create datahub config bucket

Author: Tian-2017

terraform/compliance/s3.feature

@@ -13,6 +13,7 @@ Feature: S3
   @exclude_module.file_sync_destination_nec.aws_s3_bucket.log_bucket
   @exclude_module.arcus_data_storage.aws_s3_bucket.bucket
   @exclude_module.user_uploads.aws_s3_bucket.bucket
+  @exclude_module.datahub_config.aws_s3_bucket.bucket
 
   # This rule is in place for legacy buckets created with the deprecated block within the aws_s3_bucket resource
   Scenario: Data must be encrypted at rest for buckets created using server_side_encryption_configuration property within bucket resource

terraform/core/10-aws-s3-utility-buckets.tf

@@ -164,6 +164,21 @@ module "user_uploads" {
   include_backup_policy_tags = false
 }
 
+#===============================================================================
+# DataHub Config Bucket to store the DataHub YAML configuration files
+#===============================================================================
+
+module "datahub_config" {
+  source                     = "../modules/s3-bucket"
+  tags                       = module.tags.values
+  project                    = var.project
+  environment                = var.environment
+  identifier_prefix          = local.identifier_prefix
+  bucket_name                = "datahub-config"
+  bucket_identifier          = "datahub-config"
+  include_backup_policy_tags = false
+}
+
 #===============================================================================
 # MWAA Buckets
 #===============================================================================