CCM-12614: add sqs queue and rule

Author: Ian-Hodges

infrastructure/terraform/components/dl/README.md

@@ -45,6 +45,7 @@ No requirements.
 | <a name="module_s3bucket_letters"></a> [s3bucket\_letters](#module\_s3bucket\_letters) | https://github.com/NHSDigital/nhs-notify-shared-modules/releases/download/v2.0.24/terraform-s3bucket.zip | n/a |
 | <a name="module_s3bucket_static_assets"></a> [s3bucket\_static\_assets](#module\_s3bucket\_static\_assets) | https://github.com/NHSDigital/nhs-notify-shared-modules/releases/download/v2.0.24/terraform-s3bucket.zip | n/a |
 | <a name="module_sqs_event_publisher_errors"></a> [sqs\_event\_publisher\_errors](#module\_sqs\_event\_publisher\_errors) | https://github.com/NHSDigital/nhs-notify-shared-modules/releases/download/v2.0.24/terraform-sqs.zip | n/a |
+| <a name="module_sqs_poll_pdm"></a> [sqs\_poll\_pdm](#module\_sqs\_poll\_pdm) | https://github.com/NHSDigital/nhs-notify-shared-modules/releases/download/v2.0.24/terraform-sqs.zip | n/a |
 | <a name="module_sqs_ttl"></a> [sqs\_ttl](#module\_sqs\_ttl) | https://github.com/NHSDigital/nhs-notify-shared-modules/releases/download/v2.0.24/terraform-sqs.zip | n/a |
 | <a name="module_sqs_ttl_handle_expiry_errors"></a> [sqs\_ttl\_handle\_expiry\_errors](#module\_sqs\_ttl\_handle\_expiry\_errors) | https://github.com/NHSDigital/nhs-notify-shared-modules/releases/download/v2.0.24/terraform-sqs.zip | n/a |
 | <a name="module_ttl_create"></a> [ttl\_create](#module\_ttl\_create) | https://github.com/NHSDigital/nhs-notify-shared-modules/releases/download/v2.0.24/terraform-lambda.zip | n/a |

infrastructure/terraform/components/dl/cloudwatch_event_rule_pdm_resource_submitted.tf

@@ -0,0 +1,20 @@
+resource "aws_cloudwatch_event_rule" "pdm_resource_submitted" {
+  name           = "${local.csi}-pdm-resource-submitted"
+  description    = "PDM resource submitted event rule"
+  event_bus_name = aws_cloudwatch_event_bus.main.name
+
+  event_pattern = jsonencode({
+    "detail" : {
+      "type" : [
+        "uk.nhs.notify.digital.letters.pdm.resource.submitted.v1"
+      ]
+    }
+  })
+}
+
+resource "aws_cloudwatch_event_target" "pdm_resource_submitted" {
+  rule           = aws_cloudwatch_event_rule.pdm_resource_submitted.name
+  arn            = module.sqs_poll_pdm.sqs_queue_arn
+  target_id      = "pdm-resource-submitted-target"
+  event_bus_name = aws_cloudwatch_event_bus.main.name
+}

infrastructure/terraform/components/dl/lambda_event_source_mapping_poll_pdm_lambda.tf

@@ -0,0 +1,10 @@
+resource "aws_lambda_event_source_mapping" "poll_pdm_lambda" {
+  event_source_arn                   = module.sqs_poll_pdm.sqs_queue_arn
+  function_name                      = module.poll_pdm.function_name
+  batch_size                         = var.queue_batch_size
+  maximum_batching_window_in_seconds = var.queue_batch_window_seconds
+
+  function_response_types = [
+    "ReportBatchItemFailures"
+  ]
+}

infrastructure/terraform/components/dl/module_lambda_poll_pdm.tf

@@ -25,7 +25,7 @@ module "poll_pdm" {
   handler_function_name   = "handler"
   runtime                 = "nodejs22.x"
   memory                  = 128
-  timeout                 = 360
+  timeout                 = 60
   log_level               = var.log_level
 
   force_lambda_code_deploy = var.force_lambda_code_deploy
@@ -70,4 +70,19 @@ data "aws_iam_policy_document" "poll_pdm_lambda" {
       module.sqs_event_publisher_errors.sqs_queue_arn,
     ]
   }
+  statement {
+    sid    = "SQSPermissionsPollPdmQueue"
+    effect = "Allow"
+
+    actions = [
+      "sqs:ReceiveMessage",
+      "sqs:DeleteMessage",
+      "sqs:GetQueueAttributes",
+      "sqs:GetQueueUrl",
+    ]
+
+    resources = [
+      module.sqs_poll_pdm.sqs_queue_arn,
+    ]
+  }
 }

infrastructure/terraform/components/dl/module_sqs_poll_pdm.tf

@@ -0,0 +1,35 @@
+module "sqs_poll_pdm" {
+  source = "https://github.com/NHSDigital/nhs-notify-shared-modules/releases/download/v2.0.24/terraform-sqs.zip"
+
+  aws_account_id             = var.aws_account_id
+  component                  = local.component
+  environment                = var.environment
+  project                    = var.project
+  region                     = var.region
+  name                       = "poll-pdm"
+  sqs_kms_key_arn            = module.kms.key_arn
+  visibility_timeout_seconds = 60
+  delay_seconds              = 5
+  create_dlq                 = true
+  sqs_policy_overload        = data.aws_iam_policy_document.sqs_poll_pdm.json
+}
+
+data "aws_iam_policy_document" "sqs_poll_pdm" {
+  statement {
+    sid    = "AllowEventBridgeToSendMessage"
+    effect = "Allow"
+
+    principals {
+      type        = "Service"
+      identifiers = ["events.amazonaws.com"]
+    }
+
+    actions = [
+      "sqs:SendMessage"
+    ]
+
+    resources = [
+      "arn:aws:sqs:${var.region}:${var.aws_account_id}:${var.project}-${var.environment}-${local.component}-poll-pdm-queue"
+    ]
+  }
+}