From c6907edf8c687e3736baa829d26ccaf799367e01 Mon Sep 17 00:00:00 2001
From: nitrocode <7775707+nitrocode@users.noreply.github.com>
Date: Wed, 10 Aug 2022 12:36:17 -0500
Subject: [PATCH] Use sg ids argument, rm deprecated input

---
 main.tf | 10 +++++-----
 1 file changed, 5 insertions(+), 5 deletions(-)

diff --git a/main.tf b/main.tf
index 80cf130..ef63888 100644
--- a/main.tf
+++ b/main.tf
@@ -175,6 +175,11 @@ resource "aws_ec2_client_vpn_endpoint" "default" {
 
   session_timeout_hours = var.session_timeout_hours
 
+  security_group_ids = compact(concat(
+    [module.vpn_security_group.id],
+    local.associated_security_group_ids
+  ))
+
   tags = module.this.tags
 
   depends_on = [
@@ -224,11 +229,6 @@ resource "aws_ec2_client_vpn_network_association" "default" {
 
   client_vpn_endpoint_id = join("", aws_ec2_client_vpn_endpoint.default.*.id)
   subnet_id              = var.associated_subnets[count.index]
-
-  security_groups = compact(concat(
-    [module.vpn_security_group.id],
-    local.associated_security_group_ids
-  ))
 }
 
 resource "aws_ec2_client_vpn_authorization_rule" "default" {