Merge pull request #11 from asicsdigital/casper-feature-access-logs-tf12

Enabled bool for access logging - Terraform 12
FitnessKeeper · Nov 8, 2019 · f8af50f · f8af50f
2 parents a7f9a2f + c8fbdcc
commit f8af50f
Show file tree

Hide file tree

Showing 4 changed files with 9 additions and 4 deletions.
diff --git a/.circleci/config.yml b/.circleci/config.yml
@@ -3,7 +3,7 @@ version: 2
 jobs:
   build:
     docker:
-      - image: hashicorp/terraform:0.11.8
+      - image: hashicorp/terraform:0.12.9
         entrypoint: /bin/sh
     steps:
       - checkout

diff --git a/.gitignore b/.gitignore
@@ -0,0 +1,2 @@
+.env*
+.terraform*
diff --git a/alb.tf b/alb.tf
@@ -20,8 +20,9 @@ resource "aws_alb" "vault" {
   }
 
   access_logs {
-    bucket = var.alb_log_bucket
-    prefix = "logs/elb/${local.vpc_name}/vault"
+    enabled = var.access_logs_enabled
+    bucket  = var.alb_log_bucket
+    prefix  = "logs/elb/${local.vpc_name}/vault"
   }
 }
 
@@ -88,4 +89,3 @@ resource "aws_alb_listener" "vault_http" {
     type             = "forward"
   }
 }
-
diff --git a/variables.tf b/variables.tf
@@ -80,3 +80,6 @@ variable "initialize" {
   description = "Runs a `vault operator init` command to initialize the Vault backend.  Run this once and then extract the unseal keys from the ECS task's logs."
 }
 
+variable "access_logs_enabled" {
+  default = true
+}