@aws-solutions-constructs/aws-cloudfront-s3 2.97.0 → 2.99.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
Files changed (99) hide show
  1. package/.jsii +64 -6
  2. package/README.adoc +3 -3
  3. package/lib/index.d.ts +1 -1
  4. package/lib/index.js +2 -2
  5. package/package.json +8 -8
  6. package/test/integ.cfts3-additional-behavior.js.snapshot/integ.json +1 -1
  7. package/test/integ.cfts3-additional-behavior.js.snapshot/manifest.json +20 -11
  8. package/test/integ.cfts3-additional-behavior.js.snapshot/tree.json +1 -1
  9. package/test/{integ.cfts3-cmk-provided-as-bucket-prop.js.snapshot/asset.bdc104ed9cab1b5b6421713c8155f0b753380595356f710400609664d3635eca → integ.cfts3-bucket-encrypted-with-cmk-provided-as-existingbucket.js.snapshot/asset.07a90cc3efdfc34da22208dcd9d211f06f5b0e01b21e778edc7c3966b1f61d57}/framework.js +1 -1
  10. package/test/integ.cfts3-bucket-encrypted-with-cmk-provided-as-existingbucket.js.snapshot/cfts3-bucket-encrypted-with-cmk-provided-as-existingbucket.assets.json +7 -7
  11. package/test/integ.cfts3-bucket-encrypted-with-cmk-provided-as-existingbucket.js.snapshot/cfts3-bucket-encrypted-with-cmk-provided-as-existingbucket.template.json +1 -1
  12. package/test/integ.cfts3-bucket-encrypted-with-cmk-provided-as-existingbucket.js.snapshot/integ.json +1 -1
  13. package/test/integ.cfts3-bucket-encrypted-with-cmk-provided-as-existingbucket.js.snapshot/manifest.json +7 -23
  14. package/test/integ.cfts3-bucket-encrypted-with-cmk-provided-as-existingbucket.js.snapshot/tree.json +1 -1
  15. package/test/integ.cfts3-bucket-encrypted-with-managed-key-provided-as-existingbucket.js.snapshot/asset.faa95a81ae7d7373f3e1f242268f904eb748d8d0fdd306e8a6fe515a1905a7d6/index.js +1 -0
  16. package/test/integ.cfts3-bucket-encrypted-with-managed-key-provided-as-existingbucket.js.snapshot/cdk.out +1 -1
  17. package/test/integ.cfts3-bucket-encrypted-with-managed-key-provided-as-existingbucket.js.snapshot/cfts3-bucket-encrypted-with-managed-key-provided-as-existingbucket.assets.json +1 -1
  18. package/test/integ.cfts3-bucket-encrypted-with-managed-key-provided-as-existingbucket.js.snapshot/cfts3bucketencryptedwithmanagedkeyprovidedasexistingbucketIntegDefaultTestDeployAssert03A82C16.assets.json +1 -1
  19. package/test/integ.cfts3-bucket-encrypted-with-managed-key-provided-as-existingbucket.js.snapshot/integ.json +2 -2
  20. package/test/integ.cfts3-bucket-encrypted-with-managed-key-provided-as-existingbucket.js.snapshot/manifest.json +68 -50
  21. package/test/integ.cfts3-bucket-encrypted-with-managed-key-provided-as-existingbucket.js.snapshot/tree.json +1 -1
  22. package/test/{integ.cfts3-bucket-encrypted-with-cmk-provided-as-existingbucket.js.snapshot/asset.bdc104ed9cab1b5b6421713c8155f0b753380595356f710400609664d3635eca → integ.cfts3-cmk-provided-as-bucket-prop.js.snapshot/asset.07a90cc3efdfc34da22208dcd9d211f06f5b0e01b21e778edc7c3966b1f61d57}/framework.js +1 -1
  23. package/test/integ.cfts3-cmk-provided-as-bucket-prop.js.snapshot/cfts3-cmk-provided-as-bucket-prop.assets.json +7 -7
  24. package/test/integ.cfts3-cmk-provided-as-bucket-prop.js.snapshot/cfts3-cmk-provided-as-bucket-prop.template.json +1 -1
  25. package/test/integ.cfts3-cmk-provided-as-bucket-prop.js.snapshot/integ.json +1 -1
  26. package/test/integ.cfts3-cmk-provided-as-bucket-prop.js.snapshot/manifest.json +7 -23
  27. package/test/integ.cfts3-cmk-provided-as-bucket-prop.js.snapshot/tree.json +1 -1
  28. package/test/integ.cfts3-custom-headers.js.snapshot/asset.faa95a81ae7d7373f3e1f242268f904eb748d8d0fdd306e8a6fe515a1905a7d6/index.js +1 -0
  29. package/test/integ.cfts3-custom-headers.js.snapshot/cdk.out +1 -1
  30. package/test/integ.cfts3-custom-headers.js.snapshot/cfts3-custom-headers.assets.json +1 -1
  31. package/test/integ.cfts3-custom-headers.js.snapshot/cfts3customheadersIntegDefaultTestDeployAssert6EEC9973.assets.json +1 -1
  32. package/test/integ.cfts3-custom-headers.js.snapshot/integ.json +2 -2
  33. package/test/integ.cfts3-custom-headers.js.snapshot/manifest.json +68 -50
  34. package/test/integ.cfts3-custom-headers.js.snapshot/tree.json +1 -1
  35. package/test/integ.cfts3-custom-originPath.js.snapshot/asset.faa95a81ae7d7373f3e1f242268f904eb748d8d0fdd306e8a6fe515a1905a7d6/index.js +1 -0
  36. package/test/integ.cfts3-custom-originPath.js.snapshot/cdk.out +1 -1
  37. package/test/integ.cfts3-custom-originPath.js.snapshot/cfts3-custom-originPath.assets.json +1 -1
  38. package/test/integ.cfts3-custom-originPath.js.snapshot/cfts3customoriginPathIntegDefaultTestDeployAssert61F499B2.assets.json +1 -1
  39. package/test/integ.cfts3-custom-originPath.js.snapshot/integ.json +2 -2
  40. package/test/integ.cfts3-custom-originPath.js.snapshot/manifest.json +68 -50
  41. package/test/integ.cfts3-custom-originPath.js.snapshot/tree.json +1 -1
  42. package/test/integ.cfts3-customLoggingBuckets.js.snapshot/asset.faa95a81ae7d7373f3e1f242268f904eb748d8d0fdd306e8a6fe515a1905a7d6/index.js +1 -0
  43. package/test/integ.cfts3-customLoggingBuckets.js.snapshot/cdk.out +1 -1
  44. package/test/integ.cfts3-customLoggingBuckets.js.snapshot/cfts3-customLoggingBuckets.assets.json +1 -1
  45. package/test/integ.cfts3-customLoggingBuckets.js.snapshot/cfts3customLoggingBucketsIntegDefaultTestDeployAssert4D171F9F.assets.json +1 -1
  46. package/test/integ.cfts3-customLoggingBuckets.js.snapshot/integ.json +2 -2
  47. package/test/integ.cfts3-customLoggingBuckets.js.snapshot/manifest.json +68 -50
  48. package/test/integ.cfts3-customLoggingBuckets.js.snapshot/tree.json +1 -1
  49. package/test/integ.cfts3-existing-bucket.js.snapshot/asset.faa95a81ae7d7373f3e1f242268f904eb748d8d0fdd306e8a6fe515a1905a7d6/index.js +1 -0
  50. package/test/integ.cfts3-existing-bucket.js.snapshot/cdk.out +1 -1
  51. package/test/integ.cfts3-existing-bucket.js.snapshot/cfts3-existing-bucket.assets.json +1 -1
  52. package/test/integ.cfts3-existing-bucket.js.snapshot/cfts3existingbucketIntegDefaultTestDeployAssertA6D4EB49.assets.json +1 -1
  53. package/test/integ.cfts3-existing-bucket.js.snapshot/integ.json +2 -2
  54. package/test/integ.cfts3-existing-bucket.js.snapshot/manifest.json +68 -50
  55. package/test/integ.cfts3-existing-bucket.js.snapshot/tree.json +1 -1
  56. package/test/integ.cfts3-no-arguments.js.snapshot/asset.faa95a81ae7d7373f3e1f242268f904eb748d8d0fdd306e8a6fe515a1905a7d6/index.js +1 -0
  57. package/test/integ.cfts3-no-arguments.js.snapshot/cdk.out +1 -1
  58. package/test/integ.cfts3-no-arguments.js.snapshot/cfts3-no-arguments.assets.json +1 -1
  59. package/test/integ.cfts3-no-arguments.js.snapshot/cfts3noargumentsIntegDefaultTestDeployAssertBA5AFA25.assets.json +1 -1
  60. package/test/integ.cfts3-no-arguments.js.snapshot/integ.json +2 -2
  61. package/test/integ.cfts3-no-arguments.js.snapshot/manifest.json +68 -50
  62. package/test/integ.cfts3-no-arguments.js.snapshot/tree.json +1 -1
  63. package/test/integ.cfts3-no-cloudfront-s3-access-logs.js.snapshot/asset.faa95a81ae7d7373f3e1f242268f904eb748d8d0fdd306e8a6fe515a1905a7d6/index.js +1 -0
  64. package/test/integ.cfts3-no-cloudfront-s3-access-logs.js.snapshot/cdk.out +1 -1
  65. package/test/integ.cfts3-no-cloudfront-s3-access-logs.js.snapshot/cfts3-no-cloudfront-s3-access-logs.assets.json +1 -1
  66. package/test/integ.cfts3-no-cloudfront-s3-access-logs.js.snapshot/cfts3nocloudfronts3accesslogsIntegDefaultTestDeployAssertAD28C87A.assets.json +1 -1
  67. package/test/integ.cfts3-no-cloudfront-s3-access-logs.js.snapshot/integ.json +2 -2
  68. package/test/integ.cfts3-no-cloudfront-s3-access-logs.js.snapshot/manifest.json +68 -50
  69. package/test/integ.cfts3-no-cloudfront-s3-access-logs.js.snapshot/tree.json +1 -1
  70. package/test/integ.cfts3-no-logging.js.snapshot/asset.faa95a81ae7d7373f3e1f242268f904eb748d8d0fdd306e8a6fe515a1905a7d6/index.js +1 -0
  71. package/test/integ.cfts3-no-logging.js.snapshot/cdk.out +1 -1
  72. package/test/integ.cfts3-no-logging.js.snapshot/cfts3-no-logging.assets.json +1 -1
  73. package/test/integ.cfts3-no-logging.js.snapshot/cfts3nologgingIntegDefaultTestDeployAssert18393DDB.assets.json +1 -1
  74. package/test/integ.cfts3-no-logging.js.snapshot/integ.json +2 -2
  75. package/test/integ.cfts3-no-logging.js.snapshot/manifest.json +68 -50
  76. package/test/integ.cfts3-no-logging.js.snapshot/tree.json +1 -1
  77. package/test/integ.cfts3-no-security-headers.js.snapshot/asset.faa95a81ae7d7373f3e1f242268f904eb748d8d0fdd306e8a6fe515a1905a7d6/index.js +1 -0
  78. package/test/integ.cfts3-no-security-headers.js.snapshot/cdk.out +1 -1
  79. package/test/integ.cfts3-no-security-headers.js.snapshot/cfts3-no-security-headers.assets.json +1 -1
  80. package/test/integ.cfts3-no-security-headers.js.snapshot/cfts3nosecurityheadersIntegDefaultTestDeployAssert38FE05BE.assets.json +1 -1
  81. package/test/integ.cfts3-no-security-headers.js.snapshot/integ.json +2 -2
  82. package/test/integ.cfts3-no-security-headers.js.snapshot/manifest.json +68 -50
  83. package/test/integ.cfts3-no-security-headers.js.snapshot/tree.json +1 -1
  84. package/test/integ.cfts3-bucket-with-http-origin.js.snapshot/cdk.out +0 -1
  85. package/test/integ.cfts3-bucket-with-http-origin.js.snapshot/cfts3-bucket-with-http-origin.assets.json +0 -19
  86. package/test/integ.cfts3-bucket-with-http-origin.js.snapshot/cfts3-bucket-with-http-origin.template.json +0 -552
  87. package/test/integ.cfts3-bucket-with-http-origin.js.snapshot/cfts3bucketwithhttporiginIntegDefaultTestDeployAssert75EB76AB.assets.json +0 -19
  88. package/test/integ.cfts3-bucket-with-http-origin.js.snapshot/cfts3bucketwithhttporiginIntegDefaultTestDeployAssert75EB76AB.template.json +0 -36
  89. package/test/integ.cfts3-bucket-with-http-origin.js.snapshot/integ.json +0 -12
  90. package/test/integ.cfts3-bucket-with-http-origin.js.snapshot/manifest.json +0 -161
  91. package/test/integ.cfts3-bucket-with-http-origin.js.snapshot/tree.json +0 -746
  92. /package/test/integ.cfts3-bucket-encrypted-with-cmk-provided-as-existingbucket.js.snapshot/{asset.bdc104ed9cab1b5b6421713c8155f0b753380595356f710400609664d3635eca → asset.07a90cc3efdfc34da22208dcd9d211f06f5b0e01b21e778edc7c3966b1f61d57}/cfn-response.js +0 -0
  93. /package/test/integ.cfts3-bucket-encrypted-with-cmk-provided-as-existingbucket.js.snapshot/{asset.bdc104ed9cab1b5b6421713c8155f0b753380595356f710400609664d3635eca → asset.07a90cc3efdfc34da22208dcd9d211f06f5b0e01b21e778edc7c3966b1f61d57}/consts.js +0 -0
  94. /package/test/integ.cfts3-bucket-encrypted-with-cmk-provided-as-existingbucket.js.snapshot/{asset.bdc104ed9cab1b5b6421713c8155f0b753380595356f710400609664d3635eca → asset.07a90cc3efdfc34da22208dcd9d211f06f5b0e01b21e778edc7c3966b1f61d57}/outbound.js +0 -0
  95. /package/test/integ.cfts3-bucket-encrypted-with-cmk-provided-as-existingbucket.js.snapshot/{asset.bdc104ed9cab1b5b6421713c8155f0b753380595356f710400609664d3635eca → asset.07a90cc3efdfc34da22208dcd9d211f06f5b0e01b21e778edc7c3966b1f61d57}/util.js +0 -0
  96. /package/test/integ.cfts3-cmk-provided-as-bucket-prop.js.snapshot/{asset.bdc104ed9cab1b5b6421713c8155f0b753380595356f710400609664d3635eca → asset.07a90cc3efdfc34da22208dcd9d211f06f5b0e01b21e778edc7c3966b1f61d57}/cfn-response.js +0 -0
  97. /package/test/integ.cfts3-cmk-provided-as-bucket-prop.js.snapshot/{asset.bdc104ed9cab1b5b6421713c8155f0b753380595356f710400609664d3635eca → asset.07a90cc3efdfc34da22208dcd9d211f06f5b0e01b21e778edc7c3966b1f61d57}/consts.js +0 -0
  98. /package/test/integ.cfts3-cmk-provided-as-bucket-prop.js.snapshot/{asset.bdc104ed9cab1b5b6421713c8155f0b753380595356f710400609664d3635eca → asset.07a90cc3efdfc34da22208dcd9d211f06f5b0e01b21e778edc7c3966b1f61d57}/outbound.js +0 -0
  99. /package/test/integ.cfts3-cmk-provided-as-bucket-prop.js.snapshot/{asset.bdc104ed9cab1b5b6421713c8155f0b753380595356f710400609664d3635eca → asset.07a90cc3efdfc34da22208dcd9d211f06f5b0e01b21e778edc7c3966b1f61d57}/util.js +0 -0
@@ -1,552 +0,0 @@
1
- {
2
- "Description": "Integration Test for aws-cloudfront-s3",
3
- "Resources": {
4
- "testcloudfronts3legacyhttporiginS3LoggingBucketA3DB7D64": {
5
- "Type": "AWS::S3::Bucket",
6
- "Properties": {
7
- "BucketEncryption": {
8
- "ServerSideEncryptionConfiguration": [
9
- {
10
- "ServerSideEncryptionByDefault": {
11
- "SSEAlgorithm": "AES256"
12
- }
13
- }
14
- ]
15
- },
16
- "PublicAccessBlockConfiguration": {
17
- "BlockPublicAcls": true,
18
- "BlockPublicPolicy": true,
19
- "IgnorePublicAcls": true,
20
- "RestrictPublicBuckets": true
21
- },
22
- "VersioningConfiguration": {
23
- "Status": "Enabled"
24
- }
25
- },
26
- "UpdateReplacePolicy": "Retain",
27
- "DeletionPolicy": "Retain",
28
- "Metadata": {
29
- "cfn_nag": {
30
- "rules_to_suppress": [
31
- {
32
- "id": "W35",
33
- "reason": "This S3 bucket is used as the access logging bucket for another bucket"
34
- }
35
- ]
36
- }
37
- }
38
- },
39
- "testcloudfronts3legacyhttporiginS3LoggingBucketPolicyEC439975": {
40
- "Type": "AWS::S3::BucketPolicy",
41
- "Properties": {
42
- "Bucket": {
43
- "Ref": "testcloudfronts3legacyhttporiginS3LoggingBucketA3DB7D64"
44
- },
45
- "PolicyDocument": {
46
- "Statement": [
47
- {
48
- "Action": "s3:*",
49
- "Condition": {
50
- "Bool": {
51
- "aws:SecureTransport": "false"
52
- }
53
- },
54
- "Effect": "Deny",
55
- "Principal": {
56
- "AWS": "*"
57
- },
58
- "Resource": [
59
- {
60
- "Fn::GetAtt": [
61
- "testcloudfronts3legacyhttporiginS3LoggingBucketA3DB7D64",
62
- "Arn"
63
- ]
64
- },
65
- {
66
- "Fn::Join": [
67
- "",
68
- [
69
- {
70
- "Fn::GetAtt": [
71
- "testcloudfronts3legacyhttporiginS3LoggingBucketA3DB7D64",
72
- "Arn"
73
- ]
74
- },
75
- "/*"
76
- ]
77
- ]
78
- }
79
- ]
80
- },
81
- {
82
- "Action": "s3:PutObject",
83
- "Condition": {
84
- "ArnLike": {
85
- "aws:SourceArn": {
86
- "Fn::GetAtt": [
87
- "testcloudfronts3legacyhttporiginS3Bucket9C7276CA",
88
- "Arn"
89
- ]
90
- }
91
- },
92
- "StringEquals": {
93
- "aws:SourceAccount": {
94
- "Ref": "AWS::AccountId"
95
- }
96
- }
97
- },
98
- "Effect": "Allow",
99
- "Principal": {
100
- "Service": "logging.s3.amazonaws.com"
101
- },
102
- "Resource": {
103
- "Fn::Join": [
104
- "",
105
- [
106
- {
107
- "Fn::GetAtt": [
108
- "testcloudfronts3legacyhttporiginS3LoggingBucketA3DB7D64",
109
- "Arn"
110
- ]
111
- },
112
- "/*"
113
- ]
114
- ]
115
- }
116
- }
117
- ],
118
- "Version": "2012-10-17"
119
- }
120
- }
121
- },
122
- "testcloudfronts3legacyhttporiginS3Bucket9C7276CA": {
123
- "Type": "AWS::S3::Bucket",
124
- "Properties": {
125
- "BucketEncryption": {
126
- "ServerSideEncryptionConfiguration": [
127
- {
128
- "ServerSideEncryptionByDefault": {
129
- "SSEAlgorithm": "AES256"
130
- }
131
- }
132
- ]
133
- },
134
- "LifecycleConfiguration": {
135
- "Rules": [
136
- {
137
- "NoncurrentVersionTransitions": [
138
- {
139
- "StorageClass": "GLACIER",
140
- "TransitionInDays": 90
141
- }
142
- ],
143
- "Status": "Enabled"
144
- }
145
- ]
146
- },
147
- "LoggingConfiguration": {
148
- "DestinationBucketName": {
149
- "Ref": "testcloudfronts3legacyhttporiginS3LoggingBucketA3DB7D64"
150
- }
151
- },
152
- "PublicAccessBlockConfiguration": {
153
- "BlockPublicAcls": false,
154
- "BlockPublicPolicy": false,
155
- "IgnorePublicAcls": false,
156
- "RestrictPublicBuckets": false
157
- },
158
- "VersioningConfiguration": {
159
- "Status": "Enabled"
160
- },
161
- "WebsiteConfiguration": {
162
- "IndexDocument": "index.html"
163
- }
164
- },
165
- "UpdateReplacePolicy": "Retain",
166
- "DeletionPolicy": "Retain"
167
- },
168
- "testcloudfronts3legacyhttporiginS3BucketPolicy7529C63D": {
169
- "Type": "AWS::S3::BucketPolicy",
170
- "Properties": {
171
- "Bucket": {
172
- "Ref": "testcloudfronts3legacyhttporiginS3Bucket9C7276CA"
173
- },
174
- "PolicyDocument": {
175
- "Statement": [
176
- {
177
- "Action": "s3:GetObject",
178
- "Effect": "Allow",
179
- "Principal": {
180
- "AWS": "*"
181
- },
182
- "Resource": {
183
- "Fn::Join": [
184
- "",
185
- [
186
- {
187
- "Fn::GetAtt": [
188
- "testcloudfronts3legacyhttporiginS3Bucket9C7276CA",
189
- "Arn"
190
- ]
191
- },
192
- "/*"
193
- ]
194
- ]
195
- }
196
- },
197
- {
198
- "Action": "s3:GetObject",
199
- "Condition": {
200
- "StringEquals": {
201
- "AWS:SourceArn": {
202
- "Fn::Join": [
203
- "",
204
- [
205
- "arn:aws:cloudfront::",
206
- {
207
- "Ref": "AWS::AccountId"
208
- },
209
- ":distribution/",
210
- {
211
- "Ref": "testcloudfronts3legacyhttporiginCloudFrontDistributionAF04EDAB"
212
- }
213
- ]
214
- ]
215
- }
216
- }
217
- },
218
- "Effect": "Allow",
219
- "Principal": {
220
- "Service": "cloudfront.amazonaws.com"
221
- },
222
- "Resource": {
223
- "Fn::Join": [
224
- "",
225
- [
226
- {
227
- "Fn::GetAtt": [
228
- "testcloudfronts3legacyhttporiginS3Bucket9C7276CA",
229
- "Arn"
230
- ]
231
- },
232
- "/*"
233
- ]
234
- ]
235
- }
236
- }
237
- ],
238
- "Version": "2012-10-17"
239
- }
240
- },
241
- "Metadata": {
242
- "cfn_nag": {
243
- "rules_to_suppress": [
244
- {
245
- "id": "F16",
246
- "reason": "Public website bucket policy requires a wildcard principal"
247
- }
248
- ]
249
- }
250
- }
251
- },
252
- "testcloudfronts3legacyhttporiginCloudfrontLoggingBucketAccessLog3AE680E5": {
253
- "Type": "AWS::S3::Bucket",
254
- "Properties": {
255
- "BucketEncryption": {
256
- "ServerSideEncryptionConfiguration": [
257
- {
258
- "ServerSideEncryptionByDefault": {
259
- "SSEAlgorithm": "AES256"
260
- }
261
- }
262
- ]
263
- },
264
- "PublicAccessBlockConfiguration": {
265
- "BlockPublicAcls": true,
266
- "BlockPublicPolicy": true,
267
- "IgnorePublicAcls": true,
268
- "RestrictPublicBuckets": true
269
- },
270
- "VersioningConfiguration": {
271
- "Status": "Enabled"
272
- }
273
- },
274
- "UpdateReplacePolicy": "Retain",
275
- "DeletionPolicy": "Retain",
276
- "Metadata": {
277
- "cfn_nag": {
278
- "rules_to_suppress": [
279
- {
280
- "id": "W35",
281
- "reason": "This S3 bucket is used as the access logging bucket for another bucket"
282
- }
283
- ]
284
- }
285
- }
286
- },
287
- "testcloudfronts3legacyhttporiginCloudfrontLoggingBucketAccessLogPolicyD1441BF6": {
288
- "Type": "AWS::S3::BucketPolicy",
289
- "Properties": {
290
- "Bucket": {
291
- "Ref": "testcloudfronts3legacyhttporiginCloudfrontLoggingBucketAccessLog3AE680E5"
292
- },
293
- "PolicyDocument": {
294
- "Statement": [
295
- {
296
- "Action": "s3:*",
297
- "Condition": {
298
- "Bool": {
299
- "aws:SecureTransport": "false"
300
- }
301
- },
302
- "Effect": "Deny",
303
- "Principal": {
304
- "AWS": "*"
305
- },
306
- "Resource": [
307
- {
308
- "Fn::GetAtt": [
309
- "testcloudfronts3legacyhttporiginCloudfrontLoggingBucketAccessLog3AE680E5",
310
- "Arn"
311
- ]
312
- },
313
- {
314
- "Fn::Join": [
315
- "",
316
- [
317
- {
318
- "Fn::GetAtt": [
319
- "testcloudfronts3legacyhttporiginCloudfrontLoggingBucketAccessLog3AE680E5",
320
- "Arn"
321
- ]
322
- },
323
- "/*"
324
- ]
325
- ]
326
- }
327
- ]
328
- },
329
- {
330
- "Action": "s3:PutObject",
331
- "Condition": {
332
- "ArnLike": {
333
- "aws:SourceArn": {
334
- "Fn::GetAtt": [
335
- "testcloudfronts3legacyhttporiginCloudfrontLoggingBucketC643C2EE",
336
- "Arn"
337
- ]
338
- }
339
- },
340
- "StringEquals": {
341
- "aws:SourceAccount": {
342
- "Ref": "AWS::AccountId"
343
- }
344
- }
345
- },
346
- "Effect": "Allow",
347
- "Principal": {
348
- "Service": "logging.s3.amazonaws.com"
349
- },
350
- "Resource": {
351
- "Fn::Join": [
352
- "",
353
- [
354
- {
355
- "Fn::GetAtt": [
356
- "testcloudfronts3legacyhttporiginCloudfrontLoggingBucketAccessLog3AE680E5",
357
- "Arn"
358
- ]
359
- },
360
- "/*"
361
- ]
362
- ]
363
- }
364
- }
365
- ],
366
- "Version": "2012-10-17"
367
- }
368
- }
369
- },
370
- "testcloudfronts3legacyhttporiginCloudfrontLoggingBucketC643C2EE": {
371
- "Type": "AWS::S3::Bucket",
372
- "Properties": {
373
- "AccessControl": "LogDeliveryWrite",
374
- "BucketEncryption": {
375
- "ServerSideEncryptionConfiguration": [
376
- {
377
- "ServerSideEncryptionByDefault": {
378
- "SSEAlgorithm": "AES256"
379
- }
380
- }
381
- ]
382
- },
383
- "LoggingConfiguration": {
384
- "DestinationBucketName": {
385
- "Ref": "testcloudfronts3legacyhttporiginCloudfrontLoggingBucketAccessLog3AE680E5"
386
- }
387
- },
388
- "OwnershipControls": {
389
- "Rules": [
390
- {
391
- "ObjectOwnership": "ObjectWriter"
392
- }
393
- ]
394
- },
395
- "PublicAccessBlockConfiguration": {
396
- "BlockPublicAcls": true,
397
- "BlockPublicPolicy": true,
398
- "IgnorePublicAcls": true,
399
- "RestrictPublicBuckets": true
400
- },
401
- "VersioningConfiguration": {
402
- "Status": "Enabled"
403
- }
404
- },
405
- "UpdateReplacePolicy": "Retain",
406
- "DeletionPolicy": "Retain"
407
- },
408
- "testcloudfronts3legacyhttporiginCloudfrontLoggingBucketPolicyF48109AD": {
409
- "Type": "AWS::S3::BucketPolicy",
410
- "Properties": {
411
- "Bucket": {
412
- "Ref": "testcloudfronts3legacyhttporiginCloudfrontLoggingBucketC643C2EE"
413
- },
414
- "PolicyDocument": {
415
- "Statement": [
416
- {
417
- "Action": "s3:*",
418
- "Condition": {
419
- "Bool": {
420
- "aws:SecureTransport": "false"
421
- }
422
- },
423
- "Effect": "Deny",
424
- "Principal": {
425
- "AWS": "*"
426
- },
427
- "Resource": [
428
- {
429
- "Fn::GetAtt": [
430
- "testcloudfronts3legacyhttporiginCloudfrontLoggingBucketC643C2EE",
431
- "Arn"
432
- ]
433
- },
434
- {
435
- "Fn::Join": [
436
- "",
437
- [
438
- {
439
- "Fn::GetAtt": [
440
- "testcloudfronts3legacyhttporiginCloudfrontLoggingBucketC643C2EE",
441
- "Arn"
442
- ]
443
- },
444
- "/*"
445
- ]
446
- ]
447
- }
448
- ]
449
- }
450
- ],
451
- "Version": "2012-10-17"
452
- }
453
- }
454
- },
455
- "testcloudfronts3legacyhttporiginCloudFrontDistributionAF04EDAB": {
456
- "Type": "AWS::CloudFront::Distribution",
457
- "Properties": {
458
- "DistributionConfig": {
459
- "DefaultCacheBehavior": {
460
- "CachePolicyId": "658327ea-f89d-4fab-a63d-7e88639e58f6",
461
- "Compress": true,
462
- "TargetOriginId": "cfts3bucketwithhttporigintestcloudfronts3legacyhttporiginCloudFrontDistributionOrigin15A81BB36",
463
- "ViewerProtocolPolicy": "redirect-to-https"
464
- },
465
- "DefaultRootObject": "index.html",
466
- "Enabled": true,
467
- "HttpVersion": "http2",
468
- "IPV6Enabled": true,
469
- "Logging": {
470
- "Bucket": {
471
- "Fn::GetAtt": [
472
- "testcloudfronts3legacyhttporiginCloudfrontLoggingBucketC643C2EE",
473
- "RegionalDomainName"
474
- ]
475
- }
476
- },
477
- "Origins": [
478
- {
479
- "CustomOriginConfig": {
480
- "OriginProtocolPolicy": "http-only",
481
- "OriginSSLProtocols": [
482
- "TLSv1.2"
483
- ]
484
- },
485
- "DomainName": {
486
- "Fn::Select": [
487
- 2,
488
- {
489
- "Fn::Split": [
490
- "/",
491
- {
492
- "Fn::GetAtt": [
493
- "testcloudfronts3legacyhttporiginS3Bucket9C7276CA",
494
- "WebsiteURL"
495
- ]
496
- }
497
- ]
498
- }
499
- ]
500
- },
501
- "Id": "cfts3bucketwithhttporigintestcloudfronts3legacyhttporiginCloudFrontDistributionOrigin15A81BB36"
502
- }
503
- ]
504
- }
505
- },
506
- "Metadata": {
507
- "cfn_nag": {
508
- "rules_to_suppress": [
509
- {
510
- "id": "W70",
511
- "reason": "Since the distribution uses the CloudFront domain name, CloudFront automatically sets the security policy to TLSv1 regardless of the value of MinimumProtocolVersion"
512
- }
513
- ]
514
- }
515
- }
516
- }
517
- },
518
- "Parameters": {
519
- "BootstrapVersion": {
520
- "Type": "AWS::SSM::Parameter::Value<String>",
521
- "Default": "/cdk-bootstrap/hnb659fds/version",
522
- "Description": "Version of the CDK Bootstrap resources in this environment, automatically retrieved from SSM Parameter Store. [cdk:skip]"
523
- }
524
- },
525
- "Rules": {
526
- "CheckBootstrapVersion": {
527
- "Assertions": [
528
- {
529
- "Assert": {
530
- "Fn::Not": [
531
- {
532
- "Fn::Contains": [
533
- [
534
- "1",
535
- "2",
536
- "3",
537
- "4",
538
- "5"
539
- ],
540
- {
541
- "Ref": "BootstrapVersion"
542
- }
543
- ]
544
- }
545
- ]
546
- },
547
- "AssertDescription": "CDK bootstrap stack version 6 required. Please run 'cdk bootstrap' with a recent version of the CDK CLI."
548
- }
549
- ]
550
- }
551
- }
552
- }
@@ -1,19 +0,0 @@
1
- {
2
- "version": "36.0.0",
3
- "files": {
4
- "21fbb51d7b23f6a6c262b46a9caee79d744a3ac019fd45422d988b96d44b2a22": {
5
- "source": {
6
- "path": "cfts3bucketwithhttporiginIntegDefaultTestDeployAssert75EB76AB.template.json",
7
- "packaging": "file"
8
- },
9
- "destinations": {
10
- "current_account-current_region": {
11
- "bucketName": "cdk-hnb659fds-assets-${AWS::AccountId}-${AWS::Region}",
12
- "objectKey": "21fbb51d7b23f6a6c262b46a9caee79d744a3ac019fd45422d988b96d44b2a22.json",
13
- "assumeRoleArn": "arn:${AWS::Partition}:iam::${AWS::AccountId}:role/cdk-hnb659fds-file-publishing-role-${AWS::AccountId}-${AWS::Region}"
14
- }
15
- }
16
- }
17
- },
18
- "dockerImages": {}
19
- }
@@ -1,36 +0,0 @@
1
- {
2
- "Parameters": {
3
- "BootstrapVersion": {
4
- "Type": "AWS::SSM::Parameter::Value<String>",
5
- "Default": "/cdk-bootstrap/hnb659fds/version",
6
- "Description": "Version of the CDK Bootstrap resources in this environment, automatically retrieved from SSM Parameter Store. [cdk:skip]"
7
- }
8
- },
9
- "Rules": {
10
- "CheckBootstrapVersion": {
11
- "Assertions": [
12
- {
13
- "Assert": {
14
- "Fn::Not": [
15
- {
16
- "Fn::Contains": [
17
- [
18
- "1",
19
- "2",
20
- "3",
21
- "4",
22
- "5"
23
- ],
24
- {
25
- "Ref": "BootstrapVersion"
26
- }
27
- ]
28
- }
29
- ]
30
- },
31
- "AssertDescription": "CDK bootstrap stack version 6 required. Please run 'cdk bootstrap' with a recent version of the CDK CLI."
32
- }
33
- ]
34
- }
35
- }
36
- }
@@ -1,12 +0,0 @@
1
- {
2
- "version": "36.0.0",
3
- "testCases": {
4
- "cfts3-bucket-with-http-origin/Integ/DefaultTest": {
5
- "stacks": [
6
- "cfts3-bucket-with-http-origin"
7
- ],
8
- "assertionStack": "cfts3-bucket-with-http-origin/Integ/DefaultTest/DeployAssert",
9
- "assertionStackName": "cfts3bucketwithhttporiginIntegDefaultTestDeployAssert75EB76AB"
10
- }
11
- }
12
- }