From 7561c04921c49c867eb7d11fdebc4ea2d6fbd078 Mon Sep 17 00:00:00 2001
From: dddugan <16596044+dddugan@users.noreply.github.com>
Date: Fri, 29 May 2020 12:51:31 -0500
Subject: [PATCH] correct sockaddr.is_contained example (#9104)

Syntax for sockaddr.is_contained should be outer, inner - i.e. range, IP. See https://docs.hashicorp.com/sentinel/imports/sockaddr/ for reference.
---
 website/pages/docs/enterprise/sentinel/examples.mdx | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/website/pages/docs/enterprise/sentinel/examples.mdx b/website/pages/docs/enterprise/sentinel/examples.mdx
index 0d0d85fad2..ca65de227e 100644
--- a/website/pages/docs/enterprise/sentinel/examples.mdx
+++ b/website/pages/docs/enterprise/sentinel/examples.mdx
@@ -25,7 +25,7 @@ import "strings"
 
 # We expect logins to come only from our private IP range
 cidrcheck = rule {
-    sockaddr.is_contained(request.connection.remote_addr, "10.20.0.0/16")
+    sockaddr.is_contained("10.20.0.0/16", request.connection.remote_addr)
 }
 
 # Require Ping MFA validation to succeed