Merge pull request #910 from ministryofjustice/feature/share-ip-pool

Share IPAM pool with noc-production

organisation-security/terraform/ipam.tf

@@ -67,3 +67,8 @@ resource "aws_ram_resource_association" "network_operations_centre_byoip" {
   resource_arn       = aws_vpc_ipam_pool.network_operations_centre.arn
   resource_share_arn = aws_ram_resource_share.network_operations_centre_byoip.arn
 }
+
+resource "aws_ram_principal_association" "network_operations_centre_production_byoip" {
+  principal          = local.moj_network_operations_centre_production_account_id
+  resource_share_arn = aws_ram_resource_share.network_operations_centre_byoip.arn
+}

organisation-security/terraform/locals.tf

@@ -19,6 +19,12 @@ locals {
     if account.name == "Workplace Tech Proof Of Concept Development"
   ]...)
 
+  moj_network_operations_centre_production_account_id = coalesce([
+    for account in local.organizations_organization.accounts :
+    account.id
+    if account.name == "moj-network-operations-centre-production"
+  ]...)
+
   organisation_account_numbers = [for account in local.organizations_organization.accounts : account.id]
 
   # AWS Organizational Units