From d1517f989f62decc53471bf9cf60259f8fddfe0a Mon Sep 17 00:00:00 2001
From: Stefan Wessels Beljaars <swesselsbeljaars@schubergphilis.com>
Date: Tue, 2 Jan 2024 16:35:55 +0100
Subject: [PATCH] Adds S3 bucket for Audit Manager assessment report

Signed-off-by: Stefan Wessels Beljaars <swesselsbeljaars@schubergphilis.com>
---
 audit_manager.tf | 28 ++++++++++++++++++++++++++++
 1 file changed, 28 insertions(+)

diff --git a/audit_manager.tf b/audit_manager.tf
index 6f90986..10d0dac 100644
--- a/audit_manager.tf
+++ b/audit_manager.tf
@@ -5,3 +5,31 @@ resource "aws_auditmanager_account_registration" "default" {
   deregister_on_destroy   = true
   kms_key                 = module.kms_key_audit.arn
 }
+
+module "audit-manager-reports" {
+  source  = "schubergphilis/mcaf-s3/aws"
+  version = "0.12.0"
+
+  name_prefix = "audit-manager-reports"
+  versioning  = true
+
+  lifecycle_rule = [
+    {
+      id      = "retention"
+      enabled = true
+
+      abort_incomplete_multipart_upload = {
+        days_after_initiation = 7
+      }
+
+      noncurrent_version_expiration = {
+        noncurrent_days = 90
+      }
+
+      noncurrent_version_transition = {
+        noncurrent_days = 14
+        storage_class   = "ONEZONE_IA"
+      }
+    }
+  ]
+}