added attach_network_policy as variable

jmonte-sph · jmonte-sph · commit 708aca0b3406 · 2023-04-13T13:38:43.000+08:00
diff --git a/README.md b/README.md
@@ -46,6 +46,7 @@ Terraform module for creating the lambda and the github actions IAM Role deploye
 | <a name="input_additional_lambda_policy_statements"></a> [additional\_lambda\_policy\_statements](#input\_additional\_lambda\_policy\_statements) | Additional Inline Lambda Policy Statements | `any` | `{}` | no |
 | <a name="input_allowed_triggers"></a> [allowed\_triggers](#input\_allowed\_triggers) | Map of allowed triggers to create Lambda permissions | `map(any)` | `{}` | no |
 | <a name="input_app_metadata"></a> [app\_metadata](#input\_app\_metadata) | Application component prefix, name used to generate resource names | <pre>object({<br>    prefix = string<br>    name   = string<br>    env    = string<br>  })</pre> | n/a | yes |
+| <a name="input_attach_network_policy"></a> [attach\_network\_policy](#input\_attach\_network\_policy) | Flag to attach network policy to use VPC subnet and security group | `bool` | `true` | no |
 | <a name="input_authorization_type"></a> [authorization\_type](#input\_authorization\_type) | The type of authentication that the Lambda Function URL uses. Set to 'AWS\_IAM' to restrict access to authenticated IAM users only. Set to 'NONE' to bypass IAM authentication and create a public endpoint. | `string` | `"AWS_IAM"` | no |
 | <a name="input_cors"></a> [cors](#input\_cors) | CORS settings to be used by the Lambda Function URL | `any` | `{}` | no |
 | <a name="input_create_gha_deployer"></a> [create\_gha\_deployer](#input\_create\_gha\_deployer) | Flag for creating Github Actions Deployer deployer | `bool` | `true` | no |
diff --git a/main.tf b/main.tf
@@ -32,5 +32,5 @@ module "lambda" {
 
   vpc_subnet_ids         = var.vpc_subnet_ids
   vpc_security_group_ids = var.vpc_security_group_ids
-  attach_network_policy  = true
+  attach_network_policy  = var.attach_network_policy
 }
diff --git a/variables.tf b/variables.tf
@@ -119,3 +119,9 @@ variable "vpc_security_group_ids" {
   description = "Listof Security Groups"
   type        = list(string)
 }
+
+variable "attach_network_policy" {
+  description = "Flag to attach network policy to use VPC subnet and security group"
+  type        = bool
+  default     = true
+}

Original file line number	Diff line number	Diff line change
`@@ -32,5 +32,5 @@ module "lambda" {`
`32`	`32`
`33`	`33`	`vpc_subnet_ids = var.vpc_subnet_ids`
`34`	`34`	`vpc_security_group_ids = var.vpc_security_group_ids`
`35`		`- attach_network_policy = true`
	`35`	`+ attach_network_policy = var.attach_network_policy`
`36`	`36`	`}`