From ebd27b67006c3f3d33de798079d2b97ce6e57077 Mon Sep 17 00:00:00 2001
From: Michael Sodan <michael.sodan@stackit.cloud>
Date: Mon, 2 Jun 2025 13:42:51 +0000
Subject: [PATCH] add security rule for ssh and change project for object
 storage

---
 01-network.tf        |  6 +++---
 05-server.tf         |  2 +-
 06-security-group.tf | 16 ++++++++++++++++
 07-object-storage.tf |  6 +++---
 4 files changed, 23 insertions(+), 7 deletions(-)

diff --git a/01-network.tf b/01-network.tf
index 879be65..b01a012 100644
--- a/01-network.tf
+++ b/01-network.tf
@@ -95,10 +95,10 @@ resource "stackit_network" "p3_lan_network1" {
 
 resource "stackit_network_interface" "p3_lan1" {
   project_id         = module.project.project_info["project3"].project_id
-  network_id         = stackit_network.p2_lan_network1.network_id
-  security           = true 
+  network_id         = stackit_network.p3_lan_network1.network_id
+  security           = false 
   name              = "P3LAN1"
-  security_group_ids = [ stackit_security_group.example.security_group_id ]
+  //security_group_ids = [ stackit_security_group.example.security_group_id ]
 }
 
 /* resource "stackit_network" "p2_wan_network1" {
diff --git a/05-server.tf b/05-server.tf
index 9d7248b..a9011cf 100644
--- a/05-server.tf
+++ b/05-server.tf
@@ -47,7 +47,7 @@ resource "stackit_server" "dev_server_p3" {
   name            = "server2"
   boot_volume = {
     source_type   = "volume"
-    source_id     = stackit_volume.example_vol.volume_id
+    source_id     = stackit_volume.example_vol_p3.volume_id
   }
   availability_zone = var.region_az1
   machine_type      = var.flavor
diff --git a/06-security-group.tf b/06-security-group.tf
index 0d77333..22958ff 100644
--- a/06-security-group.tf
+++ b/06-security-group.tf
@@ -33,3 +33,19 @@ resource "stackit_security_group_rule" "icmp_egress" {
   }
 }
 
+resource "stackit_security_group_rule" "ssh_ingress" {
+  security_group_id = stackit_security_group.example.security_group_id
+  project_id = module.project.project_info["project2"].project_id
+  direction         = "ingress"
+
+  protocol = {
+    name = "tcp"
+  }
+  port_range = {
+    max = 22
+    min = 22
+  }
+}
+
+
+
diff --git a/07-object-storage.tf b/07-object-storage.tf
index 80772f3..0e1c837 100644
--- a/07-object-storage.tf
+++ b/07-object-storage.tf
@@ -1,16 +1,16 @@
 resource "stackit_objectstorage_bucket" "example" {
-  project_id = module.project.project_info["project2"].project_id
+  project_id = module.project.project_info["project3"].project_id
   name       = "project-core-testbucket444"
 }
 
 resource "stackit_objectstorage_credentials_group" "example" {
-  project_id = module.project.project_info["project2"].project_id
+  project_id = module.project.project_info["project3"].project_id
   name       = "example-credentials-group"
   depends_on =  [ stackit_objectstorage_bucket.example ]
 }
 
 resource "stackit_objectstorage_credential" "example" {
-  project_id           = module.project.project_info["project2"].project_id
+  project_id           = module.project.project_info["project3"].project_id
   credentials_group_id = stackit_objectstorage_credentials_group.example.credentials_group_id
   expiration_timestamp = "2027-01-02T03:04:05Z"
   depends_on = [ stackit_objectstorage_credentials_group.example ]