|
|
@@ -24,13 +24,13 @@ resource "aws_instance" "instance" {
|
|
|
iam_instance_profile = "msoc-default-instance-profile"
|
|
|
associate_public_ip_address = false
|
|
|
vpc_security_group_ids = [data.aws_security_group.typical-host.id, aws_security_group.instance.id]
|
|
|
- subnet_id = var.public_subnets[count.index % 3]
|
|
|
+ subnet_id = element(var.private_subnets, count.index)
|
|
|
|
|
|
metadata_options {
|
|
|
http_endpoint = "enabled"
|
|
|
# checkov:skip=CKV_AWS_79:see tfsec explanation
|
|
|
# tfsec:ignore:aws-ec2-enforce-http-token-imds Saltstack doesn't use s3 sources appropriately; see https://github.com/saltstack/salt/issues/60668
|
|
|
- http_tokens = "optional"
|
|
|
+ http_tokens = "optional"
|
|
|
}
|
|
|
|
|
|
ami = local.ami_map[local.ami_selection]
|
Duane Waddle