Removed Lambda@Edge integration

Author: cloudmaniac

.gitignore

@@ -0,0 +1,24 @@
+# Local .terraform directories
+.terraform/
+
+# Compiled .tfstate files
+*.tfstate
+*.tfstate.*
+
+# Logs
+*.log
+
+# Ignore Mac .DS_Store files
+.DS_Store
+
+# Ignored vscode files
+.vscode/
+
+# Ignore any .tfvars files that are generated automatically for each Terraform run. Most
+# .tfvars files are managed as part of configuration and so should be included in
+# version control.
+#
+# example.tfvars
+
+# Ignore aws credentials
+.aws/

lambda/cloudfront_folder_index_redirect.js

@@ -181,10 +181,6 @@ resource "aws_cloudfront_distribution" "website_cdn_root" {
       }
     }
 
-    lambda_function_association {
-      event_type = "origin-request" # To use the url redirection Lambda@Edge, the trigger must be defined for the origin-request event
-      lambda_arn = aws_lambda_function.website_lambda_redirect_folder_index.qualified_arn
-    }
   }
 
   restrictions {
@@ -337,76 +333,4 @@ resource "aws_route53_record" "website_cdn_redirect_record" {
     zone_id                = aws_cloudfront_distribution.website_cdn_redirect.hosted_zone_id
     evaluate_target_health = false
   }
-}
-
-## Lambda
-# Generates IAM policy in JSON format for the IAM role that will be attached to the Lambda Function
-data "aws_iam_policy_document" "lambda_assume_role_policy" {
-  statement {
-    actions = ["sts:AssumeRole"]
-    principals {
-      type        = "Service"
-      identifiers = ["lambda.amazonaws.com", "edgelambda.amazonaws.com"]
-    }
-  }
-}
-
-# Create the IAM role that will be attached to the Lambda Function and associate it with the previously created policy
-resource "aws_iam_role" "lambda_exec_role_cloudfront_redirect" {
-  name = "LambdaExecRoleCloudFrontRedirect"
-  path = "/services-roles/"
-
-  assume_role_policy = data.aws_iam_policy_document.lambda_assume_role_policy.json
-
-  tags = {
-    ManagedBy = "terraform"
-    Changed   = formatdate("YYYY-MM-DD hh:mm ZZZ", timestamp())
-  }
-
-  lifecycle {
-    ignore_changes = [tags]
-  }
-}
-
-# Attach the predefined AWSLambdaBasicExecutionRole to grant permission to the Lambda execution role to see the CloudWatch logs generated when CloudFront triggers the function.
-resource "aws_iam_role_policy_attachment" "lambda_exec_role_cloudwatch_policy" {
-  role       = aws_iam_role.lambda_exec_role_cloudfront_redirect.name
-  policy_arn = "arn:aws:iam::aws:policy/service-role/AWSLambdaBasicExecutionRole"
-}
-
-# Generates a ZIP archive from the Javascript script
-data "archive_file" "cloudfront_folder_index_redirect_code" {
-  type        = "zip"
-  source_file = "${path.module}/lambda/cloudfront_folder_index_redirect.js"
-  output_path = "${path.module}/lambda/cloudfront_folder_index_redirect.js.zip"
-}
-
-# Creates the Lambda Function
-resource "aws_lambda_function" "website_lambda_redirect_folder_index" {
-  provider         = aws.us-east-1 # Lambda@Edge invoked by CloudFront must reside in us-east-1
-  function_name    = "cloudfront-folder-index-redirect"
-  description      = "Implements Default Directory Indexes in Amazon S3-backed Amazon CloudFront Origins"
-  handler          = "cloudfront_folder_index_redirect.handler"
-  filename         = data.archive_file.cloudfront_folder_index_redirect_code.output_path
-  source_code_hash = data.archive_file.cloudfront_folder_index_redirect_code.output_base64sha256
-  role             = aws_iam_role.lambda_exec_role_cloudfront_redirect.arn
-  runtime          = "nodejs10.x"
-  timeout          = "30" # 30 seconds is the MAXIMUM allowed for functions triggered by a CloudFront event
-  publish          = true
-
-  tags = {
-    ManagedBy = "terraform"
-    Changed   = formatdate("YYYY-MM-DD hh:mm ZZZ", timestamp())
-  }
-
-  lifecycle {
-    ignore_changes = [tags]
-  }
-}
-
-# Please note that `terraform destroy` may fail as it is not possible to delete a Lambda replicated function. If that's the case, the error message will be similar to:
-# Error: Error deleting Lambda Function: InvalidParameterValueException: Lambda was unable to delete arn:aws:lambda:us-east-1:<redacted>:function:cloudfront-folder-index-redirect:4 because it is a replicated function. Please see our documentation for Deleting Lambda@Edge Functions and Replicas.
-# { Message_: "Lambda was unable to delete arn:aws:lambda:us-east-1:<redacted>:function:cloudfront-folder-index-redirect:4 because it is a replicated function. Please see our documentation for Deleting Lambda@Edge Functions and Replicas."}
-
-# The function will be automatically deleted a few hours after you have removed the last association for the function from all of your CloudFront distributions
-# Documentation: https://docs.aws.amazon.com/AmazonCloudFront/latest/DeveloperGuide/lambda-edge-delete-replicas.html
+}