added ability to pass in security groups for lambda

bknutson123 · bknutson123 · commit 492e71fa6714 · 2020-01-24T15:27:23.000-07:00
diff --git a/main.tf b/main.tf
@@ -216,8 +216,9 @@ resource aws_lambda_function "lambda" {
   runtime = var.runtime
   timeout = var.timeout
   vpc_config {
-    security_group_ids = [
-      aws_security_group.vpc_sec.id]
+    security_group_ids = concat([
+      aws_security_group.vpc_sec.id,
+    ], var.lambda-security-group-ids)
     subnet_ids = module.acs.private_subnet_ids
   }
   environment {
diff --git a/variables.tf b/variables.tf
@@ -87,3 +87,8 @@ variable "root-resource-authorization" {
 variable "swagger-path" {
   type = string
 }
+
+variable "lambda-security-group-ids" {
+  type = list(string)
+  default = []
+}

Original file line number	Diff line number	Diff line change
`@@ -87,3 +87,8 @@ variable "root-resource-authorization" {`
`87`	`87`	`variable "swagger-path" {`
`88`	`88`	`type = string`
`89`	`89`	`}`
	`90`	`+`
	`91`	`+variable "lambda-security-group-ids" {`
	`92`	`+ type = list(string)`
	`93`	`+ default = []`
	`94`	`+}`