search

ministryofjustice / modernisation-platform

A place for the core work of the Modernisation Platform • This repository is defined and managed in Terraform
https://user-guide.modernisation-platform.service.justice.gov.uk
MIT License
679 stars 289 forks source link

Create new environment for electronic monitoring #5833

Closed pricemg closed 7 months ago

pricemg commented 7 months ago

Environment details

This environment will be used as a landing zone and data store for data being transferred from external suppliers who manage the electronic monitoring service to MoJ.

Application Name

electronic monitoring data store

Description of application

The environment will host sftp servers for each data supplier to use to connect and transfer their data into the MoJ estate. This data will then be stored in additional, non-external facing buckets for data retention.

GitHub team slug

hmpps-electronic-monitoring-data-store

Environments

Environment access level Development

sandbox

Environment access level Test

No response

Environment access level Preproduction

developer

Environment access level Production

view-only

application

electronic monitoring data store

business-unit

HMPPS

infrastructure-support

Data engineering: dataengineering@digital.justice.gov.uk

owner

Data engineering: dataengineering@digital.justice.gov.uk

Subnet sets

How do users connect to the application

Over the public internet

Additional features

Please check any additional features required

Other information

This project will be used as a landing zone and data store for historic data that has been collected by suppliers for the electronic monitoring scheme.

We have three suppliers who need to transfer data over, and following discussions with cyber security and technical architects the proposed solution is outlined in the image below. Each supplier will have a unique S3 bucket to deposit their data into, via an sftp server hosted for each bucket. This sftp server will use MFA to ensure only assured users can access. Part of this will involve setting a list of allowed IPs for each supplier x sftp server (IP addresses to be confirmed). Therefore we will need to do some configuring of firewall/ports once those are known.

see also conversation here

image

Definition of Done

Definition of Done

SimonPPledger commented 7 months ago

We want to discuss this with Matthew before preceding. Dave Elliott to reach out

sukeshreddyg commented 7 months ago

New environments has been created for electronic monitoring. Please note: Application name amended to electronic-monitoring-data instead of electronic-monitoring-data-store to meet the requirements not exceeding the application name to 30 characters (https://user-guide.modernisation-platform.service.justice.gov.uk/user-guide/creating-environments.html#requesting-an-environment)

5864

github-actions[bot] commented 7 months ago

Hello @pricemg 👋 Welcome to the Modernisation Platform! Your new accounts have now been created. Please see our user guidance for details on how to build and access infrastructure in the Modernisation Platform. If you require help or assistance please contact us via the #ask-modernisation-platform Slack channel.

mikereiddigital commented 6 months ago

Matt Price requested the view-only for production be amended to developer & so this has been applied via this PR - https://github.com/ministryofjustice/modernisation-platform/pull/6032