feat: DTOSS-4810 Function App environment variables

.azuredevops/pipelines/cd-infrastructure-dev-audit.yaml

@@ -19,7 +19,7 @@ resources:
     - repository: dtos-devops-templates
       type: github
       name: NHSDigital/dtos-devops-templates
-      ref: 8eac5e6ffc4ebc704880128b64a1a716b923c44a
+      ref: 2a4236de903af394a0a88e6e3dffb1658299ee89
       endpoint: NHSDigital
 
 variables:
@@ -39,7 +39,7 @@ stages:
     displayName: Terraform Plan
     condition: eq(variables['Build.Reason'], 'Manual')
     variables:
-      tfvars: environments/$(ENVIRONMENT).tfvars
+      tfVarsFile: environments/$(ENVIRONMENT).tfvars
     jobs:
       - job: init_and_plan
         displayName: Init, plan, store artifact

.azuredevops/pipelines/cd-infrastructure-dev-core.yaml

@@ -11,21 +11,21 @@ trigger:
       - infrastructure/*
 
 pool:
-  #vmImage: ubuntu-latest
+  # vmImage: ubuntu-latest
   name: private-pool-dev-uks
 
 resources:
   repositories:
     - repository: dtos-devops-templates
       type: github
       name: NHSDigital/dtos-devops-templates
-      ref: 8eac5e6ffc4ebc704880128b64a1a716b923c44a
+      ref: 2a4236de903af394a0a88e6e3dffb1658299ee89
       endpoint: NHSDigital
 
 variables:
   - group: DEV_core_backend
-  - group: DEV_hub_backend_remote_state
   - group: DEV_audit_backend_remote_state
+  - group: DEV_hub_backend_remote_state
   - name: TF_DIRECTORY
     value: $(System.DefaultWorkingDirectory)/$(System.TeamProject)/infrastructure/tf-core
   - name: TF_VERSION
@@ -40,7 +40,7 @@ stages:
     displayName: Terraform Plan
     condition: eq(variables['Build.Reason'], 'Manual')
     variables:
-      tfvars: environments/$(ENVIRONMENT).tfvars
+      tfVarsFile: environments/$(ENVIRONMENT).tfvars
     jobs:
       - job: init_and_plan
         displayName: Init, plan, store artifact

infrastructure/environments/development-audit.tfvars

@@ -0,0 +1,78 @@
+application           = "commgt"
+application_full_name = "communication-management"
+environment           = "DEV"
+location              = "uksouth"
+
+features = {
+  private_endpoints_enabled            = true
+  private_service_connection_is_manual = false
+  public_network_access_enabled        = false
+}
+
+tags = {
+  Project = "Communication-Management"
+}
+
+resource_groups_audit = {
+  audit = {
+    name     = "rg-commgt-dev-uks-audit"
+    location = "uksouth"
+  }
+}
+
+regions = {
+  uksouth = {
+    is_primary_region = true
+    address_space     = "10.108.0.0/16"
+    connect_peering   = true
+    subnets = {
+      pep = {
+        cidr_newbits = 8
+        cidr_offset  = 1
+      }
+    }
+  }
+}
+
+routes = {
+  uksouth = {
+    application_rules = []
+    nat_rules = []
+    network_rules = [
+      {
+        name                  = "AllowAuditToCommgt"
+        priority              = 800
+        action                = "Allow"
+        rule_name             = "AuditToCommgt"
+        source_addresses      = ["10.108.0.0/16"] # will be populated with the communications management subnet address space
+        destination_addresses = ["10.107.0.0/16"] # will be populated with the audit subnet address space
+        protocols             = ["TCP", "UDP"]
+        destination_ports     = ["443"]
+      }
+    ]
+    route_table_routes = [
+      {
+        name                   = "AuditToComgt"
+        address_prefix         = "10.108.0.0/16" # will be populated with the communications management subnet address space
+        next_hop_type          = "VirtualAppliance"
+        next_hop_in_ip_address = "10.100.48.4" # will be populated with the Firewall Private IP address
+      }
+    ]
+  }
+}
+
+app_insights = {
+  resource_group_key = "audit"
+  appinsights_type   = "web"
+
+  audit_resource_group_key = "audit"
+}
+
+law = {
+  resource_group_key = "audit"
+
+  law_sku        = "PerGB2018"
+  retention_days = 30
+
+  audit_resource_group_key = "audit"
+}