feat: add Application Insights and Azure Monitor Private Link Scope integration

- Add Application Insights module for web application monitoring
- Configure private link scoped services for Log Analytics Workspace
- Configure private link scoped services for Application Insights
- Integrate monitoring services with hub-based private endpoint architecture
- Enable secure monitoring data flow through Azure Monitor Private Link Scope (AMPLS)

Author: josielsouzanordcloud

infrastructure/modules/container-apps/jobs.tf

@@ -136,5 +136,5 @@ module "scheduled_jobs" {
     module.queue_storage_role_assignment
   ]
 
-  cron_expression          = each.value.cron_expression
+  cron_expression = each.value.cron_expression
 }

infrastructure/modules/container-apps/main.tf

@@ -17,9 +17,9 @@ module "webapp" {
     azurerm     = azurerm
     azurerm.hub = azurerm.hub
   }
-  source                           = "../dtos-devops-templates/infrastructure/modules/container-app"
-  name                             = "${var.app_short_name}-web-${var.environment}"
-  container_app_environment_id     = var.container_app_environment_id
+  source                       = "../dtos-devops-templates/infrastructure/modules/container-app"
+  name                         = "${var.app_short_name}-web-${var.environment}"
+  container_app_environment_id = var.container_app_environment_id
 
   # alerts
   action_group_id        = var.action_group_id

infrastructure/modules/container-apps/postgres.tf

@@ -99,10 +99,10 @@ module "database_container" {
   }
 
   # alerts
-  action_group_id         = var.action_group_id
-  enable_alerting         = var.enable_alerting
-  alert_memory_threshold  = 60
-  alert_cpu_threshold     = 90
+  action_group_id        = var.action_group_id
+  enable_alerting        = var.enable_alerting
+  alert_memory_threshold = 60
+  alert_cpu_threshold    = 90
 
   resource_group_name = azurerm_resource_group.main.name
   is_tcp_app          = true

infrastructure/modules/infra/main.tf

@@ -67,3 +67,40 @@ module "container-app-environment" {
   vnet_integration_subnet_id = module.container_app_subnet.id
   private_dns_zone_rg_name   = "rg-hub-${var.hub}-uks-private-dns-zones"
 }
+
+module "app_insights_audit" {
+  source = "../dtos-devops-templates/infrastructure/modules/app-insights"
+
+  name                = module.shared_config.names.app-insights
+  location            = var.region
+  resource_group_name = azurerm_resource_group.main.name
+  appinsights_type    = "web"
+
+  log_analytics_workspace_id = module.log_analytics_workspace_audit.id
+}
+
+module "private_link_scoped_service_law" {
+  source = "../dtos-devops-templates/infrastructure/modules/private-link-scoped-service"
+
+  providers = {
+    azurerm = azurerm.hub
+  }
+
+  name                = "pls-${var.app_short_name}-${var.environment}-law"
+  resource_group_name = "rg-hub-${var.hub}-uks-hub-private-endpoints"
+  linked_resource_id  = module.log_analytics_workspace_audit.id
+  scope_name          = "ampls-${var.hub}hub"
+}
+
+module "private_link_scoped_service_app_insights" {
+  source = "../dtos-devops-templates/infrastructure/modules/private-link-scoped-service"
+
+  providers = {
+    azurerm = azurerm.hub
+  }
+
+  name                = "pls-${var.app_short_name}-${var.environment}-appinsights"
+  resource_group_name = "rg-hub-${var.hub}-uks-hub-private-endpoints"
+  linked_resource_id  = module.app_insights_audit.id
+  scope_name          = "ampls-${var.hub}hub"
+}