Azurerm_storage_share adding private endpoint

I am trying to figure out how to add a private endpoint to my storage share. I only want a private endpoint, no public access.

Here is what I have so far?

terraform {
backend “azurerm” {}
}

locals {
common_tags = {
allocation = var.cost_center
environment = var.environment
location = var.location
}
}

data azurerm_resource_group “data_rg” {
name = var.resource_group_name
}

data azurerm_subnet “subnet” {
name = var.subnet_name
virtual_network_name = var.virtual_network_name
resource_group_name = var.virtual_network_resource_group_name
}

module azurerm_storage_account {
source = “…/…/…/provisioning/global/azurerm_storage_account”
storage_account_name = var.storage_account_name
resource_group_name = data.azurerm_resource_group.data_rg.name
location = var.location
account_tier = var.account_tier
access_tier = var.access_tier
account_replication_type = var.account_replication_type
account_kind = var.account_kind
#enable_file_encryption = var.enable_file_encryption
enable_https_traffic_only = var.enable_https_traffic_only
common_tags = local.common_tags
}

module azurerm_storage_share {
source = “…/…/…/provisioning/global/azurerm_storage_share”
storage_account_name = module.azurerm_storage_account.name
share_name = var.share_name
share_quota = var.share_quota
}

module azurerm_storage_share_directory {
source = “…/…/…/provisioning/global/azurerm_storage_share_directory”
share_directory_name = var.share_directory_name
share_name = module.azurerm_storage_share.name
storage_account_name = module.azurerm_storage_account.name
}
#azurerm_storage_share.share.resource_manager_id
module azurerm_private_endpoint {
source = “…/…/…/provisioning/global/azurerm_private_endpoint”
private_endpoint_name = var.private_endpoint_name
location = var.location
resource_group_name = data.azurerm_resource_group.data_rg.name
subnet_id = data.azurerm_subnet.subnet.id
private_service_connection_name = var.private_service_connection_name
private_connection_resource_id = module.azurerm_storage_share.resource_manager_id
is_manual_connection = var.is_manual_connection
subresource_names = var.subresource_names
}

Anybody have a working example of how to make this work?