@aws-solutions-constructs/aws-cloudfront-oai-s3 2.102.0 → 2.103.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
Files changed (72) hide show
  1. package/.jsii +79 -5
  2. package/lib/index.js +1 -1
  3. package/package.json +8 -8
  4. package/test/integ.cftoais3-bucket-encrypted-with-managed-key-provided-as-existingbucket.js.snapshot/asset.faa95a81ae7d7373f3e1f242268f904eb748d8d0fdd306e8a6fe515a1905a7d6/index.js +1 -0
  5. package/test/integ.cftoais3-bucket-encrypted-with-managed-key-provided-as-existingbucket.js.snapshot/cdk.out +1 -1
  6. package/test/integ.cftoais3-bucket-encrypted-with-managed-key-provided-as-existingbucket.js.snapshot/cftoais3-bucket-encrypted-with-managed-key-provided-as-existingbucket.assets.json +4 -4
  7. package/test/integ.cftoais3-bucket-encrypted-with-managed-key-provided-as-existingbucket.js.snapshot/cftoais3-bucket-encrypted-with-managed-key-provided-as-existingbucket.metadata.json +320 -0
  8. package/test/integ.cftoais3-bucket-encrypted-with-managed-key-provided-as-existingbucket.js.snapshot/cftoais3-bucket-encrypted-with-managed-key-provided-as-existingbucket.template.json +1 -1
  9. package/test/integ.cftoais3-bucket-encrypted-with-managed-key-provided-as-existingbucket.js.snapshot/cftoais3bucketencryptedwithmanagedkeyprovidedasexistingbucketIntegDefaultTestDeployAssert105E804F.assets.json +1 -1
  10. package/test/integ.cftoais3-bucket-encrypted-with-managed-key-provided-as-existingbucket.js.snapshot/cftoais3bucketencryptedwithmanagedkeyprovidedasexistingbucketIntegDefaultTestDeployAssert105E804F.metadata.json +14 -0
  11. package/test/integ.cftoais3-bucket-encrypted-with-managed-key-provided-as-existingbucket.js.snapshot/integ.json +2 -2
  12. package/test/integ.cftoais3-bucket-encrypted-with-managed-key-provided-as-existingbucket.js.snapshot/manifest.json +121 -339
  13. package/test/integ.cftoais3-bucket-encrypted-with-managed-key-provided-as-existingbucket.js.snapshot/tree.json +1 -1
  14. package/test/integ.cftoais3-custom-headers.js.snapshot/cdk.out +1 -1
  15. package/test/integ.cftoais3-custom-headers.js.snapshot/cftoais3-custom-headers.assets.json +4 -4
  16. package/test/integ.cftoais3-custom-headers.js.snapshot/cftoais3-custom-headers.template.json +1 -1
  17. package/test/integ.cftoais3-custom-headers.js.snapshot/cftoais3customheadersIntegDefaultTestDeployAssert5AA11BA9.assets.json +1 -1
  18. package/test/integ.cftoais3-custom-headers.js.snapshot/integ.json +2 -2
  19. package/test/integ.cftoais3-custom-headers.js.snapshot/manifest.json +24 -3
  20. package/test/integ.cftoais3-custom-headers.js.snapshot/tree.json +1 -1
  21. package/test/integ.cftoais3-custom-originPath.js.snapshot/cdk.out +1 -1
  22. package/test/integ.cftoais3-custom-originPath.js.snapshot/cftoais3-custom-originPath.assets.json +4 -4
  23. package/test/integ.cftoais3-custom-originPath.js.snapshot/cftoais3-custom-originPath.template.json +1 -1
  24. package/test/integ.cftoais3-custom-originPath.js.snapshot/cftoais3customoriginPathIntegDefaultTestDeployAssert1C351914.assets.json +1 -1
  25. package/test/integ.cftoais3-custom-originPath.js.snapshot/integ.json +2 -2
  26. package/test/integ.cftoais3-custom-originPath.js.snapshot/manifest.json +24 -3
  27. package/test/integ.cftoais3-custom-originPath.js.snapshot/tree.json +1 -1
  28. package/test/integ.cftoais3-customLoggingBuckets.js.snapshot/cdk.out +1 -1
  29. package/test/integ.cftoais3-customLoggingBuckets.js.snapshot/cftoais3-customLoggingBuckets.assets.json +4 -4
  30. package/test/integ.cftoais3-customLoggingBuckets.js.snapshot/cftoais3-customLoggingBuckets.template.json +1 -1
  31. package/test/integ.cftoais3-customLoggingBuckets.js.snapshot/cftoais3customLoggingBucketsIntegDefaultTestDeployAssert8F33EF2A.assets.json +1 -1
  32. package/test/integ.cftoais3-customLoggingBuckets.js.snapshot/integ.json +2 -2
  33. package/test/integ.cftoais3-customLoggingBuckets.js.snapshot/manifest.json +24 -3
  34. package/test/integ.cftoais3-customLoggingBuckets.js.snapshot/tree.json +1 -1
  35. package/test/integ.cftoais3-existing-bucket.js.snapshot/cdk.out +1 -1
  36. package/test/integ.cftoais3-existing-bucket.js.snapshot/cftoais3-existing-bucket.assets.json +4 -4
  37. package/test/integ.cftoais3-existing-bucket.js.snapshot/cftoais3-existing-bucket.template.json +1 -1
  38. package/test/integ.cftoais3-existing-bucket.js.snapshot/cftoais3existingbucketIntegDefaultTestDeployAssertB7627F26.assets.json +1 -1
  39. package/test/integ.cftoais3-existing-bucket.js.snapshot/integ.json +2 -2
  40. package/test/integ.cftoais3-existing-bucket.js.snapshot/manifest.json +24 -3
  41. package/test/integ.cftoais3-existing-bucket.js.snapshot/tree.json +1 -1
  42. package/test/integ.cftoais3-no-arguments.js.snapshot/cdk.out +1 -1
  43. package/test/integ.cftoais3-no-arguments.js.snapshot/cftoais3-no-arguments.assets.json +4 -4
  44. package/test/integ.cftoais3-no-arguments.js.snapshot/cftoais3-no-arguments.template.json +1 -1
  45. package/test/integ.cftoais3-no-arguments.js.snapshot/cftoais3noargumentsIntegDefaultTestDeployAssert5CF03E3D.assets.json +1 -1
  46. package/test/integ.cftoais3-no-arguments.js.snapshot/integ.json +2 -2
  47. package/test/integ.cftoais3-no-arguments.js.snapshot/manifest.json +24 -3
  48. package/test/integ.cftoais3-no-arguments.js.snapshot/tree.json +1 -1
  49. package/test/integ.cftoais3-no-cloudfront-s3-access-logs.js.snapshot/cdk.out +1 -1
  50. package/test/integ.cftoais3-no-cloudfront-s3-access-logs.js.snapshot/cftoais3-no-cloudfront-s3-access-logs.assets.json +4 -4
  51. package/test/integ.cftoais3-no-cloudfront-s3-access-logs.js.snapshot/cftoais3-no-cloudfront-s3-access-logs.template.json +1 -1
  52. package/test/integ.cftoais3-no-cloudfront-s3-access-logs.js.snapshot/cftoais3nocloudfronts3accesslogsIntegDefaultTestDeployAssert6D810275.assets.json +1 -1
  53. package/test/integ.cftoais3-no-cloudfront-s3-access-logs.js.snapshot/integ.json +2 -2
  54. package/test/integ.cftoais3-no-cloudfront-s3-access-logs.js.snapshot/manifest.json +24 -3
  55. package/test/integ.cftoais3-no-cloudfront-s3-access-logs.js.snapshot/tree.json +1 -1
  56. package/test/integ.cftoais3-no-logging.js.snapshot/cdk.out +1 -1
  57. package/test/integ.cftoais3-no-logging.js.snapshot/cftoais3-no-logging.assets.json +4 -4
  58. package/test/integ.cftoais3-no-logging.js.snapshot/cftoais3-no-logging.template.json +1 -1
  59. package/test/integ.cftoais3-no-logging.js.snapshot/cftoais3nologgingIntegDefaultTestDeployAssertCED06EE4.assets.json +1 -1
  60. package/test/integ.cftoais3-no-logging.js.snapshot/integ.json +2 -2
  61. package/test/integ.cftoais3-no-logging.js.snapshot/manifest.json +24 -3
  62. package/test/integ.cftoais3-no-logging.js.snapshot/tree.json +1 -1
  63. package/test/integ.cftoais3-no-security-headers.js.snapshot/asset.faa95a81ae7d7373f3e1f242268f904eb748d8d0fdd306e8a6fe515a1905a7d6/index.js +1 -0
  64. package/test/integ.cftoais3-no-security-headers.js.snapshot/cdk.out +1 -1
  65. package/test/integ.cftoais3-no-security-headers.js.snapshot/cftoais3-no-security-headers.assets.json +4 -4
  66. package/test/integ.cftoais3-no-security-headers.js.snapshot/cftoais3-no-security-headers.metadata.json +320 -0
  67. package/test/integ.cftoais3-no-security-headers.js.snapshot/cftoais3-no-security-headers.template.json +1 -1
  68. package/test/integ.cftoais3-no-security-headers.js.snapshot/cftoais3nosecurityheadersIntegDefaultTestDeployAssertAB4B2F28.assets.json +1 -1
  69. package/test/integ.cftoais3-no-security-headers.js.snapshot/cftoais3nosecurityheadersIntegDefaultTestDeployAssertAB4B2F28.metadata.json +14 -0
  70. package/test/integ.cftoais3-no-security-headers.js.snapshot/integ.json +2 -2
  71. package/test/integ.cftoais3-no-security-headers.js.snapshot/manifest.json +121 -339
  72. package/test/integ.cftoais3-no-security-headers.js.snapshot/tree.json +1 -1
@@ -1,5 +1,5 @@
1
1
  {
2
- "version": "48.0.0",
2
+ "version": "54.0.0",
3
3
  "artifacts": {
4
4
  "cftoais3bucketencryptedwithmanagedkeyprovidedasexistingbucketIntegDefaultTestDeployAssert105E804F.assets": {
5
5
  "type": "cdk:asset-manifest",
@@ -33,20 +33,7 @@
33
33
  "dependencies": [
34
34
  "cftoais3bucketencryptedwithmanagedkeyprovidedasexistingbucketIntegDefaultTestDeployAssert105E804F.assets"
35
35
  ],
36
- "metadata": {
37
- "/cftoais3-bucket-encrypted-with-managed-key-provided-as-existingbucket/Integ/DefaultTest/DeployAssert/BootstrapVersion": [
38
- {
39
- "type": "aws:cdk:logicalId",
40
- "data": "BootstrapVersion"
41
- }
42
- ],
43
- "/cftoais3-bucket-encrypted-with-managed-key-provided-as-existingbucket/Integ/DefaultTest/DeployAssert/CheckBootstrapVersion": [
44
- {
45
- "type": "aws:cdk:logicalId",
46
- "data": "CheckBootstrapVersion"
47
- }
48
- ]
49
- },
36
+ "additionalMetadataFile": "cftoais3bucketencryptedwithmanagedkeyprovidedasexistingbucketIntegDefaultTestDeployAssert105E804F.metadata.json",
50
37
  "displayName": "cftoais3-bucket-encrypted-with-managed-key-provided-as-existingbucket/Integ/DefaultTest/DeployAssert"
51
38
  },
52
39
  "cftoais3-bucket-encrypted-with-managed-key-provided-as-existingbucket.assets": {
@@ -66,7 +53,7 @@
66
53
  "validateOnSynth": false,
67
54
  "assumeRoleArn": "arn:${AWS::Partition}:iam::${AWS::AccountId}:role/cdk-hnb659fds-deploy-role-${AWS::AccountId}-${AWS::Region}",
68
55
  "cloudFormationExecutionRoleArn": "arn:${AWS::Partition}:iam::${AWS::AccountId}:role/cdk-hnb659fds-cfn-exec-role-${AWS::AccountId}-${AWS::Region}",
69
- "stackTemplateAssetObjectUrl": "s3://cdk-hnb659fds-assets-${AWS::AccountId}-${AWS::Region}/9a5dc263b88f0248837b7e6b35c8d2add42c06efaf334cc2b7a3584bec894134.json",
56
+ "stackTemplateAssetObjectUrl": "s3://cdk-hnb659fds-assets-${AWS::AccountId}-${AWS::Region}/0615f41b63e13de054ccfc79efa86ae14d21ef3e27af1448266ca9d78c32c1de.json",
70
57
  "requiresBootstrapStackVersion": 6,
71
58
  "bootstrapStackVersionSsmParameter": "/cdk-bootstrap/hnb659fds/version",
72
59
  "additionalDependencies": [
@@ -81,278 +68,7 @@
81
68
  "dependencies": [
82
69
  "cftoais3-bucket-encrypted-with-managed-key-provided-as-existingbucket.assets"
83
70
  ],
84
- "metadata": {
85
- "/cftoais3-bucket-encrypted-with-managed-key-provided-as-existingbucket/existing-s3-bucket-encrypted-with-s3-managed-keyS3LoggingBucket": [
86
- {
87
- "type": "aws:cdk:analytics:construct",
88
- "data": {
89
- "encryption": "S3_MANAGED",
90
- "versioned": true,
91
- "blockPublicAccess": "*",
92
- "removalPolicy": "destroy",
93
- "enforceSSL": true,
94
- "autoDeleteObjects": true
95
- }
96
- }
97
- ],
98
- "/cftoais3-bucket-encrypted-with-managed-key-provided-as-existingbucket/existing-s3-bucket-encrypted-with-s3-managed-keyS3LoggingBucket/Resource": [
99
- {
100
- "type": "aws:cdk:logicalId",
101
- "data": "existings3bucketencryptedwiths3managedkeyS3LoggingBucketF861F6B7"
102
- }
103
- ],
104
- "/cftoais3-bucket-encrypted-with-managed-key-provided-as-existingbucket/existing-s3-bucket-encrypted-with-s3-managed-keyS3LoggingBucket/Policy": [
105
- {
106
- "type": "aws:cdk:analytics:construct",
107
- "data": {
108
- "bucket": "*"
109
- }
110
- }
111
- ],
112
- "/cftoais3-bucket-encrypted-with-managed-key-provided-as-existingbucket/existing-s3-bucket-encrypted-with-s3-managed-keyS3LoggingBucket/Policy/Resource": [
113
- {
114
- "type": "aws:cdk:logicalId",
115
- "data": "existings3bucketencryptedwiths3managedkeyS3LoggingBucketPolicy4358229C"
116
- }
117
- ],
118
- "/cftoais3-bucket-encrypted-with-managed-key-provided-as-existingbucket/existing-s3-bucket-encrypted-with-s3-managed-keyS3LoggingBucket/AutoDeleteObjectsCustomResource": [
119
- {
120
- "type": "aws:cdk:analytics:construct",
121
- "data": "*"
122
- }
123
- ],
124
- "/cftoais3-bucket-encrypted-with-managed-key-provided-as-existingbucket/existing-s3-bucket-encrypted-with-s3-managed-keyS3LoggingBucket/AutoDeleteObjectsCustomResource/Default": [
125
- {
126
- "type": "aws:cdk:logicalId",
127
- "data": "existings3bucketencryptedwiths3managedkeyS3LoggingBucketAutoDeleteObjectsCustomResourceB3A19532"
128
- }
129
- ],
130
- "/cftoais3-bucket-encrypted-with-managed-key-provided-as-existingbucket/Custom::S3AutoDeleteObjectsCustomResourceProvider": [
131
- {
132
- "type": "aws:cdk:is-custom-resource-handler-customResourceProvider",
133
- "data": true
134
- }
135
- ],
136
- "/cftoais3-bucket-encrypted-with-managed-key-provided-as-existingbucket/Custom::S3AutoDeleteObjectsCustomResourceProvider/Role": [
137
- {
138
- "type": "aws:cdk:logicalId",
139
- "data": "CustomS3AutoDeleteObjectsCustomResourceProviderRole3B1BD092"
140
- }
141
- ],
142
- "/cftoais3-bucket-encrypted-with-managed-key-provided-as-existingbucket/Custom::S3AutoDeleteObjectsCustomResourceProvider/Handler": [
143
- {
144
- "type": "aws:cdk:logicalId",
145
- "data": "CustomS3AutoDeleteObjectsCustomResourceProviderHandler9D90184F"
146
- }
147
- ],
148
- "/cftoais3-bucket-encrypted-with-managed-key-provided-as-existingbucket/existing-s3-bucket-encrypted-with-s3-managed-keyS3Bucket": [
149
- {
150
- "type": "aws:cdk:analytics:construct",
151
- "data": {
152
- "encryption": "S3_MANAGED",
153
- "versioned": true,
154
- "blockPublicAccess": "*",
155
- "removalPolicy": "destroy",
156
- "enforceSSL": true,
157
- "lifecycleRules": [
158
- {
159
- "noncurrentVersionTransitions": [
160
- {
161
- "storageClass": "*"
162
- }
163
- ]
164
- }
165
- ],
166
- "serverAccessLogsBucket": "*",
167
- "autoDeleteObjects": true
168
- }
169
- },
170
- {
171
- "type": "aws:cdk:analytics:method",
172
- "data": {
173
- "addLifecycleRule": [
174
- {
175
- "noncurrentVersionTransitions": [
176
- {
177
- "storageClass": "*"
178
- }
179
- ]
180
- },
181
- "*",
182
- "*"
183
- ]
184
- }
185
- }
186
- ],
187
- "/cftoais3-bucket-encrypted-with-managed-key-provided-as-existingbucket/existing-s3-bucket-encrypted-with-s3-managed-keyS3Bucket/Resource": [
188
- {
189
- "type": "aws:cdk:logicalId",
190
- "data": "existings3bucketencryptedwiths3managedkeyS3BucketA8C4BE9A"
191
- }
192
- ],
193
- "/cftoais3-bucket-encrypted-with-managed-key-provided-as-existingbucket/existing-s3-bucket-encrypted-with-s3-managed-keyS3Bucket/Policy": [
194
- {
195
- "type": "aws:cdk:analytics:construct",
196
- "data": {
197
- "bucket": "*"
198
- }
199
- }
200
- ],
201
- "/cftoais3-bucket-encrypted-with-managed-key-provided-as-existingbucket/existing-s3-bucket-encrypted-with-s3-managed-keyS3Bucket/Policy/Resource": [
202
- {
203
- "type": "aws:cdk:logicalId",
204
- "data": "existings3bucketencryptedwiths3managedkeyS3BucketPolicyFDA85248"
205
- }
206
- ],
207
- "/cftoais3-bucket-encrypted-with-managed-key-provided-as-existingbucket/existing-s3-bucket-encrypted-with-s3-managed-keyS3Bucket/AutoDeleteObjectsCustomResource": [
208
- {
209
- "type": "aws:cdk:analytics:construct",
210
- "data": "*"
211
- }
212
- ],
213
- "/cftoais3-bucket-encrypted-with-managed-key-provided-as-existingbucket/existing-s3-bucket-encrypted-with-s3-managed-keyS3Bucket/AutoDeleteObjectsCustomResource/Default": [
214
- {
215
- "type": "aws:cdk:logicalId",
216
- "data": "existings3bucketencryptedwiths3managedkeyS3BucketAutoDeleteObjectsCustomResourceE3B1946C"
217
- }
218
- ],
219
- "/cftoais3-bucket-encrypted-with-managed-key-provided-as-existingbucket/test-cloudfront-oai-s3-managed-key/CloudfrontLoggingBucketAccessLog": [
220
- {
221
- "type": "aws:cdk:analytics:construct",
222
- "data": {
223
- "encryption": "S3_MANAGED",
224
- "versioned": true,
225
- "blockPublicAccess": "*",
226
- "removalPolicy": "destroy",
227
- "enforceSSL": true,
228
- "autoDeleteObjects": true
229
- }
230
- }
231
- ],
232
- "/cftoais3-bucket-encrypted-with-managed-key-provided-as-existingbucket/test-cloudfront-oai-s3-managed-key/CloudfrontLoggingBucketAccessLog/Resource": [
233
- {
234
- "type": "aws:cdk:logicalId",
235
- "data": "testcloudfrontoais3managedkeyCloudfrontLoggingBucketAccessLog2E3935E9"
236
- }
237
- ],
238
- "/cftoais3-bucket-encrypted-with-managed-key-provided-as-existingbucket/test-cloudfront-oai-s3-managed-key/CloudfrontLoggingBucketAccessLog/Policy": [
239
- {
240
- "type": "aws:cdk:analytics:construct",
241
- "data": {
242
- "bucket": "*"
243
- }
244
- }
245
- ],
246
- "/cftoais3-bucket-encrypted-with-managed-key-provided-as-existingbucket/test-cloudfront-oai-s3-managed-key/CloudfrontLoggingBucketAccessLog/Policy/Resource": [
247
- {
248
- "type": "aws:cdk:logicalId",
249
- "data": "testcloudfrontoais3managedkeyCloudfrontLoggingBucketAccessLogPolicy6FCD1E7F"
250
- }
251
- ],
252
- "/cftoais3-bucket-encrypted-with-managed-key-provided-as-existingbucket/test-cloudfront-oai-s3-managed-key/CloudfrontLoggingBucketAccessLog/AutoDeleteObjectsCustomResource": [
253
- {
254
- "type": "aws:cdk:analytics:construct",
255
- "data": "*"
256
- }
257
- ],
258
- "/cftoais3-bucket-encrypted-with-managed-key-provided-as-existingbucket/test-cloudfront-oai-s3-managed-key/CloudfrontLoggingBucketAccessLog/AutoDeleteObjectsCustomResource/Default": [
259
- {
260
- "type": "aws:cdk:logicalId",
261
- "data": "testcloudfrontoais3managedkeyCloudfrontLoggingBucketAccessLogAutoDeleteObjectsCustomResource8CDCC9A1"
262
- }
263
- ],
264
- "/cftoais3-bucket-encrypted-with-managed-key-provided-as-existingbucket/test-cloudfront-oai-s3-managed-key/CloudfrontLoggingBucket": [
265
- {
266
- "type": "aws:cdk:analytics:construct",
267
- "data": {
268
- "encryption": "S3_MANAGED",
269
- "versioned": true,
270
- "blockPublicAccess": "*",
271
- "removalPolicy": "destroy",
272
- "enforceSSL": true,
273
- "autoDeleteObjects": true,
274
- "objectOwnership": "ObjectWriter",
275
- "serverAccessLogsBucket": "*"
276
- }
277
- }
278
- ],
279
- "/cftoais3-bucket-encrypted-with-managed-key-provided-as-existingbucket/test-cloudfront-oai-s3-managed-key/CloudfrontLoggingBucket/Resource": [
280
- {
281
- "type": "aws:cdk:logicalId",
282
- "data": "testcloudfrontoais3managedkeyCloudfrontLoggingBucketE6FDAA72"
283
- }
284
- ],
285
- "/cftoais3-bucket-encrypted-with-managed-key-provided-as-existingbucket/test-cloudfront-oai-s3-managed-key/CloudfrontLoggingBucket/Policy": [
286
- {
287
- "type": "aws:cdk:analytics:construct",
288
- "data": {
289
- "bucket": "*"
290
- }
291
- }
292
- ],
293
- "/cftoais3-bucket-encrypted-with-managed-key-provided-as-existingbucket/test-cloudfront-oai-s3-managed-key/CloudfrontLoggingBucket/Policy/Resource": [
294
- {
295
- "type": "aws:cdk:logicalId",
296
- "data": "testcloudfrontoais3managedkeyCloudfrontLoggingBucketPolicyA31F4F70"
297
- }
298
- ],
299
- "/cftoais3-bucket-encrypted-with-managed-key-provided-as-existingbucket/test-cloudfront-oai-s3-managed-key/CloudfrontLoggingBucket/AutoDeleteObjectsCustomResource": [
300
- {
301
- "type": "aws:cdk:analytics:construct",
302
- "data": "*"
303
- }
304
- ],
305
- "/cftoais3-bucket-encrypted-with-managed-key-provided-as-existingbucket/test-cloudfront-oai-s3-managed-key/CloudfrontLoggingBucket/AutoDeleteObjectsCustomResource/Default": [
306
- {
307
- "type": "aws:cdk:logicalId",
308
- "data": "testcloudfrontoais3managedkeyCloudfrontLoggingBucketAutoDeleteObjectsCustomResourceD8646547"
309
- }
310
- ],
311
- "/cftoais3-bucket-encrypted-with-managed-key-provided-as-existingbucket/test-cloudfront-oai-s3-managed-key/constructsGeneratedOai": [
312
- {
313
- "type": "aws:cdk:analytics:construct",
314
- "data": "*"
315
- }
316
- ],
317
- "/cftoais3-bucket-encrypted-with-managed-key-provided-as-existingbucket/test-cloudfront-oai-s3-managed-key/constructsGeneratedOai/Resource": [
318
- {
319
- "type": "aws:cdk:logicalId",
320
- "data": "testcloudfrontoais3managedkeyconstructsGeneratedOai89C0D4F8"
321
- }
322
- ],
323
- "/cftoais3-bucket-encrypted-with-managed-key-provided-as-existingbucket/test-cloudfront-oai-s3-managed-key/CloudFrontDistribution": [
324
- {
325
- "type": "aws:cdk:analytics:construct",
326
- "data": {
327
- "defaultBehavior": {
328
- "origin": "*",
329
- "viewerProtocolPolicy": "redirect-to-https"
330
- },
331
- "enableLogging": true,
332
- "logBucket": "*",
333
- "defaultRootObject": "*"
334
- }
335
- }
336
- ],
337
- "/cftoais3-bucket-encrypted-with-managed-key-provided-as-existingbucket/test-cloudfront-oai-s3-managed-key/CloudFrontDistribution/Resource": [
338
- {
339
- "type": "aws:cdk:logicalId",
340
- "data": "testcloudfrontoais3managedkeyCloudFrontDistributionD7203FE7"
341
- }
342
- ],
343
- "/cftoais3-bucket-encrypted-with-managed-key-provided-as-existingbucket/BootstrapVersion": [
344
- {
345
- "type": "aws:cdk:logicalId",
346
- "data": "BootstrapVersion"
347
- }
348
- ],
349
- "/cftoais3-bucket-encrypted-with-managed-key-provided-as-existingbucket/CheckBootstrapVersion": [
350
- {
351
- "type": "aws:cdk:logicalId",
352
- "data": "CheckBootstrapVersion"
353
- }
354
- ]
355
- },
71
+ "additionalMetadataFile": "cftoais3-bucket-encrypted-with-managed-key-provided-as-existingbucket.metadata.json",
356
72
  "displayName": "cftoais3-bucket-encrypted-with-managed-key-provided-as-existingbucket"
357
73
  },
358
74
  "Tree": {
@@ -366,57 +82,50 @@
366
82
  "properties": {
367
83
  "module": "aws-cdk-lib",
368
84
  "flags": {
369
- "@aws-cdk/core:enableStackNameDuplicates": {
370
- "recommendedValue": true,
371
- "explanation": "Allow multiple stacks with the same name"
372
- },
373
- "aws-cdk:enableDiffNoFail": {
85
+ "@aws-cdk/aws-signer:signingProfileNamePassedToCfn": {
86
+ "userValue": true,
374
87
  "recommendedValue": true,
375
- "explanation": "Make `cdk diff` not fail when there are differences"
88
+ "explanation": "Pass signingProfileName to CfnSigningProfile"
376
89
  },
377
90
  "@aws-cdk/core:newStyleStackSynthesis": {
378
91
  "recommendedValue": true,
379
- "explanation": "Switch to new stack synthesis method which enables CI/CD"
92
+ "explanation": "Switch to new stack synthesis method which enables CI/CD",
93
+ "unconfiguredBehavesLike": {
94
+ "v2": true
95
+ }
380
96
  },
381
97
  "@aws-cdk/core:stackRelativeExports": {
382
98
  "recommendedValue": true,
383
- "explanation": "Name exports based on the construct paths relative to the stack, rather than the global construct path"
384
- },
385
- "@aws-cdk/aws-ecr-assets:dockerIgnoreSupport": {
386
- "recommendedValue": true,
387
- "explanation": "DockerImageAsset properly supports `.dockerignore` files by default"
388
- },
389
- "@aws-cdk/aws-secretsmanager:parseOwnedSecretName": {
390
- "recommendedValue": true,
391
- "explanation": "Fix the referencing of SecretsManager names from ARNs"
392
- },
393
- "@aws-cdk/aws-kms:defaultKeyPolicies": {
394
- "recommendedValue": true,
395
- "explanation": "Tighten default KMS key policies"
396
- },
397
- "@aws-cdk/aws-s3:grantWriteWithoutAcl": {
398
- "recommendedValue": true,
399
- "explanation": "Remove `PutObjectAcl` from Bucket.grantWrite"
99
+ "explanation": "Name exports based on the construct paths relative to the stack, rather than the global construct path",
100
+ "unconfiguredBehavesLike": {
101
+ "v2": true
102
+ }
400
103
  },
401
- "@aws-cdk/aws-ecs-patterns:removeDefaultDesiredCount": {
104
+ "@aws-cdk/aws-ecs-patterns:secGroupsDisablesImplicitOpenListener": {
105
+ "userValue": true,
402
106
  "recommendedValue": true,
403
- "explanation": "Do not specify a default DesiredCount for ECS services"
107
+ "explanation": "Disable implicit openListener when custom security groups are provided"
404
108
  },
405
109
  "@aws-cdk/aws-rds:lowercaseDbIdentifier": {
406
110
  "recommendedValue": true,
407
- "explanation": "Force lowercasing of RDS Cluster names in CDK"
111
+ "explanation": "Force lowercasing of RDS Cluster names in CDK",
112
+ "unconfiguredBehavesLike": {
113
+ "v2": true
114
+ }
408
115
  },
409
116
  "@aws-cdk/aws-apigateway:usagePlanKeyOrderInsensitiveId": {
410
117
  "recommendedValue": true,
411
- "explanation": "Allow adding/removing multiple UsagePlanKeys independently"
412
- },
413
- "@aws-cdk/aws-efs:defaultEncryptionAtRest": {
414
- "recommendedValue": true,
415
- "explanation": "Enable this feature flag to have elastic file systems encrypted at rest by default."
118
+ "explanation": "Allow adding/removing multiple UsagePlanKeys independently",
119
+ "unconfiguredBehavesLike": {
120
+ "v2": true
121
+ }
416
122
  },
417
123
  "@aws-cdk/aws-lambda:recognizeVersionProps": {
418
124
  "recommendedValue": true,
419
- "explanation": "Enable this feature flag to opt in to the updated logical id calculation for Lambda Version created using the `fn.currentVersion`."
125
+ "explanation": "Enable this feature flag to opt in to the updated logical id calculation for Lambda Version created using the `fn.currentVersion`.",
126
+ "unconfiguredBehavesLike": {
127
+ "v2": true
128
+ }
420
129
  },
421
130
  "@aws-cdk/aws-lambda:recognizeLayerVersion": {
422
131
  "userValue": true,
@@ -425,7 +134,10 @@
425
134
  },
426
135
  "@aws-cdk/aws-cloudfront:defaultSecurityPolicyTLSv1.2_2021": {
427
136
  "recommendedValue": true,
428
- "explanation": "Enable this feature flag to have cloudfront distributions use the security policy TLSv1.2_2021 by default."
137
+ "explanation": "Enable this feature flag to have cloudfront distributions use the security policy TLSv1.2_2021 by default.",
138
+ "unconfiguredBehavesLike": {
139
+ "v2": true
140
+ }
429
141
  },
430
142
  "@aws-cdk/core:checkSecretUsage": {
431
143
  "userValue": true,
@@ -502,7 +214,7 @@
502
214
  "@aws-cdk/aws-iam:importedRoleStackSafeDefaultPolicyName": {
503
215
  "userValue": true,
504
216
  "recommendedValue": true,
505
- "explanation": "Enable this feature to by default create default policy names for imported roles that depend on the stack the role is in."
217
+ "explanation": "Enable this feature to create default policy names for imported roles that depend on the stack the role is in."
506
218
  },
507
219
  "@aws-cdk/aws-s3:serverAccessLogsUseBucketPolicy": {
508
220
  "userValue": true,
@@ -646,13 +358,21 @@
646
358
  },
647
359
  "@aws-cdk/pipelines:reduceAssetRoleTrustScope": {
648
360
  "recommendedValue": true,
649
- "explanation": "Remove the root account principal from PipelineAssetsFileRole trust policy"
361
+ "explanation": "Remove the root account principal from PipelineAssetsFileRole trust policy",
362
+ "unconfiguredBehavesLike": {
363
+ "v2": true
364
+ }
650
365
  },
651
366
  "@aws-cdk/aws-eks:nodegroupNameAttribute": {
652
367
  "userValue": true,
653
368
  "recommendedValue": true,
654
369
  "explanation": "When enabled, nodegroupName attribute of the provisioned EKS NodeGroup will not have the cluster name prefix."
655
370
  },
371
+ "@aws-cdk/aws-eks:useNativeOidcProvider": {
372
+ "userValue": true,
373
+ "recommendedValue": true,
374
+ "explanation": "When enabled, EKS V2 clusters will use the native OIDC provider resource AWS::IAM::OIDCProvider instead of creating the OIDCProvider with a custom resource (iam.OpenIDConnectProvider)."
375
+ },
656
376
  "@aws-cdk/aws-ec2:ebsDefaultGp3Volume": {
657
377
  "userValue": true,
658
378
  "recommendedValue": true,
@@ -675,23 +395,16 @@
675
395
  },
676
396
  "@aws-cdk/aws-stepfunctions-tasks:useNewS3UriParametersForBedrockInvokeModelTask": {
677
397
  "recommendedValue": true,
678
- "explanation": "When enabled, use new props for S3 URI field in task definition of state machine for bedrock invoke model."
398
+ "explanation": "When enabled, use new props for S3 URI field in task definition of state machine for bedrock invoke model.",
399
+ "unconfiguredBehavesLike": {
400
+ "v2": true
401
+ }
679
402
  },
680
403
  "@aws-cdk/core:explicitStackTags": {
681
404
  "userValue": true,
682
405
  "recommendedValue": true,
683
406
  "explanation": "When enabled, stack tags need to be assigned explicitly on a Stack."
684
407
  },
685
- "@aws-cdk/aws-ecs:enableImdsBlockingDeprecatedFeature": {
686
- "userValue": false,
687
- "recommendedValue": false,
688
- "explanation": "When set to true along with canContainersAccessInstanceRole=false in ECS cluster, new updated commands will be added to UserData to block container accessing IMDS. **Applicable to Linux only. IMPORTANT: See [details.](#aws-cdkaws-ecsenableImdsBlockingDeprecatedFeature)**"
689
- },
690
- "@aws-cdk/aws-ecs:disableEcsImdsBlocking": {
691
- "userValue": true,
692
- "recommendedValue": true,
693
- "explanation": "When set to true, CDK synth will throw exception if canContainersAccessInstanceRole is false. **IMPORTANT: See [details.](#aws-cdkaws-ecsdisableEcsImdsBlocking)**"
694
- },
695
408
  "@aws-cdk/aws-ecs:reduceEc2FargateCloudWatchPermissions": {
696
409
  "userValue": true,
697
410
  "recommendedValue": true,
@@ -739,7 +452,10 @@
739
452
  },
740
453
  "@aws-cdk/core:aspectStabilization": {
741
454
  "recommendedValue": true,
742
- "explanation": "When enabled, a stabilization loop will be run when invoking Aspects during synthesis."
455
+ "explanation": "When enabled, a stabilization loop will be run when invoking Aspects during synthesis.",
456
+ "unconfiguredBehavesLike": {
457
+ "v2": true
458
+ }
743
459
  },
744
460
  "@aws-cdk/aws-route53-targets:userPoolDomainNameMethodWithoutCustomResource": {
745
461
  "userValue": true,
@@ -773,7 +489,10 @@
773
489
  },
774
490
  "@aws-cdk/pipelines:reduceStageRoleTrustScope": {
775
491
  "recommendedValue": true,
776
- "explanation": "Remove the root account principal from Stage addActions trust policy"
492
+ "explanation": "Remove the root account principal from Stage addActions trust policy",
493
+ "unconfiguredBehavesLike": {
494
+ "v2": true
495
+ }
777
496
  },
778
497
  "@aws-cdk/aws-events:requireEventBusPolicySid": {
779
498
  "userValue": true,
@@ -796,7 +515,10 @@
796
515
  },
797
516
  "@aws-cdk/pipelines:reduceCrossAccountActionRoleTrustScope": {
798
517
  "recommendedValue": true,
799
- "explanation": "When enabled, scopes down the trust policy for the cross-account action role"
518
+ "explanation": "When enabled, scopes down the trust policy for the cross-account action role",
519
+ "unconfiguredBehavesLike": {
520
+ "v2": true
521
+ }
800
522
  },
801
523
  "@aws-cdk/aws-stepfunctions:useDistributedMapResultWriterV2": {
802
524
  "userValue": true,
@@ -826,10 +548,70 @@
826
548
  "userValue": true,
827
549
  "recommendedValue": true,
828
550
  "explanation": "When enabled, CDK creates and manages loggroup for the lambda function"
551
+ },
552
+ "@aws-cdk/aws-elasticloadbalancingv2:networkLoadBalancerWithSecurityGroupByDefault": {
553
+ "userValue": true,
554
+ "recommendedValue": true,
555
+ "explanation": "When enabled, Network Load Balancer will be created with a security group by default."
556
+ },
557
+ "@aws-cdk/aws-stepfunctions-tasks:httpInvokeDynamicJsonPathEndpoint": {
558
+ "recommendedValue": true,
559
+ "explanation": "When enabled, allows using a dynamic apiEndpoint with JSONPath format in HttpInvoke tasks.",
560
+ "unconfiguredBehavesLike": {
561
+ "v2": true
562
+ }
563
+ },
564
+ "@aws-cdk/aws-ecs-patterns:uniqueTargetGroupId": {
565
+ "userValue": true,
566
+ "recommendedValue": true,
567
+ "explanation": "When enabled, ECS patterns will generate unique target group IDs to prevent conflicts during load balancer replacement"
568
+ },
569
+ "@aws-cdk/aws-route53-patterns:useDistribution": {
570
+ "userValue": true,
571
+ "recommendedValue": true,
572
+ "explanation": "Use the `Distribution` resource instead of `CloudFrontWebDistribution`"
573
+ },
574
+ "@aws-cdk/aws-cloudfront:defaultFunctionRuntimeV2_0": {
575
+ "userValue": true,
576
+ "recommendedValue": true,
577
+ "explanation": "Use cloudfront-js-2.0 as the default runtime for CloudFront Functions"
578
+ },
579
+ "@aws-cdk/aws-elasticloadbalancingv2:usePostQuantumTlsPolicy": {
580
+ "userValue": true,
581
+ "recommendedValue": true,
582
+ "explanation": "When enabled, HTTPS/TLS listeners use post-quantum TLS policy by default"
583
+ },
584
+ "@aws-cdk/core:automaticL1Traits": {
585
+ "recommendedValue": true,
586
+ "explanation": "Automatically use the default L1 traits for L1 constructs`",
587
+ "unconfiguredBehavesLike": {
588
+ "v2": true
589
+ }
590
+ },
591
+ "@aws-cdk/aws-batch:defaultToAL2023": {
592
+ "userValue": true,
593
+ "recommendedValue": true,
594
+ "explanation": "Use AL2023 as the default imageType for EC2 Batch compute environments instead of the deprecated AL2"
595
+ },
596
+ "@aws-cdk/aws-eks:defaultToAL2023": {
597
+ "recommendedValue": true,
598
+ "explanation": "Use AL2023 as the default AMI type for EKS managed node groups using non-GPU instance types instead of the deprecated AL2"
599
+ },
600
+ "@aws-cdk/core:annotationsInValidationReport": {
601
+ "userValue": true,
602
+ "recommendedValue": true,
603
+ "explanation": "Include construct annotations (warnings and errors) in the policy validation report"
604
+ },
605
+ "@aws-cdk/core:defaultCrossStackReferences": {
606
+ "recommendedValue": "weak",
607
+ "explanation": "Controls whether cross-region stack references are strong, weak, or both",
608
+ "unconfiguredBehavesLike": {
609
+ "v2": "strong"
610
+ }
829
611
  }
830
612
  }
831
613
  }
832
614
  }
833
615
  },
834
- "minimumCliVersion": "2.1021.0"
616
+ "minimumCliVersion": "2.1128.1"
835
617
  }