xpk/terraform-training
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

UPD: replaced null_resource with http data source

Browse Source
This commit is contained in:
KF 2024-05-30 18:56:45 +08:00
parent 69a2790123
commit 60be67bc64
Signed by: xpk
GPG Key ID: CD4FF6793F09AB86
2 changed files with 8 additions and 10 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

4
NetworkContentDelivery/Exercise3/README.md
View File

@ -11,7 +11,7 @@
| Name | Version |
|------|---------|
| aws | 5.51.1 |
| null | 3.2.2 |
| http | 3.4.2 |
## Modules
@ -26,10 +26,10 @@
| Name | Type |
|------|------|
| [aws_ec2_managed_prefix_list.pl1](https://registry.terraform.io/providers/hashicorp/aws/latest/docs/resources/ec2_managed_prefix_list) | resource |
| [null_resource.CloudflareIps](https://registry.terraform.io/providers/hashicorp/null/latest/docs/resources/resource) | resource |
| [aws_availability_zones.available](https://registry.terraform.io/providers/hashicorp/aws/latest/docs/data-sources/availability_zones) | data source |
| [aws_iam_policy_document.dynamodb_endpoint_policy](https://registry.terraform.io/providers/hashicorp/aws/latest/docs/data-sources/iam_policy_document) | data source |
| [aws_iam_policy_document.s3_endpoint_policy](https://registry.terraform.io/providers/hashicorp/aws/latest/docs/data-sources/iam_policy_document) | data source |
| [http_http.CloudflareIps](https://registry.terraform.io/providers/hashicorp/http/latest/docs/data-sources/http) | data source |
## Inputs

14
NetworkContentDelivery/Exercise3/main.tf
View File

@ -89,14 +89,12 @@ data "aws_iam_policy_document" "dynamodb_endpoint_policy" {
}
}
resource "null_resource" "CloudflareIps" {
provisioner "local-exec" {
command = "wget -qO CfIps.json https://api.cloudflare.com/client/v4/ips"
}
}
locals {
CfIpJson = jsondecode(file("${path.module}/CfIps.json"))
data "http" "CloudflareIps" {
url = "https://api.cloudflare.com/client/v4/ips"
request_headers = {
Accept = "application/json"
}
}
resource "aws_ec2_managed_prefix_list" "pl1" {
@ -104,7 +102,7 @@ resource "aws_ec2_managed_prefix_list" "pl1" {
address_family = "IPv4"
max_entries = 20
dynamic "entry" {
for_each = local.CfIpJson.result.ipv4_cidrs
for_each = jsondecode(data.http.CloudflareIps.response_body)["result"]["ipv4_cidrs"]
content {
cidr = entry.value
description = "Cloudflare IP"