@awsless/awsless 0.0.404 → 0.0.405

package/README.MD

@@ -186,7 +186,7 @@ We use AWS SNS to provide serverless pubsub topics.
 }
 ```
 
-## Realtime
+## Pubsub
 
 We use AWS IoT to provide a serverless mqtt pubsub channel.
 

package/dist/bin.js

@@ -7413,7 +7413,7 @@ var line = (message) => {
 };
 var table = (props) => {
   console.log(color.line("\u2502"));
-  const table3 = new Table({
+  const table2 = new Table({
     // wordWrap: true,
     // wrapOnWordBoundary: false,
     // truncate: '...',
@@ -7436,7 +7436,7 @@ var table = (props) => {
       // 'right-mid': '',
     }
   });
-  table3.push(
+  table2.push(
     ...props.body.map(
       (row) => row.map((v) => {
         if (typeof v === "boolean") {
@@ -7446,7 +7446,7 @@ var table = (props) => {
       })
     )
   );
-  return table3.toString();
+  return table2.toString();
 };
 
 // src/cli/ui/complex/bootstrap-awsless.ts
@@ -7512,12 +7512,12 @@ var createStateBucket = (client, accountId) => {
 var bootstrapAwsless = async (props) => {
   const dynamo = new DynamoDB(props);
   const s3 = new S3Client(props);
-  const [table3, bucket] = await Promise.all([
+  const [table2, bucket] = await Promise.all([
     //
     hasLockTable(dynamo),
     hasStateBucket(s3, props.accountId)
   ]);
-  if (!table3 || !bucket) {
+  if (!table2 || !bucket) {
     log.warn(`Awsless hasn't been bootstrapped yet.`);
     if (!process.env.SKIP_PROMPT) {
       const confirmed = await confirm({
@@ -7528,7 +7528,7 @@ var bootstrapAwsless = async (props) => {
       }
     }
     await task("Bootstrapping", async (update) => {
-      if (!table3) {
+      if (!table2) {
         await createLockTable(dynamo);
       }
       if (!bucket) {
@@ -12302,7 +12302,7 @@ var pubsubFeature = defineFeature({
       });
       if (props.domain) {
         const domainName = formatFullDomainName(ctx.appConfig, props.domain, props.subDomain);
-        new aws13.iot.DomainConfiguration(group, "domain", {
+        const domain = new aws13.iot.DomainConfiguration(group, "domain", {
           name,
           domainName,
           certificates: [ctx.shared.get(`local-certificate-${props.domain}-arn`)],
@@ -12311,6 +12311,7 @@ var pubsubFeature = defineFeature({
           }
           // validationCertificate: ctx.shared.get(`global-certificate-${props.domain}-arn`),
         });
+        domain.dependsOn(authorizer);
         new aws13.route53.RecordSet(group, "record", {
           hostedZoneId: ctx.shared.get(`hosted-zone-${props.domain}-id`),
           name: domainName,
@@ -13378,14 +13379,14 @@ var tableFeature = defineFeature({
         resourceName: id
       });
       const deletionProtection = props.deletionProtection ?? ctx.appConfig.defaults.table?.deletionProtection;
-      const table3 = new aws22.dynamodb.Table(group, "table", {
+      const table2 = new aws22.dynamodb.Table(group, "table", {
         ...props,
         name,
         stream: props.stream?.type,
         deletionProtection
       });
       if (deletionProtection) {
-        table3.deletionPolicy = "retain";
+        table2.deletionPolicy = "retain";
       }
       if (props.stream) {
         const { lambda, policy } = createLambdaFunction(group, ctx, "table", id, props.stream.consumer);
@@ -13393,7 +13394,7 @@ var tableFeature = defineFeature({
         const onFailure = getGlobalOnFailure(ctx);
         const source = new aws22.lambda.EventSourceMapping(group, id, {
           functionArn: lambda.arn,
-          sourceArn: table3.streamArn,
+          sourceArn: table2.streamArn,
           batchSize: 100,
           bisectBatchOnError: true,
           // retryAttempts: props.stream.consumer.retryAttempts ?? -1,
@@ -13401,7 +13402,7 @@ var tableFeature = defineFeature({
           startingPosition: "latest",
           onFailure
         });
-        policy.addStatement(table3.streamPermissions);
+        policy.addStatement(table2.streamPermissions);
         source.dependsOn(policy);
         if (onFailure) {
           policy.addStatement({
@@ -13411,7 +13412,7 @@ var tableFeature = defineFeature({
         }
       }
       ctx.onStackPolicy((policy) => {
-        policy.addStatement(...table3.permissions);
+        policy.addStatement(...table2.permissions);
       });
     }
   }
@@ -13660,12 +13661,12 @@ var vpcFeature = defineFeature({
     const zones = ["a", "b"];
     const tables = [privateRouteTable, publicRouteTable];
     let block = 0n;
-    for (const table3 of tables) {
+    for (const table2 of tables) {
       for (const i in zones) {
         const index = Number(i) + 1;
-        const id = `${table3.identifier}-${index}`;
+        const id = `${table2.identifier}-${index}`;
         const subnet = new aws24.ec2.Subnet(group, id, {
-          name: `${ctx.app.name}--${table3.identifier}-${index}`,
+          name: `${ctx.app.name}--${table2.identifier}-${index}`,
           vpcId: vpc.id,
           cidrBlock: aws24.ec2.Peer.ipv4(`10.0.${block++}.0/24`),
           // ipv6CidrBlock: aws.ec2.Peer.ipv6(`fd00:10:20:${++block}::/64`),
@@ -13674,14 +13675,14 @@ var vpcFeature = defineFeature({
           // ipv6CidrBlock: slices.apply(list => aws.ec2.Peer.ipv6(list.get(block++).toString())),
           // assignIpv6AddressOnCreation: true,
           // ipv6Native: true,
-          mapPublicIpOnLaunch: table3.identifier === "public",
+          mapPublicIpOnLaunch: table2.identifier === "public",
           availabilityZone: ctx.appConfig.region + zones[i]
         });
         new aws24.ec2.SubnetRouteTableAssociation(group, id, {
-          routeTableId: table3.id,
+          routeTableId: table2.id,
           subnetId: subnet.id
         });
-        ctx.shared.set(`vpc-${table3.identifier}-subnet-id-${index}`, subnet.id);
+        ctx.shared.set(`vpc-${table2.identifier}-subnet-id-${index}`, subnet.id);
       }
     }
   }
@@ -15112,7 +15113,6 @@ var list3 = (program2) => {
       const credentials = getCredentials(appConfig.profile);
       const accountId = await getAccountId(credentials, region);
       const { app } = createApp({ appConfig, stackConfigs, accountId });
-      const resources = [];
       const formatResource = (stack, urn) => {
         return urn.replace(stack.urn + ":", "").replace(/\{([a-z0-9\-\s\/\._]+)\}/gi, (_, v) => {
           return `${color.dim("{")}${color.warning(v)}${color.dim("}")}`;

package/dist/server.js

@@ -406,35 +406,45 @@ var pubsubAuthorizerResponse = (props) => {
         Resource: props.subscribe.map((topic) => {
           return `${prefix}:topicfilter/${getPubSubTopic(topic)}`;
         })
-      },
-      {
-        Action: "iot:Receive",
-        Effect: "Allow",
-        Resource: props.subscribe.map((topic) => {
-          return `${prefix}:topic/${getPubSubTopic(topic)}`;
-        })
       }
+      // {
+      // 	Action: 'iot:Receive',
+      // 	Effect: 'Allow',
+      // 	Resource: props.subscribe.map(topic => {
+      // 		return `${prefix}:topic/${getPubSubTopic(topic)}`
+      // 	}),
+      // }
     );
   }
+  const policyDocuments = [
+    {
+      Version: "2012-10-17",
+      Statement: [
+        {
+          Action: "iot:Connect",
+          Effect: "Allow",
+          Resource: "*"
+          // Resource: `${prefix}:client/\${iot:ClientId}`,
+        },
+        {
+          Action: "iot:Receive",
+          Effect: "Allow",
+          Resource: "*"
+          // Resource: `${prefix}:client/\${iot:ClientId}`,
+        },
+        ...statements
+      ]
+    }
+  ];
+  if (JSON.stringify(policyDocuments).length > 2048) {
+    throw new Error("IoT Policy is too large");
+  }
   return {
     isAuthenticated: props.authorized,
     principalId: props.principalId ?? Date.now().toString(),
     disconnectAfterInSeconds: Number(toSeconds(props.disconnectAfter ?? hours(1))),
     refreshAfterInSeconds: Number(toSeconds(props.disconnectAfter ?? hours(1))),
-    policyDocuments: [
-      {
-        Version: "2012-10-17",
-        Statement: [
-          {
-            Action: "iot:Connect",
-            Effect: "Allow",
-            Resource: "*"
-            // Resource: `${prefix}:client/\${iot:ClientId}`,
-          },
-          ...statements
-        ]
-      }
-    ]
+    policyDocuments
   };
 };
 

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@awsless/awsless",
-  "version": "0.0.404",
+  "version": "0.0.405",
   "license": "MIT",
   "type": "module",
   "sideEffects": false,
@@ -28,17 +28,17 @@
     }
   },
   "peerDependencies": {
-    "@awsless/iot": "^0.0.2",
     "@awsless/lambda": "^0.0.27",
-    "@awsless/mqtt": "^0.0.2",
     "@awsless/open-search": "^0.0.15",
-    "@awsless/redis": "^0.0.13",
     "@awsless/sns": "^0.0.7",
-    "@awsless/s3": "^0.0.18",
+    "@awsless/redis": "^0.0.13",
     "@awsless/sqs": "^0.0.7",
-    "@awsless/ssm": "^0.0.7",
+    "@awsless/iot": "^0.0.2",
     "@awsless/validate": "^0.0.16",
-    "@awsless/weak-cache": "^0.0.1"
+    "@awsless/ssm": "^0.0.7",
+    "@awsless/weak-cache": "^0.0.1",
+    "@awsless/s3": "^0.0.18",
+    "@awsless/mqtt": "^0.0.2"
   },
   "dependencies": {
     "@arcanyx/cidr-slicer": "^0.3.0",
@@ -113,12 +113,12 @@
     "zod": "^3.21.4",
     "zod-to-json-schema": "^3.22.3",
     "@awsless/code": "^0.0.10",
+    "@awsless/size": "^0.0.1",
+    "@awsless/validate": "^0.0.16",
     "@awsless/duration": "^0.0.1",
     "@awsless/formation": "^0.0.57",
-    "@awsless/graphql": "^0.0.9",
     "@awsless/ts-file-cache": "^0.0.10",
-    "@awsless/validate": "^0.0.16",
-    "@awsless/size": "^0.0.1"
+    "@awsless/graphql": "^0.0.9"
   },
   "devDependencies": {
     "@node-rs/bcrypt": "^1.10.5"