Skip to main content
Version: Next

AWS SECURITY-GROUP

Description

Terraform module which creates EC2-VPC security groups on AWS

Specification

Properties

NameDescriptionTypeRequiredDefault
computed_egress_rulesList of computed egress rules to create by namelist(string)false
computed_egress_with_cidr_blocksList of computed egress rules to create where 'cidr_blocks' is usedlist(map(string))false
computed_egress_with_ipv6_cidr_blocksList of computed egress rules to create where 'ipv6_cidr_blocks' is usedlist(map(string))false
computed_egress_with_selfList of computed egress rules to create where 'self' is definedlist(map(string))false
computed_egress_with_source_security_group_idList of computed egress rules to create where 'source_security_group_id' is usedlist(map(string))false
computed_ingress_rulesList of computed ingress rules to create by namelist(string)false
computed_ingress_with_cidr_blocksList of computed ingress rules to create where 'cidr_blocks' is usedlist(map(string))false
computed_ingress_with_ipv6_cidr_blocksList of computed ingress rules to create where 'ipv6_cidr_blocks' is usedlist(map(string))false
computed_ingress_with_selfList of computed ingress rules to create where 'self' is definedlist(map(string))false
computed_ingress_with_source_security_group_idList of computed ingress rules to create where 'source_security_group_id' is usedlist(map(string))false
createWhether to create security group and all rulesboolfalse
create_sgWhether to create security groupboolfalse
create_timeoutTime to wait for a security group to be createdstringfalse
delete_timeoutTime to wait for a security group to be deletedstringfalse
descriptionDescription of security groupstringfalse
egress_cidr_blocksList of IPv4 CIDR ranges to use on all egress ruleslist(string)false
egress_ipv6_cidr_blocksList of IPv6 CIDR ranges to use on all egress ruleslist(string)false
egress_prefix_list_idsList of prefix list IDs (for allowing access to VPC endpoints) to use on all egress ruleslist(string)false
egress_rulesList of egress rules to create by namelist(string)false
egress_with_cidr_blocksList of egress rules to create where 'cidr_blocks' is usedlist(map(string))false
egress_with_ipv6_cidr_blocksList of egress rules to create where 'ipv6_cidr_blocks' is usedlist(map(string))false
egress_with_selfList of egress rules to create where 'self' is definedlist(map(string))false
egress_with_source_security_group_idList of egress rules to create where 'source_security_group_id' is usedlist(map(string))false
ingress_cidr_blocksList of IPv4 CIDR ranges to use on all ingress ruleslist(string)false
ingress_ipv6_cidr_blocksList of IPv6 CIDR ranges to use on all ingress ruleslist(string)false
ingress_prefix_list_idsList of prefix list IDs (for allowing access to VPC endpoints) to use on all ingress ruleslist(string)false
ingress_rulesList of ingress rules to create by namelist(string)false
ingress_with_cidr_blocksList of ingress rules to create where 'cidr_blocks' is usedlist(map(string))false
ingress_with_ipv6_cidr_blocksList of ingress rules to create where 'ipv6_cidr_blocks' is usedlist(map(string))false
ingress_with_selfList of ingress rules to create where 'self' is definedlist(map(string))false
ingress_with_source_security_group_idList of ingress rules to create where 'source_security_group_id' is usedlist(map(string))false
nameName of security group - not required if create_sg is falsestringfalse
number_of_computed_egress_rulesNumber of computed egress rules to create by namenumberfalse
number_of_computed_egress_with_cidr_blocksNumber of computed egress rules to create where 'cidr_blocks' is usednumberfalse
number_of_computed_egress_with_ipv6_cidr_blocksNumber of computed egress rules to create where 'ipv6_cidr_blocks' is usednumberfalse
number_of_computed_egress_with_selfNumber of computed egress rules to create where 'self' is definednumberfalse
number_of_computed_egress_with_source_security_group_idNumber of computed egress rules to create where 'source_security_group_id' is usednumberfalse
number_of_computed_ingress_rulesNumber of computed ingress rules to create by namenumberfalse
number_of_computed_ingress_with_cidr_blocksNumber of computed ingress rules to create where 'cidr_blocks' is usednumberfalse
number_of_computed_ingress_with_ipv6_cidr_blocksNumber of computed ingress rules to create where 'ipv6_cidr_blocks' is usednumberfalse
number_of_computed_ingress_with_selfNumber of computed ingress rules to create where 'self' is definednumberfalse
number_of_computed_ingress_with_source_security_group_idNumber of computed ingress rules to create where 'source_security_group_id' is usednumberfalse
putin_khuyloDo you agree that Putin doesn't respect Ukrainian sovereignty and territorial integrity? More info: https://en.wikipedia.org/wiki/Putin_khuylo!boolfalse
revoke_rules_on_deleteInstruct Terraform to revoke all of the Security Groups attached ingress and egress rules before deleting the rule itself. Enable for EMR.boolfalse
security_group_idID of existing security group whose rules we will managestringfalse
tagsA mapping of tags to assign to security groupmap(string)false
use_name_prefixWhether to use name_prefix or fixed name. Should be true to able to update security group name after initial creationboolfalse
vpc_idID of the VPC where to create security groupstringfalse
writeConnectionSecretToRefThe secret which the cloud resource connection will be written towriteConnectionSecretToReffalse

writeConnectionSecretToRef

NameDescriptionTypeRequiredDefault
nameThe secret name which the cloud resource connection will be written tostringtrue
namespaceThe secret namespace which the cloud resource connection will be written tostringfalse