// authorize given security group
func authorizeGroup(client *ec2.EC2, id *string, protocol *string, port *int, cidr *string) {
// make the request
params := &ec2.AuthorizeSecurityGroupIngressInput{
GroupId: aws.String(*id),
IpProtocol: aws.String(*protocol),
FromPort: aws.Int64(int64(*port)),
ToPort: aws.Int64(int64(*port)),
CidrIp: aws.String(*cidr),
}
_, err := client.AuthorizeSecurityGroupIngress(params)
// be idempotent, i.e. skip error if this permission already exists in group
if err != nil {
if err.(awserr.Error).Code() != "InvalidPermission.Duplicate" {
panic(err)
}
}
}
