From af304f5ef03647721e29a7e30c46cbe84e8276e5 Mon Sep 17 00:00:00 2001
From: "David.Houck" <David.Houck@sas.com>
Date: Wed, 28 Feb 2024 11:52:22 -0500
Subject: [PATCH] Push s3 interface changes for private cluster test

---
 modules/aws_vpc/main.tf      | 3 +++
 modules/aws_vpc/variables.tf | 2 +-
 2 files changed, 4 insertions(+), 1 deletion(-)

diff --git a/modules/aws_vpc/main.tf b/modules/aws_vpc/main.tf
index 214b11d4..5467224a 100644
--- a/modules/aws_vpc/main.tf
+++ b/modules/aws_vpc/main.tf
@@ -54,6 +54,9 @@ resource "aws_vpc_endpoint" "private_endpoints" {
   vpc_endpoint_type   = each.value
   security_group_ids  = each.value == "Interface" ? [var.security_group_id] : null
   private_dns_enabled = each.value == "Interface" ? true : null
+  dns_options {
+    private_dns_only_for_inbound_resolver_endpoint = each.value == "Gateway" ? true : null
+  }
 
   tags = merge(
     {
diff --git a/modules/aws_vpc/variables.tf b/modules/aws_vpc/variables.tf
index 4ab3cb4b..91b29226 100644
--- a/modules/aws_vpc/variables.tf
+++ b/modules/aws_vpc/variables.tf
@@ -126,7 +126,7 @@ variable "vpc_private_endpoints" {
     "ec2"                  = "Interface",
     "ecr.api"              = "Interface",
     "ecr.dkr"              = "Interface",
-    "s3"                   = "Gateway",
+    "s3"                   = "Interface",
     "logs"                 = "Interface",
     "sts"                  = "Interface",
     "elasticloadbalancing" = "Interface",