Add optional alarm trigger for PR env

Author: francisco-videira-nhs

infrastructure/terraform/components/api/README.md

@@ -17,6 +17,7 @@ No requirements.
 | <a name="input_core_environment"></a> [core\_environment](#input\_core\_environment) | Environment of Core | `string` | `"prod"` | no |
 | <a name="input_default_tags"></a> [default\_tags](#input\_default\_tags) | A map of default tags to apply to all taggable resources within the component | `map(string)` | `{}` | no |
 | <a name="input_disable_gateway_execute_endpoint"></a> [disable\_gateway\_execute\_endpoint](#input\_disable\_gateway\_execute\_endpoint) | Disable the execution endpoint for the API Gateway | `bool` | `true` | no |
+| <a name="input_enable_alarms_in_non_main"></a> [enable\_alarms\_in\_non\_main](#input\_enable\_alarms\_in\_non\_main) | Enable CloudWatch alarms in non-main environments (for example PR environments) | `bool` | `false` | no |
 | <a name="input_enable_api_data_trace"></a> [enable\_api\_data\_trace](#input\_enable\_api\_data\_trace) | Enable API Gateway data trace logging | `bool` | `false` | no |
 | <a name="input_enable_backups"></a> [enable\_backups](#input\_enable\_backups) | Enable backups | `bool` | `false` | no |
 | <a name="input_enable_event_cache"></a> [enable\_event\_cache](#input\_enable\_event\_cache) | Enable caching of events to an S3 bucket | `bool` | `true` | no |

infrastructure/terraform/components/api/cloudwatch_metric_alarm_apigw_5xx.tf

@@ -1,4 +1,6 @@
 resource "aws_cloudwatch_metric_alarm" "apigw_five_xx" {
+  count = local.alarms_enabled ? 1 : 0
+
   alarm_name        = "${local.csi}-apigw-5xx"
   alarm_description = "RELIABILITY: API Gateway 5xx responses"
 

infrastructure/terraform/components/api/cloudwatch_metric_alarm_apigw_latency_anomaly.tf

@@ -1,4 +1,6 @@
 resource "aws_cloudwatch_metric_alarm" "apigw_latency_anomaly" {
+  count = local.alarms_enabled ? 1 : 0
+
   alarm_name          = "${local.csi}-apigw-latency-anomaly"
   alarm_description   = "RELIABILITY: API Gateway latency anomaly"
   comparison_operator = "GreaterThanUpperThreshold"

infrastructure/terraform/components/api/cloudwatch_metric_alarm_apigw_latency_threshold.tf

@@ -1,4 +1,6 @@
 resource "aws_cloudwatch_metric_alarm" "apigw_latency_threshold" {
+  count = local.alarms_enabled ? 1 : 0
+
   alarm_name        = "${local.csi}-apigw-latency-threshold"
   alarm_description = "RELIABILITY: API Gateway latency above threshold"
 

infrastructure/terraform/components/api/locals_alarms.tf

@@ -1,4 +1,6 @@
 locals {
+  alarms_enabled = var.environment == "main" || var.enable_alarms_in_non_main
+
   apigw_alarm_dimensions = {
     ApiName = aws_api_gateway_rest_api.main.name
     Stage   = aws_api_gateway_stage.main.stage_name

infrastructure/terraform/components/api/module_ddb_alarms_letter_queue.tf

@@ -1,4 +1,5 @@
 module "ddb_alarms_letter_queue" {
+  count        = local.alarms_enabled ? 1 : 0
   source       = "../../modules/alarms-ddb"
   alarm_prefix = local.csi
   table_name   = aws_dynamodb_table.letter_queue.name

infrastructure/terraform/components/api/module_ddb_alarms_letters.tf

@@ -1,4 +1,5 @@
 module "ddb_alarms_letters" {
+  count        = local.alarms_enabled ? 1 : 0
   source       = "../../modules/alarms-ddb"
   alarm_prefix = local.csi
   table_name   = aws_dynamodb_table.letters.name

infrastructure/terraform/components/api/module_ddb_alarms_mi.tf

@@ -1,4 +1,5 @@
 module "ddb_alarms_mi" {
+  count        = local.alarms_enabled ? 1 : 0
   source       = "../../modules/alarms-ddb"
   alarm_prefix = local.csi
   table_name   = aws_dynamodb_table.mi.name

infrastructure/terraform/components/api/module_ddb_alarms_suppliers.tf

@@ -1,4 +1,5 @@
 module "ddb_alarms_suppliers" {
+  count        = local.alarms_enabled ? 1 : 0
   source       = "../../modules/alarms-ddb"
   alarm_prefix = local.csi
   table_name   = aws_dynamodb_table.suppliers.name

infrastructure/terraform/components/api/module_lambda_alarms.tf

@@ -1,5 +1,5 @@
 module "lambda_alarms" {
-  for_each = local.lambda_alarm_targets
+  for_each = local.alarms_enabled ? local.lambda_alarm_targets : {}
   source   = "../../modules/alarms-lambda"
 
   alarm_prefix   = local.csi