Add Terraform for production environment

[ohrite]

Description

This adds an initial Terraform import from the terraformer tool.

Addresses [#3365]

Type of change

• Bug fix (non-breaking change which fixes an issue)
• New feature
• Breaking change (fix or feature that would cause existing functionality to not work as expected)
• Documentation

How has this been tested?

When running make plan in the iac/ directory, the infrastructure shows no differences.

Some disk images related to jupyterhub have been excluded, as autoscaling continuously allocates new disk images.

Post-merge follow-ups

Document any actions that must be taken post-merge to deploy or otherwise implement the changes in this PR (for example, running a full refresh of some incremental model in dbt). If these actions will take more than a few hours after the merge or if they will be completed by someone other than the PR author, please create a dedicated follow-up issue and link it here to track resolution.

• No action required
• Actions required (specified below)

[ohrite]

Github workflows now use OIDC rather than pre-generated credentials https://docs.github.com/en/actions/security-for-github-actions/security-hardening-your-deployments/configuring-openid-connect-in-google-cloud-platform

[vevetron]

Lots of work!
We talked about the change in auth on a call (from github secrets to OpenID connect).
I can't analyze every line but checks are running good, let's give it a go!