feat: added waf association (#34)

* feat: added waf association * fix: indentation Co-authored-by: David <[email protected]>
cn-terraform · Aug 22, 2022 · b63c35e · b63c35e
1 parent c8413a1
commit b63c35e
Show file tree

Hide file tree

Showing 2 changed files with 12 additions and 0 deletions.
diff --git a/main.tf b/main.tf
@@ -62,6 +62,12 @@ resource "aws_lb" "lb" {
   )
 }
 
+resource "aws_wafv2_web_acl_association" "waf_association" {
+  count        = var.waf_web_acl_arn != "" ? 1 : 0
+  resource_arn = aws_lb.lb.arn
+  web_acl_arn  = var.waf_web_acl_arn
+}
+
 #------------------------------------------------------------------------------
 # ACCESS CONTROL TO APPLICATION LOAD BALANCER
 #------------------------------------------------------------------------------

diff --git a/variables.tf b/variables.tf
@@ -118,6 +118,12 @@ variable "ip_address_type" {
   default     = "ipv4"
 }
 
+variable "waf_web_acl_arn" {
+  description = "if you want to associate ALB with WAFV2"
+  type        = string
+  default     = ""
+}
+
 #------------------------------------------------------------------------------
 # ACCESS CONTROL TO APPLICATION LOAD BALANCER
 #------------------------------------------------------------------------------