variable "excluded_rules_AWSManagedRulesCommonRuleSet" {
  type = list(string)
  default = [
    "SizeRestrictions_BODY"  # Breaks too many things
  ]
}

variable "excluded_rules_AWSManagedRulesAmazonIpReputationList" {
  type = list(string)
  default = [ ]
}

variable "excluded_rules_AWSManagedRulesKnownBadInputsRuleSet" {
  type = list(string)
  default = [ ]
}

variable "excluded_rules_AWSManagedRulesSQLiRuleSet" {
  type = list(string)
  default = [ ]
}

variable "excluded_rules_AWSManagedRulesLinuxRuleSet" {
  type = list(string)
  default = [ ]
}

variable "excluded_rules_AWSManagedRulesUnixRuleSet" {
  type = list(string)
  default = [ ]
}

variable "additional_blocked_ips" { 
  description = "IP addresses that are blocked, in addition to the defaults."
  type = list(string) 
  default = [ ]
}
variable "allowed_ips" {
  description = "IP Addresses that are always allowed"
  type = list(string) 
  default = [ ]
}
variable "admin_ips" { 
  description = "IP Addressed that are allowed to the admin interface"
  type = list(string)
  default = [ ]
}
variable "resource_arn" { type = string }
variable "fqdns" { type = list(string) }

variable "tags" { type = map }
variable "aws_partition" { type = string }
variable "aws_region" { type = string }
variable "aws_account_id" { type = string }