Merge pull request #16 from Ajay-sops/main

RohitSquareops · web-flow · commit 35095527ca63 · 2023-10-12T13:49:25.000+05:30
Added vpn instance public ip in the secret manager of vpn
diff --git a/examples/complete-vpc-with-vpn/main.tf b/examples/complete-vpc-with-vpn/main.tf
@@ -1,6 +1,6 @@
 locals {
   name        = "vpc"
-  region      = "us-east-1"
+  region      = "ap-south-1"
   environment = "prod"
   additional_aws_tags = {
     Owner      = "Organization_Name"
@@ -25,7 +25,7 @@ module "vpc" {
   flow_log_enabled                                = false
   vpn_key_pair_name                               = module.key_pair_vpn.key_pair_name
   availability_zones                              = ["us-east-1a", "us-east-1b"]
-  vpn_server_enabled                              = false
+  vpn_server_enabled                              = true
   intra_subnet_enabled                            = true
   public_subnet_enabled                           = true
   auto_assign_public_ip                           = true
diff --git a/modules/vpn/main.tf b/modules/vpn/main.tf
@@ -194,7 +194,8 @@ resource "aws_ssm_document" "ssm_document" {
                "sleep 60",
                "PASSWORD=$(sudo pritunl default-password | grep password | awk '{ print $2 }' | tail -n1)",
                "sleep 60",
-               "aws secretsmanager create-secret --region ${data.aws_region.current.name} --name ${var.environment}-${var.name}-vpn --secret-string \"{\\\"user\\\": \\\"pritunl\\\", \\\"password\\\": $PASSWORD, \\\"setup-key\\\": \\\"$SETUPKEY\\\"}\""
+               "VPN_HOST=${aws_eip.vpn.public_ip}",
+               "aws secretsmanager create-secret --region ${data.aws_region.current.name} --name ${var.environment}-${var.name}-vpnp --secret-string \"{\\\"user\\\": \\\"pritunl\\\", \\\"password\\\": $PASSWORD, \\\"setup-key\\\": \\\"$SETUPKEY\\\", \\\"vpn_host\\\": \\\"$VPN_HOST\\\"}\""
             ]
          }
       }

Original file line number	Diff line number	Diff line change
`@@ -194,7 +194,8 @@ resource "aws_ssm_document" "ssm_document" {`
`194`	`194`	`"sleep 60",`
`195`	`195`	`"PASSWORD=$(sudo pritunl default-password \| grep password \| awk '{ print $2 }' \| tail -n1)",`
`196`	`196`	`"sleep 60",`
`197`		`- "aws secretsmanager create-secret --region ${data.aws_region.current.name} --name ${var.environment}-${var.name}-vpn --secret-string \"{\\\"user\\\": \\\"pritunl\\\", \\\"password\\\": $PASSWORD, \\\"setup-key\\\": \\\"$SETUPKEY\\\"}\""`
	`197`	`+ "VPN_HOST=${aws_eip.vpn.public_ip}",`
	`198`	`+ "aws secretsmanager create-secret --region ${data.aws_region.current.name} --name ${var.environment}-${var.name}-vpnp --secret-string \"{\\\"user\\\": \\\"pritunl\\\", \\\"password\\\": $PASSWORD, \\\"setup-key\\\": \\\"$SETUPKEY\\\", \\\"vpn_host\\\": \\\"$VPN_HOST\\\"}\""`
`198`	`199`	`]`
`199`	`200`	`}`
`200`	`201`	`}`