fix: Updated s3 block http policy condition (#58)

13archit · web-flow · commit 9b20dbb8dd56 · 2023-07-31T19:28:59.000+02:00
diff --git a/main.tf b/main.tf
@@ -258,7 +258,7 @@ resource "aws_s3_bucket_server_side_encryption_configuration" "example" {
 }
 
 resource "aws_s3_bucket_policy" "block-http" {
-  count  = var.block_http_traffic ? 1 : 0
+  count  = var.enable && var.enable_flow_log && var.flow_log_destination_arn == null && var.flow_log_destination_type == "s3" && var.block_http_traffic ? 1 : 0
   bucket = aws_s3_bucket.mybucket[0].id
 
   policy = jsonencode({

Original file line number	Diff line number	Diff line change
`@@ -258,7 +258,7 @@ resource "aws_s3_bucket_server_side_encryption_configuration" "example" {`
`258`	`258`	`}`
`259`	`259`
`260`	`260`	`resource "aws_s3_bucket_policy" "block-http" {`
`261`		`- count = var.block_http_traffic ? 1 : 0`
	`261`	`+ count = var.enable && var.enable_flow_log && var.flow_log_destination_arn == null && var.flow_log_destination_type == "s3" && var.block_http_traffic ? 1 : 0`
`262`	`262`	`bucket = aws_s3_bucket.mybucket[0].id`
`263`	`263`
`264`	`264`	`policy = jsonencode({`