CCM-11211 make s3 buckets destroyable in dev

infrastructure/terraform/components/cdn/README.md

@@ -23,6 +23,7 @@
 | <a name="input_enable_github_actions_ip_access"></a> [enable\_github\_actions\_ip\_access](#input\_enable\_github\_actions\_ip\_access) | Should the Github actions runner IP addresses be permitted access to this distribution. This should not be enabled in production environments | `bool` | `false` | no |
 | <a name="input_environment"></a> [environment](#input\_environment) | The name of the tfscaffold environment | `string` | n/a | yes |
 | <a name="input_force_lambda_code_deploy"></a> [force\_lambda\_code\_deploy](#input\_force\_lambda\_code\_deploy) | If the lambda package in s3 has the same commit id tag as the terraform build branch, the lambda will not update automatically. Set to True if making changes to Lambda code from on the same commit for example during development | `bool` | `false` | no |
+| <a name="input_force_s3_destroy"></a> [force\_s3\_destroy](#input\_force\_s3\_destroy) | Flag to force deletion of S3 buckets | `bool` | `false` | no |
 | <a name="input_group"></a> [group](#input\_group) | The group variables are being inherited from (often synonmous with account short-name) | `string` | n/a | yes |
 | <a name="input_kms_deletion_window"></a> [kms\_deletion\_window](#input\_kms\_deletion\_window) | When a kms key is deleted, how long should it wait in the pending deletion state? | `string` | `"30"` | no |
 | <a name="input_log_level"></a> [log\_level](#input\_log\_level) | The log level to be used in lambda functions within the component. Any log with a lower severity than the configured value will not be logged: https://docs.python.org/3/library/logging.html#levels | `string` | `"INFO"` | no |

infrastructure/terraform/components/cdn/module_s3bucket_cf_logs.tf

@@ -13,7 +13,7 @@ module "s3bucket_cf_logs" {
   component      = var.component
 
   acl           = "private"
-  force_destroy = false
+  force_destroy = var.force_s3_destroy
   versioning    = true
 
   object_ownership = "ObjectWriter"

infrastructure/terraform/components/cdn/variables.tf

@@ -93,6 +93,12 @@ variable "force_lambda_code_deploy" {
   default     = false
 }
 
+variable "force_s3_destroy" {
+  type        = bool
+  description = "Flag to force deletion of S3 buckets"
+  default     = false
+}
+
 variable "waf_rate_limit_cdn" {
   type        = number
   description = "The rate limit is the maximum number of CDN requests from a single IP address that are allowed in a five-minute period"