Merge pull request #170 from tablexi/make-cors-backwards-compatible

Use dynamic to write cors rule optionally
tablexi · Nov 10, 2020 · 94c5d6b · 94c5d6b
2 parents a262f54 + 0b6dd9e
commit 94c5d6b
Show file tree

Hide file tree

Showing 2 changed files with 21 additions and 5 deletions.
diff --git a/aws/static_site/main.tf b/aws/static_site/main.tf
@@ -20,11 +20,16 @@ resource "aws_s3_bucket" "mod" {
     }
   )
 
-  cors_rule {
-    allowed_headers = ["*"]
-    allowed_methods = ["GET"]
-    allowed_origins = var.enable_cors_get ? ["*"] : []
-    max_age_seconds = 3000
+  dynamic "cors_rule" {
+    for_each = var.enable_cors_get ? var.cors_rule : []
+
+    content {
+      allowed_methods = cors_rule.value.allowed_methods
+      allowed_origins = cors_rule.value.allowed_origins
+      allowed_headers = lookup(cors_rule.value, "allowed_headers", null)
+      expose_headers  = lookup(cors_rule.value, "expose_headers", null)
+      max_age_seconds = lookup(cors_rule.value, "max_age_seconds", null)
+    }
   }
 
   website {

diff --git a/aws/static_site/variables.tf b/aws/static_site/variables.tf
@@ -25,3 +25,14 @@ variable "enable_cors_get" {
   type = bool
   default = false
 }
+
+variable "cors_rule" {
+  description = "List of maps containing rules for Cross-Origin Resource Sharing."
+  type        = any
+  default     = [{
+    allowed_headers = ["*"]
+    allowed_methods = ["GET"]
+    allowed_origins = ["*"]
+    max_age_seconds = 3000
+  }]
+}