forked from GuyBarros/terraform-com-showcase-pipeline
-
Notifications
You must be signed in to change notification settings - Fork 0
/
Copy pathconsul.tf
59 lines (51 loc) · 1.11 KB
/
consul.tf
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
resource "consul_namespace" "dev" {
name = var.application_name
description = "Shared development environment."
}
resource "consul_intention" "deny" {
source_name = "*"
destination_name = "*"
action = "deny"
}
resource "consul_intention" "app" {
source_name = var.application_name
destination_name = "mongodb"
action = "allow"
}
resource "consul_intention" "fabio" {
source_name = "fabio"
destination_name = "*"
action = "allow"
}
/*
resource "consul_acl_policy" "app" {
name = "${var.application_name}_policy"
rules = <<-RULE
node_prefix "" {
policy = "read"
}
RULE
}
*/
/*
resource "consul_config_entry" "service_intentions" {
name = "api-service"
kind = "service-intentions"
config_json = jsonencode({
Sources = [
{
Action = "allow"
Name = "frontend-webapp"
Precedence = 9
Type = "consul"
},
{
Action = "allow"
Name = "nightly-cronjob"
Precedence = 9
Type = "consul"
}
]
})
}
*/