chore(shared-app): Authorizer migration to AKS [PAGOPA-1678] (#2052)

* [PAGOPA-1678] chore: Update cache_generator_hostname

* [PAGOPA-1678] feat(shared): Add authorizer federated identity

* [PAGOPA-1678] chore(shared): Update status-page

* [PAGOPA-1678] chore(shared): Update

src/domains/shared-app/04_apim_statuspage.tf

@@ -124,7 +124,7 @@ module "apim_api_statuspage_api_v1" {
       "apiconfigcacheo"          = format("%s/api-config-cache/o", format(local.aks_path, "apiconfig"))
       "apiconfigcachep"          = format("%s/api-config-cache/p", format(local.aks_path, "apiconfig"))
       "apiconfigselfcare"        = format("%s/pagopa-api-config-selfcare-integration", format(local.aks_path, "apiconfig"))
-      "authorizer"               = format("%s/", data.azurerm_function_app.authorizer.default_hostname)
+      "authorizer"               = format("%s//authorizer-functions", format(local.aks_path, "shared"))
       "authorizerconfig"         = format("%s//authorizer-config", format(local.aks_path, "shared"))
       "bizevents"                = format("%s/pagopa-biz-events-service", format(local.aks_path, "bizevents"))
       "bizeventsdatastoreneg"    = format("%s/pagopa-negative-biz-events-datastore-service", format(local.aks_path, "bizevents"))

src/domains/shared-app/05_authorizer_functions.tf

@@ -1,6 +1,5 @@
-
+// todo: remove and destroy
 locals {
-
   authorizer_functions_app_settings = {
     linux_fx_version                    = "JAVA|11"
     FUNCTIONS_WORKER_RUNTIME            = "java"
@@ -22,7 +21,7 @@ locals {
     IS_EC_ENROLLED_SQL_QUERY = "SELECT VALUE COUNT(i) FROM c JOIN i IN c.authorization WHERE c.domain = {domain} AND ARRAY_CONTAINS(c.authorization, {organizationFiscalCode})"
   }
 }
-
+// todo: remove and destroy
 # Subnet to host authorizer function
 module "authorizer_functions_snet" {
   source                                    = "git::https://github.com/pagopa/terraform-azurerm-v3.git//subnet?ref=v6.6.0"
@@ -44,11 +43,11 @@ module "authorizer_functions_snet" {
     }
   }
 }
-
+// todo: remove and destroy
 data "azurerm_resource_group" "shared_rg" {
   name = "${local.project}-rg"
 }
-
+// todo: remove and destroy
 module "authorizer_function_app" {
   source = "git::https://github.com/pagopa/terraform-azurerm-v3.git//function_app?ref=v7.29.0"
 
@@ -105,7 +104,7 @@ module "authorizer_function_app" {
 
   tags = var.tags
 }
-
+// todo: remove and destroy
 module "authorizer_function_app_slot_staging" {
   count = var.env_short == "p" ? 1 : 0
 
@@ -140,7 +139,7 @@ module "authorizer_function_app_slot_staging" {
 
   tags = var.tags
 }
-
+// todo: remove and destroy
 resource "azurerm_monitor_autoscale_setting" "authorizer_function" {
   count = var.env_short != "d" ? 1 : 0
 
@@ -203,7 +202,7 @@ resource "azurerm_monitor_autoscale_setting" "authorizer_function" {
     }
   }
 }
-
+// todo: remove and destroy
 data "azurerm_container_registry" "acr" {
   name                = local.acr_name
   resource_group_name = local.acr_resource_group_name

src/domains/shared-app/99_locals.tf

@@ -38,8 +38,8 @@ locals {
   apim_hostname   = "api.${var.apim_dns_zone_prefix}.${var.external_domain}"
   shared_hostname = var.env == "prod" ? "weuprod.shared.internal.platform.pagopa.it" : "weu${var.env}.shared.internal.${var.env}.platform.pagopa.it"
 
-  cache_generator_hostname   = "${var.prefix}-${var.env_short}-${var.location_short}-shared-authorizer-fn.azurewebsites.net/api"
-  cache_generator_hostname_2 = "${var.prefix}-${var.env_short}-${var.location_short}-shared-authorizer-fn.azurewebsites.net"
+  cache_generator_hostname   = "${local.shared_hostname}/authorizer-functions/api"
+  cache_generator_hostname_2 = "${local.shared_hostname}/authorizer-functions"
 
   authorizer_config_hostname = "${local.shared_hostname}/authorizer-config"
 

src/domains/shared-common/10_github_identity.tf

@@ -11,6 +11,9 @@ data "azurerm_kubernetes_cluster" "aks" {
 locals {
   repos_01 = [
     "pagopa-shared-toolbox",
+    "pagopa-platform-authorizer",
+    "pagopa-platform-authorizer-config",
+    "pagopa-infra"
   ]
 
   federations_01 = [