Fix factory rules key in net firewall policy module (#1587)

* fix factory rules key in net firewall policy * fix test
2023-08-14 07:52:36 +02:00 · 2023-08-14 07:52:36 +02:00 · 841459a059
parent ad1d5a7ddc
commit 841459a059
2 changed files with 4 additions and 4 deletions
--- a/modules/net-firewall-policy/factory.tf
+++ b/modules/net-firewall-policy/factory.tf
@ -25,7 +25,7 @@ locals {
    yamldecode(file(var.rules_factory_config.cidr_file_path)), {}
  )
  factory_egress_rules = {
-    for k, v in local._factory_egress_rules : "ingress/${k}" => {
+    for k, v in local._factory_egress_rules : "egress/${k}" => {
      action                  = "deny"
      direction               = "EGRESS"
      priority                = v.priority
@ -68,7 +68,7 @@ locals {
    }
  }
  factory_ingress_rules = {
-    for k, v in local._factory_ingress_rules : "egress/${k}" => {
+    for k, v in local._factory_ingress_rules : "ingress/${k}" => {
      action                  = "allow"
      direction               = "INGRESS"
      priority                = v.priority
--- a/tests/modules/net_firewall_policy/examples/factory.yaml
+++ b/tests/modules/net_firewall_policy/examples/factory.yaml
@ -18,7 +18,7 @@ values:
  module.firewall-policy.google_compute_firewall_policy_association.hierarchical["test"]:
    attachment_target: folders/4567890123
    name: test-1-test
-  module.firewall-policy.google_compute_firewall_policy_rule.hierarchical["egress/icmp"]:
+  module.firewall-policy.google_compute_firewall_policy_rule.hierarchical["ingress/icmp"]:
    action: allow
    direction: INGRESS
    disabled: false
@ -41,7 +41,7 @@ values:
    priority: 1000
    target_resources: null
    target_service_accounts: null
-  module.firewall-policy.google_compute_firewall_policy_rule.hierarchical["ingress/smtp"]:
+  module.firewall-policy.google_compute_firewall_policy_rule.hierarchical["egress/smtp"]:
    action: deny
    direction: EGRESS
    disabled: false