[PRM-823] Remove references to document store from Lambda configurations and IAM policies

Signed-off-by: NogaNHS <127490765+NogaNHS@users.noreply.github.com>

Author: NogaNHS

infrastructure/ecs.tf

@@ -142,17 +142,6 @@ resource "aws_iam_role_policy_attachment" "data_collection_lloyd_george_store" {
   policy_arn = module.ndr-lloyd-george-store.s3_list_object_policy
 }
 
-resource "aws_iam_role_policy_attachment" "data_collection_document_store" {
-  count      = local.is_sandbox ? 0 : 1
-  role       = aws_iam_role.data_collection_task_role[0].name
-  policy_arn = module.ndr-document-store.s3_list_object_policy
-}
-
-resource "aws_iam_role_policy_attachment" "data_collection_document_reference_dynamodb_table" {
-  count      = local.is_sandbox ? 0 : 1
-  role       = aws_iam_role.data_collection_task_role[0].name
-  policy_arn = module.document_reference_dynamodb_table.dynamodb_policy
-}
 
 resource "aws_iam_role_policy_attachment" "data_collection_cloudwatch_log_query_policy" {
   count      = local.is_sandbox ? 0 : 1

infrastructure/lambda-delete-doc-object.tf

@@ -43,10 +43,6 @@ module "delete-document-object-lambda" {
   handler        = "handlers.delete_document_object_handler.lambda_handler"
   lambda_timeout = 900
   iam_role_policy_documents = [
-    module.document_reference_dynamodb_table.dynamodb_read_policy_document,
-    module.document_reference_dynamodb_table.dynamodb_write_policy_document,
-    module.ndr-document-store.s3_read_policy_document,
-    module.ndr-document-store.s3_write_policy_document,
     module.lloyd_george_reference_dynamodb_table.dynamodb_read_policy_document,
     module.lloyd_george_reference_dynamodb_table.dynamodb_write_policy_document,
     module.ndr-lloyd-george-store.s3_read_policy_document,
@@ -78,7 +74,6 @@ resource "aws_iam_policy" "dynamodb_stream_delete_object_policy" {
         Effect = "Allow"
         Resource = [
           module.lloyd_george_reference_dynamodb_table.dynamodb_stream_arn,
-          module.document_reference_dynamodb_table.dynamodb_stream_arn,
           module.unstitched_lloyd_george_reference_dynamodb_table.dynamodb_stream_arn
         ]
       },
@@ -128,23 +123,3 @@ resource "aws_lambda_event_source_mapping" "unstitched_lloyd_george_dynamodb_str
   }
 }
 
-resource "aws_lambda_event_source_mapping" "document_reference_dynamodb_stream" {
-  event_source_arn  = module.document_reference_dynamodb_table.dynamodb_stream_arn
-  function_name     = module.delete-document-object-lambda.lambda_arn
-  batch_size        = 1
-  starting_position = "LATEST"
-
-  filter_criteria {
-    filter {
-      pattern = jsonencode({
-        "eventName" : [
-          "REMOVE"
-        ],
-        userIdentity = {
-          type        = ["Service"],
-          principalId = ["dynamodb.amazonaws.com"]
-        }
-      })
-    }
-  }
-}

infrastructure/lambda-generate-document-manifest.tf

@@ -47,8 +47,6 @@ module "generate-document-manifest-lambda" {
   lambda_timeout           = 900
   lambda_ephemeral_storage = 512
   iam_role_policy_documents = [
-    module.ndr-document-store.s3_read_policy_document,
-    module.ndr-document-store.s3_write_policy_document,
     module.ndr-lloyd-george-store.s3_read_policy_document,
     module.ndr-lloyd-george-store.s3_write_policy_document,
     module.zip_store_reference_dynamodb_table.dynamodb_read_policy_document,
@@ -77,7 +75,6 @@ module "generate-document-manifest-lambda" {
     module.ndr-app-config,
     module.zip_store_reference_dynamodb_table,
     module.ndr-zip-request-store,
-    module.ndr-document-store,
     module.ndr-lloyd-george-store,
     aws_iam_policy.dynamodb_stream_manifest
   ]

infrastructure/lambda-search-doc-references.tf

@@ -58,12 +58,9 @@ module "search-document-references-lambda" {
   name    = "SearchDocumentReferencesLambda"
   handler = "handlers.document_reference_search_handler.lambda_handler"
   iam_role_policy_documents = [
-    module.document_reference_dynamodb_table.dynamodb_read_policy_document,
-    module.document_reference_dynamodb_table.dynamodb_write_policy_document,
     module.lloyd_george_reference_dynamodb_table.dynamodb_read_policy_document,
     module.lloyd_george_reference_dynamodb_table.dynamodb_write_policy_document,
     module.ndr-lloyd-george-store.s3_read_policy_document,
-    module.ndr-document-store.s3_read_policy_document,
     module.ndr-app-config.app_config_policy,
     aws_iam_policy.ssm_access_policy.policy
   ]