@aws-solutions-constructs/aws-cloudfront-oai-s3 2.100.1 → 2.102.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
Files changed (73) hide show
  1. package/.jsii +443 -5
  2. package/lib/index.js +1 -1
  3. package/package.json +9 -9
  4. package/test/integ.cftoais3-custom-headers.js.snapshot/asset.faa95a81ae7d7373f3e1f242268f904eb748d8d0fdd306e8a6fe515a1905a7d6/index.js +1 -0
  5. package/test/integ.cftoais3-custom-headers.js.snapshot/cdk.out +1 -1
  6. package/test/integ.cftoais3-custom-headers.js.snapshot/cftoais3-custom-headers.assets.json +4 -4
  7. package/test/integ.cftoais3-custom-headers.js.snapshot/cftoais3-custom-headers.metadata.json +355 -0
  8. package/test/integ.cftoais3-custom-headers.js.snapshot/cftoais3-custom-headers.template.json +2 -2
  9. package/test/integ.cftoais3-custom-headers.js.snapshot/cftoais3customheadersIntegDefaultTestDeployAssert5AA11BA9.assets.json +1 -1
  10. package/test/integ.cftoais3-custom-headers.js.snapshot/cftoais3customheadersIntegDefaultTestDeployAssert5AA11BA9.metadata.json +14 -0
  11. package/test/integ.cftoais3-custom-headers.js.snapshot/integ.json +2 -2
  12. package/test/integ.cftoais3-custom-headers.js.snapshot/manifest.json +100 -374
  13. package/test/integ.cftoais3-custom-headers.js.snapshot/tree.json +1 -1
  14. package/test/integ.cftoais3-custom-originPath.js.snapshot/asset.faa95a81ae7d7373f3e1f242268f904eb748d8d0fdd306e8a6fe515a1905a7d6/index.js +1 -0
  15. package/test/integ.cftoais3-custom-originPath.js.snapshot/cdk.out +1 -1
  16. package/test/integ.cftoais3-custom-originPath.js.snapshot/cftoais3-custom-originPath.assets.json +4 -4
  17. package/test/integ.cftoais3-custom-originPath.js.snapshot/cftoais3-custom-originPath.metadata.json +341 -0
  18. package/test/integ.cftoais3-custom-originPath.js.snapshot/cftoais3-custom-originPath.template.json +1 -1
  19. package/test/integ.cftoais3-custom-originPath.js.snapshot/cftoais3customoriginPathIntegDefaultTestDeployAssert1C351914.assets.json +1 -1
  20. package/test/integ.cftoais3-custom-originPath.js.snapshot/cftoais3customoriginPathIntegDefaultTestDeployAssert1C351914.metadata.json +14 -0
  21. package/test/integ.cftoais3-custom-originPath.js.snapshot/integ.json +2 -2
  22. package/test/integ.cftoais3-custom-originPath.js.snapshot/manifest.json +100 -360
  23. package/test/integ.cftoais3-custom-originPath.js.snapshot/tree.json +1 -1
  24. package/test/integ.cftoais3-customLoggingBuckets.js.snapshot/asset.faa95a81ae7d7373f3e1f242268f904eb748d8d0fdd306e8a6fe515a1905a7d6/index.js +1 -0
  25. package/test/integ.cftoais3-customLoggingBuckets.js.snapshot/cdk.out +1 -1
  26. package/test/integ.cftoais3-customLoggingBuckets.js.snapshot/cftoais3-customLoggingBuckets.assets.json +4 -4
  27. package/test/integ.cftoais3-customLoggingBuckets.js.snapshot/cftoais3-customLoggingBuckets.metadata.json +379 -0
  28. package/test/integ.cftoais3-customLoggingBuckets.js.snapshot/cftoais3-customLoggingBuckets.template.json +1 -1
  29. package/test/integ.cftoais3-customLoggingBuckets.js.snapshot/cftoais3customLoggingBucketsIntegDefaultTestDeployAssert8F33EF2A.assets.json +1 -1
  30. package/test/integ.cftoais3-customLoggingBuckets.js.snapshot/cftoais3customLoggingBucketsIntegDefaultTestDeployAssert8F33EF2A.metadata.json +14 -0
  31. package/test/integ.cftoais3-customLoggingBuckets.js.snapshot/integ.json +2 -2
  32. package/test/integ.cftoais3-customLoggingBuckets.js.snapshot/manifest.json +100 -398
  33. package/test/integ.cftoais3-customLoggingBuckets.js.snapshot/tree.json +1 -1
  34. package/test/integ.cftoais3-existing-bucket.js.snapshot/asset.faa95a81ae7d7373f3e1f242268f904eb748d8d0fdd306e8a6fe515a1905a7d6/index.js +1 -0
  35. package/test/integ.cftoais3-existing-bucket.js.snapshot/cdk.out +1 -1
  36. package/test/integ.cftoais3-existing-bucket.js.snapshot/cftoais3-existing-bucket.assets.json +4 -4
  37. package/test/integ.cftoais3-existing-bucket.js.snapshot/cftoais3-existing-bucket.metadata.json +355 -0
  38. package/test/integ.cftoais3-existing-bucket.js.snapshot/cftoais3-existing-bucket.template.json +1 -1
  39. package/test/integ.cftoais3-existing-bucket.js.snapshot/cftoais3existingbucketIntegDefaultTestDeployAssertB7627F26.assets.json +1 -1
  40. package/test/integ.cftoais3-existing-bucket.js.snapshot/cftoais3existingbucketIntegDefaultTestDeployAssertB7627F26.metadata.json +14 -0
  41. package/test/integ.cftoais3-existing-bucket.js.snapshot/integ.json +2 -2
  42. package/test/integ.cftoais3-existing-bucket.js.snapshot/manifest.json +100 -374
  43. package/test/integ.cftoais3-existing-bucket.js.snapshot/tree.json +1 -1
  44. package/test/integ.cftoais3-no-arguments.js.snapshot/asset.faa95a81ae7d7373f3e1f242268f904eb748d8d0fdd306e8a6fe515a1905a7d6/index.js +1 -0
  45. package/test/integ.cftoais3-no-arguments.js.snapshot/cdk.out +1 -1
  46. package/test/integ.cftoais3-no-arguments.js.snapshot/cftoais3-no-arguments.assets.json +4 -4
  47. package/test/integ.cftoais3-no-arguments.js.snapshot/cftoais3-no-arguments.metadata.json +341 -0
  48. package/test/integ.cftoais3-no-arguments.js.snapshot/cftoais3-no-arguments.template.json +1 -1
  49. package/test/integ.cftoais3-no-arguments.js.snapshot/cftoais3noargumentsIntegDefaultTestDeployAssert5CF03E3D.assets.json +1 -1
  50. package/test/integ.cftoais3-no-arguments.js.snapshot/cftoais3noargumentsIntegDefaultTestDeployAssert5CF03E3D.metadata.json +14 -0
  51. package/test/integ.cftoais3-no-arguments.js.snapshot/integ.json +2 -2
  52. package/test/integ.cftoais3-no-arguments.js.snapshot/manifest.json +100 -360
  53. package/test/integ.cftoais3-no-arguments.js.snapshot/tree.json +1 -1
  54. package/test/integ.cftoais3-no-cloudfront-s3-access-logs.js.snapshot/asset.faa95a81ae7d7373f3e1f242268f904eb748d8d0fdd306e8a6fe515a1905a7d6/index.js +1 -0
  55. package/test/integ.cftoais3-no-cloudfront-s3-access-logs.js.snapshot/cdk.out +1 -1
  56. package/test/integ.cftoais3-no-cloudfront-s3-access-logs.js.snapshot/cftoais3-no-cloudfront-s3-access-logs.assets.json +4 -4
  57. package/test/integ.cftoais3-no-cloudfront-s3-access-logs.js.snapshot/cftoais3-no-cloudfront-s3-access-logs.metadata.json +225 -0
  58. package/test/integ.cftoais3-no-cloudfront-s3-access-logs.js.snapshot/cftoais3-no-cloudfront-s3-access-logs.template.json +1 -1
  59. package/test/integ.cftoais3-no-cloudfront-s3-access-logs.js.snapshot/cftoais3nocloudfronts3accesslogsIntegDefaultTestDeployAssert6D810275.assets.json +1 -1
  60. package/test/integ.cftoais3-no-cloudfront-s3-access-logs.js.snapshot/cftoais3nocloudfronts3accesslogsIntegDefaultTestDeployAssert6D810275.metadata.json +14 -0
  61. package/test/integ.cftoais3-no-cloudfront-s3-access-logs.js.snapshot/integ.json +2 -2
  62. package/test/integ.cftoais3-no-cloudfront-s3-access-logs.js.snapshot/manifest.json +100 -268
  63. package/test/integ.cftoais3-no-cloudfront-s3-access-logs.js.snapshot/tree.json +1 -1
  64. package/test/integ.cftoais3-no-logging.js.snapshot/asset.faa95a81ae7d7373f3e1f242268f904eb748d8d0fdd306e8a6fe515a1905a7d6/index.js +1 -0
  65. package/test/integ.cftoais3-no-logging.js.snapshot/cdk.out +1 -1
  66. package/test/integ.cftoais3-no-logging.js.snapshot/cftoais3-no-logging.assets.json +4 -4
  67. package/test/integ.cftoais3-no-logging.js.snapshot/cftoais3-no-logging.metadata.json +167 -0
  68. package/test/integ.cftoais3-no-logging.js.snapshot/cftoais3-no-logging.template.json +1 -1
  69. package/test/integ.cftoais3-no-logging.js.snapshot/cftoais3nologgingIntegDefaultTestDeployAssertCED06EE4.assets.json +1 -1
  70. package/test/integ.cftoais3-no-logging.js.snapshot/cftoais3nologgingIntegDefaultTestDeployAssertCED06EE4.metadata.json +14 -0
  71. package/test/integ.cftoais3-no-logging.js.snapshot/integ.json +2 -2
  72. package/test/integ.cftoais3-no-logging.js.snapshot/manifest.json +100 -222
  73. package/test/integ.cftoais3-no-logging.js.snapshot/tree.json +1 -1
@@ -0,0 +1,167 @@
1
+ {
2
+ "/cftoais3-no-logging/Custom::S3AutoDeleteObjectsCustomResourceProvider": [
3
+ {
4
+ "type": "aws:cdk:is-custom-resource-handler-customResourceProvider",
5
+ "data": true
6
+ }
7
+ ],
8
+ "/cftoais3-no-logging/BootstrapVersion": [
9
+ {
10
+ "type": "aws:cdk:logicalId",
11
+ "data": "BootstrapVersion"
12
+ }
13
+ ],
14
+ "/cftoais3-no-logging/CheckBootstrapVersion": [
15
+ {
16
+ "type": "aws:cdk:logicalId",
17
+ "data": "CheckBootstrapVersion"
18
+ }
19
+ ],
20
+ "/cftoais3-no-logging/test-cloudfront-oai-s3/S3Bucket": [
21
+ {
22
+ "type": "aws:cdk:analytics:construct",
23
+ "data": {
24
+ "encryption": "S3_MANAGED",
25
+ "versioned": true,
26
+ "blockPublicAccess": "*",
27
+ "removalPolicy": "destroy",
28
+ "enforceSSL": true,
29
+ "lifecycleRules": [
30
+ {
31
+ "noncurrentVersionTransitions": [
32
+ {
33
+ "storageClass": "*"
34
+ }
35
+ ]
36
+ }
37
+ ],
38
+ "autoDeleteObjects": true
39
+ }
40
+ },
41
+ {
42
+ "type": "aws:cdk:analytics:method",
43
+ "data": {
44
+ "addLifecycleRule": [
45
+ {
46
+ "noncurrentVersionTransitions": [
47
+ {
48
+ "storageClass": "*"
49
+ }
50
+ ]
51
+ },
52
+ "*",
53
+ "*"
54
+ ]
55
+ }
56
+ }
57
+ ],
58
+ "/cftoais3-no-logging/test-cloudfront-oai-s3/SetHttpSecurityHeaders": [
59
+ {
60
+ "type": "aws:cdk:analytics:construct",
61
+ "data": {
62
+ "functionName": "*",
63
+ "code": "*"
64
+ }
65
+ }
66
+ ],
67
+ "/cftoais3-no-logging/test-cloudfront-oai-s3/constructsGeneratedOai": [
68
+ {
69
+ "type": "aws:cdk:analytics:construct",
70
+ "data": "*"
71
+ }
72
+ ],
73
+ "/cftoais3-no-logging/test-cloudfront-oai-s3/CloudFrontDistribution": [
74
+ {
75
+ "type": "aws:cdk:analytics:construct",
76
+ "data": {
77
+ "defaultBehavior": {
78
+ "origin": "*",
79
+ "viewerProtocolPolicy": "redirect-to-https",
80
+ "functionAssociations": [
81
+ {
82
+ "eventType": "viewer-response",
83
+ "function": "*"
84
+ }
85
+ ]
86
+ },
87
+ "enableLogging": false,
88
+ "logBucket": "*",
89
+ "defaultRootObject": "*"
90
+ }
91
+ }
92
+ ],
93
+ "/cftoais3-no-logging/Custom::S3AutoDeleteObjectsCustomResourceProvider/Role": [
94
+ {
95
+ "type": "aws:cdk:logicalId",
96
+ "data": "CustomS3AutoDeleteObjectsCustomResourceProviderRole3B1BD092"
97
+ }
98
+ ],
99
+ "/cftoais3-no-logging/Custom::S3AutoDeleteObjectsCustomResourceProvider/Handler": [
100
+ {
101
+ "type": "aws:cdk:logicalId",
102
+ "data": "CustomS3AutoDeleteObjectsCustomResourceProviderHandler9D90184F"
103
+ }
104
+ ],
105
+ "/cftoais3-no-logging/test-cloudfront-oai-s3/S3Bucket/Resource": [
106
+ {
107
+ "type": "aws:cdk:logicalId",
108
+ "data": "testcloudfrontoais3S3Bucket578AB9F3"
109
+ },
110
+ {
111
+ "type": "aws:cdk:analytics:mixin",
112
+ "data": {
113
+ "mixin": "aws-cdk-lib.aws_s3.mixins.BucketAutoDeleteObjects"
114
+ }
115
+ }
116
+ ],
117
+ "/cftoais3-no-logging/test-cloudfront-oai-s3/S3Bucket/Policy": [
118
+ {
119
+ "type": "aws:cdk:analytics:construct",
120
+ "data": {
121
+ "bucket": "*"
122
+ }
123
+ }
124
+ ],
125
+ "/cftoais3-no-logging/test-cloudfront-oai-s3/S3Bucket/AutoDeleteObjectsCustomResource": [
126
+ {
127
+ "type": "aws:cdk:analytics:construct",
128
+ "data": "*"
129
+ }
130
+ ],
131
+ "/cftoais3-no-logging/test-cloudfront-oai-s3/SetHttpSecurityHeaders/Resource": [
132
+ {
133
+ "type": "aws:cdk:logicalId",
134
+ "data": "testcloudfrontoais3SetHttpSecurityHeaders4EB3C97B"
135
+ }
136
+ ],
137
+ "/cftoais3-no-logging/test-cloudfront-oai-s3/constructsGeneratedOai/Resource": [
138
+ {
139
+ "type": "aws:cdk:logicalId",
140
+ "data": "testcloudfrontoais3constructsGeneratedOaiA468F478"
141
+ }
142
+ ],
143
+ "/cftoais3-no-logging/test-cloudfront-oai-s3/CloudFrontDistribution/Resource": [
144
+ {
145
+ "type": "aws:cdk:logicalId",
146
+ "data": "testcloudfrontoais3CloudFrontDistribution0E089CC5"
147
+ }
148
+ ],
149
+ "/cftoais3-no-logging/test-cloudfront-oai-s3/S3Bucket/Policy/Resource": [
150
+ {
151
+ "type": "aws:cdk:logicalId",
152
+ "data": "testcloudfrontoais3S3BucketPolicyD2322CC3"
153
+ },
154
+ {
155
+ "type": "aws:cdk:analytics:mixin",
156
+ "data": {
157
+ "mixin": "aws-cdk-lib.aws_s3.mixins.BucketPolicyStatements"
158
+ }
159
+ }
160
+ ],
161
+ "/cftoais3-no-logging/test-cloudfront-oai-s3/S3Bucket/AutoDeleteObjectsCustomResource/Default": [
162
+ {
163
+ "type": "aws:cdk:logicalId",
164
+ "data": "testcloudfrontoais3S3BucketAutoDeleteObjectsCustomResourceA2545EE1"
165
+ }
166
+ ]
167
+ }
@@ -247,7 +247,7 @@
247
247
  "FunctionCode": "function handler(event) { var response = event.response; var headers = response.headers; headers['strict-transport-security'] = { value: 'max-age=63072000; includeSubdomains; preload'}; headers['content-security-policy'] = { value: \"default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'\"}; headers['x-content-type-options'] = { value: 'nosniff'}; headers['x-frame-options'] = {value: 'DENY'}; headers['x-xss-protection'] = {value: '1; mode=block'}; return response; }",
248
248
  "FunctionConfig": {
249
249
  "Comment": "SetHttpSecurityHeadersc8ef3112652a2611d5eff9255f981ddb83b0566ae4",
250
- "Runtime": "cloudfront-js-1.0"
250
+ "Runtime": "cloudfront-js-2.0"
251
251
  },
252
252
  "Name": "SetHttpSecurityHeadersc8ef3112652a2611d5eff9255f981ddb83b0566ae4"
253
253
  }
@@ -1,5 +1,5 @@
1
1
  {
2
- "version": "45.0.0",
2
+ "version": "53.0.0",
3
3
  "files": {
4
4
  "21fbb51d7b23f6a6c262b46a9caee79d744a3ac019fd45422d988b96d44b2a22": {
5
5
  "displayName": "cftoais3nologgingIntegDefaultTestDeployAssertCED06EE4 Template",
@@ -0,0 +1,14 @@
1
+ {
2
+ "/cftoais3-no-logging/Integ/DefaultTest/DeployAssert/BootstrapVersion": [
3
+ {
4
+ "type": "aws:cdk:logicalId",
5
+ "data": "BootstrapVersion"
6
+ }
7
+ ],
8
+ "/cftoais3-no-logging/Integ/DefaultTest/DeployAssert/CheckBootstrapVersion": [
9
+ {
10
+ "type": "aws:cdk:logicalId",
11
+ "data": "CheckBootstrapVersion"
12
+ }
13
+ ]
14
+ }
@@ -1,5 +1,5 @@
1
1
  {
2
- "version": "45.0.0",
2
+ "version": "53.0.0",
3
3
  "testCases": {
4
4
  "cftoais3-no-logging/Integ/DefaultTest": {
5
5
  "stacks": [
@@ -9,5 +9,5 @@
9
9
  "assertionStackName": "cftoais3nologgingIntegDefaultTestDeployAssertCED06EE4"
10
10
  }
11
11
  },
12
- "minimumCliVersion": "2.1020.2"
12
+ "minimumCliVersion": "2.1117.0"
13
13
  }
@@ -1,5 +1,5 @@
1
1
  {
2
- "version": "48.0.0",
2
+ "version": "53.0.0",
3
3
  "artifacts": {
4
4
  "cftoais3nologgingIntegDefaultTestDeployAssertCED06EE4.assets": {
5
5
  "type": "cdk:asset-manifest",
@@ -33,20 +33,7 @@
33
33
  "dependencies": [
34
34
  "cftoais3nologgingIntegDefaultTestDeployAssertCED06EE4.assets"
35
35
  ],
36
- "metadata": {
37
- "/cftoais3-no-logging/Integ/DefaultTest/DeployAssert/BootstrapVersion": [
38
- {
39
- "type": "aws:cdk:logicalId",
40
- "data": "BootstrapVersion"
41
- }
42
- ],
43
- "/cftoais3-no-logging/Integ/DefaultTest/DeployAssert/CheckBootstrapVersion": [
44
- {
45
- "type": "aws:cdk:logicalId",
46
- "data": "CheckBootstrapVersion"
47
- }
48
- ]
49
- },
36
+ "additionalMetadataFile": "cftoais3nologgingIntegDefaultTestDeployAssertCED06EE4.metadata.json",
50
37
  "displayName": "cftoais3-no-logging/Integ/DefaultTest/DeployAssert"
51
38
  },
52
39
  "cftoais3-no-logging.assets": {
@@ -66,7 +53,7 @@
66
53
  "validateOnSynth": false,
67
54
  "assumeRoleArn": "arn:${AWS::Partition}:iam::${AWS::AccountId}:role/cdk-hnb659fds-deploy-role-${AWS::AccountId}-${AWS::Region}",
68
55
  "cloudFormationExecutionRoleArn": "arn:${AWS::Partition}:iam::${AWS::AccountId}:role/cdk-hnb659fds-cfn-exec-role-${AWS::AccountId}-${AWS::Region}",
69
- "stackTemplateAssetObjectUrl": "s3://cdk-hnb659fds-assets-${AWS::AccountId}-${AWS::Region}/9e920b525ab86b5943c590756e042f14b8ed602034ebf70bdf6e480966a93ef9.json",
56
+ "stackTemplateAssetObjectUrl": "s3://cdk-hnb659fds-assets-${AWS::AccountId}-${AWS::Region}/ba526bad46e8a87af260def9e66fadff9e4059ca879e99f46767138387dab042.json",
70
57
  "requiresBootstrapStackVersion": 6,
71
58
  "bootstrapStackVersionSsmParameter": "/cdk-bootstrap/hnb659fds/version",
72
59
  "additionalDependencies": [
@@ -81,161 +68,7 @@
81
68
  "dependencies": [
82
69
  "cftoais3-no-logging.assets"
83
70
  ],
84
- "metadata": {
85
- "/cftoais3-no-logging/test-cloudfront-oai-s3/S3Bucket": [
86
- {
87
- "type": "aws:cdk:analytics:construct",
88
- "data": {
89
- "encryption": "S3_MANAGED",
90
- "versioned": true,
91
- "blockPublicAccess": "*",
92
- "removalPolicy": "destroy",
93
- "enforceSSL": true,
94
- "lifecycleRules": [
95
- {
96
- "noncurrentVersionTransitions": [
97
- {
98
- "storageClass": "*"
99
- }
100
- ]
101
- }
102
- ],
103
- "autoDeleteObjects": true
104
- }
105
- },
106
- {
107
- "type": "aws:cdk:analytics:method",
108
- "data": {
109
- "addLifecycleRule": [
110
- {
111
- "noncurrentVersionTransitions": [
112
- {
113
- "storageClass": "*"
114
- }
115
- ]
116
- },
117
- "*",
118
- "*"
119
- ]
120
- }
121
- }
122
- ],
123
- "/cftoais3-no-logging/test-cloudfront-oai-s3/S3Bucket/Resource": [
124
- {
125
- "type": "aws:cdk:logicalId",
126
- "data": "testcloudfrontoais3S3Bucket578AB9F3"
127
- }
128
- ],
129
- "/cftoais3-no-logging/test-cloudfront-oai-s3/S3Bucket/Policy": [
130
- {
131
- "type": "aws:cdk:analytics:construct",
132
- "data": {
133
- "bucket": "*"
134
- }
135
- }
136
- ],
137
- "/cftoais3-no-logging/test-cloudfront-oai-s3/S3Bucket/Policy/Resource": [
138
- {
139
- "type": "aws:cdk:logicalId",
140
- "data": "testcloudfrontoais3S3BucketPolicyD2322CC3"
141
- }
142
- ],
143
- "/cftoais3-no-logging/test-cloudfront-oai-s3/S3Bucket/AutoDeleteObjectsCustomResource": [
144
- {
145
- "type": "aws:cdk:analytics:construct",
146
- "data": "*"
147
- }
148
- ],
149
- "/cftoais3-no-logging/test-cloudfront-oai-s3/S3Bucket/AutoDeleteObjectsCustomResource/Default": [
150
- {
151
- "type": "aws:cdk:logicalId",
152
- "data": "testcloudfrontoais3S3BucketAutoDeleteObjectsCustomResourceA2545EE1"
153
- }
154
- ],
155
- "/cftoais3-no-logging/test-cloudfront-oai-s3/SetHttpSecurityHeaders": [
156
- {
157
- "type": "aws:cdk:analytics:construct",
158
- "data": {
159
- "functionName": "*",
160
- "code": "*"
161
- }
162
- }
163
- ],
164
- "/cftoais3-no-logging/test-cloudfront-oai-s3/SetHttpSecurityHeaders/Resource": [
165
- {
166
- "type": "aws:cdk:logicalId",
167
- "data": "testcloudfrontoais3SetHttpSecurityHeaders4EB3C97B"
168
- }
169
- ],
170
- "/cftoais3-no-logging/test-cloudfront-oai-s3/constructsGeneratedOai": [
171
- {
172
- "type": "aws:cdk:analytics:construct",
173
- "data": "*"
174
- }
175
- ],
176
- "/cftoais3-no-logging/test-cloudfront-oai-s3/constructsGeneratedOai/Resource": [
177
- {
178
- "type": "aws:cdk:logicalId",
179
- "data": "testcloudfrontoais3constructsGeneratedOaiA468F478"
180
- }
181
- ],
182
- "/cftoais3-no-logging/test-cloudfront-oai-s3/CloudFrontDistribution": [
183
- {
184
- "type": "aws:cdk:analytics:construct",
185
- "data": {
186
- "defaultBehavior": {
187
- "origin": "*",
188
- "viewerProtocolPolicy": "redirect-to-https",
189
- "functionAssociations": [
190
- {
191
- "eventType": "viewer-response",
192
- "function": "*"
193
- }
194
- ]
195
- },
196
- "enableLogging": false,
197
- "logBucket": "*",
198
- "defaultRootObject": "*"
199
- }
200
- }
201
- ],
202
- "/cftoais3-no-logging/test-cloudfront-oai-s3/CloudFrontDistribution/Resource": [
203
- {
204
- "type": "aws:cdk:logicalId",
205
- "data": "testcloudfrontoais3CloudFrontDistribution0E089CC5"
206
- }
207
- ],
208
- "/cftoais3-no-logging/Custom::S3AutoDeleteObjectsCustomResourceProvider": [
209
- {
210
- "type": "aws:cdk:is-custom-resource-handler-customResourceProvider",
211
- "data": true
212
- }
213
- ],
214
- "/cftoais3-no-logging/Custom::S3AutoDeleteObjectsCustomResourceProvider/Role": [
215
- {
216
- "type": "aws:cdk:logicalId",
217
- "data": "CustomS3AutoDeleteObjectsCustomResourceProviderRole3B1BD092"
218
- }
219
- ],
220
- "/cftoais3-no-logging/Custom::S3AutoDeleteObjectsCustomResourceProvider/Handler": [
221
- {
222
- "type": "aws:cdk:logicalId",
223
- "data": "CustomS3AutoDeleteObjectsCustomResourceProviderHandler9D90184F"
224
- }
225
- ],
226
- "/cftoais3-no-logging/BootstrapVersion": [
227
- {
228
- "type": "aws:cdk:logicalId",
229
- "data": "BootstrapVersion"
230
- }
231
- ],
232
- "/cftoais3-no-logging/CheckBootstrapVersion": [
233
- {
234
- "type": "aws:cdk:logicalId",
235
- "data": "CheckBootstrapVersion"
236
- }
237
- ]
238
- },
71
+ "additionalMetadataFile": "cftoais3-no-logging.metadata.json",
239
72
  "displayName": "cftoais3-no-logging"
240
73
  },
241
74
  "Tree": {
@@ -249,57 +82,50 @@
249
82
  "properties": {
250
83
  "module": "aws-cdk-lib",
251
84
  "flags": {
252
- "@aws-cdk/core:enableStackNameDuplicates": {
253
- "recommendedValue": true,
254
- "explanation": "Allow multiple stacks with the same name"
255
- },
256
- "aws-cdk:enableDiffNoFail": {
85
+ "@aws-cdk/aws-signer:signingProfileNamePassedToCfn": {
86
+ "userValue": true,
257
87
  "recommendedValue": true,
258
- "explanation": "Make `cdk diff` not fail when there are differences"
88
+ "explanation": "Pass signingProfileName to CfnSigningProfile"
259
89
  },
260
90
  "@aws-cdk/core:newStyleStackSynthesis": {
261
91
  "recommendedValue": true,
262
- "explanation": "Switch to new stack synthesis method which enables CI/CD"
92
+ "explanation": "Switch to new stack synthesis method which enables CI/CD",
93
+ "unconfiguredBehavesLike": {
94
+ "v2": true
95
+ }
263
96
  },
264
97
  "@aws-cdk/core:stackRelativeExports": {
265
98
  "recommendedValue": true,
266
- "explanation": "Name exports based on the construct paths relative to the stack, rather than the global construct path"
267
- },
268
- "@aws-cdk/aws-ecr-assets:dockerIgnoreSupport": {
269
- "recommendedValue": true,
270
- "explanation": "DockerImageAsset properly supports `.dockerignore` files by default"
271
- },
272
- "@aws-cdk/aws-secretsmanager:parseOwnedSecretName": {
273
- "recommendedValue": true,
274
- "explanation": "Fix the referencing of SecretsManager names from ARNs"
275
- },
276
- "@aws-cdk/aws-kms:defaultKeyPolicies": {
277
- "recommendedValue": true,
278
- "explanation": "Tighten default KMS key policies"
279
- },
280
- "@aws-cdk/aws-s3:grantWriteWithoutAcl": {
281
- "recommendedValue": true,
282
- "explanation": "Remove `PutObjectAcl` from Bucket.grantWrite"
99
+ "explanation": "Name exports based on the construct paths relative to the stack, rather than the global construct path",
100
+ "unconfiguredBehavesLike": {
101
+ "v2": true
102
+ }
283
103
  },
284
- "@aws-cdk/aws-ecs-patterns:removeDefaultDesiredCount": {
104
+ "@aws-cdk/aws-ecs-patterns:secGroupsDisablesImplicitOpenListener": {
105
+ "userValue": true,
285
106
  "recommendedValue": true,
286
- "explanation": "Do not specify a default DesiredCount for ECS services"
107
+ "explanation": "Disable implicit openListener when custom security groups are provided"
287
108
  },
288
109
  "@aws-cdk/aws-rds:lowercaseDbIdentifier": {
289
110
  "recommendedValue": true,
290
- "explanation": "Force lowercasing of RDS Cluster names in CDK"
111
+ "explanation": "Force lowercasing of RDS Cluster names in CDK",
112
+ "unconfiguredBehavesLike": {
113
+ "v2": true
114
+ }
291
115
  },
292
116
  "@aws-cdk/aws-apigateway:usagePlanKeyOrderInsensitiveId": {
293
117
  "recommendedValue": true,
294
- "explanation": "Allow adding/removing multiple UsagePlanKeys independently"
295
- },
296
- "@aws-cdk/aws-efs:defaultEncryptionAtRest": {
297
- "recommendedValue": true,
298
- "explanation": "Enable this feature flag to have elastic file systems encrypted at rest by default."
118
+ "explanation": "Allow adding/removing multiple UsagePlanKeys independently",
119
+ "unconfiguredBehavesLike": {
120
+ "v2": true
121
+ }
299
122
  },
300
123
  "@aws-cdk/aws-lambda:recognizeVersionProps": {
301
124
  "recommendedValue": true,
302
- "explanation": "Enable this feature flag to opt in to the updated logical id calculation for Lambda Version created using the `fn.currentVersion`."
125
+ "explanation": "Enable this feature flag to opt in to the updated logical id calculation for Lambda Version created using the `fn.currentVersion`.",
126
+ "unconfiguredBehavesLike": {
127
+ "v2": true
128
+ }
303
129
  },
304
130
  "@aws-cdk/aws-lambda:recognizeLayerVersion": {
305
131
  "userValue": true,
@@ -308,7 +134,10 @@
308
134
  },
309
135
  "@aws-cdk/aws-cloudfront:defaultSecurityPolicyTLSv1.2_2021": {
310
136
  "recommendedValue": true,
311
- "explanation": "Enable this feature flag to have cloudfront distributions use the security policy TLSv1.2_2021 by default."
137
+ "explanation": "Enable this feature flag to have cloudfront distributions use the security policy TLSv1.2_2021 by default.",
138
+ "unconfiguredBehavesLike": {
139
+ "v2": true
140
+ }
312
141
  },
313
142
  "@aws-cdk/core:checkSecretUsage": {
314
143
  "userValue": true,
@@ -385,7 +214,7 @@
385
214
  "@aws-cdk/aws-iam:importedRoleStackSafeDefaultPolicyName": {
386
215
  "userValue": true,
387
216
  "recommendedValue": true,
388
- "explanation": "Enable this feature to by default create default policy names for imported roles that depend on the stack the role is in."
217
+ "explanation": "Enable this feature to create default policy names for imported roles that depend on the stack the role is in."
389
218
  },
390
219
  "@aws-cdk/aws-s3:serverAccessLogsUseBucketPolicy": {
391
220
  "userValue": true,
@@ -529,13 +358,21 @@
529
358
  },
530
359
  "@aws-cdk/pipelines:reduceAssetRoleTrustScope": {
531
360
  "recommendedValue": true,
532
- "explanation": "Remove the root account principal from PipelineAssetsFileRole trust policy"
361
+ "explanation": "Remove the root account principal from PipelineAssetsFileRole trust policy",
362
+ "unconfiguredBehavesLike": {
363
+ "v2": true
364
+ }
533
365
  },
534
366
  "@aws-cdk/aws-eks:nodegroupNameAttribute": {
535
367
  "userValue": true,
536
368
  "recommendedValue": true,
537
369
  "explanation": "When enabled, nodegroupName attribute of the provisioned EKS NodeGroup will not have the cluster name prefix."
538
370
  },
371
+ "@aws-cdk/aws-eks:useNativeOidcProvider": {
372
+ "userValue": true,
373
+ "recommendedValue": true,
374
+ "explanation": "When enabled, EKS V2 clusters will use the native OIDC provider resource AWS::IAM::OIDCProvider instead of creating the OIDCProvider with a custom resource (iam.OpenIDConnectProvider)."
375
+ },
539
376
  "@aws-cdk/aws-ec2:ebsDefaultGp3Volume": {
540
377
  "userValue": true,
541
378
  "recommendedValue": true,
@@ -558,23 +395,16 @@
558
395
  },
559
396
  "@aws-cdk/aws-stepfunctions-tasks:useNewS3UriParametersForBedrockInvokeModelTask": {
560
397
  "recommendedValue": true,
561
- "explanation": "When enabled, use new props for S3 URI field in task definition of state machine for bedrock invoke model."
398
+ "explanation": "When enabled, use new props for S3 URI field in task definition of state machine for bedrock invoke model.",
399
+ "unconfiguredBehavesLike": {
400
+ "v2": true
401
+ }
562
402
  },
563
403
  "@aws-cdk/core:explicitStackTags": {
564
404
  "userValue": true,
565
405
  "recommendedValue": true,
566
406
  "explanation": "When enabled, stack tags need to be assigned explicitly on a Stack."
567
407
  },
568
- "@aws-cdk/aws-ecs:enableImdsBlockingDeprecatedFeature": {
569
- "userValue": false,
570
- "recommendedValue": false,
571
- "explanation": "When set to true along with canContainersAccessInstanceRole=false in ECS cluster, new updated commands will be added to UserData to block container accessing IMDS. **Applicable to Linux only. IMPORTANT: See [details.](#aws-cdkaws-ecsenableImdsBlockingDeprecatedFeature)**"
572
- },
573
- "@aws-cdk/aws-ecs:disableEcsImdsBlocking": {
574
- "userValue": true,
575
- "recommendedValue": true,
576
- "explanation": "When set to true, CDK synth will throw exception if canContainersAccessInstanceRole is false. **IMPORTANT: See [details.](#aws-cdkaws-ecsdisableEcsImdsBlocking)**"
577
- },
578
408
  "@aws-cdk/aws-ecs:reduceEc2FargateCloudWatchPermissions": {
579
409
  "userValue": true,
580
410
  "recommendedValue": true,
@@ -622,7 +452,10 @@
622
452
  },
623
453
  "@aws-cdk/core:aspectStabilization": {
624
454
  "recommendedValue": true,
625
- "explanation": "When enabled, a stabilization loop will be run when invoking Aspects during synthesis."
455
+ "explanation": "When enabled, a stabilization loop will be run when invoking Aspects during synthesis.",
456
+ "unconfiguredBehavesLike": {
457
+ "v2": true
458
+ }
626
459
  },
627
460
  "@aws-cdk/aws-route53-targets:userPoolDomainNameMethodWithoutCustomResource": {
628
461
  "userValue": true,
@@ -656,7 +489,10 @@
656
489
  },
657
490
  "@aws-cdk/pipelines:reduceStageRoleTrustScope": {
658
491
  "recommendedValue": true,
659
- "explanation": "Remove the root account principal from Stage addActions trust policy"
492
+ "explanation": "Remove the root account principal from Stage addActions trust policy",
493
+ "unconfiguredBehavesLike": {
494
+ "v2": true
495
+ }
660
496
  },
661
497
  "@aws-cdk/aws-events:requireEventBusPolicySid": {
662
498
  "userValue": true,
@@ -679,7 +515,10 @@
679
515
  },
680
516
  "@aws-cdk/pipelines:reduceCrossAccountActionRoleTrustScope": {
681
517
  "recommendedValue": true,
682
- "explanation": "When enabled, scopes down the trust policy for the cross-account action role"
518
+ "explanation": "When enabled, scopes down the trust policy for the cross-account action role",
519
+ "unconfiguredBehavesLike": {
520
+ "v2": true
521
+ }
683
522
  },
684
523
  "@aws-cdk/aws-stepfunctions:useDistributedMapResultWriterV2": {
685
524
  "userValue": true,
@@ -709,10 +548,49 @@
709
548
  "userValue": true,
710
549
  "recommendedValue": true,
711
550
  "explanation": "When enabled, CDK creates and manages loggroup for the lambda function"
551
+ },
552
+ "@aws-cdk/aws-elasticloadbalancingv2:networkLoadBalancerWithSecurityGroupByDefault": {
553
+ "userValue": true,
554
+ "recommendedValue": true,
555
+ "explanation": "When enabled, Network Load Balancer will be created with a security group by default."
556
+ },
557
+ "@aws-cdk/aws-stepfunctions-tasks:httpInvokeDynamicJsonPathEndpoint": {
558
+ "recommendedValue": true,
559
+ "explanation": "When enabled, allows using a dynamic apiEndpoint with JSONPath format in HttpInvoke tasks.",
560
+ "unconfiguredBehavesLike": {
561
+ "v2": true
562
+ }
563
+ },
564
+ "@aws-cdk/aws-ecs-patterns:uniqueTargetGroupId": {
565
+ "userValue": true,
566
+ "recommendedValue": true,
567
+ "explanation": "When enabled, ECS patterns will generate unique target group IDs to prevent conflicts during load balancer replacement"
568
+ },
569
+ "@aws-cdk/aws-route53-patterns:useDistribution": {
570
+ "userValue": true,
571
+ "recommendedValue": true,
572
+ "explanation": "Use the `Distribution` resource instead of `CloudFrontWebDistribution`"
573
+ },
574
+ "@aws-cdk/aws-cloudfront:defaultFunctionRuntimeV2_0": {
575
+ "userValue": true,
576
+ "recommendedValue": true,
577
+ "explanation": "Use cloudfront-js-2.0 as the default runtime for CloudFront Functions"
578
+ },
579
+ "@aws-cdk/aws-elasticloadbalancingv2:usePostQuantumTlsPolicy": {
580
+ "userValue": true,
581
+ "recommendedValue": true,
582
+ "explanation": "When enabled, HTTPS/TLS listeners use post-quantum TLS policy by default"
583
+ },
584
+ "@aws-cdk/core:automaticL1Traits": {
585
+ "recommendedValue": true,
586
+ "explanation": "Automatically use the default L1 traits for L1 constructs`",
587
+ "unconfiguredBehavesLike": {
588
+ "v2": true
589
+ }
712
590
  }
713
591
  }
714
592
  }
715
593
  }
716
594
  },
717
- "minimumCliVersion": "2.1021.0"
595
+ "minimumCliVersion": "2.1117.0"
718
596
  }