@aws-solutions-constructs/aws-fargate-kinesisstreams 2.30.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
Files changed (30) hide show
  1. package/.eslintignore +4 -0
  2. package/.jsii +3760 -0
  3. package/README.md +119 -0
  4. package/architecture.png +0 -0
  5. package/lib/index.d.ts +129 -0
  6. package/lib/index.js +62 -0
  7. package/package.json +93 -0
  8. package/test/fargate-kinesisstreams.test.d.ts +13 -0
  9. package/test/fargate-kinesisstreams.test.js +518 -0
  10. package/test/integ.existingFargateService.d.ts +13 -0
  11. package/test/integ.existingFargateService.expected.json +1248 -0
  12. package/test/integ.existingFargateService.js +32 -0
  13. package/test/integ.existingStream.d.ts +13 -0
  14. package/test/integ.existingStream.expected.json +1247 -0
  15. package/test/integ.existingStream.js +35 -0
  16. package/test/integ.existingVpc.d.ts +13 -0
  17. package/test/integ.existingVpc.expected.json +1248 -0
  18. package/test/integ.existingVpc.js +33 -0
  19. package/test/integ.fargateServiceFromProps.d.ts +13 -0
  20. package/test/integ.fargateServiceFromProps.expected.json +1249 -0
  21. package/test/integ.fargateServiceFromProps.js +33 -0
  22. package/test/integ.noArguments.d.ts +13 -0
  23. package/test/integ.noArguments.expected.json +1248 -0
  24. package/test/integ.noArguments.js +29 -0
  25. package/test/integ.streamFromProps.d.ts +13 -0
  26. package/test/integ.streamFromProps.expected.json +1247 -0
  27. package/test/integ.streamFromProps.js +34 -0
  28. package/test/integ.vpcFromProps.d.ts +13 -0
  29. package/test/integ.vpcFromProps.expected.json +1248 -0
  30. package/test/integ.vpcFromProps.js +32 -0
package/test/integ.vpcFromProps.expected.json ADDED
@@ -0,0 +1,1248 @@
1
+ {
2
+ "Resources": {
3
+ "testfargatekinesisstreamsKinesisStreamD31BD614": {
4
+ "Type": "AWS::Kinesis::Stream",
5
+ "Properties": {
6
+ "RetentionPeriodHours": 24,
7
+ "ShardCount": 1,
8
+ "StreamEncryption": {
9
+ "EncryptionType": "KMS",
10
+ "KeyId": "alias/aws/kinesis"
11
+ },
12
+ "StreamModeDetails": {
13
+ "StreamMode": "PROVISIONED"
14
+ }
15
+ }
16
+ },
17
+ "testfargatekinesisstreamsKinesisStreamGetRecordsIteratorAgeAlarm60755E90": {
18
+ "Type": "AWS::CloudWatch::Alarm",
19
+ "Properties": {
20
+ "ComparisonOperator": "GreaterThanOrEqualToThreshold",
21
+ "EvaluationPeriods": 1,
22
+ "AlarmDescription": "Consumer Record Processing Falling Behind, there is risk for data loss due to record expiration.",
23
+ "MetricName": "GetRecords.IteratorAgeMilliseconds",
24
+ "Namespace": "AWS/Kinesis",
25
+ "Period": 300,
26
+ "Statistic": "Maximum",
27
+ "Threshold": 43200000
28
+ }
29
+ },
30
+ "testfargatekinesisstreamsKinesisStreamReadProvisionedThroughputExceededAlarmDE16A9F2": {
31
+ "Type": "AWS::CloudWatch::Alarm",
32
+ "Properties": {
33
+ "ComparisonOperator": "GreaterThanThreshold",
34
+ "EvaluationPeriods": 1,
35
+ "AlarmDescription": "Consumer Application is Reading at a Slower Rate Than Expected.",
36
+ "MetricName": "ReadProvisionedThroughputExceeded",
37
+ "Namespace": "AWS/Kinesis",
38
+ "Period": 300,
39
+ "Statistic": "Average",
40
+ "Threshold": 0
41
+ }
42
+ },
43
+ "Vpc8378EB38": {
44
+ "Type": "AWS::EC2::VPC",
45
+ "Properties": {
46
+ "CidrBlock": "10.100.0.0/16",
47
+ "EnableDnsHostnames": true,
48
+ "EnableDnsSupport": true,
49
+ "InstanceTenancy": "default",
50
+ "Tags": [
51
+ {
52
+ "Key": "Name",
53
+ "Value": "vpcFromProps/Vpc"
54
+ }
55
+ ]
56
+ }
57
+ },
58
+ "VpcPublicSubnet1Subnet5C2D37C4": {
59
+ "Type": "AWS::EC2::Subnet",
60
+ "Properties": {
61
+ "VpcId": {
62
+ "Ref": "Vpc8378EB38"
63
+ },
64
+ "AvailabilityZone": "test-region-1a",
65
+ "CidrBlock": "10.100.0.0/19",
66
+ "MapPublicIpOnLaunch": true,
67
+ "Tags": [
68
+ {
69
+ "Key": "aws-cdk:subnet-name",
70
+ "Value": "Public"
71
+ },
72
+ {
73
+ "Key": "aws-cdk:subnet-type",
74
+ "Value": "Public"
75
+ },
76
+ {
77
+ "Key": "Name",
78
+ "Value": "vpcFromProps/Vpc/PublicSubnet1"
79
+ }
80
+ ]
81
+ },
82
+ "Metadata": {
83
+ "cfn_nag": {
84
+ "rules_to_suppress": [
85
+ {
86
+ "id": "W33",
87
+ "reason": "Allow Public Subnets to have MapPublicIpOnLaunch set to true"
88
+ }
89
+ ]
90
+ }
91
+ }
92
+ },
93
+ "VpcPublicSubnet1RouteTable6C95E38E": {
94
+ "Type": "AWS::EC2::RouteTable",
95
+ "Properties": {
96
+ "VpcId": {
97
+ "Ref": "Vpc8378EB38"
98
+ },
99
+ "Tags": [
100
+ {
101
+ "Key": "Name",
102
+ "Value": "vpcFromProps/Vpc/PublicSubnet1"
103
+ }
104
+ ]
105
+ }
106
+ },
107
+ "VpcPublicSubnet1RouteTableAssociation97140677": {
108
+ "Type": "AWS::EC2::SubnetRouteTableAssociation",
109
+ "Properties": {
110
+ "RouteTableId": {
111
+ "Ref": "VpcPublicSubnet1RouteTable6C95E38E"
112
+ },
113
+ "SubnetId": {
114
+ "Ref": "VpcPublicSubnet1Subnet5C2D37C4"
115
+ }
116
+ }
117
+ },
118
+ "VpcPublicSubnet1DefaultRoute3DA9E72A": {
119
+ "Type": "AWS::EC2::Route",
120
+ "Properties": {
121
+ "RouteTableId": {
122
+ "Ref": "VpcPublicSubnet1RouteTable6C95E38E"
123
+ },
124
+ "DestinationCidrBlock": "0.0.0.0/0",
125
+ "GatewayId": {
126
+ "Ref": "VpcIGWD7BA715C"
127
+ }
128
+ },
129
+ "DependsOn": [
130
+ "VpcVPCGWBF912B6E"
131
+ ]
132
+ },
133
+ "VpcPublicSubnet1EIPD7E02669": {
134
+ "Type": "AWS::EC2::EIP",
135
+ "Properties": {
136
+ "Domain": "vpc",
137
+ "Tags": [
138
+ {
139
+ "Key": "Name",
140
+ "Value": "vpcFromProps/Vpc/PublicSubnet1"
141
+ }
142
+ ]
143
+ }
144
+ },
145
+ "VpcPublicSubnet1NATGateway4D7517AA": {
146
+ "Type": "AWS::EC2::NatGateway",
147
+ "Properties": {
148
+ "SubnetId": {
149
+ "Ref": "VpcPublicSubnet1Subnet5C2D37C4"
150
+ },
151
+ "AllocationId": {
152
+ "Fn::GetAtt": [
153
+ "VpcPublicSubnet1EIPD7E02669",
154
+ "AllocationId"
155
+ ]
156
+ },
157
+ "Tags": [
158
+ {
159
+ "Key": "Name",
160
+ "Value": "vpcFromProps/Vpc/PublicSubnet1"
161
+ }
162
+ ]
163
+ },
164
+ "DependsOn": [
165
+ "VpcPublicSubnet1DefaultRoute3DA9E72A",
166
+ "VpcPublicSubnet1RouteTableAssociation97140677"
167
+ ]
168
+ },
169
+ "VpcPublicSubnet2Subnet691E08A3": {
170
+ "Type": "AWS::EC2::Subnet",
171
+ "Properties": {
172
+ "VpcId": {
173
+ "Ref": "Vpc8378EB38"
174
+ },
175
+ "AvailabilityZone": "test-region-1b",
176
+ "CidrBlock": "10.100.32.0/19",
177
+ "MapPublicIpOnLaunch": true,
178
+ "Tags": [
179
+ {
180
+ "Key": "aws-cdk:subnet-name",
181
+ "Value": "Public"
182
+ },
183
+ {
184
+ "Key": "aws-cdk:subnet-type",
185
+ "Value": "Public"
186
+ },
187
+ {
188
+ "Key": "Name",
189
+ "Value": "vpcFromProps/Vpc/PublicSubnet2"
190
+ }
191
+ ]
192
+ },
193
+ "Metadata": {
194
+ "cfn_nag": {
195
+ "rules_to_suppress": [
196
+ {
197
+ "id": "W33",
198
+ "reason": "Allow Public Subnets to have MapPublicIpOnLaunch set to true"
199
+ }
200
+ ]
201
+ }
202
+ }
203
+ },
204
+ "VpcPublicSubnet2RouteTable94F7E489": {
205
+ "Type": "AWS::EC2::RouteTable",
206
+ "Properties": {
207
+ "VpcId": {
208
+ "Ref": "Vpc8378EB38"
209
+ },
210
+ "Tags": [
211
+ {
212
+ "Key": "Name",
213
+ "Value": "vpcFromProps/Vpc/PublicSubnet2"
214
+ }
215
+ ]
216
+ }
217
+ },
218
+ "VpcPublicSubnet2RouteTableAssociationDD5762D8": {
219
+ "Type": "AWS::EC2::SubnetRouteTableAssociation",
220
+ "Properties": {
221
+ "RouteTableId": {
222
+ "Ref": "VpcPublicSubnet2RouteTable94F7E489"
223
+ },
224
+ "SubnetId": {
225
+ "Ref": "VpcPublicSubnet2Subnet691E08A3"
226
+ }
227
+ }
228
+ },
229
+ "VpcPublicSubnet2DefaultRoute97F91067": {
230
+ "Type": "AWS::EC2::Route",
231
+ "Properties": {
232
+ "RouteTableId": {
233
+ "Ref": "VpcPublicSubnet2RouteTable94F7E489"
234
+ },
235
+ "DestinationCidrBlock": "0.0.0.0/0",
236
+ "GatewayId": {
237
+ "Ref": "VpcIGWD7BA715C"
238
+ }
239
+ },
240
+ "DependsOn": [
241
+ "VpcVPCGWBF912B6E"
242
+ ]
243
+ },
244
+ "VpcPublicSubnet2EIP3C605A87": {
245
+ "Type": "AWS::EC2::EIP",
246
+ "Properties": {
247
+ "Domain": "vpc",
248
+ "Tags": [
249
+ {
250
+ "Key": "Name",
251
+ "Value": "vpcFromProps/Vpc/PublicSubnet2"
252
+ }
253
+ ]
254
+ }
255
+ },
256
+ "VpcPublicSubnet2NATGateway9182C01D": {
257
+ "Type": "AWS::EC2::NatGateway",
258
+ "Properties": {
259
+ "SubnetId": {
260
+ "Ref": "VpcPublicSubnet2Subnet691E08A3"
261
+ },
262
+ "AllocationId": {
263
+ "Fn::GetAtt": [
264
+ "VpcPublicSubnet2EIP3C605A87",
265
+ "AllocationId"
266
+ ]
267
+ },
268
+ "Tags": [
269
+ {
270
+ "Key": "Name",
271
+ "Value": "vpcFromProps/Vpc/PublicSubnet2"
272
+ }
273
+ ]
274
+ },
275
+ "DependsOn": [
276
+ "VpcPublicSubnet2DefaultRoute97F91067",
277
+ "VpcPublicSubnet2RouteTableAssociationDD5762D8"
278
+ ]
279
+ },
280
+ "VpcPublicSubnet3SubnetBE12F0B6": {
281
+ "Type": "AWS::EC2::Subnet",
282
+ "Properties": {
283
+ "VpcId": {
284
+ "Ref": "Vpc8378EB38"
285
+ },
286
+ "AvailabilityZone": "test-region-1c",
287
+ "CidrBlock": "10.100.64.0/19",
288
+ "MapPublicIpOnLaunch": true,
289
+ "Tags": [
290
+ {
291
+ "Key": "aws-cdk:subnet-name",
292
+ "Value": "Public"
293
+ },
294
+ {
295
+ "Key": "aws-cdk:subnet-type",
296
+ "Value": "Public"
297
+ },
298
+ {
299
+ "Key": "Name",
300
+ "Value": "vpcFromProps/Vpc/PublicSubnet3"
301
+ }
302
+ ]
303
+ },
304
+ "Metadata": {
305
+ "cfn_nag": {
306
+ "rules_to_suppress": [
307
+ {
308
+ "id": "W33",
309
+ "reason": "Allow Public Subnets to have MapPublicIpOnLaunch set to true"
310
+ }
311
+ ]
312
+ }
313
+ }
314
+ },
315
+ "VpcPublicSubnet3RouteTable93458DBB": {
316
+ "Type": "AWS::EC2::RouteTable",
317
+ "Properties": {
318
+ "VpcId": {
319
+ "Ref": "Vpc8378EB38"
320
+ },
321
+ "Tags": [
322
+ {
323
+ "Key": "Name",
324
+ "Value": "vpcFromProps/Vpc/PublicSubnet3"
325
+ }
326
+ ]
327
+ }
328
+ },
329
+ "VpcPublicSubnet3RouteTableAssociation1F1EDF02": {
330
+ "Type": "AWS::EC2::SubnetRouteTableAssociation",
331
+ "Properties": {
332
+ "RouteTableId": {
333
+ "Ref": "VpcPublicSubnet3RouteTable93458DBB"
334
+ },
335
+ "SubnetId": {
336
+ "Ref": "VpcPublicSubnet3SubnetBE12F0B6"
337
+ }
338
+ }
339
+ },
340
+ "VpcPublicSubnet3DefaultRoute4697774F": {
341
+ "Type": "AWS::EC2::Route",
342
+ "Properties": {
343
+ "RouteTableId": {
344
+ "Ref": "VpcPublicSubnet3RouteTable93458DBB"
345
+ },
346
+ "DestinationCidrBlock": "0.0.0.0/0",
347
+ "GatewayId": {
348
+ "Ref": "VpcIGWD7BA715C"
349
+ }
350
+ },
351
+ "DependsOn": [
352
+ "VpcVPCGWBF912B6E"
353
+ ]
354
+ },
355
+ "VpcPublicSubnet3EIP3A666A23": {
356
+ "Type": "AWS::EC2::EIP",
357
+ "Properties": {
358
+ "Domain": "vpc",
359
+ "Tags": [
360
+ {
361
+ "Key": "Name",
362
+ "Value": "vpcFromProps/Vpc/PublicSubnet3"
363
+ }
364
+ ]
365
+ }
366
+ },
367
+ "VpcPublicSubnet3NATGateway7640CD1D": {
368
+ "Type": "AWS::EC2::NatGateway",
369
+ "Properties": {
370
+ "SubnetId": {
371
+ "Ref": "VpcPublicSubnet3SubnetBE12F0B6"
372
+ },
373
+ "AllocationId": {
374
+ "Fn::GetAtt": [
375
+ "VpcPublicSubnet3EIP3A666A23",
376
+ "AllocationId"
377
+ ]
378
+ },
379
+ "Tags": [
380
+ {
381
+ "Key": "Name",
382
+ "Value": "vpcFromProps/Vpc/PublicSubnet3"
383
+ }
384
+ ]
385
+ },
386
+ "DependsOn": [
387
+ "VpcPublicSubnet3DefaultRoute4697774F",
388
+ "VpcPublicSubnet3RouteTableAssociation1F1EDF02"
389
+ ]
390
+ },
391
+ "VpcPrivateSubnet1Subnet536B997A": {
392
+ "Type": "AWS::EC2::Subnet",
393
+ "Properties": {
394
+ "VpcId": {
395
+ "Ref": "Vpc8378EB38"
396
+ },
397
+ "AvailabilityZone": "test-region-1a",
398
+ "CidrBlock": "10.100.96.0/19",
399
+ "MapPublicIpOnLaunch": false,
400
+ "Tags": [
401
+ {
402
+ "Key": "aws-cdk:subnet-name",
403
+ "Value": "Private"
404
+ },
405
+ {
406
+ "Key": "aws-cdk:subnet-type",
407
+ "Value": "Private"
408
+ },
409
+ {
410
+ "Key": "Name",
411
+ "Value": "vpcFromProps/Vpc/PrivateSubnet1"
412
+ }
413
+ ]
414
+ }
415
+ },
416
+ "VpcPrivateSubnet1RouteTableB2C5B500": {
417
+ "Type": "AWS::EC2::RouteTable",
418
+ "Properties": {
419
+ "VpcId": {
420
+ "Ref": "Vpc8378EB38"
421
+ },
422
+ "Tags": [
423
+ {
424
+ "Key": "Name",
425
+ "Value": "vpcFromProps/Vpc/PrivateSubnet1"
426
+ }
427
+ ]
428
+ }
429
+ },
430
+ "VpcPrivateSubnet1RouteTableAssociation70C59FA6": {
431
+ "Type": "AWS::EC2::SubnetRouteTableAssociation",
432
+ "Properties": {
433
+ "RouteTableId": {
434
+ "Ref": "VpcPrivateSubnet1RouteTableB2C5B500"
435
+ },
436
+ "SubnetId": {
437
+ "Ref": "VpcPrivateSubnet1Subnet536B997A"
438
+ }
439
+ }
440
+ },
441
+ "VpcPrivateSubnet1DefaultRouteBE02A9ED": {
442
+ "Type": "AWS::EC2::Route",
443
+ "Properties": {
444
+ "RouteTableId": {
445
+ "Ref": "VpcPrivateSubnet1RouteTableB2C5B500"
446
+ },
447
+ "DestinationCidrBlock": "0.0.0.0/0",
448
+ "NatGatewayId": {
449
+ "Ref": "VpcPublicSubnet1NATGateway4D7517AA"
450
+ }
451
+ }
452
+ },
453
+ "VpcPrivateSubnet2Subnet3788AAA1": {
454
+ "Type": "AWS::EC2::Subnet",
455
+ "Properties": {
456
+ "VpcId": {
457
+ "Ref": "Vpc8378EB38"
458
+ },
459
+ "AvailabilityZone": "test-region-1b",
460
+ "CidrBlock": "10.100.128.0/19",
461
+ "MapPublicIpOnLaunch": false,
462
+ "Tags": [
463
+ {
464
+ "Key": "aws-cdk:subnet-name",
465
+ "Value": "Private"
466
+ },
467
+ {
468
+ "Key": "aws-cdk:subnet-type",
469
+ "Value": "Private"
470
+ },
471
+ {
472
+ "Key": "Name",
473
+ "Value": "vpcFromProps/Vpc/PrivateSubnet2"
474
+ }
475
+ ]
476
+ }
477
+ },
478
+ "VpcPrivateSubnet2RouteTableA678073B": {
479
+ "Type": "AWS::EC2::RouteTable",
480
+ "Properties": {
481
+ "VpcId": {
482
+ "Ref": "Vpc8378EB38"
483
+ },
484
+ "Tags": [
485
+ {
486
+ "Key": "Name",
487
+ "Value": "vpcFromProps/Vpc/PrivateSubnet2"
488
+ }
489
+ ]
490
+ }
491
+ },
492
+ "VpcPrivateSubnet2RouteTableAssociationA89CAD56": {
493
+ "Type": "AWS::EC2::SubnetRouteTableAssociation",
494
+ "Properties": {
495
+ "RouteTableId": {
496
+ "Ref": "VpcPrivateSubnet2RouteTableA678073B"
497
+ },
498
+ "SubnetId": {
499
+ "Ref": "VpcPrivateSubnet2Subnet3788AAA1"
500
+ }
501
+ }
502
+ },
503
+ "VpcPrivateSubnet2DefaultRoute060D2087": {
504
+ "Type": "AWS::EC2::Route",
505
+ "Properties": {
506
+ "RouteTableId": {
507
+ "Ref": "VpcPrivateSubnet2RouteTableA678073B"
508
+ },
509
+ "DestinationCidrBlock": "0.0.0.0/0",
510
+ "NatGatewayId": {
511
+ "Ref": "VpcPublicSubnet2NATGateway9182C01D"
512
+ }
513
+ }
514
+ },
515
+ "VpcPrivateSubnet3SubnetF258B56E": {
516
+ "Type": "AWS::EC2::Subnet",
517
+ "Properties": {
518
+ "VpcId": {
519
+ "Ref": "Vpc8378EB38"
520
+ },
521
+ "AvailabilityZone": "test-region-1c",
522
+ "CidrBlock": "10.100.160.0/19",
523
+ "MapPublicIpOnLaunch": false,
524
+ "Tags": [
525
+ {
526
+ "Key": "aws-cdk:subnet-name",
527
+ "Value": "Private"
528
+ },
529
+ {
530
+ "Key": "aws-cdk:subnet-type",
531
+ "Value": "Private"
532
+ },
533
+ {
534
+ "Key": "Name",
535
+ "Value": "vpcFromProps/Vpc/PrivateSubnet3"
536
+ }
537
+ ]
538
+ }
539
+ },
540
+ "VpcPrivateSubnet3RouteTableD98824C7": {
541
+ "Type": "AWS::EC2::RouteTable",
542
+ "Properties": {
543
+ "VpcId": {
544
+ "Ref": "Vpc8378EB38"
545
+ },
546
+ "Tags": [
547
+ {
548
+ "Key": "Name",
549
+ "Value": "vpcFromProps/Vpc/PrivateSubnet3"
550
+ }
551
+ ]
552
+ }
553
+ },
554
+ "VpcPrivateSubnet3RouteTableAssociation16BDDC43": {
555
+ "Type": "AWS::EC2::SubnetRouteTableAssociation",
556
+ "Properties": {
557
+ "RouteTableId": {
558
+ "Ref": "VpcPrivateSubnet3RouteTableD98824C7"
559
+ },
560
+ "SubnetId": {
561
+ "Ref": "VpcPrivateSubnet3SubnetF258B56E"
562
+ }
563
+ }
564
+ },
565
+ "VpcPrivateSubnet3DefaultRoute94B74F0D": {
566
+ "Type": "AWS::EC2::Route",
567
+ "Properties": {
568
+ "RouteTableId": {
569
+ "Ref": "VpcPrivateSubnet3RouteTableD98824C7"
570
+ },
571
+ "DestinationCidrBlock": "0.0.0.0/0",
572
+ "NatGatewayId": {
573
+ "Ref": "VpcPublicSubnet3NATGateway7640CD1D"
574
+ }
575
+ }
576
+ },
577
+ "VpcIGWD7BA715C": {
578
+ "Type": "AWS::EC2::InternetGateway",
579
+ "Properties": {
580
+ "Tags": [
581
+ {
582
+ "Key": "Name",
583
+ "Value": "vpcFromProps/Vpc"
584
+ }
585
+ ]
586
+ }
587
+ },
588
+ "VpcVPCGWBF912B6E": {
589
+ "Type": "AWS::EC2::VPCGatewayAttachment",
590
+ "Properties": {
591
+ "VpcId": {
592
+ "Ref": "Vpc8378EB38"
593
+ },
594
+ "InternetGatewayId": {
595
+ "Ref": "VpcIGWD7BA715C"
596
+ }
597
+ }
598
+ },
599
+ "VpcFlowLogIAMRole6A475D41": {
600
+ "Type": "AWS::IAM::Role",
601
+ "Properties": {
602
+ "AssumeRolePolicyDocument": {
603
+ "Statement": [
604
+ {
605
+ "Action": "sts:AssumeRole",
606
+ "Effect": "Allow",
607
+ "Principal": {
608
+ "Service": "vpc-flow-logs.amazonaws.com"
609
+ }
610
+ }
611
+ ],
612
+ "Version": "2012-10-17"
613
+ },
614
+ "Tags": [
615
+ {
616
+ "Key": "Name",
617
+ "Value": "vpcFromProps/Vpc"
618
+ }
619
+ ]
620
+ }
621
+ },
622
+ "VpcFlowLogIAMRoleDefaultPolicy406FB995": {
623
+ "Type": "AWS::IAM::Policy",
624
+ "Properties": {
625
+ "PolicyDocument": {
626
+ "Statement": [
627
+ {
628
+ "Action": [
629
+ "logs:CreateLogStream",
630
+ "logs:PutLogEvents",
631
+ "logs:DescribeLogStreams"
632
+ ],
633
+ "Effect": "Allow",
634
+ "Resource": {
635
+ "Fn::GetAtt": [
636
+ "VpcFlowLogLogGroup7B5C56B9",
637
+ "Arn"
638
+ ]
639
+ }
640
+ },
641
+ {
642
+ "Action": "iam:PassRole",
643
+ "Effect": "Allow",
644
+ "Resource": {
645
+ "Fn::GetAtt": [
646
+ "VpcFlowLogIAMRole6A475D41",
647
+ "Arn"
648
+ ]
649
+ }
650
+ }
651
+ ],
652
+ "Version": "2012-10-17"
653
+ },
654
+ "PolicyName": "VpcFlowLogIAMRoleDefaultPolicy406FB995",
655
+ "Roles": [
656
+ {
657
+ "Ref": "VpcFlowLogIAMRole6A475D41"
658
+ }
659
+ ]
660
+ }
661
+ },
662
+ "VpcFlowLogLogGroup7B5C56B9": {
663
+ "Type": "AWS::Logs::LogGroup",
664
+ "Properties": {
665
+ "RetentionInDays": 731,
666
+ "Tags": [
667
+ {
668
+ "Key": "Name",
669
+ "Value": "vpcFromProps/Vpc"
670
+ }
671
+ ]
672
+ },
673
+ "UpdateReplacePolicy": "Retain",
674
+ "DeletionPolicy": "Retain",
675
+ "Metadata": {
676
+ "cfn_nag": {
677
+ "rules_to_suppress": [
678
+ {
679
+ "id": "W84",
680
+ "reason": "By default CloudWatchLogs LogGroups data is encrypted using the CloudWatch server-side encryption keys (AWS Managed Keys)"
681
+ }
682
+ ]
683
+ }
684
+ }
685
+ },
686
+ "VpcFlowLog8FF33A73": {
687
+ "Type": "AWS::EC2::FlowLog",
688
+ "Properties": {
689
+ "ResourceId": {
690
+ "Ref": "Vpc8378EB38"
691
+ },
692
+ "ResourceType": "VPC",
693
+ "DeliverLogsPermissionArn": {
694
+ "Fn::GetAtt": [
695
+ "VpcFlowLogIAMRole6A475D41",
696
+ "Arn"
697
+ ]
698
+ },
699
+ "LogDestinationType": "cloud-watch-logs",
700
+ "LogGroupName": {
701
+ "Ref": "VpcFlowLogLogGroup7B5C56B9"
702
+ },
703
+ "Tags": [
704
+ {
705
+ "Key": "Name",
706
+ "Value": "vpcFromProps/Vpc"
707
+ }
708
+ ],
709
+ "TrafficType": "ALL"
710
+ }
711
+ },
712
+ "VpcKINESISSTREAMSC07D91B5": {
713
+ "Type": "AWS::EC2::VPCEndpoint",
714
+ "Properties": {
715
+ "ServiceName": {
716
+ "Fn::Join": [
717
+ "",
718
+ [
719
+ "com.amazonaws.",
720
+ {
721
+ "Ref": "AWS::Region"
722
+ },
723
+ ".kinesis-streams"
724
+ ]
725
+ ]
726
+ },
727
+ "VpcId": {
728
+ "Ref": "Vpc8378EB38"
729
+ },
730
+ "PrivateDnsEnabled": true,
731
+ "SecurityGroupIds": [
732
+ {
733
+ "Fn::GetAtt": [
734
+ "vpcFromPropsKINESISSTREAMSsecuritygroupB4A9EE00",
735
+ "GroupId"
736
+ ]
737
+ }
738
+ ],
739
+ "SubnetIds": [
740
+ {
741
+ "Ref": "VpcPrivateSubnet1Subnet536B997A"
742
+ },
743
+ {
744
+ "Ref": "VpcPrivateSubnet2Subnet3788AAA1"
745
+ },
746
+ {
747
+ "Ref": "VpcPrivateSubnet3SubnetF258B56E"
748
+ }
749
+ ],
750
+ "VpcEndpointType": "Interface"
751
+ }
752
+ },
753
+ "VpcECRAPI9A3B6A2B": {
754
+ "Type": "AWS::EC2::VPCEndpoint",
755
+ "Properties": {
756
+ "ServiceName": {
757
+ "Fn::Join": [
758
+ "",
759
+ [
760
+ "com.amazonaws.",
761
+ {
762
+ "Ref": "AWS::Region"
763
+ },
764
+ ".ecr.api"
765
+ ]
766
+ ]
767
+ },
768
+ "VpcId": {
769
+ "Ref": "Vpc8378EB38"
770
+ },
771
+ "PrivateDnsEnabled": true,
772
+ "SecurityGroupIds": [
773
+ {
774
+ "Fn::GetAtt": [
775
+ "vpcFromPropsECRAPIsecuritygroup5AF6C0C4",
776
+ "GroupId"
777
+ ]
778
+ }
779
+ ],
780
+ "SubnetIds": [
781
+ {
782
+ "Ref": "VpcPrivateSubnet1Subnet536B997A"
783
+ },
784
+ {
785
+ "Ref": "VpcPrivateSubnet2Subnet3788AAA1"
786
+ },
787
+ {
788
+ "Ref": "VpcPrivateSubnet3SubnetF258B56E"
789
+ }
790
+ ],
791
+ "VpcEndpointType": "Interface"
792
+ }
793
+ },
794
+ "VpcECRDKR604E039F": {
795
+ "Type": "AWS::EC2::VPCEndpoint",
796
+ "Properties": {
797
+ "ServiceName": {
798
+ "Fn::Join": [
799
+ "",
800
+ [
801
+ "com.amazonaws.",
802
+ {
803
+ "Ref": "AWS::Region"
804
+ },
805
+ ".ecr.dkr"
806
+ ]
807
+ ]
808
+ },
809
+ "VpcId": {
810
+ "Ref": "Vpc8378EB38"
811
+ },
812
+ "PrivateDnsEnabled": true,
813
+ "SecurityGroupIds": [
814
+ {
815
+ "Fn::GetAtt": [
816
+ "vpcFromPropsECRDKRsecuritygroup822718EC",
817
+ "GroupId"
818
+ ]
819
+ }
820
+ ],
821
+ "SubnetIds": [
822
+ {
823
+ "Ref": "VpcPrivateSubnet1Subnet536B997A"
824
+ },
825
+ {
826
+ "Ref": "VpcPrivateSubnet2Subnet3788AAA1"
827
+ },
828
+ {
829
+ "Ref": "VpcPrivateSubnet3SubnetF258B56E"
830
+ }
831
+ ],
832
+ "VpcEndpointType": "Interface"
833
+ }
834
+ },
835
+ "VpcS3A5408339": {
836
+ "Type": "AWS::EC2::VPCEndpoint",
837
+ "Properties": {
838
+ "ServiceName": {
839
+ "Fn::Join": [
840
+ "",
841
+ [
842
+ "com.amazonaws.",
843
+ {
844
+ "Ref": "AWS::Region"
845
+ },
846
+ ".s3"
847
+ ]
848
+ ]
849
+ },
850
+ "VpcId": {
851
+ "Ref": "Vpc8378EB38"
852
+ },
853
+ "RouteTableIds": [
854
+ {
855
+ "Ref": "VpcPrivateSubnet1RouteTableB2C5B500"
856
+ },
857
+ {
858
+ "Ref": "VpcPrivateSubnet2RouteTableA678073B"
859
+ },
860
+ {
861
+ "Ref": "VpcPrivateSubnet3RouteTableD98824C7"
862
+ },
863
+ {
864
+ "Ref": "VpcPublicSubnet1RouteTable6C95E38E"
865
+ },
866
+ {
867
+ "Ref": "VpcPublicSubnet2RouteTable94F7E489"
868
+ },
869
+ {
870
+ "Ref": "VpcPublicSubnet3RouteTable93458DBB"
871
+ }
872
+ ],
873
+ "VpcEndpointType": "Gateway"
874
+ }
875
+ },
876
+ "vpcFromPropsKINESISSTREAMSsecuritygroupB4A9EE00": {
877
+ "Type": "AWS::EC2::SecurityGroup",
878
+ "Properties": {
879
+ "GroupDescription": "vpcFromProps/vpcFromProps-KINESIS_STREAMS-security-group",
880
+ "SecurityGroupEgress": [
881
+ {
882
+ "CidrIp": "0.0.0.0/0",
883
+ "Description": "Allow all outbound traffic by default",
884
+ "IpProtocol": "-1"
885
+ }
886
+ ],
887
+ "SecurityGroupIngress": [
888
+ {
889
+ "CidrIp": {
890
+ "Fn::GetAtt": [
891
+ "Vpc8378EB38",
892
+ "CidrBlock"
893
+ ]
894
+ },
895
+ "Description": {
896
+ "Fn::Join": [
897
+ "",
898
+ [
899
+ "from ",
900
+ {
901
+ "Fn::GetAtt": [
902
+ "Vpc8378EB38",
903
+ "CidrBlock"
904
+ ]
905
+ },
906
+ ":443"
907
+ ]
908
+ ]
909
+ },
910
+ "FromPort": 443,
911
+ "IpProtocol": "tcp",
912
+ "ToPort": 443
913
+ }
914
+ ],
915
+ "VpcId": {
916
+ "Ref": "Vpc8378EB38"
917
+ }
918
+ },
919
+ "Metadata": {
920
+ "cfn_nag": {
921
+ "rules_to_suppress": [
922
+ {
923
+ "id": "W5",
924
+ "reason": "Egress of 0.0.0.0/0 is default and generally considered OK"
925
+ },
926
+ {
927
+ "id": "W40",
928
+ "reason": "Egress IPProtocol of -1 is default and generally considered OK"
929
+ }
930
+ ]
931
+ }
932
+ }
933
+ },
934
+ "vpcFromPropsECRAPIsecuritygroup5AF6C0C4": {
935
+ "Type": "AWS::EC2::SecurityGroup",
936
+ "Properties": {
937
+ "GroupDescription": "vpcFromProps/vpcFromProps-ECR_API-security-group",
938
+ "SecurityGroupEgress": [
939
+ {
940
+ "CidrIp": "0.0.0.0/0",
941
+ "Description": "Allow all outbound traffic by default",
942
+ "IpProtocol": "-1"
943
+ }
944
+ ],
945
+ "SecurityGroupIngress": [
946
+ {
947
+ "CidrIp": {
948
+ "Fn::GetAtt": [
949
+ "Vpc8378EB38",
950
+ "CidrBlock"
951
+ ]
952
+ },
953
+ "Description": {
954
+ "Fn::Join": [
955
+ "",
956
+ [
957
+ "from ",
958
+ {
959
+ "Fn::GetAtt": [
960
+ "Vpc8378EB38",
961
+ "CidrBlock"
962
+ ]
963
+ },
964
+ ":443"
965
+ ]
966
+ ]
967
+ },
968
+ "FromPort": 443,
969
+ "IpProtocol": "tcp",
970
+ "ToPort": 443
971
+ }
972
+ ],
973
+ "VpcId": {
974
+ "Ref": "Vpc8378EB38"
975
+ }
976
+ },
977
+ "Metadata": {
978
+ "cfn_nag": {
979
+ "rules_to_suppress": [
980
+ {
981
+ "id": "W5",
982
+ "reason": "Egress of 0.0.0.0/0 is default and generally considered OK"
983
+ },
984
+ {
985
+ "id": "W40",
986
+ "reason": "Egress IPProtocol of -1 is default and generally considered OK"
987
+ }
988
+ ]
989
+ }
990
+ }
991
+ },
992
+ "vpcFromPropsECRDKRsecuritygroup822718EC": {
993
+ "Type": "AWS::EC2::SecurityGroup",
994
+ "Properties": {
995
+ "GroupDescription": "vpcFromProps/vpcFromProps-ECR_DKR-security-group",
996
+ "SecurityGroupEgress": [
997
+ {
998
+ "CidrIp": "0.0.0.0/0",
999
+ "Description": "Allow all outbound traffic by default",
1000
+ "IpProtocol": "-1"
1001
+ }
1002
+ ],
1003
+ "SecurityGroupIngress": [
1004
+ {
1005
+ "CidrIp": {
1006
+ "Fn::GetAtt": [
1007
+ "Vpc8378EB38",
1008
+ "CidrBlock"
1009
+ ]
1010
+ },
1011
+ "Description": {
1012
+ "Fn::Join": [
1013
+ "",
1014
+ [
1015
+ "from ",
1016
+ {
1017
+ "Fn::GetAtt": [
1018
+ "Vpc8378EB38",
1019
+ "CidrBlock"
1020
+ ]
1021
+ },
1022
+ ":443"
1023
+ ]
1024
+ ]
1025
+ },
1026
+ "FromPort": 443,
1027
+ "IpProtocol": "tcp",
1028
+ "ToPort": 443
1029
+ }
1030
+ ],
1031
+ "VpcId": {
1032
+ "Ref": "Vpc8378EB38"
1033
+ }
1034
+ },
1035
+ "Metadata": {
1036
+ "cfn_nag": {
1037
+ "rules_to_suppress": [
1038
+ {
1039
+ "id": "W5",
1040
+ "reason": "Egress of 0.0.0.0/0 is default and generally considered OK"
1041
+ },
1042
+ {
1043
+ "id": "W40",
1044
+ "reason": "Egress IPProtocol of -1 is default and generally considered OK"
1045
+ }
1046
+ ]
1047
+ }
1048
+ }
1049
+ },
1050
+ "testfargatekinesisstreamsclusterEA5A2AD7": {
1051
+ "Type": "AWS::ECS::Cluster"
1052
+ },
1053
+ "testfargatekinesisstreamstaskdefTaskRole9811F3BE": {
1054
+ "Type": "AWS::IAM::Role",
1055
+ "Properties": {
1056
+ "AssumeRolePolicyDocument": {
1057
+ "Statement": [
1058
+ {
1059
+ "Action": "sts:AssumeRole",
1060
+ "Effect": "Allow",
1061
+ "Principal": {
1062
+ "Service": "ecs-tasks.amazonaws.com"
1063
+ }
1064
+ }
1065
+ ],
1066
+ "Version": "2012-10-17"
1067
+ }
1068
+ }
1069
+ },
1070
+ "testfargatekinesisstreamstaskdefTaskRoleDefaultPolicyAE7EF3E4": {
1071
+ "Type": "AWS::IAM::Policy",
1072
+ "Properties": {
1073
+ "PolicyDocument": {
1074
+ "Statement": [
1075
+ {
1076
+ "Action": [
1077
+ "kinesis:ListShards",
1078
+ "kinesis:PutRecord",
1079
+ "kinesis:PutRecords"
1080
+ ],
1081
+ "Effect": "Allow",
1082
+ "Resource": {
1083
+ "Fn::GetAtt": [
1084
+ "testfargatekinesisstreamsKinesisStreamD31BD614",
1085
+ "Arn"
1086
+ ]
1087
+ }
1088
+ }
1089
+ ],
1090
+ "Version": "2012-10-17"
1091
+ },
1092
+ "PolicyName": "testfargatekinesisstreamstaskdefTaskRoleDefaultPolicyAE7EF3E4",
1093
+ "Roles": [
1094
+ {
1095
+ "Ref": "testfargatekinesisstreamstaskdefTaskRole9811F3BE"
1096
+ }
1097
+ ]
1098
+ }
1099
+ },
1100
+ "testfargatekinesisstreamstaskdef402FE0B3": {
1101
+ "Type": "AWS::ECS::TaskDefinition",
1102
+ "Properties": {
1103
+ "ContainerDefinitions": [
1104
+ {
1105
+ "Environment": [
1106
+ {
1107
+ "Name": "KINESIS_DATASTREAM_NAME",
1108
+ "Value": {
1109
+ "Ref": "testfargatekinesisstreamsKinesisStreamD31BD614"
1110
+ }
1111
+ }
1112
+ ],
1113
+ "Essential": true,
1114
+ "Image": "nginx",
1115
+ "MemoryReservation": 512,
1116
+ "Name": "test-fargate-kinesisstreams-container",
1117
+ "PortMappings": [
1118
+ {
1119
+ "ContainerPort": 8080,
1120
+ "Protocol": "tcp"
1121
+ }
1122
+ ]
1123
+ }
1124
+ ],
1125
+ "Cpu": "256",
1126
+ "Family": "vpcFromPropstestfargatekinesisstreamstaskdef222FE29E",
1127
+ "Memory": "512",
1128
+ "NetworkMode": "awsvpc",
1129
+ "RequiresCompatibilities": [
1130
+ "FARGATE"
1131
+ ],
1132
+ "TaskRoleArn": {
1133
+ "Fn::GetAtt": [
1134
+ "testfargatekinesisstreamstaskdefTaskRole9811F3BE",
1135
+ "Arn"
1136
+ ]
1137
+ }
1138
+ }
1139
+ },
1140
+ "testfargatekinesisstreamssgBA506AC6": {
1141
+ "Type": "AWS::EC2::SecurityGroup",
1142
+ "Properties": {
1143
+ "GroupDescription": "Construct created security group",
1144
+ "SecurityGroupEgress": [
1145
+ {
1146
+ "CidrIp": "0.0.0.0/0",
1147
+ "Description": "Allow all outbound traffic by default",
1148
+ "IpProtocol": "-1"
1149
+ }
1150
+ ],
1151
+ "VpcId": {
1152
+ "Ref": "Vpc8378EB38"
1153
+ }
1154
+ },
1155
+ "Metadata": {
1156
+ "cfn_nag": {
1157
+ "rules_to_suppress": [
1158
+ {
1159
+ "id": "W5",
1160
+ "reason": "Egress of 0.0.0.0/0 is default and generally considered OK"
1161
+ },
1162
+ {
1163
+ "id": "W40",
1164
+ "reason": "Egress IPProtocol of -1 is default and generally considered OK"
1165
+ }
1166
+ ]
1167
+ }
1168
+ }
1169
+ },
1170
+ "testfargatekinesisstreamsserviceService5AE7AADF": {
1171
+ "Type": "AWS::ECS::Service",
1172
+ "Properties": {
1173
+ "Cluster": {
1174
+ "Ref": "testfargatekinesisstreamsclusterEA5A2AD7"
1175
+ },
1176
+ "DeploymentConfiguration": {
1177
+ "MaximumPercent": 150,
1178
+ "MinimumHealthyPercent": 75
1179
+ },
1180
+ "DesiredCount": 2,
1181
+ "EnableECSManagedTags": false,
1182
+ "LaunchType": "FARGATE",
1183
+ "NetworkConfiguration": {
1184
+ "AwsvpcConfiguration": {
1185
+ "AssignPublicIp": "DISABLED",
1186
+ "SecurityGroups": [
1187
+ {
1188
+ "Fn::GetAtt": [
1189
+ "testfargatekinesisstreamssgBA506AC6",
1190
+ "GroupId"
1191
+ ]
1192
+ }
1193
+ ],
1194
+ "Subnets": [
1195
+ {
1196
+ "Ref": "VpcPrivateSubnet1Subnet536B997A"
1197
+ },
1198
+ {
1199
+ "Ref": "VpcPrivateSubnet2Subnet3788AAA1"
1200
+ },
1201
+ {
1202
+ "Ref": "VpcPrivateSubnet3SubnetF258B56E"
1203
+ }
1204
+ ]
1205
+ }
1206
+ },
1207
+ "PlatformVersion": "LATEST",
1208
+ "TaskDefinition": {
1209
+ "Ref": "testfargatekinesisstreamstaskdef402FE0B3"
1210
+ }
1211
+ }
1212
+ }
1213
+ },
1214
+ "Parameters": {
1215
+ "BootstrapVersion": {
1216
+ "Type": "AWS::SSM::Parameter::Value<String>",
1217
+ "Default": "/cdk-bootstrap/hnb659fds/version",
1218
+ "Description": "Version of the CDK Bootstrap resources in this environment, automatically retrieved from SSM Parameter Store. [cdk:skip]"
1219
+ }
1220
+ },
1221
+ "Rules": {
1222
+ "CheckBootstrapVersion": {
1223
+ "Assertions": [
1224
+ {
1225
+ "Assert": {
1226
+ "Fn::Not": [
1227
+ {
1228
+ "Fn::Contains": [
1229
+ [
1230
+ "1",
1231
+ "2",
1232
+ "3",
1233
+ "4",
1234
+ "5"
1235
+ ],
1236
+ {
1237
+ "Ref": "BootstrapVersion"
1238
+ }
1239
+ ]
1240
+ }
1241
+ ]
1242
+ },
1243
+ "AssertDescription": "CDK bootstrap stack version 6 required. Please run 'cdk bootstrap' with a recent version of the CDK CLI."
1244
+ }
1245
+ ]
1246
+ }
1247
+ }
1248
+ }