Improve the public ip address handling

Support multiple addresses to handle the GOV.UK PaaS, which has multiple egress points.
author: Christopher Baines <mail@cbaines.net> 2018-07-05 11:42:08 +0100
committer: Christopher Baines <mail@cbaines.net> 2018-07-05 11:42:08 +0100
commit: 0b2df284100db9c03dcdc290f99091f199fb5eef (patch)
tree: 40671c319b62bc3e715bf5aa844a582d688e521f /terraform/aws
parent: f6d74559eafa515bdef2afbf547b95a7ff751daf (diff)
download: govuk-mini-environment-admin-0b2df284100db9c03dcdc290f99091f199fb5eef.tar
govuk-mini-environment-admin-0b2df284100db9c03dcdc290f99091f199fb5eef.tar.gz
1 files changed, 5 insertions, 3 deletions
diff --git a/terraform/aws/backend/main.tf b/terraform/aws/backend/main.tf
index fff5444..45d660f 100644
--- a/terraform/aws/backend/main.tf
+++ b/terraform/aws/backend/main.tf
@@ -66,8 +66,8 @@ variable "mini_environment_admin_guix_public_key" {
   type = "string"
 }
 
-variable "mini_environment_admin_public_ip_address" {
-  type = "string"
+variable "mini_environment_admin_egress_cidr_blocks" {
+  type = "list"
 }
 
 variable "backend_slug" {
@@ -168,7 +168,9 @@ resource "aws_security_group" "ssh_access_from_mini_environment_admin" {
     from_port = 0
     to_port = 22
     protocol = "tcp"
-    cidr_blocks = ["${var.mini_environment_admin_public_ip_address}/32"]
+    cidr_blocks = [
+      "${var.mini_environment_admin_egress_cidr_blocks}"
+    ]
   }
 }
author	Christopher Baines <mail@cbaines.net>	2018-07-05 11:42:08 +0100
committer	Christopher Baines <mail@cbaines.net>	2018-07-05 11:42:08 +0100
commit	0b2df284100db9c03dcdc290f99091f199fb5eef (patch)
tree	40671c319b62bc3e715bf5aa844a582d688e521f /terraform/aws
parent	f6d74559eafa515bdef2afbf547b95a7ff751daf (diff)
download	govuk-mini-environment-admin-0b2df284100db9c03dcdc290f99091f199fb5eef.tar govuk-mini-environment-admin-0b2df284100db9c03dcdc290f99091f199fb5eef.tar.gz