[PRM-823] Remove references to document store and related resources from backup and Lambda configurations

Signed-off-by: NogaNHS <127490765+NogaNHS@users.noreply.github.com>

Author: NogaNHS

infrastructure/backup-cross-account.tf

@@ -53,9 +53,7 @@ resource "aws_backup_selection" "cross_account_backup_selection" {
   plan_id      = aws_backup_plan.cross_account_backup_schedule[0].id
 
   resources = [
-    module.ndr-document-store.bucket_arn,
     module.ndr-lloyd-george-store.bucket_arn,
-    module.document_reference_dynamodb_table.dynamodb_table_arn,
     module.lloyd_george_reference_dynamodb_table.dynamodb_table_arn,
     module.bulk_upload_report_dynamodb_table.dynamodb_table_arn,
     module.statistical-reports-store.bucket_arn,

infrastructure/backups.tf

@@ -24,7 +24,6 @@ resource "aws_backup_selection" "s3_continuous_backup" {
   plan_id      = aws_backup_plan.s3_continuous_backup.id
 
   resources = [
-    module.ndr-document-store.bucket_arn,
     module.ndr-lloyd-george-store.bucket_arn,
     module.statistical-reports-store.bucket_arn,
     module.ndr-document-pending-review-store.bucket_arn

infrastructure/buckets.tf

@@ -4,31 +4,6 @@ locals {
 }
 
 # Bucket Modules
-module "ndr-document-store" {
-  source                    = "./modules/s3/"
-  access_logs_enabled       = local.is_production
-  access_logs_bucket_id     = local.access_logs_bucket_id
-  bucket_name               = var.docstore_bucket_name
-  enable_cors_configuration = true
-  enable_bucket_versioning  = true
-  environment               = var.environment
-  owner                     = var.owner
-  force_destroy             = local.is_force_destroy
-  cors_rules = [
-    {
-      allowed_headers = ["*"]
-      allowed_methods = ["POST", "PUT", "DELETE"]
-      allowed_origins = [local.base_url]
-      expose_headers  = ["ETag"]
-      max_age_seconds = 3000
-    },
-    {
-      allowed_methods = ["GET"]
-      allowed_origins = [local.base_url]
-    }
-  ]
-}
-
 module "ndr-zip-request-store" {
   source                    = "./modules/s3/"
   access_logs_enabled       = local.is_production
@@ -209,19 +184,6 @@ resource "aws_s3_bucket_lifecycle_configuration" "lg-lifecycle-rules" {
   }
 }
 
-resource "aws_s3_bucket_lifecycle_configuration" "doc-store-lifecycle-rules" {
-  bucket = module.ndr-document-store.bucket_id
-  rule {
-    id     = "default-to-intelligent-tiering"
-    status = "Enabled"
-    transition {
-      storage_class = "INTELLIGENT_TIERING"
-      days          = 0
-    }
-    filter {}
-  }
-}
-
 resource "aws_s3_bucket_lifecycle_configuration" "staging-store-lifecycle-rules" {
   bucket = module.ndr-bulk-staging-store.bucket_id
 

infrastructure/dynamo_db.tf

@@ -1,44 +1,3 @@
-module "document_reference_dynamodb_table" {
-  source                         = "./modules/dynamo_db"
-  table_name                     = var.docstore_dynamodb_table_name
-  hash_key                       = "ID"
-  deletion_protection_enabled    = var.deletion_protection_enabled
-  stream_view_type               = "OLD_IMAGE"
-  ttl_enabled                    = true
-  ttl_attribute_name             = "TTL"
-  point_in_time_recovery_enabled = !local.is_sandbox
-
-  attributes = [
-    {
-      name = "ID"
-      type = "S"
-    },
-    {
-      name = "FileLocation"
-      type = "S"
-    },
-    {
-      name = "NhsNumber"
-      type = "S"
-    }
-  ]
-
-  global_secondary_indexes = [
-    {
-      name            = "FileLocationsIndex"
-      hash_key        = "FileLocation"
-      projection_type = "ALL"
-    },
-    {
-      name            = "NhsNumberIndex"
-      hash_key        = "NhsNumber"
-      projection_type = "ALL"
-    }
-  ]
-
-  environment = var.environment
-  owner       = var.owner
-}
 
 module "cloudfront_edge_dynamodb_table" {
   source                         = "./modules/dynamo_db"

infrastructure/ecs.tf

@@ -65,14 +65,6 @@ module "ndr-ecs-fargate-data-collection" {
       "name" : "LLOYD_GEORGE_DYNAMODB_NAME",
       "value" : "${terraform.workspace}_${var.lloyd_george_dynamodb_table_name}"
     },
-    {
-      "name" : "DOCUMENT_STORE_BUCKET_NAME",
-      "value" : "${terraform.workspace}-${var.docstore_bucket_name}"
-    },
-    {
-      "name" : "DOCUMENT_STORE_DYNAMODB_NAME",
-      "value" : "${terraform.workspace}_${var.docstore_dynamodb_table_name}"
-    },
     {
       "name" : "STATISTICAL_REPORTS_BUCKET",
       "value" : "${terraform.workspace}-${var.statistical_reports_bucket_name}"

infrastructure/iam.tf

@@ -9,7 +9,7 @@ resource "aws_iam_policy" "s3_document_data_policy_put_only" {
         "Action" : [
           "s3:PutObject",
         ],
-        "Resource" : ["${module.ndr-bulk-staging-store.bucket_arn}/*", "${module.ndr-document-store.bucket_arn}/*"]
+        "Resource" : ["${module.ndr-bulk-staging-store.bucket_arn}/*"]
       }
     ]
   })

infrastructure/lambda-create-doc-ref.tf

@@ -49,10 +49,6 @@ module "create-doc-ref-lambda" {
     module.ndr-bulk-staging-store.s3_write_policy_document,
     module.ndr-lloyd-george-store.s3_write_policy_document,
     module.ndr-lloyd-george-store.s3_read_policy_document,
-    module.ndr-document-store.s3_read_policy_document,
-    module.ndr-document-store.s3_write_policy_document,
-    module.document_reference_dynamodb_table.dynamodb_write_policy_document,
-    module.document_reference_dynamodb_table.dynamodb_read_policy_document,
     module.stitch_metadata_reference_dynamodb_table.dynamodb_read_policy_document,
     module.stitch_metadata_reference_dynamodb_table.dynamodb_write_policy_document,
     module.lloyd_george_reference_dynamodb_table.dynamodb_write_policy_document,
@@ -71,8 +67,6 @@ module "create-doc-ref-lambda" {
     APPCONFIG_APPLICATION         = module.ndr-app-config.app_config_application_id
     APPCONFIG_ENVIRONMENT         = module.ndr-app-config.app_config_environment_id
     APPCONFIG_CONFIGURATION       = module.ndr-app-config.app_config_configuration_profile_id
-    DOCUMENT_STORE_BUCKET_NAME    = "${terraform.workspace}-${var.docstore_bucket_name}"
-    DOCUMENT_STORE_DYNAMODB_NAME  = "${terraform.workspace}_${var.docstore_dynamodb_table_name}"
     LLOYD_GEORGE_DYNAMODB_NAME    = "${terraform.workspace}_${var.lloyd_george_dynamodb_table_name}"
     STITCH_METADATA_DYNAMODB_NAME = "${terraform.workspace}_${var.stitch_metadata_dynamodb_table_name}"
     PDS_FHIR_IS_STUBBED           = local.is_sandbox,
@@ -82,12 +76,10 @@ module "create-doc-ref-lambda" {
   depends_on = [
     module.document_reference_gateway,
     aws_api_gateway_rest_api.ndr_doc_store_api,
-    module.document_reference_dynamodb_table,
     module.lloyd_george_reference_dynamodb_table,
     module.ndr-bulk-staging-store,
     module.ndr-app-config,
     module.lloyd_george_reference_dynamodb_table,
-    module.document_reference_dynamodb_table,
     module.stitch_metadata_reference_dynamodb_table
   ]
 }

infrastructure/lambda-data-collection.tf

@@ -53,28 +53,22 @@ module "data-collection-lambda" {
     module.statistics_dynamodb_table.dynamodb_write_policy_document,
     module.ndr-lloyd-george-store.s3_read_policy_document,
     module.ndr-lloyd-george-store.s3_write_policy_document,
-    module.ndr-document-store.s3_read_policy_document,
-    module.ndr-document-store.s3_write_policy_document,
     module.lloyd_george_reference_dynamodb_table.dynamodb_read_policy_document,
     module.lloyd_george_reference_dynamodb_table.dynamodb_write_policy_document,
-    module.document_reference_dynamodb_table.dynamodb_read_policy_document,
-    module.document_reference_dynamodb_table.dynamodb_write_policy_document,
     aws_iam_policy.cloudwatch_log_query_policy.policy
   ]
   kms_deletion_window = var.kms_deletion_window
   rest_api_id         = null
   api_execution_arn   = null
 
   lambda_environment_variables = {
-    APPCONFIG_APPLICATION        = module.ndr-app-config.app_config_application_id
-    APPCONFIG_ENVIRONMENT        = module.ndr-app-config.app_config_environment_id
-    APPCONFIG_CONFIGURATION      = module.ndr-app-config.app_config_configuration_profile_id
-    LLOYD_GEORGE_BUCKET_NAME     = "${terraform.workspace}-${var.lloyd_george_bucket_name}"
-    LLOYD_GEORGE_DYNAMODB_NAME   = "${terraform.workspace}_${var.lloyd_george_dynamodb_table_name}"
-    DOCUMENT_STORE_BUCKET_NAME   = "${terraform.workspace}-${var.docstore_bucket_name}"
-    DOCUMENT_STORE_DYNAMODB_NAME = "${terraform.workspace}_${var.docstore_dynamodb_table_name}"
-    WORKSPACE                    = terraform.workspace
-    STATISTICS_TABLE             = "${terraform.workspace}_${var.statistics_dynamodb_table_name}"
+    APPCONFIG_APPLICATION      = module.ndr-app-config.app_config_application_id
+    APPCONFIG_ENVIRONMENT      = module.ndr-app-config.app_config_environment_id
+    APPCONFIG_CONFIGURATION    = module.ndr-app-config.app_config_configuration_profile_id
+    LLOYD_GEORGE_BUCKET_NAME   = "${terraform.workspace}-${var.lloyd_george_bucket_name}"
+    LLOYD_GEORGE_DYNAMODB_NAME = "${terraform.workspace}_${var.lloyd_george_dynamodb_table_name}"
+    WORKSPACE                  = terraform.workspace
+    STATISTICS_TABLE           = "${terraform.workspace}_${var.statistics_dynamodb_table_name}"
   }
   is_gateway_integration_needed = false
   is_invoked_from_gateway       = false
@@ -83,8 +77,6 @@ module "data-collection-lambda" {
     module.ndr-app-config,
     module.statistics_dynamodb_table,
     module.lloyd_george_reference_dynamodb_table,
-    module.document_reference_dynamodb_table,
-    module.ndr-document-store,
     module.ndr-lloyd-george-store,
     aws_iam_policy.cloudwatch_log_query_policy
   ]

infrastructure/lambda-delete-doc-ref.tf

@@ -56,10 +56,6 @@ module "delete-doc-ref-lambda" {
   name    = "DeleteDocRefLambda"
   handler = "handlers.delete_document_reference_handler.lambda_handler"
   iam_role_policy_documents = [
-    module.document_reference_dynamodb_table.dynamodb_read_policy_document,
-    module.document_reference_dynamodb_table.dynamodb_write_policy_document,
-    module.ndr-document-store.s3_read_policy_document,
-    module.ndr-document-store.s3_write_policy_document,
     module.lloyd_george_reference_dynamodb_table.dynamodb_read_policy_document,
     module.lloyd_george_reference_dynamodb_table.dynamodb_write_policy_document,
     module.ndr-lloyd-george-store.s3_read_policy_document,
@@ -81,7 +77,6 @@ module "delete-doc-ref-lambda" {
     APPCONFIG_APPLICATION                 = module.ndr-app-config.app_config_application_id
     APPCONFIG_ENVIRONMENT                 = module.ndr-app-config.app_config_environment_id
     APPCONFIG_CONFIGURATION               = module.ndr-app-config.app_config_configuration_profile_id
-    DOCUMENT_STORE_DYNAMODB_NAME          = "${terraform.workspace}_${var.docstore_dynamodb_table_name}"
     LLOYD_GEORGE_DYNAMODB_NAME            = "${terraform.workspace}_${var.lloyd_george_dynamodb_table_name}"
     STITCH_METADATA_DYNAMODB_NAME         = "${terraform.workspace}_${var.stitch_metadata_dynamodb_table_name}"
     UNSTITCHED_LLOYD_GEORGE_DYNAMODB_NAME = "${terraform.workspace}_${var.unstitched_lloyd_george_dynamodb_table_name}"
@@ -90,7 +85,6 @@ module "delete-doc-ref-lambda" {
   }
   depends_on = [
     aws_api_gateway_rest_api.ndr_doc_store_api,
-    module.document_reference_dynamodb_table,
     module.stitch_metadata_reference_dynamodb_table,
     module.delete-doc-ref-gateway,
     module.ndr-app-config

infrastructure/lambda-delete-document-fhir.tf

@@ -15,10 +15,6 @@ module "delete-document-references-fhir-lambda" {
     module.ndr-lloyd-george-store.s3_read_policy_document,
     module.pdm-document-store.s3_write_policy_document,
     module.ndr-lloyd-george-store.s3_write_policy_document,
-    module.document_reference_dynamodb_table.dynamodb_read_policy_document,
-    module.document_reference_dynamodb_table.dynamodb_write_policy_document,
-    module.ndr-document-store.s3_read_policy_document,
-    module.ndr-document-store.s3_write_policy_document,
     module.stitch_metadata_reference_dynamodb_table.dynamodb_read_policy_document,
     module.stitch_metadata_reference_dynamodb_table.dynamodb_write_policy_document,
     module.sqs-nrl-queue.sqs_read_policy_document,
@@ -39,7 +35,6 @@ module "delete-document-references-fhir-lambda" {
     ENVIRONMENT                           = var.environment
     LLOYD_GEORGE_BUCKET_NAME              = "${terraform.workspace}-${var.lloyd_george_bucket_name}"
     LLOYD_GEORGE_DYNAMODB_NAME            = "${terraform.workspace}_${var.lloyd_george_dynamodb_table_name}"
-    DOCUMENT_STORE_DYNAMODB_NAME          = "${terraform.workspace}_${var.docstore_dynamodb_table_name}"
     STITCH_METADATA_DYNAMODB_NAME         = "${terraform.workspace}_${var.stitch_metadata_dynamodb_table_name}"
     UNSTITCHED_LLOYD_GEORGE_DYNAMODB_NAME = "${terraform.workspace}_${var.unstitched_lloyd_george_dynamodb_table_name}"
     NRL_SQS_QUEUE_URL                     = module.sqs-nrl-queue.sqs_url
@@ -48,7 +43,6 @@ module "delete-document-references-fhir-lambda" {
     module.lloyd_george_reference_dynamodb_table,
     module.core_dynamodb_table,
     aws_api_gateway_rest_api.ndr_doc_store_api,
-    module.document_reference_dynamodb_table,
     module.stitch_metadata_reference_dynamodb_table,
     module.ndr-app-config
   ]