chores: add additional routes for vpn

[andreasisnes]

Verification

• Your code builds clean without any errors or warnings
• Manual testing done (required)
• Relevant automated test added (if you find this hard, leave it and we'll help out)
• All tests run green

Documentation

• User documentation is updated with a separate linked PR in altinn-studio-docs. (if applicable)

[sonarqubecloud]

Quality Gate passed for 'Authorization_Register'

Issues
0 New issues
0 Accepted issues

Measures
0 Security Hotspots
0.0% Coverage on New Code
0.0% Duplication on New Code

See analysis details on SonarQube Cloud

[sonarqubecloud]

Quality Gate passed for 'Authorization_Authorization'

Issues
0 New issues
0 Accepted issues

Measures
0 Security Hotspots
0.0% Coverage on New Code
0.0% Duplication on New Code

See analysis details on SonarQube Cloud

[github-actions]

Terraform environment prod

Format and Style 🖌success

Initialization ⚙️success

Validation 🤖success

Validation Output

Success! The configuration is valid.

Plan 📖success

Show Plan

[Lines containing Refreshing state removed]
[Truncated to 120000 bytes! See logoutput for complete plan]
Acquiring state lock. This may take a few moments...
data.azurerm_client_config.current: Reading...
data.azurerm_client_config.current: Read complete after 0s [id=Y2xpZW50Q29uZmlncy9jbGllbnRJZD0wM2UwZWQzYi04NDQ3LTQyMGEtOTQyOS01NWU4MTNjNjRiMDU7b2JqZWN0SWQ9YTk1ODVhNjQtMjBmMC00ZDE4LWFiYTYtOTkzMGY5MmI4MDljO3N1YnNjcmlwdGlvbklkPTAxZGU0OWNiLTQ4ZWYtNDQ5NC1iYzlkLWI5ZTE5YTkwYmNkNTt0ZW5hbnRJZD1jZDAwMjZkOC0yODNiLTRhNTUtOWJmYS1kMGVmNGE4YmEyMWM=]
data.azurerm_key_vault_certificate.vpn: Reading...
data.azurerm_key_vault_certificate.vpn: Read complete after 0s [id=https://kvaltinnauth001hub.vault.azure.net/certificates/VPNRootCert/dc43a0f1e5e549cf845744cc5085f007]

Terraform used the selected providers to generate the following execution
plan. Resource actions are indicated with the following symbols:
  ~ update in-place

Terraform will perform the following actions:

  # azurerm_route_table.vpn will be updated in-place
  ~ resource "azurerm_route_table" "vpn" {
        id                            = "/subscriptions/01de49cb-48ef-4494-bc9d-b9e19a90bcd5/resourceGroups/rgaltinnauth001hub/providers/Microsoft.Network/routeTables/rtvpnaltinnauth001hub"
        name                          = "rtvpnaltinnauth001hub"
      ~ route                         = [
          - {
              - address_prefix         = "10.202.0.0/16"
              - name                   = "AuthorizationInfrastructure"
              - next_hop_in_ip_address = "10.202.19.4"
              - next_hop_type          = "VirtualAppliance"
            },
          + {
              + address_prefix         = "10.202.0.0/16"
              + name                   = "AuthorizationInfrastructure_0"
              + next_hop_in_ip_address = "10.202.19.4"
              + next_hop_type          = "VirtualAppliance"
            },
          + {
              + address_prefix         = "2603:1020:e04:1::220/123"
              + name                   = "ServiceBusNoEast_9"
              + next_hop_in_ip_address = "10.202.19.4"
              + next_hop_type          = "VirtualAppliance"
            },
          + {
              + address_prefix         = "2603:1020:e04:3::500/120"
              + name                   = "ServiceBusNoEast_10"
              + next_hop_in_ip_address = "10.202.19.4"
              + next_hop_type          = "VirtualAppliance"
            },
          + {
              + address_prefix         = "2603:1020:e04:402::170/125"
              + name                   = "ServiceBusNoEast_11"
              + next_hop_in_ip_address = "10.202.19.4"
              + next_hop_type          = "VirtualAppliance"
            },
          + {
              + address_prefix         = "2603:1020:e04:802::150/125"
              + name                   = "ServiceBusNoEast_12"
              + next_hop_in_ip_address = "10.202.19.4"
              + next_hop_type          = "VirtualAppliance"
            },
          + {
              + address_prefix         = "2603:1020:e04:c02::150/125"
              + name                   = "ServiceBusNoEast_13"
              + next_hop_in_ip_address = "10.202.19.4"
              + next_hop_type          = "VirtualAppliance"
            },
          + {
              + address_prefix         = "51.120.106.128/29"
              + name                   = "ServiceBusNoEast_4"
              + next_hop_in_ip_address = "10.202.19.4"
              + next_hop_type          = "VirtualAppliance"
            },
          + {
              + address_prefix         = "51.120.109.208/28"
              + name                   = "ServiceBusNoEast_5"
              + next_hop_in_ip_address = "10.202.19.4"
              + next_hop_type          = "VirtualAppliance"
            },
          + {
              + address_prefix         = "51.120.210.128/29"
              + name                   = "ServiceBusNoEast_6"
              + next_hop_in_ip_address = "10.202.19.4"
              + next_hop_type          = "VirtualAppliance"
            },
          + {
              + address_prefix         = "51.120.213.48/28"
              + name                   = "ServiceBusNoEast_7"
              + next_hop_in_ip_address = "10.202.19.4"
              + next_hop_type          = "VirtualAppliance"
            },
          + {
              + address_prefix         = "51.120.237.64/26"
              + name                   = "ServiceBusNoEast_8"
              + next_hop_in_ip_address = "10.202.19.4"
              + next_hop_type          = "VirtualAppliance"
            },
          + {
              + address_prefix         = "51.120.76.34/32"
              + name                   = "ServiceBusNoEast_1"
              + next_hop_in_ip_address = "10.202.19.4"
              + next_hop_type          = "VirtualAppliance"
            },
          + {
              + address_prefix         = "51.120.83.200/32"
              + name                   = "ServiceBusNoEast_2"
              + next_hop_in_ip_address = "10.202.19.4"
              + next_hop_type          = "VirtualAppliance"
            },
          + {
              + address_prefix         = "51.120.98.16/29"
              + name                   = "ServiceBusNoEast_3"
              + next_hop_in_ip_address = "10.202.19.4"
              + next_hop_type          = "VirtualAppliance"
            },
          + {
              + address_prefix         = "51.13.0.128/26"
              + name                   = "ServiceBusNoEast_0"
              + next_hop_in_ip_address = "10.202.19.4"
              + next_hop_type          = "VirtualAppliance"
            },
        ]
        tags                          = {}
        # (4 unchanged attributes hidden)
    }

  # azurerm_virtual_network_gateway.vpn will be updated in-place
  ~ resource "azurerm_virtual_network_gateway" "vpn" {
        id                                    = "/subscriptions/01de49cb-48ef-4494-bc9d-b9e19a90bcd5/resourceGroups/rgaltinnauth001hub/providers/Microsoft.Network/virtualNetworkGateways/vpngwaltinnauth001hub"
        name                                  = "vpngwaltinnauth001hub"
        tags                                  = {}
        # (15 unchanged attributes hidden)

      + custom_route {
          + address_prefixes = [
              + "10.202.0.0/16",
              + "2603:1020:e04:1::220/123",
              + "2603:1020:e04:3::500/120",
              + "2603:1020:e04:402::170/125",
              + "2603:1020:e04:802::150/125",
              + "2603:1020:e04:c02::150/125",
              + "51.120.106.128/29",
              + "51.120.109.208/28",
              + "51.120.210.128/29",
              + "51.120.213.48/28",
              + "51.120.237.64/26",
              + "51.120.76.34/32",
              + "51.120.83.200/32",
              + "51.120.98.16/29",
              + "51.13.0.128/26",
            ]
        }

        # (3 unchanged blocks hidden)
    }

Plan: 0 to add, 2 to change, 0 to destroy.

Changes to Outputs:
  + routes = {
      + AuthorizationInfrastructure_0 = "10.202.0.0/16"
      + ServiceBusNoEast_0            = "51.13.0.128/26"
      + ServiceBusNoEast_1            = "51.120.76.34/32"
      + ServiceBusNoEast_10           = "2603:1020:e04:3::500/120"
      + ServiceBusNoEast_11           = "2603:1020:e04:402::170/125"
      + ServiceBusNoEast_12           = "2603:1020:e04:802::150/125"
      + ServiceBusNoEast_13           = "2603:1020:e04:c02::150/125"
      + ServiceBusNoEast_2            = "51.120.83.200/32"
      + ServiceBusNoEast_3            = "51.120.98.16/29"
      + ServiceBusNoEast_4            = "51.120.106.128/29"
      + ServiceBusNoEast_5            = "51.120.109.208/28"
      + ServiceBusNoEast_6            = "51.120.210.128/29"
      + ServiceBusNoEast_7            = "51.120.213.48/28"
      + ServiceBusNoEast_8            = "51.120.237.64/26"
      + ServiceBusNoEast_9            = "2603:1020:e04:1::220/123"
    }

─────────────────────────────────────────────────────────────────────────────

Saved the plan to: tfplan.out

To perform exactly these actions, run the following command to apply:
    terraform apply "tfplan.out"
Releasing state lock. This may take a few moments...

Context	Values
Pusher	@andreasisnes
Action	workflow_dispatch
Working Directory	infra/deploy/hub
State File	github.com/altinn/altinn-authorization-tmp/environments/prod/hub.tfstate
Plan File	github.com_altinn_altinn-authorization-tmp_environments_prod_hub.tfstate.tfplan

[sonarqubecloud]

Quality Gate passed for 'Authorization_AccessManagement'

Issues
0 New issues
0 Accepted issues

Measures
0 Security Hotspots
0.0% Coverage on New Code
0.0% Duplication on New Code

See analysis details on SonarQube Cloud