From 5edc931bf976cd381be1c1af0cdeb60551e382a2 Mon Sep 17 00:00:00 2001
From: Ludovico Magnocavallo <ludomagno@google.com>
Date: Fri, 17 Mar 2023 20:52:40 +0100
Subject: [PATCH] add missing secret to spoke tunnels (#1265)

---
 fast/stages/2-networking-b-vpn/vpn-spoke-dev.tf  | 2 ++
 fast/stages/2-networking-b-vpn/vpn-spoke-prod.tf | 4 ++++
 2 files changed, 6 insertions(+)

diff --git a/fast/stages/2-networking-b-vpn/vpn-spoke-dev.tf b/fast/stages/2-networking-b-vpn/vpn-spoke-dev.tf
index a9280aed..a90c4128 100644
--- a/fast/stages/2-networking-b-vpn/vpn-spoke-dev.tf
+++ b/fast/stages/2-networking-b-vpn/vpn-spoke-dev.tf
@@ -36,6 +36,7 @@ module "dev-to-landing-primary-vpn" {
         asn     = var.vpn_configs.landing.asn
       }
       bgp_session_range     = "${cidrhost(local.bgp_session_ranges.dev-primary.0, 2)}/30"
+      shared_secret         = module.landing-to-spokes-primary-vpn.random_secret
       vpn_gateway_interface = 0
     }
     1 = {
@@ -44,6 +45,7 @@ module "dev-to-landing-primary-vpn" {
         asn     = var.vpn_configs.landing.asn
       }
       bgp_session_range     = "${cidrhost(local.bgp_session_ranges.dev-primary.1, 2)}/30"
+      shared_secret         = module.landing-to-spokes-primary-vpn.random_secret
       vpn_gateway_interface = 1
     }
   }
diff --git a/fast/stages/2-networking-b-vpn/vpn-spoke-prod.tf b/fast/stages/2-networking-b-vpn/vpn-spoke-prod.tf
index 2d31bba5..54349f5c 100644
--- a/fast/stages/2-networking-b-vpn/vpn-spoke-prod.tf
+++ b/fast/stages/2-networking-b-vpn/vpn-spoke-prod.tf
@@ -36,6 +36,7 @@ module "prod-to-landing-primary-vpn" {
         asn     = var.vpn_configs.landing.asn
       }
       bgp_session_range     = "${cidrhost(local.bgp_session_ranges.prod-primary.0, 2)}/30"
+      shared_secret         = module.landing-to-spokes-primary-vpn.random_secret
       vpn_gateway_interface = 0
     }
     1 = {
@@ -44,6 +45,7 @@ module "prod-to-landing-primary-vpn" {
         asn     = var.vpn_configs.landing.asn
       }
       bgp_session_range     = "${cidrhost(local.bgp_session_ranges.prod-primary.1, 2)}/30"
+      shared_secret         = module.landing-to-spokes-primary-vpn.random_secret
       vpn_gateway_interface = 1
     }
   }
@@ -69,6 +71,7 @@ module "prod-to-landing-secondary-vpn" {
         asn     = var.vpn_configs.landing.asn
       }
       bgp_session_range     = "${cidrhost(local.bgp_session_ranges.prod-secondary.0, 2)}/30"
+      shared_secret         = module.landing-to-spokes-secondary-vpn.random_secret
       vpn_gateway_interface = 0
     }
     1 = {
@@ -77,6 +80,7 @@ module "prod-to-landing-secondary-vpn" {
         asn     = var.vpn_configs.landing.asn
       }
       bgp_session_range     = "${cidrhost(local.bgp_session_ranges.prod-secondary.1, 2)}/30"
+      shared_secret         = module.landing-to-spokes-secondary-vpn.random_secret
       vpn_gateway_interface = 1
     }
   }