From 066de2e160da4cb30f9ce62754c7b57c9c68966f Mon Sep 17 00:00:00 2001
From: Antoine Hedgecock <antoine.hedgecock@gmail.com>
Date: Fri, 22 Oct 2021 13:29:43 +0200
Subject: [PATCH 1/2] Allow configuring the metadata options

---
 modules/nomad-cluster/main.tf      |  6 ++++++
 modules/nomad-cluster/variables.tf | 18 ++++++++++++++++++
 2 files changed, 24 insertions(+)

diff --git a/modules/nomad-cluster/main.tf b/modules/nomad-cluster/main.tf
index 73ba8cf..6d9888e 100644
--- a/modules/nomad-cluster/main.tf
+++ b/modules/nomad-cluster/main.tf
@@ -93,6 +93,12 @@ resource "aws_launch_configuration" "launch_configuration" {
     delete_on_termination = var.root_volume_delete_on_termination
   }
 
+  metadata_options {
+    http_endpoint = var.launch_configuration_metadata_endpoint ? "enabled": "disabled"
+    http_put_response_hop_limit = var.launch_configuration_metadata_response_hop_limit
+    http_tokens = var.launch_configuration_metadata_http_tokens
+  }
+
   dynamic "ebs_block_device" {
     for_each = var.ebs_block_devices
 
diff --git a/modules/nomad-cluster/variables.tf b/modules/nomad-cluster/variables.tf
index fc334a1..4c1e187 100644
--- a/modules/nomad-cluster/variables.tf
+++ b/modules/nomad-cluster/variables.tf
@@ -239,3 +239,21 @@ variable "iam_permissions_boundary" {
   type        = string
   default     = null
 }
+
+variable "launch_configuration_metadata_http_tokens" {
+  default = "optional"
+  validation {
+    condition = var.launch_configuration_metadata_http_tokens != "optional" && var.launch_configuration_metadata_http_tokens != "required"
+    error_message = "The supported values for launch_configuration_metadata_http_tokens are either optional or required."
+  }
+}
+
+variable "launch_configuration_metadata_response_hop_limit" {
+  default = 1
+  type = number
+}
+
+variable "launch_configuration_metadata_endpoint" {
+  default = true
+  type = bool
+}
\ No newline at end of file

From 2b4a3d16becf27bc3aba6ae7c4fcdce2c3ea9a2a Mon Sep 17 00:00:00 2001
From: Antoine Hedgecock <antoine.hedgecock@gmail.com>
Date: Fri, 22 Oct 2021 13:38:56 +0200
Subject: [PATCH 2/2] Condition expects the returned value to be true for a
 valid value

---
 modules/nomad-cluster/variables.tf | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/modules/nomad-cluster/variables.tf b/modules/nomad-cluster/variables.tf
index 4c1e187..366c315 100644
--- a/modules/nomad-cluster/variables.tf
+++ b/modules/nomad-cluster/variables.tf
@@ -243,7 +243,7 @@ variable "iam_permissions_boundary" {
 variable "launch_configuration_metadata_http_tokens" {
   default = "optional"
   validation {
-    condition = var.launch_configuration_metadata_http_tokens != "optional" && var.launch_configuration_metadata_http_tokens != "required"
+    condition = var.launch_configuration_metadata_http_tokens == "optional" || var.launch_configuration_metadata_http_tokens == "required"
     error_message = "The supported values for launch_configuration_metadata_http_tokens are either optional or required."
   }
 }