(number)<br>            })<br>          )<br>        })<br>      )<br>    })<br>  )</pre> | <pre>[<br>  {<br>    "add_ibm_cloud_internal_rules": true,<br>    "add_vpc_connectivity_rules": true,<br>    "name": "vpc-acl",<br>    "prepend_ibm_rules": true,<br>    "rules": []<br>  }<br>]</pre> | no |
 | <a name="input_network_cidr"></a> [network\_cidr](#input\_network\_cidr) | Network CIDR for the VPC. This is used to manage network ACL rules for cluster provisioning. | `string` | `"10.0.0.0/8"` | no |
 | <a name="input_prefix"></a> [prefix](#input\_prefix) | The prefix that you would like to append to your resources | `string` | n/a | yes |
 | <a name="input_region"></a> [region](#input\_region) | The region to which to deploy the VPC | `string` | n/a | yes |
diff --git a/dynamic_values/variables.tf b/dynamic_values/variables.tf
@@ -123,9 +123,8 @@ variable "network_acls" {
   description = "direct reference to network acls"
   type = list(
     object({
-      name                = string
-      network_connections = optional(list(string))
-      add_cluster_rules   = optional(bool)
+      name              = string
+      add_cluster_rules = optional(bool)
       rules = list(
         object({
           name = string
diff --git a/module-metadata.json b/module-metadata.json
@@ -39,7 +39,7 @@
       "default": false,
       "pos": {
         "filename": "variables.tf",
-        "line": 415
+        "line": 414
       }
     },
     "default_network_acl_name": {
@@ -101,7 +101,7 @@
       ],
       "pos": {
         "filename": "variables.tf",
-        "line": 409
+        "line": 408
       }
     },
     "existing_cos_instance_guid": {
@@ -113,7 +113,7 @@
       ],
       "pos": {
         "filename": "variables.tf",
-        "line": 421
+        "line": 420
       },
       "immutable": true,
       "computed": true
@@ -128,7 +128,7 @@
       ],
       "pos": {
         "filename": "variables.tf",
-        "line": 427
+        "line": 426
       },
       "immutable": true
     },
@@ -142,7 +142,7 @@
       ],
       "pos": {
         "filename": "variables.tf",
-        "line": 433
+        "line": 432
       }
     },
     "name": {
@@ -157,8 +157,8 @@
     },
     "network_acls": {
       "name": "network_acls",
-      "type": "list(\n    object({\n      name                         = string\n      network_connections          = optional(list(string))\n      add_ibm_cloud_internal_rules = optional(bool)\n      add_vpc_connectivity_rules   = optional(bool)\n      prepend_ibm_rules            = optional(bool)\n      rules = list(\n        object({\n          name        = string\n          action      = string\n          destination = string\n          direction   = string\n          source      = string\n          tcp = optional(\n            object({\n              port_max        = optional(number)\n              port_min        = optional(number)\n              source_port_max = optional(number)\n              source_port_min = optional(number)\n            })\n          )\n          udp = optional(\n            object({\n              port_max        = optional(number)\n              port_min        = optional(number)\n              source_port_max = optional(number)\n              source_port_min = optional(number)\n            })\n          )\n          icmp = optional(\n            object({\n              type = optional(number)\n              code = optional(number)\n            })\n          )\n        })\n      )\n    })\n  )",
-      "description": "List of ACLs to create. Rules can be automatically created to allow inbound and outbound traffic from a VPC tier by adding the name of that tier to the `network_connections` list. Rules automatically generated by these network connections will be added at the beginning of a list, and will be web-tierlied to traffic first. At least one rule must be provided for each ACL.",
+      "type": "list(\n    object({\n      name                         = string\n      add_ibm_cloud_internal_rules = optional(bool)\n      add_vpc_connectivity_rules   = optional(bool)\n      prepend_ibm_rules            = optional(bool)\n      rules = list(\n        object({\n          name        = string\n          action      = string\n          destination = string\n          direction   = string\n          source      = string\n          tcp = optional(\n            object({\n              port_max        = optional(number)\n              port_min        = optional(number)\n              source_port_max = optional(number)\n              source_port_min = optional(number)\n            })\n          )\n          udp = optional(\n            object({\n              port_max        = optional(number)\n              port_min        = optional(number)\n              source_port_max = optional(number)\n              source_port_min = optional(number)\n            })\n          )\n          icmp = optional(\n            object({\n              type = optional(number)\n              code = optional(number)\n            })\n          )\n        })\n      )\n    })\n  )",
+      "description": "The list of ACLs to create. Provide at least one rule for each ACL.",
       "default": [
         {
           "add_ibm_cloud_internal_rules": true,
@@ -256,7 +256,7 @@
       ],
       "pos": {
         "filename": "variables.tf",
-        "line": 381
+        "line": 380
       }
     },
     "security_group_rules": {
@@ -275,7 +275,7 @@
       ],
       "pos": {
         "filename": "variables.tf",
-        "line": 315
+        "line": 314
       }
     },
     "subnets": {
@@ -313,7 +313,7 @@
       ],
       "pos": {
         "filename": "variables.tf",
-        "line": 252
+        "line": 251
       }
     },
     "tags": {
@@ -367,7 +367,7 @@
       ],
       "pos": {
         "filename": "variables.tf",
-        "line": 226
+        "line": 225
       }
     }
   },
diff --git a/variables.tf b/variables.tf
@@ -96,11 +96,10 @@ variable "address_prefixes" {
 ##############################################################################
 
 variable "network_acls" {
-  description = "List of ACLs to create. Rules can be automatically created to allow inbound and outbound traffic from a VPC tier by adding the name of that tier to the `network_connections` list. Rules automatically generated by these network connections will be added at the beginning of a list, and will be web-tierlied to traffic first. At least one rule must be provided for each ACL."
+  description = "The list of ACLs to create. Provide at least one rule for each ACL."
   type = list(
     object({
       name                         = string
-      network_connections          = optional(list(string))
       add_ibm_cloud_internal_rules = optional(bool)
       add_vpc_connectivity_rules   = optional(bool)
       prepend_ibm_rules            = optional(bool)
