This is more of a feature for exports than for the sg module itself
For security groups in cloudposse/modules, the var.allowed_cidr_blocks is exposed to add a rule per cidr block. This works well but when viewing this in the AWS console, the unexposed sg rule description is repeated.
Have a question? Please checkout our Slack Community or visit our Slack Archive.
Describe the Feature
This is more of a feature for exports than for the sg module itself
For security groups in cloudposse/modules, the
var.allowed_cidr_blocks
is exposed to add a rule per cidr block. This works well but when viewing this in the AWS console, the unexposed sg rule description is repeated.e.g.
https://github.com/cloudposse/terraform-aws-msk-apache-kafka-cluster/blob/3fe23c402cc420799ae721186812482335f78d24/main.tf#L74-L77
It would be nice to have a unique description per security rule (per cidr block).
Perhaps with an interface like this ?
where
security_group_rule_description_template
is astring
orlist(string)
Resulting in a plan
References