From 47f38f1c71f492695c99ea7408a1176008dcce65 Mon Sep 17 00:00:00 2001
From: Stephen James <stephen.james4@digital.justice.gov.uk>
Date: Wed, 17 Jan 2024 15:11:20 +0000
Subject: [PATCH] Removed the vpc endpoint security from the rds bastion config

This was not required for the access to the endpoints.
---
 bastion-rds-admin.tf   | 2 +-
 bastion-rds-servers.tf | 2 +-
 2 files changed, 2 insertions(+), 2 deletions(-)

diff --git a/bastion-rds-admin.tf b/bastion-rds-admin.tf
index 1bab8d0c..3bc0b603 100644
--- a/bastion-rds-admin.tf
+++ b/bastion-rds-admin.tf
@@ -10,7 +10,7 @@ module "rds_admin_bastion" {
   vpc_id                      = module.admin_vpc.vpc.vpc_id
   vpc_cidr_block              = module.admin_vpc.vpc.vpc_cidr_block
   private_subnets             = module.admin_vpc.public_subnets
-  security_group_ids          = [module.admin.security_group_ids.admin_ecs, module.admin_vpc.endpoints_sg.id]
+  security_group_ids          = [module.admin.security_group_ids.admin_ecs]
   ami_name                    = "diso-devops/bastion/rds-admin/ubuntu-jammy-22.04-amd64-server-1.0.1"
   number_of_bastions          = 1
   assume_role                 = local.s3-mojo_file_transfer_assume_role_arn
diff --git a/bastion-rds-servers.tf b/bastion-rds-servers.tf
index 05d6525f..edacaad1 100644
--- a/bastion-rds-servers.tf
+++ b/bastion-rds-servers.tf
@@ -10,7 +10,7 @@ module "rds_servers_bastion" {
   vpc_id                      = module.servers_vpc.vpc.vpc_id
   vpc_cidr_block              = module.servers_vpc.vpc.vpc_cidr_block
   private_subnets             = module.servers_vpc.public_subnets
-  security_group_ids          = [module.dhcp.security_group_ids.dhcp_server, module.servers_vpc.endpoints_sg.id]
+  security_group_ids          = [module.dhcp.security_group_ids.dhcp_server]
   ami_name                    = "diso-devops/bastion/rds-admin/ubuntu-jammy-22.04-amd64-server-1.0.1"
   number_of_bastions          = 1
   assume_role                 = local.s3-mojo_file_transfer_assume_role_arn