Add data sources for dcrs

hmcts · Sep 5, 2024 · c073fdf · c073fdf
1 parent 34de818
commit c073fdf
Showing 1 changed file with 13 additions and 96 deletions.
diff --git a/azure_monitor.tf b/azure_monitor.tf
@@ -26,113 +26,30 @@ resource "azurerm_virtual_machine_extension" "azure_monitor" {
   tags = var.common_tags
 }
 
-data "azurerm_resource_group" "log_analytics_rg" {
-  provider = azurerm.loganalytics
+data "azurerm_resource_group" "la_rg" {
+  provider = azurerm.dcr
   name     = "oms-automation"
 }
 
-data "azurerm_log_analytics_workspace" "workspace" {
-  provider            = azurerm.loganalytics
-  name                = var.log_analytics_workspace_names[var.env]
-  resource_group_name = data.azurerm_resource_group.log_analytics_rg.name
+data "azurerm_monitor_data_collection_rule" "linux_data_collection_rule" {
+  provider            = azurerm.dcr
+  name                = "ama-linux-vm-logs"
+  resource_group_name = data.azurerm_resource_group.la_rg.name
 }
 
-resource "azurerm_monitor_data_collection_rule" "windows_data_collection_rule" {
-  provider            = azurerm.loganalytics
+data "azurerm_monitor_data_collection_rule" "windows_data_collection_rule" {
+  provider            = azurerm.dcr
   name                = "ama-windows-vm-logs"
-  resource_group_name = data.azurerm_log_analytics_workspace.workspace.resource_group_name
-  location            = var.location
-  kind                = "Windows"
-  description         = "A data collection rule for collecting Windows event logs and sending them to the appropriate log analytics workspace."
-
-  destinations {
-    log_analytics {
-      workspace_resource_id = data.azurerm_log_analytics_workspace.workspace.id
-      name                  = local.log_analytics_workspace
-    }
-  }
-
-  data_flow {
-    streams      = ["Microsoft-WindowsEvent"]
-    destinations = [local.log_analytics_workspace]
-  }
-
-  data_sources {
-    windows_event_log {
-      streams        = ["Microsoft-WindowsEvent"]
-      x_path_queries = ["Application!*[System[(Level = 1 or Level = 2 or Level = 3)]]", "System!*[System[(Level = 1 or Level = 2 or Level = 3)]]"]
-      name           = "ms-windows-event-log"
-    }
-
-    windows_event_log {
-      streams        = ["Microsoft-Event"]
-      x_path_queries = ["Application!*[System[(Level = 1 or Level = 2 or Level = 3)]]", "System!*[System[(Level = 1 or Level = 2 or Level = 3)]]"]
-      name           = "ms-event-log"
-    }
-
-    windows_event_log {
-      streams        = ["Microsoft-SecurityEvent"]
-      x_path_queries = ["Application!*[System[(Level = 1 or Level = 2 or Level = 3)]]", "System!*[System[(Level = 1 or Level = 2 or Level = 3)]]"]
-      name           = "ms-security-event-log"
-    }
-  }
+  resource_group_name = data.azurerm_resource_group.la_rg.name
 }
 
-resource "azurerm_monitor_data_collection_rule" "linux_data_collection_rule" {
-  provider            = azurerm.loganalytics
-  name                = "ama-linux-vm-logs"
-  resource_group_name = data.azurerm_log_analytics_workspace.workspace.resource_group_name
-  location            = var.location
-  kind                = "Linux"
-  description         = "A data collection rule for collecting Linux syslog and performance counters and sending them to the appropriate log analytics workspace."
-
-  destinations {
-    log_analytics {
-      workspace_resource_id = data.azurerm_log_analytics_workspace.workspace.id
-      name                  = local.log_analytics_workspace
-    }
-  }
-
-  data_flow {
-    streams      = ["Microsoft-Perf"]
-    destinations = [local.log_analytics_workspace]
-  }
-
-  data_flow {
-    streams      = ["Microsoft-Syslog"]
-    destinations = [local.log_analytics_workspace]
-  }
-
-  data_sources {
-    performance_counter {
-      streams                       = ["Microsoft-Perf"]
-      sampling_frequency_in_seconds = 300
-      counter_specifiers            = ["% Used Inodes", "% Used Space", "Disk Reads/sec", "Disk Transfers/sec", "Disk Writes/sec", "Free Megabytes"]
-      name                          = "ms-performance"
-    }
-
-    syslog {
-      facility_names = ["auth", "cron", "daemon", "local0", "local1", "local2", "local3", "local4", "local5", "local6", "local7", "user"]
-      log_levels     = ["Emergency", "Alert", "Critical", "Error"]
-      streams        = ["Microsoft-Syslog"]
-      name           = "ms-syslog-error"
-    }
-
-    syslog {
-      facility_names = ["syslog"]
-      log_levels     = ["Emergency", "Alert", "Critical", "Error", "Warning", "Notice", "Info"]
-      streams        = ["Microsoft-Syslog"]
-      name           = "ms-syslog-info"
-    }
-  }
-}
 
 resource "azurerm_monitor_data_collection_rule_association" "linux_vm_dcra" {
   count = var.install_azure_monitor == true && lower(var.os_type) == "linux" && var.virtual_machine_type == "vm" ? 1 : 0
 
   name                    = "vm-${var.virtual_machine_id}-dcra"
   target_resource_id      = var.virtual_machine_id
-  data_collection_rule_id = azurerm_monitor_data_collection_rule.linux_data_collection_rule.id
+  data_collection_rule_id = data.azurerm_monitor_data_collection_rule.linux_data_collection_rule.id
   description             = "Association between a linux VM and the appropriate data collection rule."
 }
 
@@ -141,7 +58,7 @@ resource "azurerm_monitor_data_collection_rule_association" "linux_vmss_dcra" {
 
   name                    = "vmss-${var.virtual_machine_scale_set_id}-dcra"
   target_resource_id      = var.virtual_machine_scale_set_id
-  data_collection_rule_id = azurerm_monitor_data_collection_rule.linux_data_collection_rule.id
+  data_collection_rule_id = data.azurerm_monitor_data_collection_rule.linux_data_collection_rule.id
   description             = "Association between a linux VMSS and the appropriate data collection rule."
 }
 
@@ -150,7 +67,7 @@ resource "azurerm_monitor_data_collection_rule_association" "windows_vm_dcra" {
 
   name                    = "vm-${var.virtual_machine_id}-dcra"
   target_resource_id      = var.virtual_machine_id
-  data_collection_rule_id = azurerm_monitor_data_collection_rule.windows_data_collection_rule.id
+  data_collection_rule_id = data.azurerm_monitor_data_collection_rule.windows_data_collection_rule.id
   description             = "Association between a windows VM and the appropriate data collection rule."
 }
 
@@ -159,6 +76,6 @@ resource "azurerm_monitor_data_collection_rule_association" "windows_vmss_dcra"
 
   name                    = "vmss-${var.virtual_machine_scale_set_id}-dcra"
   target_resource_id      = var.virtual_machine_scale_set_id
-  data_collection_rule_id = azurerm_monitor_data_collection_rule.windows_data_collection_rule.id
+  data_collection_rule_id = data.azurerm_monitor_data_collection_rule.windows_data_collection_rule.id
   description             = "Association between a windows VMSS and the appropriate data collection rule."
 }