diff --git a/modules/vpc-sc/README.md b/modules/vpc-sc/README.md index ae3ca954..3388c88f 100644 --- a/modules/vpc-sc/README.md +++ b/modules/vpc-sc/README.md @@ -138,48 +138,6 @@ module "vpc-sc" { ## Example VCP-SC standard perimeter with one service and one project in dry run mode in a Organization with an already existent access policy ```hcl -module "vpc-sc-first" { - source = "./modules/vpc-sc" - organization_id = "organizations/112233" - access_policy_title = "My Org Access Policy" - access_levels = { - my_trusted_proxy = { - combining_function = "AND" - conditions = [{ - ip_subnetworks = ["85.85.85.52/32"] - required_access_levels = null - members = [] - negate = false - regions = null - }] - } - } - access_level_perimeters = { - enforced = { - my_trusted_proxy = ["perimeter"] - } - } - perimeters = { - perimeter = { - type = "PERIMETER_TYPE_REGULAR" - dry_run_config = { - restricted_services = ["storage.googleapis.com", "bigquery.googleapis.com"] - vpc_accessible_services = ["storage.googleapis.com", "bigquery.googleapis.com"] - } - enforced_config = { - restricted_services = ["storage.googleapis.com"] - vpc_accessible_services = ["storage.googleapis.com"] - } - } - } - perimeter_projects = { - perimeter = { - enforced = [111111111, 222222222] - dry_run = [333333333] - } - } -} - module "vpc-sc-second" { source = "./modules/vpc-sc" organization_id = "organizations/112233" @@ -222,7 +180,7 @@ module "vpc-sc-second" { } } } -# tftest:modules=2:resources=5 +# tftest:modules=1:resources=3 ``` diff --git a/modules/vpc-sc/variables.tf b/modules/vpc-sc/variables.tf index 3a539d92..0905c71a 100644 --- a/modules/vpc-sc/variables.tf +++ b/modules/vpc-sc/variables.tf @@ -30,7 +30,7 @@ variable "access_levels" { } variable "access_policy_create" { - description = "enable autocreation of the Access Policy" + description = "Enable autocreation of the Access Policy" type = bool default = true }