-
Notifications
You must be signed in to change notification settings - Fork 101
/
Copy pathuser-group.tf
32 lines (27 loc) · 1.24 KB
/
user-group.tf
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
resource "aws_cognito_user_group" "main" {
count = var.enabled ? length(local.groups) : 0
name = lookup(element(local.groups, count.index), "name")
description = lookup(element(local.groups, count.index), "description")
precedence = lookup(element(local.groups, count.index), "precedence")
role_arn = lookup(element(local.groups, count.index), "role_arn")
user_pool_id = aws_cognito_user_pool.pool[0].id
}
locals {
groups_default = [
{
name = var.user_group_name
description = var.user_group_description
precedence = var.user_group_precedence
role_arn = var.user_group_role_arn
}
]
# This parses var.user_groups which is a list of objects (map), and transforms it to a tuple of elements to avoid conflict with the ternary and local.groups_default
groups_parsed = [for e in var.user_groups : {
name = lookup(e, "name", null)
description = lookup(e, "description", null)
precedence = lookup(e, "precedence", null)
role_arn = lookup(e, "role_arn", null)
}
]
groups = length(var.user_groups) == 0 && (var.user_group_name == null || var.user_group_name == "") ? [] : (length(var.user_groups) > 0 ? local.groups_parsed : local.groups_default)
}