Skip to content

Commit

Permalink
add federate option in vpn
Browse files Browse the repository at this point in the history
  • Loading branch information
@anmolnagpal
anmolnagpal committed Oct 6, 2022
1 parent 1a56599 commit 321e584
Show file tree
Hide file tree
Showing 2 changed files with 21 additions and 1 deletion.
4 changes: 3 additions & 1 deletion main.tf
View file
Original file line number Diff line number Diff line change
Expand Up @@ -131,7 +131,9 @@ resource "aws_ec2_client_vpn_endpoint" "default" {
client_cidr_block = var.cidr_block

authentication_options {
type = "certificate-authentication"
type = var.type
saml_provider_arn = var.saml_arn
self_service_saml_provider_arn = var.self_saml_arn
root_certificate_chain_arn = join("", aws_acm_certificate.root.*.arn)
}

Expand Down
18 changes: 18 additions & 0 deletions variables.tf
View file
Original file line number Diff line number Diff line change
Expand Up @@ -86,4 +86,22 @@ variable "network_cidr" {
type = list(any)
default = []
description = "Client Network CIDR"
}

variable "type" {
type = string
default = "certificate-authentication"
description = "The type of client authentication to be used. "
}

variable "saml_arn" {
type = string
default = ""
description = "The ARN of the IAM SAML identity provider. "
}

variable "self_saml_arn" {
type = string
default = ""
description = "The ARN of the IAM SAML identity provider for the self service portal. "
}

0 comments on commit 321e584

Please sign in to comment.