fix: Handle out-of-band changes to default sec list. closes #98 (#99)

hyder · web-flow · commit 726fd2ff94bf · 2022-09-06T14:36:57.000+10:00
Signed-off-by: Ali Mukadam &lt;ali.mukadam@oracle.com&gt;
diff --git a/vcn_defaultresources.tf b/vcn_defaultresources.tf
@@ -8,6 +8,11 @@ resource "oci_core_default_security_list" "lockdown" {
   manage_default_resource_id = oci_core_vcn.vcn.default_security_list_id
 
   count = var.lockdown_default_seclist == true ? 1 : 0
+
+  lifecycle {
+    ignore_changes = [egress_security_rules, ingress_security_rules, defined_tags]
+  }
+
 }
 
 resource "oci_core_default_security_list" "restore_default" {
@@ -54,5 +59,9 @@ resource "oci_core_default_security_list" "restore_default" {
     }
   }
 
+  lifecycle {
+    ignore_changes = [egress_security_rules, ingress_security_rules, defined_tags]
+  }
+  
   count = var.lockdown_default_seclist == false ? 1 : 0
 }

Original file line number	Diff line number	Diff line change
`@@ -8,6 +8,11 @@ resource "oci_core_default_security_list" "lockdown" {`
`8`	`8`	`manage_default_resource_id = oci_core_vcn.vcn.default_security_list_id`
`9`	`9`
`10`	`10`	`count = var.lockdown_default_seclist == true ? 1 : 0`
	`11`	`+`
	`12`	`+ lifecycle {`
	`13`	`+ ignore_changes = [egress_security_rules, ingress_security_rules, defined_tags]`
	`14`	`+ }`
	`15`	`+`
`11`	`16`	`}`
`12`	`17`
`13`	`18`	`resource "oci_core_default_security_list" "restore_default" {`
`@@ -54,5 +59,9 @@ resource "oci_core_default_security_list" "restore_default" {`
`54`	`59`	`}`
`55`	`60`	`}`
`56`	`61`
	`62`	`+ lifecycle {`
	`63`	`+ ignore_changes = [egress_security_rules, ingress_security_rules, defined_tags]`
	`64`	`+ }`
	`65`	`+`
`57`	`66`	`count = var.lockdown_default_seclist == false ? 1 : 0`
`58`	`67`	`}`