Merge pull request #30 from Think-Cube/patch

spy86 · web-flow · commit fbda94d860e5 · 2025-11-30T22:18:05.000+01:00
Patch
diff --git a/examples/advanced/README.md b/examples/advanced/README.md
@@ -0,0 +1,70 @@
+# Terraform Azure Container Registry - Advanced Example
+
+This example demonstrates a **full-featured deployment** of an Azure Container Registry (ACR) using the module.
+
+It is suitable for **production environments** where:
+
+- High availability and security are required
+- Georeplication across regions is needed
+- Managed identities and customer-managed encryption are used
+- Network access is restricted with custom rules
+- Quarantine and trust policies are enabled
+
+```hcl
+module "acr_advanced" {
+  source                  = "./terraform-azure-container-registry"
+  acr_name                = "myadvancedacr"
+  resource_group_name     = "rg-prod"
+  resource_group_location = "West Europe"
+  acr_tier                = "Premium"
+  acr_admin_enabled       = false
+  public_network_access_enabled = false
+  quarantine_policy_enabled     = true
+  zone_redundancy_enabled       = true
+  export_policy_enabled         = true
+  anonymous_pull_enabled        = false
+  data_endpoint_enabled         = true
+  network_rule_bypass_option    = "None"
+  retention_policy               = 30
+  trust_policy                    = { enabled = true }
+
+  georeplications = [
+    {
+      location                  = "North Europe"
+      zone_redundancy_enabled   = true
+      regional_endpoint_enabled = true
+      tags = {
+        replication = "north"
+      }
+    },
+    {
+      location                  = "East US"
+      zone_redundancy_enabled   = false
+      regional_endpoint_enabled = true
+      tags = {
+        replication = "east"
+      }
+    }
+  ]
+
+  network_rule_set = {
+    default_action = "Deny"
+    ip_rules       = ["203.0.113.0/24", "198.51.100.0/24"]
+  }
+
+  identity = {
+    type         = "UserAssigned"
+    identity_ids = ["/subscriptions/00000000-0000-0000-0000-000000000000/resourceGroups/rg-prod/providers/Microsoft.ManagedIdentity/userAssignedIdentities/mi-acr"]
+  }
+
+  encryption = {
+    key_vault_key_id   = "/subscriptions/00000000-0000-0000-0000-000000000000/resourceGroups/rg-prod/providers/Microsoft.KeyVault/vaults/myvault/keys/mykey"
+    identity_client_id = "00000000-0000-0000-0000-000000000000"
+  }
+
+  default_tags = {
+    environment = "prod"
+    project     = "example"
+  }
+}
+```
diff --git a/examples/advanced/main.tf b/examples/advanced/main.tf
@@ -0,0 +1,56 @@
+module "acr_advanced" {
+  source                  = "./terraform-azure-container-registry"
+  acr_name                = "myadvancedacr"
+  resource_group_name     = "rg-prod"
+  resource_group_location = "West Europe"
+  acr_tier                = "Premium"
+  acr_admin_enabled       = false
+  public_network_access_enabled = false
+  quarantine_policy_enabled     = true
+  zone_redundancy_enabled       = true
+  export_policy_enabled         = true
+  anonymous_pull_enabled        = false
+  data_endpoint_enabled         = true
+  network_rule_bypass_option    = "None"
+  retention_policy               = 30
+  trust_policy                    = { enabled = true }
+
+  georeplications = [
+    {
+      location                  = "North Europe"
+      zone_redundancy_enabled   = true
+      regional_endpoint_enabled = true
+      tags = {
+        replication = "north"
+      }
+    },
+    {
+      location                  = "East US"
+      zone_redundancy_enabled   = false
+      regional_endpoint_enabled = true
+      tags = {
+        replication = "east"
+      }
+    }
+  ]
+
+  network_rule_set = {
+    default_action = "Deny"
+    ip_rules       = ["203.0.113.0/24", "198.51.100.0/24"]
+  }
+
+  identity = {
+    type         = "UserAssigned"
+    identity_ids = ["/subscriptions/00000000-0000-0000-0000-000000000000/resourceGroups/rg-prod/providers/Microsoft.ManagedIdentity/userAssignedIdentities/mi-acr"]
+  }
+
+  encryption = {
+    key_vault_key_id   = "/subscriptions/00000000-0000-0000-0000-000000000000/resourceGroups/rg-prod/providers/Microsoft.KeyVault/vaults/myvault/keys/mykey"
+    identity_client_id = "00000000-0000-0000-0000-000000000000"
+  }
+
+  default_tags = {
+    environment = "prod"
+    project     = "example"
+  }
+}
diff --git a/examples/basic/README.md b/examples/basic/README.md
@@ -0,0 +1,42 @@
+# Terraform Azure Container Registry - Basic Example
+
+This example demonstrates a **basic deployment** of an Azure Container Registry (ACR) using the module.
+
+It is suitable for **development or test environments** where:
+
+- Minimal configuration is needed
+- No georeplication is required
+- Public network access is enabled
+- No managed identity or encryption is required
+
+
+```hcl
+module "acr_basic" {
+  source                  = "./terraform-azure-container-registry"
+  acr_name                = "mybasicacr"
+  resource_group_name     = "rg-example"
+  resource_group_location = "East US"
+  acr_tier                = "Basic"
+  acr_admin_enabled       = true
+  public_network_access_enabled = true
+  quarantine_policy_enabled     = false
+  zone_redundancy_enabled       = false
+  export_policy_enabled         = false
+  anonymous_pull_enabled        = false
+  data_endpoint_enabled         = false
+  network_rule_bypass_option    = "AzureServices"
+  retention_policy               = 7
+  trust_policy                    = { enabled = false }
+
+  georeplications = []
+
+  network_rule_set = null
+  identity         = null
+  encryption       = null
+
+  default_tags = {
+    environment = "dev"
+    project     = "example"
+  }
+}
+```
diff --git a/examples/basic/main.tf b/examples/basic/main.tf
@@ -0,0 +1,28 @@
+module "acr_basic" {
+  source                  = "./terraform-azure-container-registry"
+  acr_name                = "mybasicacr"
+  resource_group_name     = "rg-example"
+  resource_group_location = "East US"
+  acr_tier                = "Basic"
+  acr_admin_enabled       = true
+  public_network_access_enabled = true
+  quarantine_policy_enabled     = false
+  zone_redundancy_enabled       = false
+  export_policy_enabled         = false
+  anonymous_pull_enabled        = false
+  data_endpoint_enabled         = false
+  network_rule_bypass_option    = "AzureServices"
+  retention_policy               = 7
+  trust_policy                    = { enabled = false }
+
+  georeplications = []
+
+  network_rule_set = null
+  identity         = null
+  encryption       = null
+
+  default_tags = {
+    environment = "dev"
+    project     = "example"
+  }
+}
