-
-
Notifications
You must be signed in to change notification settings - Fork 4.4k
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Inconsistency between the default and specific ACL parameters #415
Comments
This issue has been automatically marked as stale because it has been open 30 days |
Should this still be open? Its been a minute since I had tried the VPC module. |
Yes, this is still valid, unfortunately :/ |
hi all, this should be addressed in the next version which is under development here https://github.com/clowdhaus/terraform-aws-vpc-v4 FYI - they are/were different because at the provider level they are different, but we can make changes to align within the module |
@bryantbiggs Oh nice, I ran into this issue also! Would be very nice to align the parameters. Side note: I'm also seeing some weirdness when updating NACL rules due to the use of count on the resources. Rules get destroyed and recreated, which sometimes causes race conditions. Would be addressed by using for_each with the rule number as the for_each key, I think. Edit: Holy smokes, just looked at the v4 implementation, and for_each with the rule number as the key is exactly what you did! Lolololol. Awesome! |
This issue has been automatically marked as stale because it has been open 30 days |
This issue was automatically closed because of stale in 10 days |
C'mon stalebot, you can keep this open until the next major release, yeah? |
@lorengordon Stalebot respects |
Thanks @antonbabenko! It was meant playfully, I find myself talking to stalebot a lot (in general, not specifically for your projects). |
@antonbabenko I wrote a quick lookup to handle both cases:
The change is backwards-compatible and supports both the current (inconsistent) I've attached the |
The default network ACL parameters are named
default_network_acl_ingress
anddefault_network_acl_egress
and take lists of maps with the keysrule_no
andaction
.The public/private rules are named using
_{in,out}bound_acl_rules
and require the keys to berule_number
andrule_action
, which complicates sharing common rulesets between them.The text was updated successfully, but these errors were encountered: