From ada248ba8d81ec6011843b690e02285db608d426 Mon Sep 17 00:00:00 2001
From: cloudOpsgenius <tarunofficial781@gmail.com>
Date: Wed, 13 Aug 2025 04:44:52 +0530
Subject: [PATCH] feat: Added new attribute revoke_rules_on_delete

---
 main.tf      | 1 +
 variables.tf | 6 ++++++
 2 files changed, 7 insertions(+)

diff --git a/main.tf b/main.tf
index 831f5b2..ffa7c7c 100644
--- a/main.tf
+++ b/main.tf
@@ -27,6 +27,7 @@ resource "aws_security_group" "default" {
   lifecycle {
     create_before_destroy = true
   }
+  revoke_rules_on_delete = var.revoke_rules_on_delete
 }
 
 ##----------------------------------------------------------------------------- 
diff --git a/variables.tf b/variables.tf
index 0e13a73..9a02e65 100644
--- a/variables.tf
+++ b/variables.tf
@@ -183,4 +183,10 @@ variable "prefix_list_address_family" {
   type        = string
   default     = "IPv4"
   description = "(Required, Forces new resource) The address family (IPv4 or IPv6) of prefix list."
+}
+
+variable "revoke_rules_on_delete" {
+  description = "Instruct Terraform to revoke all of the Security Groups attached ingress and egress rules before deleting the rule itself. Enable for EMR."
+  type        = bool
+  default     = false
 }
\ No newline at end of file