From d94774090216c14f85ffa379f98cbfc7028a6463 Mon Sep 17 00:00:00 2001 From: Hubert Cornet Date: Wed, 19 Nov 2025 14:56:20 +0100 Subject: [PATCH] Update Traffic_Policies-Firewall_Policies-HTTP.tf --- Traffic_Policies-Firewall_Policies-HTTP.tf | 10 +++++----- 1 file changed, 5 insertions(+), 5 deletions(-) diff --git a/Traffic_Policies-Firewall_Policies-HTTP.tf b/Traffic_Policies-Firewall_Policies-HTTP.tf index 224fb41..02097f5 100644 --- a/Traffic_Policies-Firewall_Policies-HTTP.tf +++ b/Traffic_Policies-Firewall_Policies-HTTP.tf @@ -6,7 +6,7 @@ # Local Variables #========================================================== locals { - precedence = { + precedence_http = { # HTTP (L7) Policies - AI Application Governance ai_tools_redirect = 24000 # Redirect unreviewed AI tools to Claude chatgpt_allow_log = 24100 # Allow ChatGPT with prompt logging @@ -28,7 +28,7 @@ locals { # Organized by policy type: then HTTP (L7) policies # Following Cloudflare best practices with 1000-spacing between major groups # Integrates with dashboard-managed policies at precedence: 1000-3000, 5000-20000, 36000-40000 - gateway_policies = { + gateway_policies_http = { #========================================================== # HTTP (L7) POLICIES # Application/Content-based filtering @@ -94,15 +94,15 @@ locals { #========================================================== # Gateway Policies #========================================================== -resource "cloudflare_zero_trust_gateway_policy" "policies" { - for_each = local.gateway_policies +resource "cloudflare_zero_trust_gateway_policy" "policies_http" { + for_each = local.gateway_policies_http account_id = local.cloudflare_account_id name = each.value.name description = each.value.description enabled = each.value.enabled action = each.value.action - precedence = each.value.precedence + precedence = each.value.precedence_http filters = each.value.filters traffic = each.value.traffic