finailise

README.md

@@ -23,3 +23,9 @@ This module creates the following cloudflare WAF managed ruleset:
     (Higher paranoia levels activate more aggressive rules)
  - OWASP Action (Required)
    - Managed Challenge
+
+### IMPORTANT
+
+  - Order of the rules under the ruleset will set the priority/order
+
+  - Any existing managed rules need to be deleted in the dashboard and recreated in terraform

main.tf

@@ -8,15 +8,6 @@ data "cloudflare_zones" "zones" {
   }
 }
 
-#resource "cloudflare_ruleset" "zone_level_managed_ruleset" {
-#  count = length(var.domains)
-#
-#  zone_id = lookup(data.cloudflare_zones.zones[count.index].zones[0], "id")
-#  name    = "Cloudflare Managed Ruleset"
-#  kind    = "managed"
-#  phase   = "http_request_firewall_managed"
-#}
-
 resource "cloudflare_ruleset" "zone_level_managed_waf" {
   count = length(var.domains)
 

variables.tf

@@ -3,30 +3,3 @@ variable "domains" {
   description = "Cloudflare Domain to be applied to"
   default     = []
 }
-
-#variable "cloudflare_managed_ruleset" {
-#  type = object({
-#    enabled    = bool
-#    expression = string
-#    # override    = bool
-#  })
-#  default = {
-#    enabled    = true
-#    expression = ""
-#    # override    = false
-#  }
-#}
-#
-#variable "cloudflare_owasp_core_ruleset" {
-#  type = object({
-#    enabled    = bool
-#    expression = string
-#    # override    = bool
-#  })
-#  default = {
-#    enabled    = true
-#    expression = ""
-#    # override    = false
-#  }
-#
-#}