Tips-Of-Mine/terraform-cloudflare-tunnel-zone-org
2
0
Fork 0
Code Issues 1 Pull Requests Actions Packages Projects Releases Wiki Activity

Update team_resources_devices.tf
Some checks failed
Terraform Apply / Terraform Apply (push) Failing after 55s
Details

Browse Source
This commit is contained in:
Hubert Cornet
2025-11-18 09:09:59 +01:00
parent a0acb4e729
commit 16ef3a0f26
1 changed files with 78 additions and 2 deletions
Download Patch File Download Diff File Expand all files Collapse all files

80
team_resources_devices.tf
View File

@@ -3,11 +3,11 @@
# ============================================================================= # =============================================================================
# #
resource "cloudflare_zero_trust_device_custom_profile" "example_zero_trust_device_custom_profile" { resource "cloudflare_zero_trust_device_custom_profile" "zero_trust_device_custom_profile_windows" {
account_id = local.cloudflare_account_id account_id = local.cloudflare_account_id
enabled = true enabled = true
name = "Allow Developers" name = "Allow devices Windows"
description = "Policy for test teams." description = "Policy for test teams."
precedence = 100 precedence = 100
# match = "identity.email == \"test@cloudflare.com\"" # match = "identity.email == \"test@cloudflare.com\""
@@ -26,6 +26,82 @@ resource "cloudflare_zero_trust_device_custom_profile" "example_zero_trust_devic
# include = [{ # include = [{
# address = "192.0.2.0/24" # address = "192.0.2.0/24"
# description = "Include testing domains in the tunnel" # description = "Include testing domains in the tunnel"
# }]
lan_allow_minutes = 30
lan_allow_subnet_size = 24
register_interface_ip_with_dns = true
sccm_vpn_boundary_support = false
service_mode_v2 = {
mode = "proxy"
port = 3000
}
support_url = "https://1.1.1.1/help"
switch_locked = true
tunnel_protocol = "wireguard"
}
#
resource "cloudflare_zero_trust_device_custom_profile" "zero_trust_device_custom_profile_linux" {
account_id = local.cloudflare_account_id
enabled = true
name = "Allow devices Linux"
description = "Policy for test teams."
precedence = 100
# match = "identity.email == \"test@cloudflare.com\""
match = "os.name == \"linux\""
allow_mode_switch = true
allow_updates = true
allowed_to_leave = true
auto_connect = 0
captive_portal = 180
disable_auto_fallback = true
# exclude = [{
# address = "192.0.2.0/24"
# description = "Exclude testing domains from the tunnel"
# }]
exclude_office_ips = true
# include = [{
# address = "192.0.2.0/24"
# description = "Include testing domains in the tunnel"
# }]
lan_allow_minutes = 30
lan_allow_subnet_size = 24
register_interface_ip_with_dns = true
sccm_vpn_boundary_support = false
service_mode_v2 = {
mode = "proxy"
port = 3000
}
support_url = "https://1.1.1.1/help"
switch_locked = true
tunnel_protocol = "wireguard"
}
#
resource "cloudflare_zero_trust_device_custom_profile" "zero_trust_device_custom_profile_mac" {
account_id = local.cloudflare_account_id
enabled = true
name = "Allow devices Mac"
description = "Policy for test teams."
precedence = 100
# match = "identity.email == \"test@cloudflare.com\""
match = "os.name == \"mac\""
allow_mode_switch = true
allow_updates = true
allowed_to_leave = true
auto_connect = 0
captive_portal = 180
disable_auto_fallback = true
# exclude = [{
# address = "192.0.2.0/24"
# description = "Exclude testing domains from the tunnel"
# }]
exclude_office_ips = true
# include = [{
# address = "192.0.2.0/24"
# description = "Include testing domains in the tunnel"
# }] # }]
lan_allow_minutes = 30 lan_allow_minutes = 30
lan_allow_subnet_size = 24 lan_allow_subnet_size = 24