NDR-213 mtls custom cert subdomain prefix

Author: megan-bower4

infrastructure/dev.tfvars

@@ -3,6 +3,7 @@ owner                             = "nhse/ndr-team"
 domain                            = "access-request-fulfilment.patient-deductions.nhs.uk"
 certificate_domain                = "access-request-fulfilment.patient-deductions.nhs.uk"
 certificate_subdomain_name_prefix = "api-"
+certificate_subdomain_name_prefix_mtls = "mtls-"
 
 standalone_vpc_tag    = "ndr-dev"
 standalone_vpc_ig_tag = "ndr-dev"

infrastructure/preprod.tfvars

@@ -3,6 +3,7 @@ owner                             = "nhse/ndr-team"
 domain                            = "national-document-repository.nhs.uk"
 certificate_domain                = "pre-prod.national-document-repository.nhs.uk"
 certificate_subdomain_name_prefix = "api."
+certificate_subdomain_name_prefix_mtls = "mtls."
 
 standalone_vpc_tag    = "ndr-pre-prod"
 standalone_vpc_ig_tag = "ndr-pre-prod"

infrastructure/prod.tfvars

@@ -3,6 +3,7 @@ owner                             = "nhse/ndr-team"
 domain                            = "national-document-repository.nhs.uk"
 certificate_domain                = "national-document-repository.nhs.uk"
 certificate_subdomain_name_prefix = "api."
+certificate_subdomain_name_prefix_mtls = "mtls."
 
 standalone_vpc_tag    = "ndr-prod"
 standalone_vpc_ig_tag = "ndr-prod"

infrastructure/test.tfvars

@@ -3,6 +3,7 @@ owner                             = "nhse/ndr-team"
 domain                            = "access-request-fulfilment.patient-deductions.nhs.uk"
 certificate_domain                = "ndr-test.access-request-fulfilment.patient-deductions.nhs.uk"
 certificate_subdomain_name_prefix = "api."
+certificate_subdomain_name_prefix_mtls = "mtls."
 
 standalone_vpc_tag    = "ndr-test"
 standalone_vpc_ig_tag = "ndr-test"

infrastructure/variable.tf

@@ -20,6 +20,12 @@ variable "certificate_subdomain_name_prefix" {
   default     = "api-"
 }
 
+variable "certificate_subdomain_name_prefix_mtls" {
+  description = "Prefix to add to subdomains on certification configurations, dev envs use api-{env}, prod envs use api.{env}."
+  type        = string
+  default     = "mtls-"
+}
+
 # Bucket Variables
 variable "docstore_bucket_name" {
   description = "The name of the S3 bucket to store ARF documents."
@@ -225,8 +231,8 @@ locals {
   api_gateway_subdomain_name   = contains(["prod"], terraform.workspace) ? "${var.certificate_subdomain_name_prefix}" : "${var.certificate_subdomain_name_prefix}${terraform.workspace}"
   api_gateway_full_domain_name = contains(["prod"], terraform.workspace) ? "${var.certificate_subdomain_name_prefix}${var.domain}" : "${var.certificate_subdomain_name_prefix}${terraform.workspace}.${var.domain}"
 
-  mtls_api_gateway_subdomain_name   = contains(["prod"], terraform.workspace) ? "mtls.${var.certificate_subdomain_name_prefix}" : "mtls.${var.certificate_subdomain_name_prefix}${terraform.workspace}"
-  mtls_api_gateway_full_domain_name = contains(["prod"], terraform.workspace) ? "mtls.${var.domain}" : "mtls.${terraform.workspace}.${var.domain}"
+  mtls_api_gateway_subdomain_name   = contains(["prod"], terraform.workspace) ? "${var.certificate_subdomain_name_prefix_mtls}" : "${var.certificate_subdomain_name_prefix_mtls}${terraform.workspace}"
+  mtls_api_gateway_full_domain_name = contains(["prod"], terraform.workspace) ? "${var.certificate_subdomain_name_prefix_mtls}${var.domain}" : "${var.certificate_subdomain_name_prefix_mtls}${terraform.workspace}.${var.domain}"
 
   current_region     = data.aws_region.current.name
   current_account_id = data.aws_caller_identity.current.account_id