npm - @appliance.sh/api-server - Versions diffs - 1.15.0 → 1.16.0 - Mend

@appliance.sh/api-server 1.15.0 → 1.16.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (3) hide show

package/package.json +6 -3
package/src/services/pulumi.service.ts +1 -1
package/src/services/ApplianceStack.ts +0 -176

package/package.json CHANGED Viewed

@@ -1,6 +1,6 @@
 {
   "name": "@appliance.sh/api-server",
-  "version": "1.15.0",
+  "version": "1.16.0",
   "description": "",
   "author": "Eliot Lim",
   "repository": "https://github.com/appliance-sh/appliance.sh",
@@ -19,8 +19,11 @@
     "test:e2e": "vitest run --config vitest.e2e.config.ts"
   },
   "dependencies": {
-    "@pulumi/aws": "^7.15.0",
-    "@pulumi/pulumi": "^3.213.0",
+    "@appliance.sh/infra": "1.16.0",
+    "@appliance.sh/sdk": "1.16.0",
+    "@pulumi/aws": "^7.16.0",
+    "@pulumi/aws-native": "^1.48.0",
+    "@pulumi/pulumi": "^3.216.0",
     "express": "^5.2.1"
   },
   "devDependencies": {

package/src/services/pulumi.service.ts CHANGED Viewed

@@ -1,7 +1,7 @@
 import * as auto from '@pulumi/pulumi/automation';
 import * as aws from '@pulumi/aws';
 import * as awsNative from '@pulumi/aws-native';
-import { ApplianceStack } from './ApplianceStack';
+import { ApplianceStack } from '@appliance.sh/infra';
 import { applianceBaseConfig } from '@appliance.sh/sdk';
 export type PulumiAction = 'deploy' | 'destroy';

package/src/services/ApplianceStack.ts DELETED Viewed

@@ -1,176 +0,0 @@
-import * as pulumi from '@pulumi/pulumi';
-import * as aws from '@pulumi/aws';
-import * as awsNative from '@pulumi/aws-native';
-import type { ApplianceBaseConfig } from '@appliance.sh/sdk';
-export interface ApplianceStackArgs {
-  tags?: Record<string, string>;
-  config: ApplianceBaseConfig;
-}
-export interface ApplianceStackOpts extends pulumi.ComponentResourceOptions {
-  globalProvider: aws.Provider;
-  provider: aws.Provider;
-  nativeProvider: awsNative.Provider;
-  nativeGlobalProvider: awsNative.Provider;
-}
-export class ApplianceStack extends pulumi.ComponentResource {
-  lambdaRole: aws.iam.Role;
-  lambdaRolePolicy: aws.iam.Policy;
-  lambda: aws.lambda.Function;
-  lambdaUrl: aws.lambda.FunctionUrl;
-  dnsRecord: pulumi.Output<string>;
-  constructor(name: string, args: ApplianceStackArgs, opts: ApplianceStackOpts) {
-    super('appliance:aws:ApplianceStack', name, args, opts);
-    const defaultOpts = { parent: this, provider: opts.provider };
-    const defaultNativeOpts = { parent: this, provider: opts.nativeProvider };
-    const defaultTags = { stack: name, managed: 'appliance', ...args.tags };
-    this.lambdaRole = new aws.iam.Role(`${name}-role`, {
-      path: `/appliance/${name}/`,
-      assumeRolePolicy: aws.iam.assumeRolePolicyForPrincipal({ Service: 'lambda.amazonaws.com' }),
-      tags: defaultTags,
-    });
-    this.lambdaRolePolicy = new aws.iam.Policy(`${name}-policy`, {
-      path: `/appliance/${name}/`,
-      policy: {
-        Version: '2012-10-17',
-        Statement: [{ Effect: 'Allow', Action: 'logs:CreateLogGroup', Resource: '*' }],
-      },
-    });
-    new aws.iam.RolePolicyAttachment(`${name}-role-policy-attachment`, {
-      role: this.lambdaRole.name,
-      policyArn: this.lambdaRolePolicy.arn,
-    });
-    this.lambda = new aws.lambda.CallbackFunction(
-      `${name}-handler`,
-      {
-        runtime: 'nodejs22.x',
-        callback: async () => {
-          return { statusCode: 200, body: JSON.stringify({ message: 'Hello world!' }) };
-        },
-        tags: defaultTags,
-      },
-      defaultOpts
-    );
-    // lambda url
-    this.lambdaUrl = new aws.lambda.FunctionUrl(
-      `${name}-url`,
-      {
-        functionName: this.lambda.name,
-        authorizationType: args.config.aws.cloudfrontDistributionId ? 'AWS_IAM' : 'NONE',
-      },
-      defaultOpts
-    );
-    this.dnsRecord = pulumi.interpolate`${name}.${args.config.domainName ?? ''}`;
-    if (args.config.aws.cloudfrontDistributionId) {
-      new aws.lambda.Permission(
-        `${name}-url-invoke-url-permission`,
-        {
-          function: this.lambda.name,
-          action: 'lambda:InvokeFunctionUrl',
-          principal: 'cloudfront.amazonaws.com',
-          functionUrlAuthType: 'AWS_IAM',
-          sourceArn: pulumi.interpolate`arn:aws:cloudfront::${
-            aws.getCallerIdentityOutput({}, { provider: opts.provider }).accountId
-          }:distribution/${args.config.aws.cloudfrontDistributionId}`,
-          statementId: 'FunctionURLAllowCloudFrontAccess',
-        },
-        defaultOpts
-      );
-      // Grant the edge router role permission to invoke the Lambda Function URL
-      // The edge router role is the execution role of the Lambda@Edge function that signs requests
-      if (args.config.aws.edgeRouterRoleArn) {
-        new aws.lambda.Permission(
-          `${name}-invoke-url-edge-router-permission`,
-          {
-            function: this.lambda.name,
-            action: 'lambda:InvokeFunctionUrl',
-            principal: args.config.aws.edgeRouterRoleArn,
-            functionUrlAuthType: 'AWS_IAM',
-            statementId: 'FunctionURLAllowEdgeRouterRoleAccess',
-          },
-          defaultOpts
-        );
-        new awsNative.lambda.Permission(
-          `${name}-invoke-edge-router-permission`,
-          {
-            action: 'lambda:InvokeFunction',
-            principal: args.config.aws.edgeRouterRoleArn,
-            functionName: this.lambda.name,
-            invokedViaFunctionUrl: true,
-          },
-          defaultNativeOpts
-        );
-      }
-    } else {
-      new aws.lambda.Permission(
-        `${name}-url-invoke-url-permission`,
-        {
-          function: this.lambda.name,
-          action: 'lambda:InvokeFunctionUrl',
-          principal: '*',
-          functionUrlAuthType: 'NONE',
-          statementId: 'FunctionURLAllowPublicAccess',
-        },
-        defaultOpts
-      );
-    }
-    if (args.config.aws.cloudfrontDistributionId && args.config.aws.cloudfrontDistributionDomainName) {
-      new awsNative.lambda.Permission(
-        `${name}-url-invoke-lambda-native-permission`,
-        {
-          action: 'lambda:InvokeFunction',
-          principal: 'cloudfront.amazonaws.com',
-          sourceArn: pulumi.interpolate`arn:aws:cloudfront::${
-            aws.getCallerIdentityOutput({}, { provider: opts.provider }).accountId
-          }:distribution/${args.config.aws.cloudfrontDistributionId}`,
-          functionName: this.lambda.name,
-          invokedViaFunctionUrl: true,
-        },
-        defaultNativeOpts
-      );
-      new aws.route53.Record(
-        `${name}-cname-record`,
-        {
-          zoneId: args.config.aws.zoneId,
-          name: pulumi.interpolate`${name}.${args.config.domainName ?? ''}`,
-          type: 'CNAME',
-          ttl: 60,
-          records: [args.config.aws.cloudfrontDistributionDomainName],
-        },
-        { parent: this, provider: opts.globalProvider }
-      );
-      new aws.route53.Record(
-        `${name}-txt-record`,
-        {
-          zoneId: args.config.aws.zoneId,
-          name: pulumi.interpolate`origin.${name}.${args.config.domainName ?? ''}`,
-          type: 'TXT',
-          ttl: 60,
-          records: [this.lambdaUrl.functionUrl],
-        },
-        { parent: this, provider: opts.globalProvider }
-      );
-    }
-    this.registerOutputs({
-      lambda: this.lambda,
-      lambdaUrl: this.lambdaUrl,
-    });
-  }
-}