Create Security Group variable to restrict access to individual IP ranges

[dragonfleas]

https://github.com/synapsestudios/terraform-aws-bastion-server/blob/3ff0dd41bc72ebca2474ac27b3e95328b2ca2be8/main.tf#L54-L75

As of right now, the bastion's default security group is allowing all ingress port 22 access with a hardcoded security group. I believe adding an option to allow us to optionally pass in a security group or IP allow list dynamically would enable better security options.

Please discuss freely.

[dragonfleas]

What do you think @chrisshiplet?