amazon-web-services - 如何在 terraform 资源中的 zipmap 和列表上创建嵌套的 for 循环
问题描述
我有 2 个 zipmap,我想通过嵌套的 for-loop 循环,即一个内循环和一个外循环。
这Python将非常容易,例如:
for i in list_1:
for j in list_2:
# do sth.
print(i, j)
1) 我的zipmap的定义
zipmap 1:“masked_cidr_blocks_zipmap”
dms_ip_addresses = data.dns_a_record_set.input_dms.addrs
cidr_blocks = [for idx in range(length(dms_ip_addresses)) : join("", [dms_ip_addresses[idx], "/16"])]
masked_cidr_blocks_zipmap = zipmap(range(length(cidr_blocks)),
[for idx in range(length(cidr_blocks)) : cidrsubnet(cidr_blocks[idx], 0, 0)])
根据zipmap docs,zipmap 的结构类似于zipmap(keyslist, valueslist),例如(发明值):
> zipmap(["0", "1"], ["199.99.0.0/16", "199.97.0.0/16"])
{
"0" = "199.99.0.0/16",
"1" = "199.97.0.0/16",
}
zipmap 2:“network_acls”
network_acls = zipmap(range(length(data.aws_network_acls.main.ids)),
data.aws_network_acls.main.ids)
这种情况下的一个例子可能是(发明值):
> zipmap(["0", "1"], ["acl-328ufjf2j3923rjf22", "acl-23489289jf23rf232r"])
{
"0" = "acl-328ufjf2j3923rjf22",
"1" = "acl-23489289jf23rf232r",
}
2)意图创建嵌套的for循环
请注意,以下是伪代码terraform,在(不幸的是)中不起作用:
resource "aws_network_acl_rule" "dms_control_port" {
for_each = local.network_acls # outer for-loop
for_each = local.masked_cidr_blocks_zipmap # inner for-loop
network_acl_id = each_outer.value
rule_number = 415 + each_inner.key
egress = false
protocol = "tcp"
rule_action = "allow"
cidr_block = each_inner.value
from_port = 443
to_port = 443
}
如何在我的资源“aws_network_acl_rule”“dms_control_port”中实现这种嵌套循环行为,以使用外部或内部循环值填充不同的参数?
解决方案
您正在for_each通过展平数据集来模拟双精度。所以对于你的例子:
locals {
network_acls = {
"0" = "acl-328ufjf2j3923rjf22",
"1" = "acl-23489289jf23rf232r",
}
masked_cidr_blocks_zipmap = {
"0" = "199.99.0.0/16",
"1" = "199.97.0.0/16",
}
# flatten data structure
acls_cidr = merge([
for ni,acl in local.network_acls:
{
for maskedi,cidr in local.masked_cidr_blocks_zipmap:
"${ni}-${maskedi}" => {
"ni" = ni
"maskedi" = maskedi
"acl" = acl
"cidr" = cidr
}
}
]...)
}
给出:
{
"0-0" = {
"acl" = "acl-328ufjf2j3923rjf22"
"cidr" = "199.99.0.0/16"
"maskedi" = "0"
"ni" = "0"
}
"0-1" = {
"acl" = "acl-328ufjf2j3923rjf22"
"cidr" = "199.97.0.0/16"
"maskedi" = "1"
"ni" = "0"
}
"1-0" = {
"acl" = "acl-23489289jf23rf232r"
"cidr" = "199.99.0.0/16"
"maskedi" = "0"
"ni" = "1"
}
"1-1" = {
"acl" = "acl-23489289jf23rf232r"
"cidr" = "199.97.0.0/16"
"maskedi" = "1"
"ni" = "1"
}
}
然后您只需使用一个( for_each仅在下面的示例 - 我不知道您的设置中哪个变量是哪个):
resource "aws_network_acl_rule" "dms_control_port" {
for_each = local.acls_cidr
network_acl_id = each.value.ni
rule_number = 415 + each.value.maskedi
egress = false
protocol = "tcp"
rule_action = "allow"
cidr_block = each.value.cidr
from_port = 443
to_port = 443
}
推荐阅读
- mysql - 如何在 MySQL 中为 SET 类型设置超过 1 个默认值?
- blazor - Mat Blazor mat-expansion-panel 移除高程/边框
- ruby - 对使用 reduce 及其实际尝试做的事情感到困惑
- java - 再次点击按钮以确认操作
- c# - 如何向 API 提交包含 536000 个字符的字符串
- python - 使用 tkinter 包几何管理器的帧之间的空间
- c# - 抓取时如何获取Leap Motion的计算变换数据
- sql - sql存储过程,concat字符串表名和参数值
- karate - 如何匹配响应 X 或 Y?
- angular - 将 rxjs SwitchMap 与 Async FormControl Validator 一起使用