NHSDigital
diff --git a/‎infrastructure/instance/ecs_batch_processor_config.tf‎
Lines changed: 1 addition & 8 deletions b/‎infrastructure/instance/ecs_batch_processor_config.tf‎
Lines changed: 1 addition & 8 deletions
diff --git a/‎infrastructure/instance/endpoints.tf‎
Lines changed: 0 additions & 28 deletions b/‎infrastructure/instance/endpoints.tf‎
Lines changed: 0 additions & 28 deletions
diff --git a/‎infrastructure/instance/modules/lambda/outputs.tf‎
Lines changed: 0 additions & 3 deletions b/‎infrastructure/instance/modules/lambda/outputs.tf‎
Lines changed: 0 additions & 3 deletions
diff --git a/‎infrastructure/instance/policies/s3_data_quality_access.json‎
Lines changed: 0 additions & 23 deletions b/‎infrastructure/instance/policies/s3_data_quality_access.json‎
Lines changed: 0 additions & 23 deletions
diff --git a/‎infrastructure/instance/s3_dq_reports.tf‎
Lines changed: 0 additions & 99 deletions b/‎infrastructure/instance/s3_dq_reports.tf‎
Lines changed: 0 additions & 99 deletions
@@ -158,14 +158,7 @@ resource "aws_iam_policy" "ecs_task_exec_policy" {
           "firehose:PutRecordBatch"
         ],
         "Resource" : "arn:aws:firehose:*:*:deliverystream/${module.splunk.firehose_stream_name}"
-      },
-      {
-        Effect = "Allow",
-        Action = [
-          "s3:PutObject",
-        ],
-        Resource = "${aws_s3_bucket.data_quality_reports_bucket.arn}/*"
-      },
+      }
     ]
   })
 }
 
@@ -4,7 +4,6 @@ locals {
   policy_path = "${path.root}/policies"
 }
 
-# Select the Policy folder
 data "aws_iam_policy_document" "logs_policy_document" {
   source_policy_documents = [templatefile("${local.policy_path}/log.json", {})]
 }
@@ -59,20 +58,6 @@ data "aws_iam_policy_document" "imms_policy_document" {
   ]
 }
 
-data "aws_iam_policy_document" "imms_data_quality_s3_doc" {
-  source_policy_documents = [
-    templatefile("${local.policy_path}/s3_data_quality_access.json", {
-      s3_bucket_arn = aws_s3_bucket.data_quality_reports_bucket.arn
-      kms_key_arn   = data.aws_kms_key.existing_s3_encryption_key.arn
-    })
-  ]
-}
-
-resource "aws_iam_policy" "imms_s3_kms_policy" {
-  name   = "${local.short_prefix}-s3-kms-policy"
-  policy = data.aws_iam_policy_document.imms_data_quality_s3_doc.json
-}
-
 module "imms_event_endpoint_lambdas" {
   source = "./modules/lambda"
   count  = length(local.imms_endpoints)
@@ -89,19 +74,6 @@ module "imms_event_endpoint_lambdas" {
   environment                       = var.environment
 }
 
-
-# Attach data quality report S3 bucket and KMS policy only to "create_imms" and "update_imms" endpoints
-resource "aws_iam_role_policy_attachment" "attach_data_quality_s3_to_specific_lambdas" {
-  for_each = {
-    for i, mod in module.imms_event_endpoint_lambdas :
-    local.imms_endpoints[i] => mod
-    if local.imms_endpoints[i] == "create_imms" || local.imms_endpoints[i] == "update_imms"
-  }
-
-  role       = each.value.lambda_role_name
-  policy_arn = aws_iam_policy.imms_s3_kms_policy.arn
-}
-
 locals {
   # Mapping outputs with each called lambda
   imms_lambdas = {
 
@@ -7,6 +7,3 @@ output "lambda_arn" {
 output "invoke_arn" {
   value = module.lambda_function_container_image.lambda_function_invoke_arn
 }
-output "lambda_role_name" {
-  value = aws_iam_role.lambda_role.name
-}
Original file line number	Diff line number	Diff line change
`@@ -7,6 +7,3 @@ output "lambda_arn" {`
`7`	`7`	`output "invoke_arn" {`
`8`	`8`	`value = module.lambda_function_container_image.lambda_function_invoke_arn`
`9`	`9`	`}`
`10`		`-output "lambda_role_name" {`
`11`		`- value = aws_iam_role.lambda_role.name`
`12`		`-}`