feat: add cors rules for file share service (#221)

* feat(cors): add cors rules for file share * Update variables.tf Co-authored-by: Henrik Simonsen Knutsen <[email protected]> --------- Co-authored-by: Henrik Simonsen Knutsen <[email protected]>
equinor · Apr 8, 2024 · 608cc60 · 608cc60
1 parent 7801adc
commit 608cc60
Show file tree

Hide file tree

Showing 2 changed files with 27 additions and 0 deletions.
diff --git a/main.tf b/main.tf
@@ -94,6 +94,18 @@ resource "azurerm_storage_account" "this" {
       retention_policy {
         days = var.share_retention_policy_days
       }
+
+      dynamic "cors_rule" {
+        for_each = var.share_cors_rules
+
+        content {
+          allowed_headers    = cors_rule.value["allowed_headers"]
+          allowed_methods    = cors_rule.value["allowed_methods"]
+          allowed_origins    = cors_rule.value["allowed_origins"]
+          exposed_headers    = cors_rule.value["exposed_headers"]
+          max_age_in_seconds = cors_rule.value["max_age_in_seconds"]
+        }
+      }
     }
   }
 

diff --git a/variables.tf b/variables.tf
@@ -207,6 +207,21 @@ variable "share_retention_policy_days" {
   }
 }
 
+variable "share_cors_rules" {
+  description = "A list of CORS rules to configure for this File Storage."
+
+  type = list(object({
+    allowed_headers    = list(string)
+    allowed_methods    = list(string)
+    allowed_origins    = list(string)
+    exposed_headers    = list(string)
+    max_age_in_seconds = number
+  }))
+
+  default  = []
+  nullable = false
+}
+
 variable "system_assigned_identity_enabled" {
   description = "Should the system-assigned identity be enabled for this Web App?"
   type        = bool