feat: initial Dev ACR configuration

Author: MacMur85

infrastructure/tf-core/container_registry.tf

@@ -0,0 +1,30 @@
+module "acr" {
+  for_each = var.features.acr_enabled ? var.regions : {}
+
+  source = "../../../dtos-devops-templates/infrastructure/modules/container-registry"
+
+  name                = module.regions_config[each.key].names.azure-container-registry #-${lower(each.key.name_suffix)}"
+  resource_group_name = azurerm_resource_group.core[each.key].name
+  location            = each.key
+
+  admin_enabled = var.container_registry.admin_enabled
+
+  log_analytics_workspace_id                  = data.terraform_remote_state.audit.outputs.log_analytics_workspace_id[local.primary_region]
+  monitor_diagnostic_setting_acr_enabled_logs = local.monitor_diagnostic_setting_acr_enabled_logs
+  monitor_diagnostic_setting_acr_metrics      = local.monitor_diagnostic_setting_acr_metrics
+
+  uai_name                      = var.container_registry.uai_name
+  sku                           = var.container_registry.sku
+  public_network_access_enabled = var.features.public_network_access_enabled
+
+  # Private Endpoint Configuration if enabled
+  private_endpoint_properties = var.features.private_endpoints_enabled ? {
+    private_dns_zone_ids                 = [data.terraform_remote_state.hub.outputs.private_dns_zones["${each.key}-container_registry"].id]
+    private_endpoint_enabled             = var.features.private_endpoints_enabled
+    private_endpoint_subnet_id           = module.subnets["${module.regions_config[each.key].names.subnet}-pep"].id
+    private_endpoint_resource_group_name = azurerm_resource_group.rg_private_endpoints[each.key].name
+    private_service_connection_is_manual = var.features.private_service_connection_is_manual
+  } : null
+
+  tags = var.tags
+}

infrastructure/tf-core/diagnostic_settings.tf

@@ -1,4 +1,8 @@
 locals {
+  # ACR
+  monitor_diagnostic_setting_acr_enabled_logs = ["ContainerRegistryRepositoryEvents", "ContainerRegistryLoginEvents"]
+  monitor_diagnostic_setting_acr_metrics      = ["AllMetrics"]
+
   # APPSERVICEPLAN
   monitor_diagnostic_setting_appserviceplan_metrics = ["AllMetrics"]
 

infrastructure/tf-core/environments/development.tfvars

@@ -4,7 +4,7 @@ environment           = "DEV"
 environment_hub       = "dev"
 
 features = {
-  acr_enabled                          = false
+  acr_enabled                          = true
   api_management_enabled               = false
   event_grid_enabled                   = false
   private_endpoints_enabled            = true
@@ -272,6 +272,13 @@ container_apps = {
   }
 }
 
+container_registry = {
+  name_suffix   = "devtest"
+  admin_enabled = false
+  uai_name      = "dtos-cohort-manager-acr-push"
+  sku           = "Premium"
+}
+
 diagnostic_settings = {
   metric_enabled = true
 }
@@ -867,7 +874,7 @@ function_apps = {
       ]
       env_vars_static = {
         AcceptableLatencyThresholdMs = "500"
-        MaxRetryCount=3
+        MaxRetryCount                = 3
       }
     }
 

infrastructure/tf-core/variables.tf

@@ -615,3 +615,13 @@ variable "function_app_slots" {
     function_app_slot_enabled = optional(bool, false)
   }))
 }
+
+variable "container_registry" {
+  description = "Configuration of the Azure Container Registry used for feature testing"
+  type = object({
+      name_suffix   = optional(string, "")
+      admin_enabled = optional(bool, false)
+      uai_name      = optional(string, "dtos-cohort-manager-acr-push")
+      sku           = optional(string, "Premium")
+  })
+}