feat: Add support for enable_waf_fail_open and desync_mitigation_mode

[kumartushar]

Description

Resource aws_lb support enable_waf_fail_open and desync_mitigation_mode, support for which is missing in this module.
I have added support for these options in current aws_lb resource implementation.
Also added the variables for these 2 options.

Motivation and Context

In some cases, it is needed to set enable_waf_fail_open to true. As for supporting critical services, lb should continue to forward requests to targets even if the communication to aws waf fails.

Breaking Changes

Does this break backwards compatibility with the current major version?
No
If so, please provide an explanation why it is necessary.
NA

How Has This Been Tested?

• I have tested and validated these changes using one or more of the provided examples/* projects

• Please describe in detail how you tested your changes.

    Terraform will perform the following actions:
  
    # module.coupa_alb.aws_lb.this[0] will be created
    + resource "aws_lb" "this" {
        + arn                        = (known after apply)
        + arn_suffix                 = (known after apply)
        + desync_mitigation_mode     = "defensive"
        + dns_name                   = (known after apply)
        + drop_invalid_header_fields = false
        + enable_deletion_protection = false
        + enable_http2               = true
        + enable_waf_fail_open       = true
        + id                         = (known after apply)
        + idle_timeout               = 60
        + internal                   = true
        + ip_address_type            = "ipv4"
        + load_balancer_type         = "application"
        + name                       =  "test-alb"
        + security_groups            = [
            + "sg-xxxxxxx",
          ]
        + subnets                    = [
            + "subnet-xxxxx",
            + "subnet-xxxxxx",
          ]
        + tags                       = {
            + "Name" = "test-alb"
          }
        + tags_all                   = {
            + "Name" = "test-alb"
          }
        + vpc_id                     = (known after apply)
        + zone_id                    = (known after apply)
  
        + subnet_mapping {
            + allocation_id        = (known after apply)
            + ipv6_address         = (known after apply)
            + outpost_id           = (known after apply)
            + private_ipv4_address = (known after apply)
            + subnet_id            = (known after apply)
          }
  
        + timeouts {
            + create = "10m"
            + delete = "10m"
            + update = "10m"
          }
      }
  
  Plan: 1 to add, 0 to change, 0 to destroy.
  
  Do you want to perform these actions?
    Terraform will perform the actions described above.
    Only 'yes' will be accepted to approve.
  
    Enter a value: yes
  
  module.coupa_alb.aws_lb.this[0]: Creating...
  module.coupa_alb.aws_lb.this[0]: Still creating... [10s elapsed]
  module.coupa_alb.aws_lb.this[0]: Still creating... [20s elapsed]
  module.coupa_alb.aws_lb.this[0]: Still creating... [30s elapsed]
  module.coupa_alb.aws_lb.this[0]: Still creating... [40s elapsed]
  module.coupa_alb.aws_lb.this[0]: Still creating... [50s elapsed]
  module.coupa_alb.aws_lb.this[0]: Still creating... [1m0s elapsed]
  module.coupa_alb.aws_lb.this[0]: Still creating... [1m10s elapsed]
  module.coupa_alb.aws_lb.this[0]: Still creating... [1m20s elapsed]
  module.coupa_alb.aws_lb.this[0]: Still creating... [1m30s elapsed]
  module.coupa_alb.aws_lb.this[0]: Still creating... [1m40s elapsed]
  module.coupa_alb.aws_lb.this[0]: Still creating... [1m50s elapsed]
  module.coupa_alb.aws_lb.this[0]: Still creating... [2m0s elapsed]
  module.coupa_alb.aws_lb.this[0]: Still creating... [2m10s elapsed]
  module.coupa_alb.aws_lb.this[0]: Still creating... [2m20s elapsed]
  module.coupa_alb.aws_lb.this[0]: Creation complete after 2m22s
  

[kumartushar]

rerun tests

[antonbabenko]

Please verify the minimum version requirement for these attributes in versions.tf and update the docs by running pre-commit run -a.

[kumartushar]

Please verify the minimum version requirement for these attributes in versions.tf and update the docs by running pre-commit run -a.

These attributes are introduced in https://github.com/hashicorp/terraform-provider-aws/releases/tag/v3.67.0

[antonbabenko]

Please verify the minimum version requirement for these attributes in versions.tf and update the docs by running pre-commit run -a.

These attributes are introduced in hashicorp/terraform-provider-aws@v3.67.0 (release)

Then update min version here.

[kumartushar]

pre-commit run -a

@antonbabenko Done

[antonbabenko]

Awesome 🚢

[antonbabenko]

This PR is included in version 6.7.0 🎉

[github-actions]

I'm going to lock this pull request because it has been closed for 30 days ⏳. This helps our maintainers find and focus on the active issues. If you have found a problem that seems related to this change, please open a new issue and complete the issue template so we can capture all the details necessary to investigate further.