adding postgres firewall configuration

Author: kumarvna

examples/PostgreSQL_Server/main.tf

@@ -23,14 +23,14 @@ module "postgresql-db" {
     admin_username = "postgresadmin"
     admin_password = "H@Sh1CoR3!"
     # Database name, charset and collection arguments  
-    database_name = "demomy-postgres-db"
+    database_name = "demo-postgres-db"
     charset       = "UTF8"
     collation     = "English_United States.1252"
     # Storage Profile and other optional arguments
     auto_grow_enabled                = true
     backup_retention_days            = 7
     geo_redundant_backup_enabled     = true
-    public_network_access_enabled    = false
+    public_network_access_enabled    = true
     ssl_enforcement_enabled          = true
     ssl_minimal_tls_version_enforced = "TLS1_2"
   }
@@ -59,7 +59,7 @@ module "postgresql-db" {
   # (Optional) To enable Azure Monitoring for Azure MySQL database
   # (Optional) Specify `storage_account_name` to save monitoring logs to storage. 
   log_analytics_workspace_name = "loganalytics-we-sharedtest2"
-
+*/
   # Firewall Rules to allow azure and external clients and specific Ip address/ranges. 
   firewall_rules = {
     access-to-azure = {
@@ -71,7 +71,7 @@ module "postgresql-db" {
       end_ip_address   = "49.204.228.223"
     }
   }
-*/
+
   # Tags for Azure Resources
   tags = {
     Terraform   = "true"

main.tf

@@ -133,9 +133,20 @@ resource "azurerm_postgresql_database" "main" {
 #------------------------------------------------------------
 resource "azurerm_postgresql_configuration" "main" {
   for_each            = var.postgresql_configuration != null ? { for k, v in var.postgresql_configuration : k => v if v != null } : {}
-  name                = format("%s", each.key)
+  name                = each.key
   resource_group_name = local.resource_group_name
   server_name         = azurerm_postgresql_server.main.name
   value               = each.value
 }
 
+#------------------------------------------------------------
+# Adding Firewall rules for MySQL Server - Default is "false"
+#------------------------------------------------------------
+resource "azurerm_postgresql_firewall_rule" "main" {
+  for_each            = var.firewall_rules != null ? { for k, v in var.firewall_rules : k => v if v != null } : {}
+  name                = format("%s", each.key)
+  resource_group_name = local.resource_group_name
+  server_name         = azurerm_postgresql_server.main.name
+  start_ip_address    = each.value["start_ip_address"]
+  end_ip_address      = each.value["end_ip_address"]
+}

variables.tf

@@ -115,6 +115,15 @@ variable "postgresql_configuration" {
   default     = {}
 }
 
+variable "firewall_rules" {
+  description = "Range of IP addresses to allow firewall connections."
+  type = map(object({
+    start_ip_address = string
+    end_ip_address   = string
+  }))
+  default = null
+}
+
 variable "tags" {
   description = "A map of tags to add to all resources"
   type        = map(string)