@aws-solutions-constructs/aws-fargate-kinesisstreams 2.30.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
Files changed (30) hide show
  1. package/.eslintignore +4 -0
  2. package/.jsii +3760 -0
  3. package/README.md +119 -0
  4. package/architecture.png +0 -0
  5. package/lib/index.d.ts +129 -0
  6. package/lib/index.js +62 -0
  7. package/package.json +93 -0
  8. package/test/fargate-kinesisstreams.test.d.ts +13 -0
  9. package/test/fargate-kinesisstreams.test.js +518 -0
  10. package/test/integ.existingFargateService.d.ts +13 -0
  11. package/test/integ.existingFargateService.expected.json +1248 -0
  12. package/test/integ.existingFargateService.js +32 -0
  13. package/test/integ.existingStream.d.ts +13 -0
  14. package/test/integ.existingStream.expected.json +1247 -0
  15. package/test/integ.existingStream.js +35 -0
  16. package/test/integ.existingVpc.d.ts +13 -0
  17. package/test/integ.existingVpc.expected.json +1248 -0
  18. package/test/integ.existingVpc.js +33 -0
  19. package/test/integ.fargateServiceFromProps.d.ts +13 -0
  20. package/test/integ.fargateServiceFromProps.expected.json +1249 -0
  21. package/test/integ.fargateServiceFromProps.js +33 -0
  22. package/test/integ.noArguments.d.ts +13 -0
  23. package/test/integ.noArguments.expected.json +1248 -0
  24. package/test/integ.noArguments.js +29 -0
  25. package/test/integ.streamFromProps.d.ts +13 -0
  26. package/test/integ.streamFromProps.expected.json +1247 -0
  27. package/test/integ.streamFromProps.js +34 -0
  28. package/test/integ.vpcFromProps.d.ts +13 -0
  29. package/test/integ.vpcFromProps.expected.json +1248 -0
  30. package/test/integ.vpcFromProps.js +32 -0
package/test/integ.existingVpc.expected.json ADDED
@@ -0,0 +1,1248 @@
1
+ {
2
+ "Resources": {
3
+ "Vpc8378EB38": {
4
+ "Type": "AWS::EC2::VPC",
5
+ "Properties": {
6
+ "CidrBlock": "10.0.0.0/16",
7
+ "EnableDnsHostnames": true,
8
+ "EnableDnsSupport": true,
9
+ "InstanceTenancy": "default",
10
+ "Tags": [
11
+ {
12
+ "Key": "Name",
13
+ "Value": "existingVpc/Vpc"
14
+ }
15
+ ]
16
+ }
17
+ },
18
+ "VpcPublicSubnet1Subnet5C2D37C4": {
19
+ "Type": "AWS::EC2::Subnet",
20
+ "Properties": {
21
+ "VpcId": {
22
+ "Ref": "Vpc8378EB38"
23
+ },
24
+ "AvailabilityZone": "test-region-1a",
25
+ "CidrBlock": "10.0.0.0/19",
26
+ "MapPublicIpOnLaunch": true,
27
+ "Tags": [
28
+ {
29
+ "Key": "aws-cdk:subnet-name",
30
+ "Value": "Public"
31
+ },
32
+ {
33
+ "Key": "aws-cdk:subnet-type",
34
+ "Value": "Public"
35
+ },
36
+ {
37
+ "Key": "Name",
38
+ "Value": "existingVpc/Vpc/PublicSubnet1"
39
+ }
40
+ ]
41
+ },
42
+ "Metadata": {
43
+ "cfn_nag": {
44
+ "rules_to_suppress": [
45
+ {
46
+ "id": "W33",
47
+ "reason": "Allow Public Subnets to have MapPublicIpOnLaunch set to true"
48
+ }
49
+ ]
50
+ }
51
+ }
52
+ },
53
+ "VpcPublicSubnet1RouteTable6C95E38E": {
54
+ "Type": "AWS::EC2::RouteTable",
55
+ "Properties": {
56
+ "VpcId": {
57
+ "Ref": "Vpc8378EB38"
58
+ },
59
+ "Tags": [
60
+ {
61
+ "Key": "Name",
62
+ "Value": "existingVpc/Vpc/PublicSubnet1"
63
+ }
64
+ ]
65
+ }
66
+ },
67
+ "VpcPublicSubnet1RouteTableAssociation97140677": {
68
+ "Type": "AWS::EC2::SubnetRouteTableAssociation",
69
+ "Properties": {
70
+ "RouteTableId": {
71
+ "Ref": "VpcPublicSubnet1RouteTable6C95E38E"
72
+ },
73
+ "SubnetId": {
74
+ "Ref": "VpcPublicSubnet1Subnet5C2D37C4"
75
+ }
76
+ }
77
+ },
78
+ "VpcPublicSubnet1DefaultRoute3DA9E72A": {
79
+ "Type": "AWS::EC2::Route",
80
+ "Properties": {
81
+ "RouteTableId": {
82
+ "Ref": "VpcPublicSubnet1RouteTable6C95E38E"
83
+ },
84
+ "DestinationCidrBlock": "0.0.0.0/0",
85
+ "GatewayId": {
86
+ "Ref": "VpcIGWD7BA715C"
87
+ }
88
+ },
89
+ "DependsOn": [
90
+ "VpcVPCGWBF912B6E"
91
+ ]
92
+ },
93
+ "VpcPublicSubnet1EIPD7E02669": {
94
+ "Type": "AWS::EC2::EIP",
95
+ "Properties": {
96
+ "Domain": "vpc",
97
+ "Tags": [
98
+ {
99
+ "Key": "Name",
100
+ "Value": "existingVpc/Vpc/PublicSubnet1"
101
+ }
102
+ ]
103
+ }
104
+ },
105
+ "VpcPublicSubnet1NATGateway4D7517AA": {
106
+ "Type": "AWS::EC2::NatGateway",
107
+ "Properties": {
108
+ "SubnetId": {
109
+ "Ref": "VpcPublicSubnet1Subnet5C2D37C4"
110
+ },
111
+ "AllocationId": {
112
+ "Fn::GetAtt": [
113
+ "VpcPublicSubnet1EIPD7E02669",
114
+ "AllocationId"
115
+ ]
116
+ },
117
+ "Tags": [
118
+ {
119
+ "Key": "Name",
120
+ "Value": "existingVpc/Vpc/PublicSubnet1"
121
+ }
122
+ ]
123
+ },
124
+ "DependsOn": [
125
+ "VpcPublicSubnet1DefaultRoute3DA9E72A",
126
+ "VpcPublicSubnet1RouteTableAssociation97140677"
127
+ ]
128
+ },
129
+ "VpcPublicSubnet2Subnet691E08A3": {
130
+ "Type": "AWS::EC2::Subnet",
131
+ "Properties": {
132
+ "VpcId": {
133
+ "Ref": "Vpc8378EB38"
134
+ },
135
+ "AvailabilityZone": "test-region-1b",
136
+ "CidrBlock": "10.0.32.0/19",
137
+ "MapPublicIpOnLaunch": true,
138
+ "Tags": [
139
+ {
140
+ "Key": "aws-cdk:subnet-name",
141
+ "Value": "Public"
142
+ },
143
+ {
144
+ "Key": "aws-cdk:subnet-type",
145
+ "Value": "Public"
146
+ },
147
+ {
148
+ "Key": "Name",
149
+ "Value": "existingVpc/Vpc/PublicSubnet2"
150
+ }
151
+ ]
152
+ },
153
+ "Metadata": {
154
+ "cfn_nag": {
155
+ "rules_to_suppress": [
156
+ {
157
+ "id": "W33",
158
+ "reason": "Allow Public Subnets to have MapPublicIpOnLaunch set to true"
159
+ }
160
+ ]
161
+ }
162
+ }
163
+ },
164
+ "VpcPublicSubnet2RouteTable94F7E489": {
165
+ "Type": "AWS::EC2::RouteTable",
166
+ "Properties": {
167
+ "VpcId": {
168
+ "Ref": "Vpc8378EB38"
169
+ },
170
+ "Tags": [
171
+ {
172
+ "Key": "Name",
173
+ "Value": "existingVpc/Vpc/PublicSubnet2"
174
+ }
175
+ ]
176
+ }
177
+ },
178
+ "VpcPublicSubnet2RouteTableAssociationDD5762D8": {
179
+ "Type": "AWS::EC2::SubnetRouteTableAssociation",
180
+ "Properties": {
181
+ "RouteTableId": {
182
+ "Ref": "VpcPublicSubnet2RouteTable94F7E489"
183
+ },
184
+ "SubnetId": {
185
+ "Ref": "VpcPublicSubnet2Subnet691E08A3"
186
+ }
187
+ }
188
+ },
189
+ "VpcPublicSubnet2DefaultRoute97F91067": {
190
+ "Type": "AWS::EC2::Route",
191
+ "Properties": {
192
+ "RouteTableId": {
193
+ "Ref": "VpcPublicSubnet2RouteTable94F7E489"
194
+ },
195
+ "DestinationCidrBlock": "0.0.0.0/0",
196
+ "GatewayId": {
197
+ "Ref": "VpcIGWD7BA715C"
198
+ }
199
+ },
200
+ "DependsOn": [
201
+ "VpcVPCGWBF912B6E"
202
+ ]
203
+ },
204
+ "VpcPublicSubnet2EIP3C605A87": {
205
+ "Type": "AWS::EC2::EIP",
206
+ "Properties": {
207
+ "Domain": "vpc",
208
+ "Tags": [
209
+ {
210
+ "Key": "Name",
211
+ "Value": "existingVpc/Vpc/PublicSubnet2"
212
+ }
213
+ ]
214
+ }
215
+ },
216
+ "VpcPublicSubnet2NATGateway9182C01D": {
217
+ "Type": "AWS::EC2::NatGateway",
218
+ "Properties": {
219
+ "SubnetId": {
220
+ "Ref": "VpcPublicSubnet2Subnet691E08A3"
221
+ },
222
+ "AllocationId": {
223
+ "Fn::GetAtt": [
224
+ "VpcPublicSubnet2EIP3C605A87",
225
+ "AllocationId"
226
+ ]
227
+ },
228
+ "Tags": [
229
+ {
230
+ "Key": "Name",
231
+ "Value": "existingVpc/Vpc/PublicSubnet2"
232
+ }
233
+ ]
234
+ },
235
+ "DependsOn": [
236
+ "VpcPublicSubnet2DefaultRoute97F91067",
237
+ "VpcPublicSubnet2RouteTableAssociationDD5762D8"
238
+ ]
239
+ },
240
+ "VpcPublicSubnet3SubnetBE12F0B6": {
241
+ "Type": "AWS::EC2::Subnet",
242
+ "Properties": {
243
+ "VpcId": {
244
+ "Ref": "Vpc8378EB38"
245
+ },
246
+ "AvailabilityZone": "test-region-1c",
247
+ "CidrBlock": "10.0.64.0/19",
248
+ "MapPublicIpOnLaunch": true,
249
+ "Tags": [
250
+ {
251
+ "Key": "aws-cdk:subnet-name",
252
+ "Value": "Public"
253
+ },
254
+ {
255
+ "Key": "aws-cdk:subnet-type",
256
+ "Value": "Public"
257
+ },
258
+ {
259
+ "Key": "Name",
260
+ "Value": "existingVpc/Vpc/PublicSubnet3"
261
+ }
262
+ ]
263
+ },
264
+ "Metadata": {
265
+ "cfn_nag": {
266
+ "rules_to_suppress": [
267
+ {
268
+ "id": "W33",
269
+ "reason": "Allow Public Subnets to have MapPublicIpOnLaunch set to true"
270
+ }
271
+ ]
272
+ }
273
+ }
274
+ },
275
+ "VpcPublicSubnet3RouteTable93458DBB": {
276
+ "Type": "AWS::EC2::RouteTable",
277
+ "Properties": {
278
+ "VpcId": {
279
+ "Ref": "Vpc8378EB38"
280
+ },
281
+ "Tags": [
282
+ {
283
+ "Key": "Name",
284
+ "Value": "existingVpc/Vpc/PublicSubnet3"
285
+ }
286
+ ]
287
+ }
288
+ },
289
+ "VpcPublicSubnet3RouteTableAssociation1F1EDF02": {
290
+ "Type": "AWS::EC2::SubnetRouteTableAssociation",
291
+ "Properties": {
292
+ "RouteTableId": {
293
+ "Ref": "VpcPublicSubnet3RouteTable93458DBB"
294
+ },
295
+ "SubnetId": {
296
+ "Ref": "VpcPublicSubnet3SubnetBE12F0B6"
297
+ }
298
+ }
299
+ },
300
+ "VpcPublicSubnet3DefaultRoute4697774F": {
301
+ "Type": "AWS::EC2::Route",
302
+ "Properties": {
303
+ "RouteTableId": {
304
+ "Ref": "VpcPublicSubnet3RouteTable93458DBB"
305
+ },
306
+ "DestinationCidrBlock": "0.0.0.0/0",
307
+ "GatewayId": {
308
+ "Ref": "VpcIGWD7BA715C"
309
+ }
310
+ },
311
+ "DependsOn": [
312
+ "VpcVPCGWBF912B6E"
313
+ ]
314
+ },
315
+ "VpcPublicSubnet3EIP3A666A23": {
316
+ "Type": "AWS::EC2::EIP",
317
+ "Properties": {
318
+ "Domain": "vpc",
319
+ "Tags": [
320
+ {
321
+ "Key": "Name",
322
+ "Value": "existingVpc/Vpc/PublicSubnet3"
323
+ }
324
+ ]
325
+ }
326
+ },
327
+ "VpcPublicSubnet3NATGateway7640CD1D": {
328
+ "Type": "AWS::EC2::NatGateway",
329
+ "Properties": {
330
+ "SubnetId": {
331
+ "Ref": "VpcPublicSubnet3SubnetBE12F0B6"
332
+ },
333
+ "AllocationId": {
334
+ "Fn::GetAtt": [
335
+ "VpcPublicSubnet3EIP3A666A23",
336
+ "AllocationId"
337
+ ]
338
+ },
339
+ "Tags": [
340
+ {
341
+ "Key": "Name",
342
+ "Value": "existingVpc/Vpc/PublicSubnet3"
343
+ }
344
+ ]
345
+ },
346
+ "DependsOn": [
347
+ "VpcPublicSubnet3DefaultRoute4697774F",
348
+ "VpcPublicSubnet3RouteTableAssociation1F1EDF02"
349
+ ]
350
+ },
351
+ "VpcPrivateSubnet1Subnet536B997A": {
352
+ "Type": "AWS::EC2::Subnet",
353
+ "Properties": {
354
+ "VpcId": {
355
+ "Ref": "Vpc8378EB38"
356
+ },
357
+ "AvailabilityZone": "test-region-1a",
358
+ "CidrBlock": "10.0.96.0/19",
359
+ "MapPublicIpOnLaunch": false,
360
+ "Tags": [
361
+ {
362
+ "Key": "aws-cdk:subnet-name",
363
+ "Value": "Private"
364
+ },
365
+ {
366
+ "Key": "aws-cdk:subnet-type",
367
+ "Value": "Private"
368
+ },
369
+ {
370
+ "Key": "Name",
371
+ "Value": "existingVpc/Vpc/PrivateSubnet1"
372
+ }
373
+ ]
374
+ }
375
+ },
376
+ "VpcPrivateSubnet1RouteTableB2C5B500": {
377
+ "Type": "AWS::EC2::RouteTable",
378
+ "Properties": {
379
+ "VpcId": {
380
+ "Ref": "Vpc8378EB38"
381
+ },
382
+ "Tags": [
383
+ {
384
+ "Key": "Name",
385
+ "Value": "existingVpc/Vpc/PrivateSubnet1"
386
+ }
387
+ ]
388
+ }
389
+ },
390
+ "VpcPrivateSubnet1RouteTableAssociation70C59FA6": {
391
+ "Type": "AWS::EC2::SubnetRouteTableAssociation",
392
+ "Properties": {
393
+ "RouteTableId": {
394
+ "Ref": "VpcPrivateSubnet1RouteTableB2C5B500"
395
+ },
396
+ "SubnetId": {
397
+ "Ref": "VpcPrivateSubnet1Subnet536B997A"
398
+ }
399
+ }
400
+ },
401
+ "VpcPrivateSubnet1DefaultRouteBE02A9ED": {
402
+ "Type": "AWS::EC2::Route",
403
+ "Properties": {
404
+ "RouteTableId": {
405
+ "Ref": "VpcPrivateSubnet1RouteTableB2C5B500"
406
+ },
407
+ "DestinationCidrBlock": "0.0.0.0/0",
408
+ "NatGatewayId": {
409
+ "Ref": "VpcPublicSubnet1NATGateway4D7517AA"
410
+ }
411
+ }
412
+ },
413
+ "VpcPrivateSubnet2Subnet3788AAA1": {
414
+ "Type": "AWS::EC2::Subnet",
415
+ "Properties": {
416
+ "VpcId": {
417
+ "Ref": "Vpc8378EB38"
418
+ },
419
+ "AvailabilityZone": "test-region-1b",
420
+ "CidrBlock": "10.0.128.0/19",
421
+ "MapPublicIpOnLaunch": false,
422
+ "Tags": [
423
+ {
424
+ "Key": "aws-cdk:subnet-name",
425
+ "Value": "Private"
426
+ },
427
+ {
428
+ "Key": "aws-cdk:subnet-type",
429
+ "Value": "Private"
430
+ },
431
+ {
432
+ "Key": "Name",
433
+ "Value": "existingVpc/Vpc/PrivateSubnet2"
434
+ }
435
+ ]
436
+ }
437
+ },
438
+ "VpcPrivateSubnet2RouteTableA678073B": {
439
+ "Type": "AWS::EC2::RouteTable",
440
+ "Properties": {
441
+ "VpcId": {
442
+ "Ref": "Vpc8378EB38"
443
+ },
444
+ "Tags": [
445
+ {
446
+ "Key": "Name",
447
+ "Value": "existingVpc/Vpc/PrivateSubnet2"
448
+ }
449
+ ]
450
+ }
451
+ },
452
+ "VpcPrivateSubnet2RouteTableAssociationA89CAD56": {
453
+ "Type": "AWS::EC2::SubnetRouteTableAssociation",
454
+ "Properties": {
455
+ "RouteTableId": {
456
+ "Ref": "VpcPrivateSubnet2RouteTableA678073B"
457
+ },
458
+ "SubnetId": {
459
+ "Ref": "VpcPrivateSubnet2Subnet3788AAA1"
460
+ }
461
+ }
462
+ },
463
+ "VpcPrivateSubnet2DefaultRoute060D2087": {
464
+ "Type": "AWS::EC2::Route",
465
+ "Properties": {
466
+ "RouteTableId": {
467
+ "Ref": "VpcPrivateSubnet2RouteTableA678073B"
468
+ },
469
+ "DestinationCidrBlock": "0.0.0.0/0",
470
+ "NatGatewayId": {
471
+ "Ref": "VpcPublicSubnet2NATGateway9182C01D"
472
+ }
473
+ }
474
+ },
475
+ "VpcPrivateSubnet3SubnetF258B56E": {
476
+ "Type": "AWS::EC2::Subnet",
477
+ "Properties": {
478
+ "VpcId": {
479
+ "Ref": "Vpc8378EB38"
480
+ },
481
+ "AvailabilityZone": "test-region-1c",
482
+ "CidrBlock": "10.0.160.0/19",
483
+ "MapPublicIpOnLaunch": false,
484
+ "Tags": [
485
+ {
486
+ "Key": "aws-cdk:subnet-name",
487
+ "Value": "Private"
488
+ },
489
+ {
490
+ "Key": "aws-cdk:subnet-type",
491
+ "Value": "Private"
492
+ },
493
+ {
494
+ "Key": "Name",
495
+ "Value": "existingVpc/Vpc/PrivateSubnet3"
496
+ }
497
+ ]
498
+ }
499
+ },
500
+ "VpcPrivateSubnet3RouteTableD98824C7": {
501
+ "Type": "AWS::EC2::RouteTable",
502
+ "Properties": {
503
+ "VpcId": {
504
+ "Ref": "Vpc8378EB38"
505
+ },
506
+ "Tags": [
507
+ {
508
+ "Key": "Name",
509
+ "Value": "existingVpc/Vpc/PrivateSubnet3"
510
+ }
511
+ ]
512
+ }
513
+ },
514
+ "VpcPrivateSubnet3RouteTableAssociation16BDDC43": {
515
+ "Type": "AWS::EC2::SubnetRouteTableAssociation",
516
+ "Properties": {
517
+ "RouteTableId": {
518
+ "Ref": "VpcPrivateSubnet3RouteTableD98824C7"
519
+ },
520
+ "SubnetId": {
521
+ "Ref": "VpcPrivateSubnet3SubnetF258B56E"
522
+ }
523
+ }
524
+ },
525
+ "VpcPrivateSubnet3DefaultRoute94B74F0D": {
526
+ "Type": "AWS::EC2::Route",
527
+ "Properties": {
528
+ "RouteTableId": {
529
+ "Ref": "VpcPrivateSubnet3RouteTableD98824C7"
530
+ },
531
+ "DestinationCidrBlock": "0.0.0.0/0",
532
+ "NatGatewayId": {
533
+ "Ref": "VpcPublicSubnet3NATGateway7640CD1D"
534
+ }
535
+ }
536
+ },
537
+ "VpcIGWD7BA715C": {
538
+ "Type": "AWS::EC2::InternetGateway",
539
+ "Properties": {
540
+ "Tags": [
541
+ {
542
+ "Key": "Name",
543
+ "Value": "existingVpc/Vpc"
544
+ }
545
+ ]
546
+ }
547
+ },
548
+ "VpcVPCGWBF912B6E": {
549
+ "Type": "AWS::EC2::VPCGatewayAttachment",
550
+ "Properties": {
551
+ "VpcId": {
552
+ "Ref": "Vpc8378EB38"
553
+ },
554
+ "InternetGatewayId": {
555
+ "Ref": "VpcIGWD7BA715C"
556
+ }
557
+ }
558
+ },
559
+ "VpcFlowLogIAMRole6A475D41": {
560
+ "Type": "AWS::IAM::Role",
561
+ "Properties": {
562
+ "AssumeRolePolicyDocument": {
563
+ "Statement": [
564
+ {
565
+ "Action": "sts:AssumeRole",
566
+ "Effect": "Allow",
567
+ "Principal": {
568
+ "Service": "vpc-flow-logs.amazonaws.com"
569
+ }
570
+ }
571
+ ],
572
+ "Version": "2012-10-17"
573
+ },
574
+ "Tags": [
575
+ {
576
+ "Key": "Name",
577
+ "Value": "existingVpc/Vpc"
578
+ }
579
+ ]
580
+ }
581
+ },
582
+ "VpcFlowLogIAMRoleDefaultPolicy406FB995": {
583
+ "Type": "AWS::IAM::Policy",
584
+ "Properties": {
585
+ "PolicyDocument": {
586
+ "Statement": [
587
+ {
588
+ "Action": [
589
+ "logs:CreateLogStream",
590
+ "logs:PutLogEvents",
591
+ "logs:DescribeLogStreams"
592
+ ],
593
+ "Effect": "Allow",
594
+ "Resource": {
595
+ "Fn::GetAtt": [
596
+ "VpcFlowLogLogGroup7B5C56B9",
597
+ "Arn"
598
+ ]
599
+ }
600
+ },
601
+ {
602
+ "Action": "iam:PassRole",
603
+ "Effect": "Allow",
604
+ "Resource": {
605
+ "Fn::GetAtt": [
606
+ "VpcFlowLogIAMRole6A475D41",
607
+ "Arn"
608
+ ]
609
+ }
610
+ }
611
+ ],
612
+ "Version": "2012-10-17"
613
+ },
614
+ "PolicyName": "VpcFlowLogIAMRoleDefaultPolicy406FB995",
615
+ "Roles": [
616
+ {
617
+ "Ref": "VpcFlowLogIAMRole6A475D41"
618
+ }
619
+ ]
620
+ }
621
+ },
622
+ "VpcFlowLogLogGroup7B5C56B9": {
623
+ "Type": "AWS::Logs::LogGroup",
624
+ "Properties": {
625
+ "RetentionInDays": 731,
626
+ "Tags": [
627
+ {
628
+ "Key": "Name",
629
+ "Value": "existingVpc/Vpc"
630
+ }
631
+ ]
632
+ },
633
+ "UpdateReplacePolicy": "Retain",
634
+ "DeletionPolicy": "Retain",
635
+ "Metadata": {
636
+ "cfn_nag": {
637
+ "rules_to_suppress": [
638
+ {
639
+ "id": "W84",
640
+ "reason": "By default CloudWatchLogs LogGroups data is encrypted using the CloudWatch server-side encryption keys (AWS Managed Keys)"
641
+ }
642
+ ]
643
+ }
644
+ }
645
+ },
646
+ "VpcFlowLog8FF33A73": {
647
+ "Type": "AWS::EC2::FlowLog",
648
+ "Properties": {
649
+ "ResourceId": {
650
+ "Ref": "Vpc8378EB38"
651
+ },
652
+ "ResourceType": "VPC",
653
+ "DeliverLogsPermissionArn": {
654
+ "Fn::GetAtt": [
655
+ "VpcFlowLogIAMRole6A475D41",
656
+ "Arn"
657
+ ]
658
+ },
659
+ "LogDestinationType": "cloud-watch-logs",
660
+ "LogGroupName": {
661
+ "Ref": "VpcFlowLogLogGroup7B5C56B9"
662
+ },
663
+ "Tags": [
664
+ {
665
+ "Key": "Name",
666
+ "Value": "existingVpc/Vpc"
667
+ }
668
+ ],
669
+ "TrafficType": "ALL"
670
+ }
671
+ },
672
+ "VpcKINESISSTREAMSC07D91B5": {
673
+ "Type": "AWS::EC2::VPCEndpoint",
674
+ "Properties": {
675
+ "ServiceName": {
676
+ "Fn::Join": [
677
+ "",
678
+ [
679
+ "com.amazonaws.",
680
+ {
681
+ "Ref": "AWS::Region"
682
+ },
683
+ ".kinesis-streams"
684
+ ]
685
+ ]
686
+ },
687
+ "VpcId": {
688
+ "Ref": "Vpc8378EB38"
689
+ },
690
+ "PrivateDnsEnabled": true,
691
+ "SecurityGroupIds": [
692
+ {
693
+ "Fn::GetAtt": [
694
+ "existingVpcKINESISSTREAMSsecuritygroupDE0E9DB9",
695
+ "GroupId"
696
+ ]
697
+ }
698
+ ],
699
+ "SubnetIds": [
700
+ {
701
+ "Ref": "VpcPrivateSubnet1Subnet536B997A"
702
+ },
703
+ {
704
+ "Ref": "VpcPrivateSubnet2Subnet3788AAA1"
705
+ },
706
+ {
707
+ "Ref": "VpcPrivateSubnet3SubnetF258B56E"
708
+ }
709
+ ],
710
+ "VpcEndpointType": "Interface"
711
+ }
712
+ },
713
+ "VpcECRAPI9A3B6A2B": {
714
+ "Type": "AWS::EC2::VPCEndpoint",
715
+ "Properties": {
716
+ "ServiceName": {
717
+ "Fn::Join": [
718
+ "",
719
+ [
720
+ "com.amazonaws.",
721
+ {
722
+ "Ref": "AWS::Region"
723
+ },
724
+ ".ecr.api"
725
+ ]
726
+ ]
727
+ },
728
+ "VpcId": {
729
+ "Ref": "Vpc8378EB38"
730
+ },
731
+ "PrivateDnsEnabled": true,
732
+ "SecurityGroupIds": [
733
+ {
734
+ "Fn::GetAtt": [
735
+ "existingVpcECRAPIsecuritygroupB3E4A376",
736
+ "GroupId"
737
+ ]
738
+ }
739
+ ],
740
+ "SubnetIds": [
741
+ {
742
+ "Ref": "VpcPrivateSubnet1Subnet536B997A"
743
+ },
744
+ {
745
+ "Ref": "VpcPrivateSubnet2Subnet3788AAA1"
746
+ },
747
+ {
748
+ "Ref": "VpcPrivateSubnet3SubnetF258B56E"
749
+ }
750
+ ],
751
+ "VpcEndpointType": "Interface"
752
+ }
753
+ },
754
+ "VpcECRDKR604E039F": {
755
+ "Type": "AWS::EC2::VPCEndpoint",
756
+ "Properties": {
757
+ "ServiceName": {
758
+ "Fn::Join": [
759
+ "",
760
+ [
761
+ "com.amazonaws.",
762
+ {
763
+ "Ref": "AWS::Region"
764
+ },
765
+ ".ecr.dkr"
766
+ ]
767
+ ]
768
+ },
769
+ "VpcId": {
770
+ "Ref": "Vpc8378EB38"
771
+ },
772
+ "PrivateDnsEnabled": true,
773
+ "SecurityGroupIds": [
774
+ {
775
+ "Fn::GetAtt": [
776
+ "existingVpcECRDKRsecuritygroup0500FAE6",
777
+ "GroupId"
778
+ ]
779
+ }
780
+ ],
781
+ "SubnetIds": [
782
+ {
783
+ "Ref": "VpcPrivateSubnet1Subnet536B997A"
784
+ },
785
+ {
786
+ "Ref": "VpcPrivateSubnet2Subnet3788AAA1"
787
+ },
788
+ {
789
+ "Ref": "VpcPrivateSubnet3SubnetF258B56E"
790
+ }
791
+ ],
792
+ "VpcEndpointType": "Interface"
793
+ }
794
+ },
795
+ "VpcS3A5408339": {
796
+ "Type": "AWS::EC2::VPCEndpoint",
797
+ "Properties": {
798
+ "ServiceName": {
799
+ "Fn::Join": [
800
+ "",
801
+ [
802
+ "com.amazonaws.",
803
+ {
804
+ "Ref": "AWS::Region"
805
+ },
806
+ ".s3"
807
+ ]
808
+ ]
809
+ },
810
+ "VpcId": {
811
+ "Ref": "Vpc8378EB38"
812
+ },
813
+ "RouteTableIds": [
814
+ {
815
+ "Ref": "VpcPrivateSubnet1RouteTableB2C5B500"
816
+ },
817
+ {
818
+ "Ref": "VpcPrivateSubnet2RouteTableA678073B"
819
+ },
820
+ {
821
+ "Ref": "VpcPrivateSubnet3RouteTableD98824C7"
822
+ },
823
+ {
824
+ "Ref": "VpcPublicSubnet1RouteTable6C95E38E"
825
+ },
826
+ {
827
+ "Ref": "VpcPublicSubnet2RouteTable94F7E489"
828
+ },
829
+ {
830
+ "Ref": "VpcPublicSubnet3RouteTable93458DBB"
831
+ }
832
+ ],
833
+ "VpcEndpointType": "Gateway"
834
+ }
835
+ },
836
+ "testfargatekinesisstreamsKinesisStreamD31BD614": {
837
+ "Type": "AWS::Kinesis::Stream",
838
+ "Properties": {
839
+ "RetentionPeriodHours": 24,
840
+ "ShardCount": 1,
841
+ "StreamEncryption": {
842
+ "EncryptionType": "KMS",
843
+ "KeyId": "alias/aws/kinesis"
844
+ },
845
+ "StreamModeDetails": {
846
+ "StreamMode": "PROVISIONED"
847
+ }
848
+ }
849
+ },
850
+ "testfargatekinesisstreamsKinesisStreamGetRecordsIteratorAgeAlarm60755E90": {
851
+ "Type": "AWS::CloudWatch::Alarm",
852
+ "Properties": {
853
+ "ComparisonOperator": "GreaterThanOrEqualToThreshold",
854
+ "EvaluationPeriods": 1,
855
+ "AlarmDescription": "Consumer Record Processing Falling Behind, there is risk for data loss due to record expiration.",
856
+ "MetricName": "GetRecords.IteratorAgeMilliseconds",
857
+ "Namespace": "AWS/Kinesis",
858
+ "Period": 300,
859
+ "Statistic": "Maximum",
860
+ "Threshold": 43200000
861
+ }
862
+ },
863
+ "testfargatekinesisstreamsKinesisStreamReadProvisionedThroughputExceededAlarmDE16A9F2": {
864
+ "Type": "AWS::CloudWatch::Alarm",
865
+ "Properties": {
866
+ "ComparisonOperator": "GreaterThanThreshold",
867
+ "EvaluationPeriods": 1,
868
+ "AlarmDescription": "Consumer Application is Reading at a Slower Rate Than Expected.",
869
+ "MetricName": "ReadProvisionedThroughputExceeded",
870
+ "Namespace": "AWS/Kinesis",
871
+ "Period": 300,
872
+ "Statistic": "Average",
873
+ "Threshold": 0
874
+ }
875
+ },
876
+ "existingVpcKINESISSTREAMSsecuritygroupDE0E9DB9": {
877
+ "Type": "AWS::EC2::SecurityGroup",
878
+ "Properties": {
879
+ "GroupDescription": "existingVpc/existingVpc-KINESIS_STREAMS-security-group",
880
+ "SecurityGroupEgress": [
881
+ {
882
+ "CidrIp": "0.0.0.0/0",
883
+ "Description": "Allow all outbound traffic by default",
884
+ "IpProtocol": "-1"
885
+ }
886
+ ],
887
+ "SecurityGroupIngress": [
888
+ {
889
+ "CidrIp": {
890
+ "Fn::GetAtt": [
891
+ "Vpc8378EB38",
892
+ "CidrBlock"
893
+ ]
894
+ },
895
+ "Description": {
896
+ "Fn::Join": [
897
+ "",
898
+ [
899
+ "from ",
900
+ {
901
+ "Fn::GetAtt": [
902
+ "Vpc8378EB38",
903
+ "CidrBlock"
904
+ ]
905
+ },
906
+ ":443"
907
+ ]
908
+ ]
909
+ },
910
+ "FromPort": 443,
911
+ "IpProtocol": "tcp",
912
+ "ToPort": 443
913
+ }
914
+ ],
915
+ "VpcId": {
916
+ "Ref": "Vpc8378EB38"
917
+ }
918
+ },
919
+ "Metadata": {
920
+ "cfn_nag": {
921
+ "rules_to_suppress": [
922
+ {
923
+ "id": "W5",
924
+ "reason": "Egress of 0.0.0.0/0 is default and generally considered OK"
925
+ },
926
+ {
927
+ "id": "W40",
928
+ "reason": "Egress IPProtocol of -1 is default and generally considered OK"
929
+ }
930
+ ]
931
+ }
932
+ }
933
+ },
934
+ "existingVpcECRAPIsecuritygroupB3E4A376": {
935
+ "Type": "AWS::EC2::SecurityGroup",
936
+ "Properties": {
937
+ "GroupDescription": "existingVpc/existingVpc-ECR_API-security-group",
938
+ "SecurityGroupEgress": [
939
+ {
940
+ "CidrIp": "0.0.0.0/0",
941
+ "Description": "Allow all outbound traffic by default",
942
+ "IpProtocol": "-1"
943
+ }
944
+ ],
945
+ "SecurityGroupIngress": [
946
+ {
947
+ "CidrIp": {
948
+ "Fn::GetAtt": [
949
+ "Vpc8378EB38",
950
+ "CidrBlock"
951
+ ]
952
+ },
953
+ "Description": {
954
+ "Fn::Join": [
955
+ "",
956
+ [
957
+ "from ",
958
+ {
959
+ "Fn::GetAtt": [
960
+ "Vpc8378EB38",
961
+ "CidrBlock"
962
+ ]
963
+ },
964
+ ":443"
965
+ ]
966
+ ]
967
+ },
968
+ "FromPort": 443,
969
+ "IpProtocol": "tcp",
970
+ "ToPort": 443
971
+ }
972
+ ],
973
+ "VpcId": {
974
+ "Ref": "Vpc8378EB38"
975
+ }
976
+ },
977
+ "Metadata": {
978
+ "cfn_nag": {
979
+ "rules_to_suppress": [
980
+ {
981
+ "id": "W5",
982
+ "reason": "Egress of 0.0.0.0/0 is default and generally considered OK"
983
+ },
984
+ {
985
+ "id": "W40",
986
+ "reason": "Egress IPProtocol of -1 is default and generally considered OK"
987
+ }
988
+ ]
989
+ }
990
+ }
991
+ },
992
+ "existingVpcECRDKRsecuritygroup0500FAE6": {
993
+ "Type": "AWS::EC2::SecurityGroup",
994
+ "Properties": {
995
+ "GroupDescription": "existingVpc/existingVpc-ECR_DKR-security-group",
996
+ "SecurityGroupEgress": [
997
+ {
998
+ "CidrIp": "0.0.0.0/0",
999
+ "Description": "Allow all outbound traffic by default",
1000
+ "IpProtocol": "-1"
1001
+ }
1002
+ ],
1003
+ "SecurityGroupIngress": [
1004
+ {
1005
+ "CidrIp": {
1006
+ "Fn::GetAtt": [
1007
+ "Vpc8378EB38",
1008
+ "CidrBlock"
1009
+ ]
1010
+ },
1011
+ "Description": {
1012
+ "Fn::Join": [
1013
+ "",
1014
+ [
1015
+ "from ",
1016
+ {
1017
+ "Fn::GetAtt": [
1018
+ "Vpc8378EB38",
1019
+ "CidrBlock"
1020
+ ]
1021
+ },
1022
+ ":443"
1023
+ ]
1024
+ ]
1025
+ },
1026
+ "FromPort": 443,
1027
+ "IpProtocol": "tcp",
1028
+ "ToPort": 443
1029
+ }
1030
+ ],
1031
+ "VpcId": {
1032
+ "Ref": "Vpc8378EB38"
1033
+ }
1034
+ },
1035
+ "Metadata": {
1036
+ "cfn_nag": {
1037
+ "rules_to_suppress": [
1038
+ {
1039
+ "id": "W5",
1040
+ "reason": "Egress of 0.0.0.0/0 is default and generally considered OK"
1041
+ },
1042
+ {
1043
+ "id": "W40",
1044
+ "reason": "Egress IPProtocol of -1 is default and generally considered OK"
1045
+ }
1046
+ ]
1047
+ }
1048
+ }
1049
+ },
1050
+ "testfargatekinesisstreamsclusterEA5A2AD7": {
1051
+ "Type": "AWS::ECS::Cluster"
1052
+ },
1053
+ "testfargatekinesisstreamstaskdefTaskRole9811F3BE": {
1054
+ "Type": "AWS::IAM::Role",
1055
+ "Properties": {
1056
+ "AssumeRolePolicyDocument": {
1057
+ "Statement": [
1058
+ {
1059
+ "Action": "sts:AssumeRole",
1060
+ "Effect": "Allow",
1061
+ "Principal": {
1062
+ "Service": "ecs-tasks.amazonaws.com"
1063
+ }
1064
+ }
1065
+ ],
1066
+ "Version": "2012-10-17"
1067
+ }
1068
+ }
1069
+ },
1070
+ "testfargatekinesisstreamstaskdefTaskRoleDefaultPolicyAE7EF3E4": {
1071
+ "Type": "AWS::IAM::Policy",
1072
+ "Properties": {
1073
+ "PolicyDocument": {
1074
+ "Statement": [
1075
+ {
1076
+ "Action": [
1077
+ "kinesis:ListShards",
1078
+ "kinesis:PutRecord",
1079
+ "kinesis:PutRecords"
1080
+ ],
1081
+ "Effect": "Allow",
1082
+ "Resource": {
1083
+ "Fn::GetAtt": [
1084
+ "testfargatekinesisstreamsKinesisStreamD31BD614",
1085
+ "Arn"
1086
+ ]
1087
+ }
1088
+ }
1089
+ ],
1090
+ "Version": "2012-10-17"
1091
+ },
1092
+ "PolicyName": "testfargatekinesisstreamstaskdefTaskRoleDefaultPolicyAE7EF3E4",
1093
+ "Roles": [
1094
+ {
1095
+ "Ref": "testfargatekinesisstreamstaskdefTaskRole9811F3BE"
1096
+ }
1097
+ ]
1098
+ }
1099
+ },
1100
+ "testfargatekinesisstreamstaskdef402FE0B3": {
1101
+ "Type": "AWS::ECS::TaskDefinition",
1102
+ "Properties": {
1103
+ "ContainerDefinitions": [
1104
+ {
1105
+ "Environment": [
1106
+ {
1107
+ "Name": "KINESIS_DATASTREAM_NAME",
1108
+ "Value": {
1109
+ "Ref": "testfargatekinesisstreamsKinesisStreamD31BD614"
1110
+ }
1111
+ }
1112
+ ],
1113
+ "Essential": true,
1114
+ "Image": "nginx",
1115
+ "MemoryReservation": 512,
1116
+ "Name": "test-fargate-kinesisstreams-container",
1117
+ "PortMappings": [
1118
+ {
1119
+ "ContainerPort": 8080,
1120
+ "Protocol": "tcp"
1121
+ }
1122
+ ]
1123
+ }
1124
+ ],
1125
+ "Cpu": "256",
1126
+ "Family": "existingVpctestfargatekinesisstreamstaskdefAAC2A3A2",
1127
+ "Memory": "512",
1128
+ "NetworkMode": "awsvpc",
1129
+ "RequiresCompatibilities": [
1130
+ "FARGATE"
1131
+ ],
1132
+ "TaskRoleArn": {
1133
+ "Fn::GetAtt": [
1134
+ "testfargatekinesisstreamstaskdefTaskRole9811F3BE",
1135
+ "Arn"
1136
+ ]
1137
+ }
1138
+ }
1139
+ },
1140
+ "testfargatekinesisstreamssgBA506AC6": {
1141
+ "Type": "AWS::EC2::SecurityGroup",
1142
+ "Properties": {
1143
+ "GroupDescription": "Construct created security group",
1144
+ "SecurityGroupEgress": [
1145
+ {
1146
+ "CidrIp": "0.0.0.0/0",
1147
+ "Description": "Allow all outbound traffic by default",
1148
+ "IpProtocol": "-1"
1149
+ }
1150
+ ],
1151
+ "VpcId": {
1152
+ "Ref": "Vpc8378EB38"
1153
+ }
1154
+ },
1155
+ "Metadata": {
1156
+ "cfn_nag": {
1157
+ "rules_to_suppress": [
1158
+ {
1159
+ "id": "W5",
1160
+ "reason": "Egress of 0.0.0.0/0 is default and generally considered OK"
1161
+ },
1162
+ {
1163
+ "id": "W40",
1164
+ "reason": "Egress IPProtocol of -1 is default and generally considered OK"
1165
+ }
1166
+ ]
1167
+ }
1168
+ }
1169
+ },
1170
+ "testfargatekinesisstreamsserviceService5AE7AADF": {
1171
+ "Type": "AWS::ECS::Service",
1172
+ "Properties": {
1173
+ "Cluster": {
1174
+ "Ref": "testfargatekinesisstreamsclusterEA5A2AD7"
1175
+ },
1176
+ "DeploymentConfiguration": {
1177
+ "MaximumPercent": 150,
1178
+ "MinimumHealthyPercent": 75
1179
+ },
1180
+ "DesiredCount": 2,
1181
+ "EnableECSManagedTags": false,
1182
+ "LaunchType": "FARGATE",
1183
+ "NetworkConfiguration": {
1184
+ "AwsvpcConfiguration": {
1185
+ "AssignPublicIp": "DISABLED",
1186
+ "SecurityGroups": [
1187
+ {
1188
+ "Fn::GetAtt": [
1189
+ "testfargatekinesisstreamssgBA506AC6",
1190
+ "GroupId"
1191
+ ]
1192
+ }
1193
+ ],
1194
+ "Subnets": [
1195
+ {
1196
+ "Ref": "VpcPrivateSubnet1Subnet536B997A"
1197
+ },
1198
+ {
1199
+ "Ref": "VpcPrivateSubnet2Subnet3788AAA1"
1200
+ },
1201
+ {
1202
+ "Ref": "VpcPrivateSubnet3SubnetF258B56E"
1203
+ }
1204
+ ]
1205
+ }
1206
+ },
1207
+ "PlatformVersion": "LATEST",
1208
+ "TaskDefinition": {
1209
+ "Ref": "testfargatekinesisstreamstaskdef402FE0B3"
1210
+ }
1211
+ }
1212
+ }
1213
+ },
1214
+ "Parameters": {
1215
+ "BootstrapVersion": {
1216
+ "Type": "AWS::SSM::Parameter::Value<String>",
1217
+ "Default": "/cdk-bootstrap/hnb659fds/version",
1218
+ "Description": "Version of the CDK Bootstrap resources in this environment, automatically retrieved from SSM Parameter Store. [cdk:skip]"
1219
+ }
1220
+ },
1221
+ "Rules": {
1222
+ "CheckBootstrapVersion": {
1223
+ "Assertions": [
1224
+ {
1225
+ "Assert": {
1226
+ "Fn::Not": [
1227
+ {
1228
+ "Fn::Contains": [
1229
+ [
1230
+ "1",
1231
+ "2",
1232
+ "3",
1233
+ "4",
1234
+ "5"
1235
+ ],
1236
+ {
1237
+ "Ref": "BootstrapVersion"
1238
+ }
1239
+ ]
1240
+ }
1241
+ ]
1242
+ },
1243
+ "AssertDescription": "CDK bootstrap stack version 6 required. Please run 'cdk bootstrap' with a recent version of the CDK CLI."
1244
+ }
1245
+ ]
1246
+ }
1247
+ }
1248
+ }