如何在 terraform 中为 azurerm_subnet 添加子网委托块?
问题描述 投票:0回答:1
我正在尝试使用 Terraform 为现有子网添加子网委托。我没有子网列表,因此实际上不需要迭代。但它应该取决于enable_delegation的布尔值。如果enable_delegation设置为true,terraform plan应该提示subnet_delegation的名称和操作分别作为两个输入。如果enable_delegation设置为false,它应该跳过并继续执行计划。
main.tf:
resource "azurerm_subnet" "subnet" {
name = local.subnet_name
resource_group_name = var.resource_group_name
virtual_network_name = var.virtual_network_name
address_prefixes = [local.subnet_address_prefixes]
dynamic "subnet_delegation" {
for_each = var.enable_delegation ? [1] : []
content {
name = var.subnet_delegation.name
actions = var.subnet_delegation.actions
}
}
private_endpoint_network_policies_enabled = var.private_endpoint_network_policies_enabled
private_link_service_network_policies_enabled = var.private_link_service_network_policies_enabled
}
变量.tf:
variable "subnet_delegation" {
type = object({
name = string
actions = list(string)
})
default = {
"name" = "Microsoft.ContainerInstance/containerGroups"
"actions" = ["Microsoft.Network/virtualNetworks/subnets/join/action",
"Microsoft.Network/virtualNetworks/subnets/prepareNetworkPolicies/action",
"Microsoft.Network/virtualNetworks/subnets/unprepareNetworkPolicies/action"]
}
}
variable "enable_delegation" {
type = bool
}
我尝试的另一种方法是:
dynamic "delegation" {
for_each = var.subnet_delegations != null ? true : false
content {
name = each.value["name"]
service_delegation {
name = each.value["name"]
actions = each.value["actions"]
}
}
}
错误:
│错误:不支持的块类型 │ │ 在 main.tf 第 15 行,资源“azurerm_subnet”“subnet”中: │ 15: 动态“subnet_delegation”{ │ │ 这里不需要“subnet_delegation”类型的块。
这也不起作用。
如有任何线索,我们将不胜感激。谢谢您的帮助。
1个回答
0
投票
投票
我尝试使用 Terraform 为 azurerm_subnet 添加子网委托块,并且能够成功配置要求。
您遇到的错误可能是由于
dynamicazurerm_subnetsubnet_delegation将
dynamicenable_delegationenable_delegationtruedelegation我的 Terraform 配置:
main.tf:
provider "azurerm" {
features {}
}
resource "azurerm_resource_group" "example" {
name = var.resource_group_name
location = "East US"
}
resource "azurerm_virtual_network" "example" {
name = var.virtual_network_name
address_space = ["10.0.0.0/16"]
resource_group_name = azurerm_resource_group.example.name
location = azurerm_resource_group.example.location
}
resource "azurerm_subnet" "subnet" {
name = var.subnet_name
resource_group_name = azurerm_resource_group.example.name
virtual_network_name = azurerm_virtual_network.example.name
address_prefixes = var.subnet_address_prefixes
dynamic "delegation" {
for_each = var.enable_delegation ? [var.subnet_delegation] : []
content {
name = delegation.value.name
service_delegation {
name = delegation.value.name
actions = delegation.value.actions
}
}
}
}
变量.tf:
variable "resource_group_name" {
type = string
}
variable "virtual_network_name" {
type = string
}
variable "subnet_name" {
type = string
}
variable "subnet_address_prefixes" {
type = list(string)
}
variable "enable_delegation" {
type = bool
default = false
}
variable "subnet_delegation" {
type = object({
name = string
actions = list(string)
})
default = {
name = "Microsoft.ContainerInstance/containerGroups"
actions = [
"Microsoft.Network/virtualNetworks/subnets/join/action",
"Microsoft.Network/virtualNetworks/subnets/prepareNetworkPolicies/action",
"Microsoft.Network/virtualNetworks/subnets/unprepareNetworkPolicies/action"
]
}
}
terraform.tfvars:
resource_group_name = "demorg-vk"
virtual_network_name = "vkVNet"
subnet_name = "vkSubnet"
subnet_address_prefixes = ["10.0.1.0/24"]
enable_delegation = true
subnet_delegation = {
name = "Microsoft.ContainerInstance/containerGroups"
actions = [
"Microsoft.Network/virtualNetworks/subnets/join/action",
"Microsoft.Network/virtualNetworks/subnets/prepareNetworkPolicies/action",
"Microsoft.Network/virtualNetworks/subnets/unprepareNetworkPolicies/action"
]
}
输出:
最新问题
- JavaScript 页面重访
- 决策树分类器的底层 sklearn“熵”和“log_loss”标准有区别吗?
- Boost.Asio默认令牌支持导致自由函数调用不明确错误
- 在每个元素的基础上增加迭代器的大小/扩展和映射迭代器
- 通过匹配Twig中的键值获取特定数组元素
- 依次显示各种/随机加载消息
- 这两种类型的向量有什么区别(Julia)
- 获取意外参数:参数中发现意外的密钥“UploadId”,多部分 S3 预签名中出现错误
- 用ggplot2和grid画出最适合的线结束的箭头
- Angular 2+ 中悬停时列表的样式元素
- 通过“import”导入的所有内容都会获得类型,但 require() 不会
- **python3 osmWebWizard.py** 在 Ubuntu 22.04 中无法工作
- 如何使用mysql在codeigniter中计算总计
- MSD 算法输出产生“镜像”输出
- 在 Nuxt 3 中使用可组合项对组件进行 Vitest 单元测试
- Redshift:stv_inflight 和 stv_recents 显示相互矛盾的结果
- 在qmake项目中链接SRT库
- 如何统计嵌套列表中子列表的数量?
- vscode 可以使用 Properties/launchSettings.json 中的配置文件吗?
- 条件格式不起作用,而是格式化所有单元格
© www.soinside.com 2019 - 2024. All rights reserved.