From f11d533facba17034f7b2fe1fa9d4fcb945adf97 Mon Sep 17 00:00:00 2001
From: Stefano <stefano@fiorinis.com>
Date: Fri, 23 May 2025 09:30:55 -0500
Subject: [PATCH] Allow PostgreSQL port for tunneling restricted to developer
 IP

---
 infrastructure/stack.py | 7 +++++++
 1 file changed, 7 insertions(+)

diff --git a/infrastructure/stack.py b/infrastructure/stack.py
index 8437321..d6d45bf 100644
--- a/infrastructure/stack.py
+++ b/infrastructure/stack.py
@@ -70,6 +70,13 @@ class IptvUpdaterStack(Stack):
             "Allow SSH traffic"
         )
 
+        # Allow PostgreSQL port for tunneling restricted to developer IP
+        security_group.add_ingress_rule(
+            ec2.Peer.ipv4("47.189.88.48/32"),  # Developer IP
+            ec2.Port.tcp(5432),
+            "Allow PostgreSQL traffic for tunneling"
+        )
+
         # Key pair for IPTV Updater instance
         key_pair = ec2.KeyPair(
             self,