Move api keys and membership provisioning tables to terraform

Author: devksingh4

cloudformation/main.yml

@@ -305,43 +305,6 @@ Resources:
       FunctionResponseTypes:
         - ReportBatchItemFailures
 
-  MembershipRecordsTable:
-    Type: "AWS::DynamoDB::Table"
-    DeletionPolicy: "Retain"
-    UpdateReplacePolicy: "Retain"
-    Properties:
-      BillingMode: "PAY_PER_REQUEST"
-      TableName: infra-core-api-membership-provisioning
-      DeletionProtectionEnabled: true
-      PointInTimeRecoverySpecification:
-        PointInTimeRecoveryEnabled: !If [IsProd, true, false]
-      AttributeDefinitions:
-        - AttributeName: email
-          AttributeType: S
-      KeySchema:
-        - AttributeName: email
-          KeyType: HASH
-
-  ApiKeyTable:
-    Type: "AWS::DynamoDB::Table"
-    DeletionPolicy: "Retain"
-    UpdateReplacePolicy: "Retain"
-    Properties:
-      BillingMode: "PAY_PER_REQUEST"
-      TableName: infra-core-api-keys
-      DeletionProtectionEnabled: !If [IsProd, true, false]
-      PointInTimeRecoverySpecification:
-        PointInTimeRecoveryEnabled: !If [IsProd, true, false]
-      AttributeDefinitions:
-        - AttributeName: keyId
-          AttributeType: S
-      KeySchema:
-        - AttributeName: keyId
-          KeyType: HASH
-      TimeToLiveSpecification:
-        AttributeName: expiresAt
-        Enabled: true
-
   ExternalMembershipV3RecordsTable:
     Type: "AWS::DynamoDB::Table"
     DeletionPolicy: "Retain"

terraform/envs/prod/main.tf

@@ -82,10 +82,45 @@ module "lambda_warmer" {
   source           = "github.com/acm-uiuc/terraform-modules/lambda-warmer?ref=v0.1.1"
   function_to_warm = "infra-core-api-lambda"
 }
-resource "null_resource" "delete_legacy_table" {
 
-  provisioner "local-exec" {
-    command = "aws dynamodb update-table --table-name infra-core-api-membership-external --no-deletion-protection-enabled && aws dynamodb delete-table --table-name infra-core-api-membership-external"
+// Membership Logs
+import {
+  to = aws_dynamodb_table.membership_provisioning_log
+  id = "${var.ProjectId}-membership-provisioning"
+}
+resource "aws_dynamodb_table" "membership_provisioning_log" {
+  billing_mode                = "PAY_PER_REQUEST"
+  name                        = "${var.ProjectId}-membership-provisioning"
+  deletion_protection_enabled = true
+  hash_key                    = "email"
+  point_in_time_recovery {
+    enabled = true
   }
+  attribute {
+    name = "email"
+    type = "S"
+  }
+}
 
+// API Keys
+import {
+  to = aws_dynamodb_table.api_keys
+  id = "${var.ProjectId}-api-keys"
+}
+resource "aws_dynamodb_table" "api_keys" {
+  billing_mode                = "PAY_PER_REQUEST"
+  name                        = "${var.ProjectId}-api-keys"
+  deletion_protection_enabled = true
+  hash_key                    = "keyId"
+  point_in_time_recovery {
+    enabled = true
+  }
+  attribute {
+    name = "keyId"
+    type = "S"
+  }
+  ttl {
+    attribute_name = "expiresAt"
+    enabled        = true
+  }
 }

terraform/envs/qa/main.tf

@@ -70,3 +70,46 @@ module "lambda_warmer" {
   source           = "github.com/acm-uiuc/terraform-modules/lambda-warmer?ref=v0.1.1"
   function_to_warm = "infra-core-api-lambda"
 }
+
+
+// Membership Logs
+import {
+  to = aws_dynamodb_table.membership_provisioning_log
+  id = "${var.ProjectId}-membership-provisioning"
+}
+resource "aws_dynamodb_table" "membership_provisioning_log" {
+  billing_mode                = "PAY_PER_REQUEST"
+  name                        = "${var.ProjectId}-membership-provisioning"
+  deletion_protection_enabled = true
+  hash_key                    = "email"
+  point_in_time_recovery {
+    enabled = true
+  }
+  attribute {
+    name = "email"
+    type = "S"
+  }
+}
+
+// API Keys
+import {
+  to = aws_dynamodb_table.api_keys
+  id = "${var.ProjectId}-api-keys"
+}
+resource "aws_dynamodb_table" "api_keys" {
+  billing_mode                = "PAY_PER_REQUEST"
+  name                        = "${var.ProjectId}-api-keys"
+  deletion_protection_enabled = true
+  hash_key                    = "keyId"
+  point_in_time_recovery {
+    enabled = true
+  }
+  attribute {
+    name = "keyId"
+    type = "S"
+  }
+  ttl {
+    attribute_name = "expiresAt"
+    enabled        = true
+  }
+}