[NDR-211-truststore] Create truststore bucket for CA cert for mTLS (#396)

* NDR-211-truststore Create truststore bucket for CA cert for mTLS

* NDR-211-truststore Correct spelling

* NDR-211-truststore Enable bucket versioning and force destroy

* NDR-211-truststore Unique bucket name

Author: megan-bower4

infrastructure/buckets.tf

@@ -116,6 +116,17 @@ module "ndr-bulk-staging-store" {
   ]
 }
 
+module "ndr-truststore" {
+  source                   = "./modules/s3"
+  access_logs_enabled      = local.is_production
+  access_logs_bucket_id    = local.access_logs_bucket_id
+  bucket_name              = var.truststore_bucket_name
+  environment              = var.environment
+  owner                    = var.owner
+  enable_bucket_versioning = true
+  force_destroy            = local.is_force_destroy
+}
+
 # Lifecycle Rules
 resource "aws_s3_bucket_lifecycle_configuration" "lg-lifecycle-rules" {
   bucket = module.ndr-lloyd-george-store.bucket_id

infrastructure/variable.tf

@@ -57,6 +57,12 @@ variable "statistical_reports_bucket_name" {
   default     = "statistical-reports"
 }
 
+variable "truststore_bucket_name" {
+  type        = string
+  description = "The name of the S3 bucket to store trusted CA's for MTLS"
+  default     = "ndr-truststore"
+}
+
 # DynamoDB Table Variables
 
 variable "pdm_dynamodb_table_name" {