From 0b192f4e02241cc61a7e77da7a91a18050000e7c Mon Sep 17 00:00:00 2001
From: Christopher Goodwin <christophergoodwin@ChristodwinsMBP.localdomain>
Date: Tue, 25 Feb 2025 11:25:22 -0800
Subject: [PATCH 1/3] adding restricted profile

---
 main.tf | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/main.tf b/main.tf
index 6fabfc7..cd76e26 100644
--- a/main.tf
+++ b/main.tf
@@ -97,7 +97,7 @@ resource "google_compute_global_forwarding_rule" "https" {
 # SSL Policy for the load balancer
 resource "google_compute_ssl_policy" "tls12-ssl-policy" {
   name            = "${var.project_id}-tls12-ssl-policy"
-  profile         = "MODERN"  # Use MODERN for strong security settings.
+  profile         = "RESTRICTED"  # Use MODERN for strong security settings.
   min_tls_version = "TLS_1_2" # Only allow TLS 1.2 and above.
 
   description = "SSL policy to enforce TLS 1.2 and disable TLS 1.0 and 1.1"

From 06366a77e1f41e51216528b73b6778ab966105cb Mon Sep 17 00:00:00 2001
From: Christopher Goodwin <christophergoodwin@ChristodwinsMBP.localdomain>
Date: Tue, 25 Feb 2025 12:31:01 -0800
Subject: [PATCH 2/3] formatting

---
 main.tf | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/main.tf b/main.tf
index cd76e26..d61217d 100644
--- a/main.tf
+++ b/main.tf
@@ -97,8 +97,8 @@ resource "google_compute_global_forwarding_rule" "https" {
 # SSL Policy for the load balancer
 resource "google_compute_ssl_policy" "tls12-ssl-policy" {
   name            = "${var.project_id}-tls12-ssl-policy"
-  profile         = "RESTRICTED"  # Use MODERN for strong security settings.
-  min_tls_version = "TLS_1_2" # Only allow TLS 1.2 and above.
+  profile         = "RESTRICTED" # Use MODERN for strong security settings.
+  min_tls_version = "TLS_1_2"    # Only allow TLS 1.2 and above.
 
   description = "SSL policy to enforce TLS 1.2 and disable TLS 1.0 and 1.1"
 }

From 09e783cfd9702d9f013b168a98767b00bcca4996 Mon Sep 17 00:00:00 2001
From: drewmercer-bl <drew.mercer@brandlive.com>
Date: Wed, 26 Feb 2025 13:34:50 -0800
Subject: [PATCH 3/3] fix(main.tf): fixes for custom headers passed to users

---
 README.md | 13 +++++++++++--
 1 file changed, 11 insertions(+), 2 deletions(-)

diff --git a/README.md b/README.md
index 6e2f9da..48521ad 100644
--- a/README.md
+++ b/README.md
@@ -4,11 +4,20 @@ terraform module for creating an opinionated internal application load balancer
 Module Input Variables
 ----------------------
 
-- `project` - gcp project id
+- `project_id` - gcp project id
 - `region` - gcp region
-- `environment` - logical environment
 - `static_ip_name` - global load balancer name
+- `name_prefix` - prefix-name used for lb proxy and forwarding rule
+- `create_address` - toggle external static IP creation
+- `create_load_balancer` - toggle load balaner creation
+- `url_map_name` - toggle url map name
+- `custom_labels_https_fwd_rule` - map of custom labels to apply to the resources
+- `ssl_cert_name` - creates a unique name beginning with the specified prefix
 - `certificate_map` - certificate map to attach to load balancer
+- `port_range` - HTTPS Port number
+- `enable_ssl` - enable SSL support
+- `https_redirect` - enable HTTPS redirect
+- `default_custom_error_response_policy` - Default custom error response policy
 - `services` - map cloud run service metadata
 - `buckets` - map of gcs bucket metadata