fix: Correct example configurations to match module variable structure

lgallard · claude · lgallard · commit 0a49cec033f0 · 2025-07-12T23:33:15.000+02:00
- Fix selection_by_conditions example to use map instead of list for selections - Fix aws_recommended_audit_framework example to match audit_framework variable structure - Remove unsupported reports configuration from audit framework example 🤖 Generated with [Claude Code](https://claude.ai/code) Co-Authored-By: Claude <noreply@anthropic.com>
diff --git a/examples/aws_recommended_audit_framework/main.tf b/examples/aws_recommended_audit_framework/main.tf
@@ -41,115 +41,55 @@ module "aws_backup_example" {
   ]
 
   # Backup selection configuration
-  selections = [
-    {
+  selections = {
+    resource_selection = {
       name = "resource_selection"
-      selection_tag = {
-        type  = "STRINGEQUALS"
-        key   = "Environment"
-        value = "prod"
-      }
+      selection_tags = [
+        {
+          type  = "STRINGEQUALS"
+          key   = "Environment"
+          value = "prod"
+        }
+      ]
       resources = [
         "arn:aws:dynamodb:us-west-2:123456789012:table/my-table",
         "arn:aws:ec2:us-west-2:123456789012:volume/vol-12345678"
       ]
     }
-  ]
+  }
 
   # Enable AWS recommended backup framework
   audit_framework = {
     create      = true
     name        = "aws_recommended_framework"
     description = "AWS Recommended Backup Framework"
-    control_scope = {
-      tags = {
-        Environment = "prod"
-      }
-    }
     controls = [
       {
-        control_name = "BACKUP_RESOURCES_PROTECTED_BY_BACKUP_PLAN"
-        name         = "backup_resources_protected_by_backup_plan"
-        input_parameters = [
-          {
-            parameter_name  = "requiredBackupPlanFrequencyUnit"
-            parameter_value = "hours"
-          },
-          {
-            parameter_name  = "requiredBackupPlanFrequencyValue"
-            parameter_value = "24"
-          },
-          {
-            parameter_name  = "requiredRetentionDays"
-            parameter_value = "35"
-          }
-        ]
+        name            = "backup_resources_protected_by_backup_plan"
+        parameter_name  = "requiredRetentionDays"
+        parameter_value = "35"
       },
       {
-        control_name = "BACKUP_PLAN_MIN_FREQUENCY_AND_MIN_RETENTION_CHECK"
-        name         = "backup_plan_min_frequency_and_retention"
-        input_parameters = [
-          {
-            parameter_name  = "requiredFrequencyUnit"
-            parameter_value = "hours"
-          },
-          {
-            parameter_name  = "requiredFrequencyValue"
-            parameter_value = "24"
-          },
-          {
-            parameter_name  = "requiredRetentionDays"
-            parameter_value = "35"
-          }
-        ]
+        name            = "backup_plan_min_frequency_and_retention"
+        parameter_name  = "requiredRetentionDays"
+        parameter_value = "35"
       },
       {
-        control_name = "BACKUP_RECOVERY_POINT_MINIMUM_RETENTION_CHECK"
-        name         = "backup_recovery_point_min_retention"
-        input_parameters = [
-          {
-            parameter_name  = "requiredRetentionDays"
-            parameter_value = "35"
-          }
-        ]
+        name            = "backup_recovery_point_min_retention"
+        parameter_name  = "requiredRetentionDays"
+        parameter_value = "35"
       },
       {
-        control_name     = "BACKUP_RECOVERY_POINT_ENCRYPTED"
-        name             = "backup_recovery_point_encrypted"
-        input_parameters = []
+        name = "backup_recovery_point_encrypted"
       },
       {
-        control_name = "BACKUP_RESOURCES_PROTECTED_BY_BACKUP_VAULT_LOCK"
-        name         = "backup_resources_protected_by_vault_lock"
-        input_parameters = [
-          {
-            parameter_name  = "maxRetentionDays"
-            parameter_value = "100"
-          }
-        ]
+        name            = "backup_resources_protected_by_vault_lock"
+        parameter_name  = "maxRetentionDays"
+        parameter_value = "100"
       }
     ]
-
-    policy_assignment = {
-      opt_in_preference       = true
-      policy_id               = "backup-policy-id"
-      regions                 = ["us-west-2"]
-      organizational_unit_ids = ["ou-1234-12345678"]
-    }
   }
 
-  # Configure comprehensive backup reports
-  reports = [
-    {
-      name            = "aws_backup_audit_report"
-      description     = "AWS Backup compliance and audit report"
-      report_template = "BACKUP_JOB_REPORT"
-      s3_bucket_name  = "my-backup-reports-bucket"
-      s3_key_prefix   = "backup_audit"
-      formats         = ["CSV", "JSON"]
-      framework_arns  = ["arn:aws:backup:us-west-2:123456789012:framework/aws_recommended_framework"]
-    }
-  ]
 
   tags = {
     Environment = "prod"
diff --git a/examples/selection_by_conditions/main.tf b/examples/selection_by_conditions/main.tf
@@ -36,8 +36,8 @@ module "aws_backup_example" {
   ]
 
   # Selection configuration using conditions
-  selections = [
-    {
+  selections = {
+    selection_by_conditions = {
       name = "selection_by_conditions"
       selection_tags = [
         {
@@ -52,7 +52,7 @@ module "aws_backup_example" {
         }
       ]
     }
-  ]
+  }
 
   tags = {
     Environment = "prod"

Original file line number	Diff line number	Diff line change
`@@ -36,8 +36,8 @@ module "aws_backup_example" {`
`36`	`36`	`]`
`37`	`37`
`38`	`38`	`# Selection configuration using conditions`
`39`		`- selections = [`
`40`		`- {`
	`39`	`+ selections = {`
	`40`	`+ selection_by_conditions = {`
`41`	`41`	`name = "selection_by_conditions"`
`42`	`42`	`selection_tags = [`
`43`	`43`	`{`
`@@ -52,7 +52,7 @@ module "aws_backup_example" {`
`52`	`52`	`}`
`53`	`53`	`]`
`54`	`54`	`}`
`55`		`- ]`
	`55`	`+ }`
`56`	`56`
`57`	`57`	`tags = {`
`58`	`58`	`Environment = "prod"`