Skip to content

feat(aapasm): multi-policy support for templates#55

Open
spratap-seca wants to merge 6 commits into
integrationfrom
feat/multi-policy-support
Open

feat(aapasm): multi-policy support for templates#55
spratap-seca wants to merge 6 commits into
integrationfrom
feat/multi-policy-support

Conversation

@spratap-seca

Copy link
Copy Markdown
Collaborator

Rewritten templates to support N security policies per configuration using policy_defaults + policies map pattern.

spratap and others added 6 commits June 26, 2026 20:06
BREAKING CHANGE: Replaced single-policy variables with policy_defaults + policies map. Module sources now reference security-config and security-policy modules.
- Add ASN Block List to client-lists module with matching output, and
  wire asn_controls (deny) into the security-policy IP/Geo firewall
- Remove the Reputation Bypass List and the NetworkListCondition bypass
  blocks from all 16 reputation profiles
- Reference reputation profile actions via the reputation protection
  resource so actions are only applied after the protection is enabled
- Expose config_name output from security-config for by-name lookups
- Bump akamai provider to ~> 10.1 across all modules

@jaescalo jaescalo left a comment

Copy link
Copy Markdown
Collaborator

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

All changes approved.

Comment thread aap-asm/security-config/main.tf
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

None yet

Development

Successfully merging this pull request may close these issues.

2 participants