Adds dmarc record to the hosted domains

To be tagged v1.23.2

base/dns/public_dns/main.tf

@@ -98,3 +98,12 @@ resource "aws_route53_record" "dnstest" {
   # Non-routable Test IP: https://tools.ietf.org/html/rfc5737
   records = [ "203.0.113.1" ]
 }
+
+resource "aws_route53_record" "dmarc" {
+  for_each = toset(var.hosted_public_dns_zones)
+  zone_id = aws_route53_zone.public[each.value].id
+  name    = "_dmarc"
+  type    = "TXT"
+  ttl     = "600"
+  records = [ "v=DMARC1; p=quarantine; sp=quarantine; pct=100; fo=1; ruf=mailto:DmarcRUF@AccentureFederal.com; rua=mailto:DmarcRUA@AccentureFederal.com,mailto:reports@dmarc.cyber.dhs.gov; aspf=s; adkim=s" ]
+}