@cloud-copilot/iam-convert 0.1.4 → 0.1.6
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- package/README.md +4 -1
- package/dist/cjs/cli.js +23 -5
- package/dist/cjs/cli.js.map +1 -1
- package/dist/cjs/convert.d.ts +3 -3
- package/dist/cjs/convert.d.ts.map +1 -1
- package/dist/cjs/convert.js +4 -5
- package/dist/cjs/convert.js.map +1 -1
- package/dist/cjs/converters/cdkPython.d.ts +34 -0
- package/dist/cjs/converters/cdkPython.d.ts.map +1 -0
- package/dist/cjs/converters/cdkPython.js +198 -0
- package/dist/cjs/converters/cdkPython.js.map +1 -0
- package/dist/cjs/converters/cdkTypescript.d.ts +3 -2
- package/dist/cjs/converters/cdkTypescript.d.ts.map +1 -1
- package/dist/cjs/converters/cdkTypescript.js +4 -4
- package/dist/cjs/converters/cdkTypescript.js.map +1 -1
- package/dist/cjs/converters/converter.d.ts +4 -1
- package/dist/cjs/converters/converter.d.ts.map +1 -1
- package/dist/cjs/converters/terraform.d.ts +3 -1
- package/dist/cjs/converters/terraform.d.ts.map +1 -1
- package/dist/cjs/converters/terraform.js +3 -2
- package/dist/cjs/converters/terraform.js.map +1 -1
- package/dist/esm/cli.js +23 -5
- package/dist/esm/cli.js.map +1 -1
- package/dist/esm/convert.d.ts +3 -3
- package/dist/esm/convert.d.ts.map +1 -1
- package/dist/esm/convert.js +4 -5
- package/dist/esm/convert.js.map +1 -1
- package/dist/esm/converters/cdkPython.d.ts +34 -0
- package/dist/esm/converters/cdkPython.d.ts.map +1 -0
- package/dist/esm/converters/cdkPython.js +194 -0
- package/dist/esm/converters/cdkPython.js.map +1 -0
- package/dist/esm/converters/cdkTypescript.d.ts +3 -2
- package/dist/esm/converters/cdkTypescript.d.ts.map +1 -1
- package/dist/esm/converters/cdkTypescript.js +4 -4
- package/dist/esm/converters/cdkTypescript.js.map +1 -1
- package/dist/esm/converters/converter.d.ts +4 -1
- package/dist/esm/converters/converter.d.ts.map +1 -1
- package/dist/esm/converters/terraform.d.ts +3 -1
- package/dist/esm/converters/terraform.d.ts.map +1 -1
- package/dist/esm/converters/terraform.js +3 -2
- package/dist/esm/converters/terraform.js.map +1 -1
- package/package.json +1 -1
package/README.md
CHANGED
|
@@ -6,7 +6,10 @@ CLI and Node Library to convert JSON IAM Policy Documents to other formats for I
|
|
|
6
6
|
|
|
7
7
|
## Available Formats
|
|
8
8
|
|
|
9
|
-
- Terraform - an aws_iam_policy_document data source
|
|
9
|
+
- Terraform (tf) - an [aws_iam_policy_document](https://registry.terraform.io/providers/hashicorp/aws/latest/docs/data-sources/iam_policy_document) data source
|
|
10
|
+
- CloudFormation (cf) - a [PolicyDocument](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-iam-policy.html) resource in yaml
|
|
11
|
+
- Typescript CDK (cdk-ts) - an [iam.PolicyDocument](https://docs.aws.amazon.com/cdk/api/v2/docs/aws-cdk-lib.aws_iam.PolicyDocument.html) from AWS CDK V2 aws-cdk-lib/aws-iam
|
|
12
|
+
- Python CDK (cdk-py) - a [PolicyDocument](https://docs.aws.amazon.com/cdk/api/v2/python/aws_cdk.aws_iam/PolicyDocument.html) using AWS CDK V2 aws_cdk.aws_iam
|
|
10
13
|
|
|
11
14
|
## Installation
|
|
12
15
|
|
package/dist/cjs/cli.js
CHANGED
|
@@ -8,9 +8,15 @@ const convert_js_1 = require("./convert.js");
|
|
|
8
8
|
const json_js_1 = require("./util/json.js");
|
|
9
9
|
async function run() {
|
|
10
10
|
const cli = (0, cli_1.parseCliArguments)('iam-convert', {}, {
|
|
11
|
+
indentWith: {
|
|
12
|
+
description: 'The character to use for indentation, defaults to spaces',
|
|
13
|
+
type: 'enum',
|
|
14
|
+
values: 'single',
|
|
15
|
+
validValues: ['spaces', 'tabs']
|
|
16
|
+
},
|
|
11
17
|
indentBy: {
|
|
12
|
-
description: 'The
|
|
13
|
-
type: '
|
|
18
|
+
description: 'The number of indent characters to use, defaults to 2 for spaces and 1 for tabs',
|
|
19
|
+
type: 'number',
|
|
14
20
|
values: 'single'
|
|
15
21
|
},
|
|
16
22
|
lineSeparator: {
|
|
@@ -23,12 +29,17 @@ async function run() {
|
|
|
23
29
|
description: 'The format to convert to',
|
|
24
30
|
type: 'enum',
|
|
25
31
|
values: 'single',
|
|
26
|
-
validValues: ['tf', 'cf', 'cdk-ts']
|
|
32
|
+
validValues: ['tf', 'cf', 'cdk-ts', 'cdk-py']
|
|
27
33
|
},
|
|
28
34
|
file: {
|
|
29
35
|
description: 'A file to read the policy from. If not provided, stdin is used',
|
|
30
36
|
type: 'string',
|
|
31
37
|
values: 'single'
|
|
38
|
+
},
|
|
39
|
+
variableName: {
|
|
40
|
+
description: 'The variable name to use for the policy variable, default is different for each format',
|
|
41
|
+
type: 'string',
|
|
42
|
+
values: 'single'
|
|
32
43
|
}
|
|
33
44
|
}, {
|
|
34
45
|
expectOperands: false
|
|
@@ -65,8 +76,9 @@ async function run() {
|
|
|
65
76
|
const policy = (0, iam_policy_1.loadPolicy)(json);
|
|
66
77
|
const format = cli.args.format || 'tf';
|
|
67
78
|
const result = (0, convert_js_1.convert)(policy, format, {
|
|
68
|
-
indentBy: cli.args.indentBy,
|
|
69
|
-
lineSeparator: cli.args.lineSeparator == 'crlf' ? `\r\n` : undefined
|
|
79
|
+
indentBy: getIndent(cli.args.indentWith, cli.args.indentBy),
|
|
80
|
+
lineSeparator: cli.args.lineSeparator == 'crlf' ? `\r\n` : undefined,
|
|
81
|
+
variableName: cli.args.variableName
|
|
70
82
|
});
|
|
71
83
|
console.log(result);
|
|
72
84
|
}
|
|
@@ -77,4 +89,10 @@ run()
|
|
|
77
89
|
})
|
|
78
90
|
.then(() => { })
|
|
79
91
|
.finally(() => { });
|
|
92
|
+
function getIndent(indentWith, indentBy) {
|
|
93
|
+
if (indentWith === 'tabs') {
|
|
94
|
+
return '\t'.repeat(indentBy == undefined ? 1 : indentBy);
|
|
95
|
+
}
|
|
96
|
+
return ' '.repeat(indentBy == undefined ? 2 : indentBy);
|
|
97
|
+
}
|
|
80
98
|
//# sourceMappingURL=cli.js.map
|
package/dist/cjs/cli.js.map
CHANGED
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"cli.js","sourceRoot":"","sources":["../../src/cli.ts"],"names":[],"mappings":";;;AAEA,4CAAiE;AACjE,0DAA4E;AAC5E,2BAA6C;AAC7C,6CAAsC;AACtC,4CAA6C;AAE7C,KAAK,UAAU,GAAG;IAChB,MAAM,GAAG,GAAG,IAAA,uBAAiB,EAC3B,aAAa,EACb,EAAE,EACF;QACE,QAAQ,EAAE;YACR,WAAW,EACT,
|
|
1
|
+
{"version":3,"file":"cli.js","sourceRoot":"","sources":["../../src/cli.ts"],"names":[],"mappings":";;;AAEA,4CAAiE;AACjE,0DAA4E;AAC5E,2BAA6C;AAC7C,6CAAsC;AACtC,4CAA6C;AAE7C,KAAK,UAAU,GAAG;IAChB,MAAM,GAAG,GAAG,IAAA,uBAAiB,EAC3B,aAAa,EACb,EAAE,EACF;QACE,UAAU,EAAE;YACV,WAAW,EAAE,0DAA0D;YACvE,IAAI,EAAE,MAAM;YACZ,MAAM,EAAE,QAAQ;YAChB,WAAW,EAAE,CAAC,QAAQ,EAAE,MAAM,CAAC;SAChC;QACD,QAAQ,EAAE;YACR,WAAW,EACT,iFAAiF;YACnF,IAAI,EAAE,QAAQ;YACd,MAAM,EAAE,QAAQ;SACjB;QACD,aAAa,EAAE;YACb,WAAW,EACT,oGAAoG;YACtG,IAAI,EAAE,MAAM;YACZ,MAAM,EAAE,QAAQ;YAChB,WAAW,EAAE,CAAC,IAAI,EAAE,MAAM,CAAC;SAC5B;QACD,MAAM,EAAE;YACN,WAAW,EAAE,0BAA0B;YACvC,IAAI,EAAE,MAAM;YACZ,MAAM,EAAE,QAAQ;YAChB,WAAW,EAAE,CAAC,IAAI,EAAE,IAAI,EAAE,QAAQ,EAAE,QAAQ,CAAC;SAC9C;QACD,IAAI,EAAE;YACJ,WAAW,EAAE,gEAAgE;YAC7E,IAAI,EAAE,QAAQ;YACd,MAAM,EAAE,QAAQ;SACjB;QACD,YAAY,EAAE;YACZ,WAAW,EACT,wFAAwF;YAC1F,IAAI,EAAE,QAAQ;YACd,MAAM,EAAE,QAAQ;SACjB;KACO,EACV;QACE,cAAc,EAAE,KAAK;KACtB,CACF,CAAA;IAED,IAAI,cAAc,GAAuB,SAAS,CAAA;IAElD,IAAI,GAAG,CAAC,IAAI,CAAC,IAAI,EAAE,CAAC;QAClB,MAAM,UAAU,GAAG,IAAA,eAAU,EAAC,GAAG,CAAC,IAAI,CAAC,IAAI,CAAC,CAAA;QAC5C,IAAI,CAAC,UAAU,EAAE,CAAC;YAChB,OAAO,CAAC,KAAK,CAAC,QAAQ,GAAG,CAAC,IAAI,CAAC,IAAI,iBAAiB,CAAC,CAAA;YACrD,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC,CAAA;QACjB,CAAC;QACD,cAAc,GAAG,IAAA,iBAAY,EAAC,GAAG,CAAC,IAAI,CAAC,IAAI,EAAE,OAAO,CAAC,CAAA;IACvD,CAAC;SAAM,CAAC;QACN,MAAM,KAAK,GAAG,MAAM,IAAA,eAAS,EAAC,SAAS,CAAC,CAAA;QAExC,IAAI,CAAC,KAAK,EAAE,CAAC;YACX,OAAO,CAAC,KAAK,CACX,uFAAuF,CACxF,CAAA;YACD,GAAG,CAAC,SAAS,EAAE,CAAA;YACf,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC,CAAA;QACjB,CAAC;QACD,cAAc,GAAG,KAAK,CAAA;IACxB,CAAC;IAED,MAAM,IAAI,GAAG,IAAA,sBAAY,EAAC,cAAc,CAAC,CAAA;IACzC,IAAI,CAAC,IAAI,EAAE,CAAC;QACV,OAAO,CAAC,KAAK,CAAC,uBAAuB,CAAC,CAAA;QACtC,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC,CAAA;IACjB,CAAC;IACD,MAAM,YAAY,GAAG,IAAA,iCAAoB,EAAC,IAAI,CAAC,CAAA;IAC/C,IAAI,YAAY,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;QAC5B,OAAO,CAAC,KAAK,CAAC,yBAAyB,CAAC,CAAA;QACxC,OAAO,CAAC,KAAK,CAAC,YAAY,CAAC,CAAA;QAC3B,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC,CAAA;IACjB,CAAC;IAED,MAAM,MAAM,GAAG,IAAA,uBAAU,EAAC,IAAI,CAAC,CAAA;IAC/B,MAAM,MAAM,GAAG,GAAG,CAAC,IAAI,CAAC,MAAM,IAAI,IAAI,CAAA;IACtC,MAAM,MAAM,GAAG,IAAA,oBAAO,EAAC,MAAM,EAAE,MAAM,EAAE;QACrC,QAAQ,EAAE,SAAS,CAAC,GAAG,CAAC,IAAI,CAAC,UAAU,EAAE,GAAG,CAAC,IAAI,CAAC,QAAQ,CAAC;QAC3D,aAAa,EAAE,GAAG,CAAC,IAAI,CAAC,aAAa,IAAI,MAAM,CAAC,CAAC,CAAC,MAAM,CAAC,CAAC,CAAC,SAAS;QACpE,YAAY,EAAE,GAAG,CAAC,IAAI,CAAC,YAAY;KACpC,CAAC,CAAA;IAEF,OAAO,CAAC,GAAG,CAAC,MAAM,CAAC,CAAA;AACrB,CAAC;AAED,GAAG,EAAE;KACF,KAAK,CAAC,CAAC,CAAC,EAAE,EAAE;IACX,OAAO,CAAC,KAAK,CAAC,CAAC,CAAC,CAAA;IAChB,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC,CAAA;AACjB,CAAC,CAAC;KACD,IAAI,CAAC,GAAG,EAAE,GAAE,CAAC,CAAC;KACd,OAAO,CAAC,GAAG,EAAE,GAAE,CAAC,CAAC,CAAA;AAEpB,SAAS,SAAS,CAAC,UAAyC,EAAE,QAA4B;IACxF,IAAI,UAAU,KAAK,MAAM,EAAE,CAAC;QAC1B,OAAO,IAAI,CAAC,MAAM,CAAC,QAAQ,IAAI,SAAS,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,QAAQ,CAAC,CAAA;IAC1D,CAAC;IACD,OAAO,GAAG,CAAC,MAAM,CAAC,QAAQ,IAAI,SAAS,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,QAAQ,CAAC,CAAA;AACzD,CAAC"}
|
package/dist/cjs/convert.d.ts
CHANGED
|
@@ -1,14 +1,13 @@
|
|
|
1
1
|
import { Policy } from '@cloud-copilot/iam-policy';
|
|
2
|
+
import { CdkPythonConverter } from './converters/cdkPython.js';
|
|
2
3
|
import { CdkTypescriptConverter } from './converters/cdkTypescript.js';
|
|
3
4
|
import { CloudFormationConverter } from './converters/cloudFormation.js';
|
|
4
5
|
import { TerraformConverter } from './converters/terraform.js';
|
|
5
6
|
declare const converters: {
|
|
6
|
-
/**
|
|
7
|
-
* Convert to Terraform
|
|
8
|
-
*/
|
|
9
7
|
tf: typeof TerraformConverter;
|
|
10
8
|
cf: typeof CloudFormationConverter;
|
|
11
9
|
'cdk-ts': typeof CdkTypescriptConverter;
|
|
10
|
+
'cdk-py': typeof CdkPythonConverter;
|
|
12
11
|
};
|
|
13
12
|
/**
|
|
14
13
|
* Convert a policy to a string in the specified format
|
|
@@ -21,6 +20,7 @@ declare const converters: {
|
|
|
21
20
|
export declare function convert(policy: Policy, format: keyof typeof converters, options?: {
|
|
22
21
|
indentBy?: string;
|
|
23
22
|
lineSeparator?: string;
|
|
23
|
+
variableName?: string;
|
|
24
24
|
}): string;
|
|
25
25
|
export {};
|
|
26
26
|
//# sourceMappingURL=convert.d.ts.map
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"convert.d.ts","sourceRoot":"","sources":["../../src/convert.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,MAAM,EAAE,MAAM,2BAA2B,CAAA;AAClD,OAAO,EAAE,sBAAsB,EAAE,MAAM,+BAA+B,CAAA;AACtE,OAAO,EAAE,uBAAuB,EAAE,MAAM,gCAAgC,CAAA;AACxE,OAAO,EAAE,kBAAkB,EAAE,MAAM,2BAA2B,CAAA;AAI9D,QAAA,MAAM,UAAU
|
|
1
|
+
{"version":3,"file":"convert.d.ts","sourceRoot":"","sources":["../../src/convert.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,MAAM,EAAE,MAAM,2BAA2B,CAAA;AAClD,OAAO,EAAE,kBAAkB,EAAE,MAAM,2BAA2B,CAAA;AAC9D,OAAO,EAAE,sBAAsB,EAAE,MAAM,+BAA+B,CAAA;AACtE,OAAO,EAAE,uBAAuB,EAAE,MAAM,gCAAgC,CAAA;AACxE,OAAO,EAAE,kBAAkB,EAAE,MAAM,2BAA2B,CAAA;AAI9D,QAAA,MAAM,UAAU;;;;;CAKf,CAAA;AAED;;;;;;;GAOG;AACH,wBAAgB,OAAO,CACrB,MAAM,EAAE,MAAM,EACd,MAAM,EAAE,MAAM,OAAO,UAAU,EAC/B,OAAO,CAAC,EAAE;IAAE,QAAQ,CAAC,EAAE,MAAM,CAAC;IAAC,aAAa,CAAC,EAAE,MAAM,CAAC;IAAC,YAAY,CAAC,EAAE,MAAM,CAAA;CAAE,GAC7E,MAAM,CAWR"}
|
package/dist/cjs/convert.js
CHANGED
|
@@ -1,18 +1,17 @@
|
|
|
1
1
|
"use strict";
|
|
2
2
|
Object.defineProperty(exports, "__esModule", { value: true });
|
|
3
3
|
exports.convert = convert;
|
|
4
|
+
const cdkPython_js_1 = require("./converters/cdkPython.js");
|
|
4
5
|
const cdkTypescript_js_1 = require("./converters/cdkTypescript.js");
|
|
5
6
|
const cloudFormation_js_1 = require("./converters/cloudFormation.js");
|
|
6
7
|
const terraform_js_1 = require("./converters/terraform.js");
|
|
7
8
|
const defaults_js_1 = require("./defaults.js");
|
|
8
9
|
const StringBuffer_js_1 = require("./util/StringBuffer.js");
|
|
9
10
|
const converters = {
|
|
10
|
-
/**
|
|
11
|
-
* Convert to Terraform
|
|
12
|
-
*/
|
|
13
11
|
tf: terraform_js_1.TerraformConverter,
|
|
14
12
|
cf: cloudFormation_js_1.CloudFormationConverter,
|
|
15
|
-
'cdk-ts': cdkTypescript_js_1.CdkTypescriptConverter
|
|
13
|
+
'cdk-ts': cdkTypescript_js_1.CdkTypescriptConverter,
|
|
14
|
+
'cdk-py': cdkPython_js_1.CdkPythonConverter
|
|
16
15
|
};
|
|
17
16
|
/**
|
|
18
17
|
* Convert a policy to a string in the specified format
|
|
@@ -29,7 +28,7 @@ function convert(policy, format, options) {
|
|
|
29
28
|
options = { ...defaults_js_1.defaultOptions, ...(options || {}) };
|
|
30
29
|
const converter = new converters[format]();
|
|
31
30
|
const stringBuffer = new StringBuffer_js_1.StringBuffer(options.indentBy, options.lineSeparator);
|
|
32
|
-
converter.convert(policy, stringBuffer);
|
|
31
|
+
converter.convert(policy, stringBuffer, { variableName: options.variableName });
|
|
33
32
|
return stringBuffer.toString();
|
|
34
33
|
}
|
|
35
34
|
//# sourceMappingURL=convert.js.map
|
package/dist/cjs/convert.js.map
CHANGED
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"convert.js","sourceRoot":"","sources":["../../src/convert.ts"],"names":[],"mappings":";;
|
|
1
|
+
{"version":3,"file":"convert.js","sourceRoot":"","sources":["../../src/convert.ts"],"names":[],"mappings":";;AAuBA,0BAeC;AArCD,4DAA8D;AAC9D,oEAAsE;AACtE,sEAAwE;AACxE,4DAA8D;AAC9D,+CAA8C;AAC9C,4DAAqD;AAErD,MAAM,UAAU,GAAG;IACjB,EAAE,EAAE,iCAAkB;IACtB,EAAE,EAAE,2CAAuB;IAC3B,QAAQ,EAAE,yCAAsB;IAChC,QAAQ,EAAE,iCAAkB;CAC7B,CAAA;AAED;;;;;;;GAOG;AACH,SAAgB,OAAO,CACrB,MAAc,EACd,MAA+B,EAC/B,OAA8E;IAE9E,IAAI,CAAC,UAAU,CAAC,MAAM,CAAC,EAAE,CAAC;QACxB,MAAM,IAAI,KAAK,CAAC,uBAAuB,MAAM,EAAE,CAAC,CAAA;IAClD,CAAC;IAED,OAAO,GAAG,EAAE,GAAG,4BAAc,EAAE,GAAG,CAAC,OAAO,IAAI,EAAE,CAAC,EAAE,CAAA;IAEnD,MAAM,SAAS,GAAG,IAAI,UAAU,CAAC,MAAM,CAAC,EAAE,CAAA;IAC1C,MAAM,YAAY,GAAG,IAAI,8BAAY,CAAC,OAAO,CAAC,QAAQ,EAAE,OAAO,CAAC,aAAa,CAAC,CAAA;IAC9E,SAAS,CAAC,OAAO,CAAC,MAAM,EAAE,YAAY,EAAE,EAAE,YAAY,EAAE,OAAO,CAAC,YAAY,EAAE,CAAC,CAAA;IAC/E,OAAO,YAAY,CAAC,QAAQ,EAAE,CAAA;AAChC,CAAC"}
|
|
@@ -0,0 +1,34 @@
|
|
|
1
|
+
import { Policy } from '@cloud-copilot/iam-policy';
|
|
2
|
+
import { StringBuffer } from '../util/StringBuffer.js';
|
|
3
|
+
import { Converter } from './converter.js';
|
|
4
|
+
/**
|
|
5
|
+
* Converts an IAM policy into Python code for AWS CDK (using `aws_cdk.aws_iam`).
|
|
6
|
+
* Produces something like:
|
|
7
|
+
*
|
|
8
|
+
*/
|
|
9
|
+
export declare class CdkPythonConverter implements Converter {
|
|
10
|
+
convert(policy: Policy, sb: StringBuffer, options?: {
|
|
11
|
+
variableName?: string;
|
|
12
|
+
}): void;
|
|
13
|
+
private convertActions;
|
|
14
|
+
private convertResources;
|
|
15
|
+
/**
|
|
16
|
+
* Convert Principals into Python code, e.g. `[iam.ArnPrincipal("arn..."), iam.ServicePrincipal("...")]`.
|
|
17
|
+
*
|
|
18
|
+
* If `*` is present (and singled out by your policy logic), we use `iam.AnyPrincipal()`.
|
|
19
|
+
* Otherwise, we pick principal classes based on `principal.type()`.
|
|
20
|
+
*/
|
|
21
|
+
private convertPrincipals;
|
|
22
|
+
/**
|
|
23
|
+
* Convert conditions into a Python dict structure, e.g.
|
|
24
|
+
*
|
|
25
|
+
* conditions={
|
|
26
|
+
* "StringEquals": {
|
|
27
|
+
* "aws:username": "FoxMulder",
|
|
28
|
+
* "aws:someKey": ["val1","val2"]
|
|
29
|
+
* }
|
|
30
|
+
* }
|
|
31
|
+
*/
|
|
32
|
+
private convertConditions;
|
|
33
|
+
}
|
|
34
|
+
//# sourceMappingURL=cdkPython.d.ts.map
|
|
@@ -0,0 +1 @@
|
|
|
1
|
+
{"version":3,"file":"cdkPython.d.ts","sourceRoot":"","sources":["../../../src/converters/cdkPython.ts"],"names":[],"mappings":"AAAA,OAAO,EAAqB,MAAM,EAAuB,MAAM,2BAA2B,CAAA;AAC1F,OAAO,EAAE,YAAY,EAAE,MAAM,yBAAyB,CAAA;AACtD,OAAO,EAAE,SAAS,EAAE,MAAM,gBAAgB,CAAA;AAE1C;;;;GAIG;AACH,qBAAa,kBAAmB,YAAW,SAAS;IAClD,OAAO,CAAC,MAAM,EAAE,MAAM,EAAE,EAAE,EAAE,YAAY,EAAE,OAAO,CAAC,EAAE;QAAE,YAAY,CAAC,EAAE,MAAM,CAAA;KAAE;IAmE7E,OAAO,CAAC,cAAc;IAiBtB,OAAO,CAAC,gBAAgB;IAiBxB;;;;;OAKG;IACH,OAAO,CAAC,iBAAiB;IA8CzB;;;;;;;;;OASG;IACH,OAAO,CAAC,iBAAiB;CAuD1B"}
|
|
@@ -0,0 +1,198 @@
|
|
|
1
|
+
"use strict";
|
|
2
|
+
Object.defineProperty(exports, "__esModule", { value: true });
|
|
3
|
+
exports.CdkPythonConverter = void 0;
|
|
4
|
+
/**
|
|
5
|
+
* Converts an IAM policy into Python code for AWS CDK (using `aws_cdk.aws_iam`).
|
|
6
|
+
* Produces something like:
|
|
7
|
+
*
|
|
8
|
+
*/
|
|
9
|
+
class CdkPythonConverter {
|
|
10
|
+
convert(policy, sb, options) {
|
|
11
|
+
// sb.pushLine('import aws_cdk.aws_iam as iam')
|
|
12
|
+
// sb.pushLine('')
|
|
13
|
+
const variableName = options?.variableName || 'policy_document';
|
|
14
|
+
sb.pushLine(`${variableName} = iam.PolicyDocument(`);
|
|
15
|
+
sb.withIndent((docBuffer) => {
|
|
16
|
+
docBuffer.pushLine('statements=[');
|
|
17
|
+
docBuffer.withIndent((statementsBuffer) => {
|
|
18
|
+
const statements = policy.statements();
|
|
19
|
+
statements.forEach((statement, idx) => {
|
|
20
|
+
statementsBuffer.pushLine('iam.PolicyStatement(');
|
|
21
|
+
statementsBuffer.withIndent((stmtBuffer) => {
|
|
22
|
+
// Sid
|
|
23
|
+
if (statement.sid()) {
|
|
24
|
+
stmtBuffer.pushLine(`sid="${statement.sid()}",`);
|
|
25
|
+
}
|
|
26
|
+
if (statement.effect() && !statement.isAllow()) {
|
|
27
|
+
stmtBuffer.pushLine(`effect=Effect.DENY,`);
|
|
28
|
+
}
|
|
29
|
+
// Actions / NotActions
|
|
30
|
+
if (statement.isActionStatement()) {
|
|
31
|
+
this.convertActions(statement.actions(), 'actions', stmtBuffer);
|
|
32
|
+
}
|
|
33
|
+
else if (statement.isNotActionStatement()) {
|
|
34
|
+
// CDK also supports not_actions
|
|
35
|
+
this.convertActions(statement.notActions(), 'not_actions', stmtBuffer);
|
|
36
|
+
}
|
|
37
|
+
// Resources / NotResources
|
|
38
|
+
if (statement.isResourceStatement()) {
|
|
39
|
+
this.convertResources(statement.resources(), 'resources', stmtBuffer);
|
|
40
|
+
}
|
|
41
|
+
else if (statement.isNotResourceStatement()) {
|
|
42
|
+
this.convertResources(statement.notResources(), 'not_resources', stmtBuffer);
|
|
43
|
+
}
|
|
44
|
+
// Principals / NotPrincipals
|
|
45
|
+
if (statement.isPrincipalStatement()) {
|
|
46
|
+
this.convertPrincipals(statement.principals(), 'principals', statement.hasSingleWildcardPrincipal(), stmtBuffer);
|
|
47
|
+
}
|
|
48
|
+
else if (statement.isNotPrincipalStatement()) {
|
|
49
|
+
this.convertPrincipals(statement.notPrincipals(), 'not_principals', statement.hasSingleWildcardNotPrincipal(), stmtBuffer);
|
|
50
|
+
}
|
|
51
|
+
// Conditions
|
|
52
|
+
this.convertConditions(statement.conditions(), stmtBuffer);
|
|
53
|
+
});
|
|
54
|
+
statementsBuffer.pushLine('),'); // end of iam.PolicyStatement
|
|
55
|
+
});
|
|
56
|
+
});
|
|
57
|
+
docBuffer.pushLine('],'); // end of statements array
|
|
58
|
+
});
|
|
59
|
+
sb.pushLine(')'); // end of iam.PolicyDocument
|
|
60
|
+
}
|
|
61
|
+
convertActions(actions, propertyName, sb) {
|
|
62
|
+
if (!actions.length) {
|
|
63
|
+
return;
|
|
64
|
+
}
|
|
65
|
+
sb.pushLine(`${propertyName}=[`);
|
|
66
|
+
sb.withIndent((arrBuffer) => {
|
|
67
|
+
actions.forEach((action) => {
|
|
68
|
+
arrBuffer.pushLine(`"${action.value()}",`);
|
|
69
|
+
});
|
|
70
|
+
});
|
|
71
|
+
sb.pushLine('],');
|
|
72
|
+
}
|
|
73
|
+
convertResources(resources, propertyName, sb) {
|
|
74
|
+
if (!resources.length) {
|
|
75
|
+
return;
|
|
76
|
+
}
|
|
77
|
+
sb.pushLine(`${propertyName}=[`);
|
|
78
|
+
sb.withIndent((arrBuffer) => {
|
|
79
|
+
resources.forEach((res) => {
|
|
80
|
+
arrBuffer.pushLine(`"${res.value()}",`);
|
|
81
|
+
});
|
|
82
|
+
});
|
|
83
|
+
sb.pushLine('],');
|
|
84
|
+
}
|
|
85
|
+
/**
|
|
86
|
+
* Convert Principals into Python code, e.g. `[iam.ArnPrincipal("arn..."), iam.ServicePrincipal("...")]`.
|
|
87
|
+
*
|
|
88
|
+
* If `*` is present (and singled out by your policy logic), we use `iam.AnyPrincipal()`.
|
|
89
|
+
* Otherwise, we pick principal classes based on `principal.type()`.
|
|
90
|
+
*/
|
|
91
|
+
convertPrincipals(principals, propertyName, hasSingleWildcard, sb) {
|
|
92
|
+
if (hasSingleWildcard) {
|
|
93
|
+
sb.pushLine(`${propertyName}=[iam.StarPrincipal()],`);
|
|
94
|
+
return;
|
|
95
|
+
}
|
|
96
|
+
if (!principals.length) {
|
|
97
|
+
return;
|
|
98
|
+
}
|
|
99
|
+
sb.pushLine(`${propertyName}=[`);
|
|
100
|
+
sb.withIndent((arrBuffer) => {
|
|
101
|
+
for (const p of principals) {
|
|
102
|
+
const type = p.type(); // e.g. "AWS", "Service", "Federated", "*"
|
|
103
|
+
const value = p.value();
|
|
104
|
+
let principalCtor;
|
|
105
|
+
if (type === 'AWS') {
|
|
106
|
+
if (value === '*') {
|
|
107
|
+
principalCtor = 'iam.AnyPrincipal()';
|
|
108
|
+
}
|
|
109
|
+
else {
|
|
110
|
+
principalCtor = `iam.ArnPrincipal("${value}")`;
|
|
111
|
+
}
|
|
112
|
+
}
|
|
113
|
+
else if (type === 'Service') {
|
|
114
|
+
principalCtor = `iam.ServicePrincipal("${value}")`;
|
|
115
|
+
}
|
|
116
|
+
else if (type === 'Federated') {
|
|
117
|
+
// e.g. cognito-identity.amazonaws.com
|
|
118
|
+
// in TS: new iam.FederatedPrincipal(..., {...}, "sts.amazonaws.com")
|
|
119
|
+
// in Python, it's iam.FederatedPrincipal(..., {...}, "sts.amazonaws.com")
|
|
120
|
+
// We'll just provide an empty policy document for now.
|
|
121
|
+
principalCtor = `iam.FederatedPrincipal("${value}")`;
|
|
122
|
+
}
|
|
123
|
+
else {
|
|
124
|
+
// fallback
|
|
125
|
+
principalCtor = `iam.ArnPrincipal("${value}")`;
|
|
126
|
+
}
|
|
127
|
+
arrBuffer.pushLine(`${principalCtor},`);
|
|
128
|
+
}
|
|
129
|
+
});
|
|
130
|
+
sb.pushLine('],');
|
|
131
|
+
}
|
|
132
|
+
/**
|
|
133
|
+
* Convert conditions into a Python dict structure, e.g.
|
|
134
|
+
*
|
|
135
|
+
* conditions={
|
|
136
|
+
* "StringEquals": {
|
|
137
|
+
* "aws:username": "FoxMulder",
|
|
138
|
+
* "aws:someKey": ["val1","val2"]
|
|
139
|
+
* }
|
|
140
|
+
* }
|
|
141
|
+
*/
|
|
142
|
+
convertConditions(conditions, sb) {
|
|
143
|
+
if (!conditions.length) {
|
|
144
|
+
return;
|
|
145
|
+
}
|
|
146
|
+
// We'll build a nested object/dict in memory:
|
|
147
|
+
// { operator: { key: string | string[] } }
|
|
148
|
+
const conditionMap = {};
|
|
149
|
+
for (const cond of conditions) {
|
|
150
|
+
const operator = cond.operation().value(); // e.g. "StringEquals", "ForAnyValue:StringLike", etc.
|
|
151
|
+
const key = cond.conditionKey(); // e.g. "aws:username"
|
|
152
|
+
const vals = cond.conditionValues(); // string[]
|
|
153
|
+
if (!conditionMap[operator]) {
|
|
154
|
+
conditionMap[operator] = {};
|
|
155
|
+
}
|
|
156
|
+
if (!conditionMap[operator][key]) {
|
|
157
|
+
conditionMap[operator][key] = vals.length === 1 ? vals[0] : [...vals];
|
|
158
|
+
}
|
|
159
|
+
else {
|
|
160
|
+
// If already present, merge
|
|
161
|
+
const existing = conditionMap[operator][key];
|
|
162
|
+
if (Array.isArray(existing)) {
|
|
163
|
+
existing.push(...vals);
|
|
164
|
+
}
|
|
165
|
+
else {
|
|
166
|
+
conditionMap[operator][key] = [existing, ...vals];
|
|
167
|
+
}
|
|
168
|
+
}
|
|
169
|
+
}
|
|
170
|
+
sb.pushLine('conditions={');
|
|
171
|
+
sb.withIndent((conditionsBuffer) => {
|
|
172
|
+
for (const [op, keyMap] of Object.entries(conditionMap)) {
|
|
173
|
+
conditionsBuffer.pushLine(`"${op}": {`);
|
|
174
|
+
conditionsBuffer.withIndent((opBuffer) => {
|
|
175
|
+
for (const [k, val] of Object.entries(keyMap)) {
|
|
176
|
+
if (Array.isArray(val)) {
|
|
177
|
+
// e.g. "aws:prefix": ["val1", "val2"]
|
|
178
|
+
opBuffer.pushLine(`"${k}": [`);
|
|
179
|
+
opBuffer.withIndent((arrBuffer) => {
|
|
180
|
+
val.forEach((item) => {
|
|
181
|
+
arrBuffer.pushLine(`"${item}",`);
|
|
182
|
+
});
|
|
183
|
+
});
|
|
184
|
+
opBuffer.pushLine('],');
|
|
185
|
+
}
|
|
186
|
+
else {
|
|
187
|
+
opBuffer.pushLine(`"${k}": "${val}",`);
|
|
188
|
+
}
|
|
189
|
+
}
|
|
190
|
+
});
|
|
191
|
+
conditionsBuffer.pushLine('},');
|
|
192
|
+
}
|
|
193
|
+
});
|
|
194
|
+
sb.pushLine('},');
|
|
195
|
+
}
|
|
196
|
+
}
|
|
197
|
+
exports.CdkPythonConverter = CdkPythonConverter;
|
|
198
|
+
//# sourceMappingURL=cdkPython.js.map
|
|
@@ -0,0 +1 @@
|
|
|
1
|
+
{"version":3,"file":"cdkPython.js","sourceRoot":"","sources":["../../../src/converters/cdkPython.ts"],"names":[],"mappings":";;;AAIA;;;;GAIG;AACH,MAAa,kBAAkB;IAC7B,OAAO,CAAC,MAAc,EAAE,EAAgB,EAAE,OAAmC;QAC3E,+CAA+C;QAC/C,kBAAkB;QAElB,MAAM,YAAY,GAAG,OAAO,EAAE,YAAY,IAAI,iBAAiB,CAAA;QAE/D,EAAE,CAAC,QAAQ,CAAC,GAAG,YAAY,wBAAwB,CAAC,CAAA;QACpD,EAAE,CAAC,UAAU,CAAC,CAAC,SAAS,EAAE,EAAE;YAC1B,SAAS,CAAC,QAAQ,CAAC,cAAc,CAAC,CAAA;YAClC,SAAS,CAAC,UAAU,CAAC,CAAC,gBAAgB,EAAE,EAAE;gBACxC,MAAM,UAAU,GAAG,MAAM,CAAC,UAAU,EAAE,CAAA;gBACtC,UAAU,CAAC,OAAO,CAAC,CAAC,SAAS,EAAE,GAAG,EAAE,EAAE;oBACpC,gBAAgB,CAAC,QAAQ,CAAC,sBAAsB,CAAC,CAAA;oBACjD,gBAAgB,CAAC,UAAU,CAAC,CAAC,UAAU,EAAE,EAAE;wBACzC,MAAM;wBACN,IAAI,SAAS,CAAC,GAAG,EAAE,EAAE,CAAC;4BACpB,UAAU,CAAC,QAAQ,CAAC,QAAQ,SAAS,CAAC,GAAG,EAAE,IAAI,CAAC,CAAA;wBAClD,CAAC;wBAED,IAAI,SAAS,CAAC,MAAM,EAAE,IAAI,CAAC,SAAS,CAAC,OAAO,EAAE,EAAE,CAAC;4BAC/C,UAAU,CAAC,QAAQ,CAAC,qBAAqB,CAAC,CAAA;wBAC5C,CAAC;wBAED,uBAAuB;wBACvB,IAAI,SAAS,CAAC,iBAAiB,EAAE,EAAE,CAAC;4BAClC,IAAI,CAAC,cAAc,CAAC,SAAS,CAAC,OAAO,EAAE,EAAE,SAAS,EAAE,UAAU,CAAC,CAAA;wBACjE,CAAC;6BAAM,IAAI,SAAS,CAAC,oBAAoB,EAAE,EAAE,CAAC;4BAC5C,gCAAgC;4BAChC,IAAI,CAAC,cAAc,CAAC,SAAS,CAAC,UAAU,EAAE,EAAE,aAAa,EAAE,UAAU,CAAC,CAAA;wBACxE,CAAC;wBAED,2BAA2B;wBAC3B,IAAI,SAAS,CAAC,mBAAmB,EAAE,EAAE,CAAC;4BACpC,IAAI,CAAC,gBAAgB,CAAC,SAAS,CAAC,SAAS,EAAE,EAAE,WAAW,EAAE,UAAU,CAAC,CAAA;wBACvE,CAAC;6BAAM,IAAI,SAAS,CAAC,sBAAsB,EAAE,EAAE,CAAC;4BAC9C,IAAI,CAAC,gBAAgB,CAAC,SAAS,CAAC,YAAY,EAAE,EAAE,eAAe,EAAE,UAAU,CAAC,CAAA;wBAC9E,CAAC;wBAED,6BAA6B;wBAC7B,IAAI,SAAS,CAAC,oBAAoB,EAAE,EAAE,CAAC;4BACrC,IAAI,CAAC,iBAAiB,CACpB,SAAS,CAAC,UAAU,EAAE,EACtB,YAAY,EACZ,SAAS,CAAC,0BAA0B,EAAE,EACtC,UAAU,CACX,CAAA;wBACH,CAAC;6BAAM,IAAI,SAAS,CAAC,uBAAuB,EAAE,EAAE,CAAC;4BAC/C,IAAI,CAAC,iBAAiB,CACpB,SAAS,CAAC,aAAa,EAAE,EACzB,gBAAgB,EAChB,SAAS,CAAC,6BAA6B,EAAE,EACzC,UAAU,CACX,CAAA;wBACH,CAAC;wBAED,aAAa;wBACb,IAAI,CAAC,iBAAiB,CAAC,SAAS,CAAC,UAAU,EAAE,EAAE,UAAU,CAAC,CAAA;oBAC5D,CAAC,CAAC,CAAA;oBAEF,gBAAgB,CAAC,QAAQ,CAAC,IAAI,CAAC,CAAA,CAAC,6BAA6B;gBAC/D,CAAC,CAAC,CAAA;YACJ,CAAC,CAAC,CAAA;YACF,SAAS,CAAC,QAAQ,CAAC,IAAI,CAAC,CAAA,CAAC,0BAA0B;QACrD,CAAC,CAAC,CAAA;QACF,EAAE,CAAC,QAAQ,CAAC,GAAG,CAAC,CAAA,CAAC,4BAA4B;IAC/C,CAAC;IAEO,cAAc,CACpB,OAAiB,EACjB,YAAuC,EACvC,EAAgB;QAEhB,IAAI,CAAC,OAAO,CAAC,MAAM,EAAE,CAAC;YACpB,OAAM;QACR,CAAC;QACD,EAAE,CAAC,QAAQ,CAAC,GAAG,YAAY,IAAI,CAAC,CAAA;QAChC,EAAE,CAAC,UAAU,CAAC,CAAC,SAAS,EAAE,EAAE;YAC1B,OAAO,CAAC,OAAO,CAAC,CAAC,MAAM,EAAE,EAAE;gBACzB,SAAS,CAAC,QAAQ,CAAC,IAAI,MAAM,CAAC,KAAK,EAAE,IAAI,CAAC,CAAA;YAC5C,CAAC,CAAC,CAAA;QACJ,CAAC,CAAC,CAAA;QACF,EAAE,CAAC,QAAQ,CAAC,IAAI,CAAC,CAAA;IACnB,CAAC;IAEO,gBAAgB,CACtB,SAAqB,EACrB,YAA2C,EAC3C,EAAgB;QAEhB,IAAI,CAAC,SAAS,CAAC,MAAM,EAAE,CAAC;YACtB,OAAM;QACR,CAAC;QACD,EAAE,CAAC,QAAQ,CAAC,GAAG,YAAY,IAAI,CAAC,CAAA;QAChC,EAAE,CAAC,UAAU,CAAC,CAAC,SAAS,EAAE,EAAE;YAC1B,SAAS,CAAC,OAAO,CAAC,CAAC,GAAG,EAAE,EAAE;gBACxB,SAAS,CAAC,QAAQ,CAAC,IAAI,GAAG,CAAC,KAAK,EAAE,IAAI,CAAC,CAAA;YACzC,CAAC,CAAC,CAAA;QACJ,CAAC,CAAC,CAAA;QACF,EAAE,CAAC,QAAQ,CAAC,IAAI,CAAC,CAAA;IACnB,CAAC;IAED;;;;;OAKG;IACK,iBAAiB,CACvB,UAAuB,EACvB,YAA6C,EAC7C,iBAA0B,EAC1B,EAAgB;QAEhB,IAAI,iBAAiB,EAAE,CAAC;YACtB,EAAE,CAAC,QAAQ,CAAC,GAAG,YAAY,yBAAyB,CAAC,CAAA;YACrD,OAAM;QACR,CAAC;QACD,IAAI,CAAC,UAAU,CAAC,MAAM,EAAE,CAAC;YACvB,OAAM;QACR,CAAC;QAED,EAAE,CAAC,QAAQ,CAAC,GAAG,YAAY,IAAI,CAAC,CAAA;QAChC,EAAE,CAAC,UAAU,CAAC,CAAC,SAAS,EAAE,EAAE;YAC1B,KAAK,MAAM,CAAC,IAAI,UAAU,EAAE,CAAC;gBAC3B,MAAM,IAAI,GAAG,CAAC,CAAC,IAAI,EAAE,CAAA,CAAC,0CAA0C;gBAChE,MAAM,KAAK,GAAG,CAAC,CAAC,KAAK,EAAE,CAAA;gBAEvB,IAAI,aAAqB,CAAA;gBACzB,IAAI,IAAI,KAAK,KAAK,EAAE,CAAC;oBACnB,IAAI,KAAK,KAAK,GAAG,EAAE,CAAC;wBAClB,aAAa,GAAG,oBAAoB,CAAA;oBACtC,CAAC;yBAAM,CAAC;wBACN,aAAa,GAAG,qBAAqB,KAAK,IAAI,CAAA;oBAChD,CAAC;gBACH,CAAC;qBAAM,IAAI,IAAI,KAAK,SAAS,EAAE,CAAC;oBAC9B,aAAa,GAAG,yBAAyB,KAAK,IAAI,CAAA;gBACpD,CAAC;qBAAM,IAAI,IAAI,KAAK,WAAW,EAAE,CAAC;oBAChC,sCAAsC;oBACtC,qEAAqE;oBACrE,0EAA0E;oBAC1E,uDAAuD;oBACvD,aAAa,GAAG,2BAA2B,KAAK,IAAI,CAAA;gBACtD,CAAC;qBAAM,CAAC;oBACN,WAAW;oBACX,aAAa,GAAG,qBAAqB,KAAK,IAAI,CAAA;gBAChD,CAAC;gBAED,SAAS,CAAC,QAAQ,CAAC,GAAG,aAAa,GAAG,CAAC,CAAA;YACzC,CAAC;QACH,CAAC,CAAC,CAAA;QACF,EAAE,CAAC,QAAQ,CAAC,IAAI,CAAC,CAAA;IACnB,CAAC;IAED;;;;;;;;;OASG;IACK,iBAAiB,CAAC,UAAuB,EAAE,EAAgB;QACjE,IAAI,CAAC,UAAU,CAAC,MAAM,EAAE,CAAC;YACvB,OAAM;QACR,CAAC;QAED,8CAA8C;QAC9C,2CAA2C;QAC3C,MAAM,YAAY,GAAsD,EAAE,CAAA;QAE1E,KAAK,MAAM,IAAI,IAAI,UAAU,EAAE,CAAC;YAC9B,MAAM,QAAQ,GAAG,IAAI,CAAC,SAAS,EAAE,CAAC,KAAK,EAAE,CAAA,CAAC,sDAAsD;YAChG,MAAM,GAAG,GAAG,IAAI,CAAC,YAAY,EAAE,CAAA,CAAC,sBAAsB;YACtD,MAAM,IAAI,GAAG,IAAI,CAAC,eAAe,EAAE,CAAA,CAAC,WAAW;YAC/C,IAAI,CAAC,YAAY,CAAC,QAAQ,CAAC,EAAE,CAAC;gBAC5B,YAAY,CAAC,QAAQ,CAAC,GAAG,EAAE,CAAA;YAC7B,CAAC;YAED,IAAI,CAAC,YAAY,CAAC,QAAQ,CAAC,CAAC,GAAG,CAAC,EAAE,CAAC;gBACjC,YAAY,CAAC,QAAQ,CAAC,CAAC,GAAG,CAAC,GAAG,IAAI,CAAC,MAAM,KAAK,CAAC,CAAC,CAAC,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,GAAG,IAAI,CAAC,CAAA;YACvE,CAAC;iBAAM,CAAC;gBACN,4BAA4B;gBAC5B,MAAM,QAAQ,GAAG,YAAY,CAAC,QAAQ,CAAC,CAAC,GAAG,CAAC,CAAA;gBAC5C,IAAI,KAAK,CAAC,OAAO,CAAC,QAAQ,CAAC,EAAE,CAAC;oBAC5B,QAAQ,CAAC,IAAI,CAAC,GAAG,IAAI,CAAC,CAAA;gBACxB,CAAC;qBAAM,CAAC;oBACN,YAAY,CAAC,QAAQ,CAAC,CAAC,GAAG,CAAC,GAAG,CAAC,QAAQ,EAAE,GAAG,IAAI,CAAC,CAAA;gBACnD,CAAC;YACH,CAAC;QACH,CAAC;QAED,EAAE,CAAC,QAAQ,CAAC,cAAc,CAAC,CAAA;QAC3B,EAAE,CAAC,UAAU,CAAC,CAAC,gBAAgB,EAAE,EAAE;YACjC,KAAK,MAAM,CAAC,EAAE,EAAE,MAAM,CAAC,IAAI,MAAM,CAAC,OAAO,CAAC,YAAY,CAAC,EAAE,CAAC;gBACxD,gBAAgB,CAAC,QAAQ,CAAC,IAAI,EAAE,MAAM,CAAC,CAAA;gBACvC,gBAAgB,CAAC,UAAU,CAAC,CAAC,QAAQ,EAAE,EAAE;oBACvC,KAAK,MAAM,CAAC,CAAC,EAAE,GAAG,CAAC,IAAI,MAAM,CAAC,OAAO,CAAC,MAAM,CAAC,EAAE,CAAC;wBAC9C,IAAI,KAAK,CAAC,OAAO,CAAC,GAAG,CAAC,EAAE,CAAC;4BACvB,sCAAsC;4BACtC,QAAQ,CAAC,QAAQ,CAAC,IAAI,CAAC,MAAM,CAAC,CAAA;4BAC9B,QAAQ,CAAC,UAAU,CAAC,CAAC,SAAS,EAAE,EAAE;gCAChC,GAAG,CAAC,OAAO,CAAC,CAAC,IAAI,EAAE,EAAE;oCACnB,SAAS,CAAC,QAAQ,CAAC,IAAI,IAAI,IAAI,CAAC,CAAA;gCAClC,CAAC,CAAC,CAAA;4BACJ,CAAC,CAAC,CAAA;4BACF,QAAQ,CAAC,QAAQ,CAAC,IAAI,CAAC,CAAA;wBACzB,CAAC;6BAAM,CAAC;4BACN,QAAQ,CAAC,QAAQ,CAAC,IAAI,CAAC,OAAO,GAAG,IAAI,CAAC,CAAA;wBACxC,CAAC;oBACH,CAAC;gBACH,CAAC,CAAC,CAAA;gBACF,gBAAgB,CAAC,QAAQ,CAAC,IAAI,CAAC,CAAA;YACjC,CAAC;QACH,CAAC,CAAC,CAAA;QACF,EAAE,CAAC,QAAQ,CAAC,IAAI,CAAC,CAAA;IACnB,CAAC;CACF;AA3ND,gDA2NC"}
|
|
@@ -6,12 +6,13 @@ import { Converter } from './converter.js';
|
|
|
6
6
|
* to build a new iam.PolicyDocument with multiple iam.PolicyStatement objects.
|
|
7
7
|
*/
|
|
8
8
|
export declare class CdkTypescriptConverter implements Converter {
|
|
9
|
-
convert(policy: Policy, sb: StringBuffer
|
|
9
|
+
convert(policy: Policy, sb: StringBuffer, options?: {
|
|
10
|
+
variableName?: string;
|
|
11
|
+
}): void;
|
|
10
12
|
private convertActions;
|
|
11
13
|
private convertResources;
|
|
12
14
|
/**
|
|
13
15
|
* For Principals, we create new iam.Principal-based classes (e.g. ArnPrincipal, ServicePrincipal).
|
|
14
|
-
* If a wildcard is found, we can use `new iam.AnyPrincipal()` in the 'principals' array.
|
|
15
16
|
*/
|
|
16
17
|
private convertPrincipals;
|
|
17
18
|
/**
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"cdkTypescript.d.ts","sourceRoot":"","sources":["../../../src/converters/cdkTypescript.ts"],"names":[],"mappings":"AAAA,OAAO,EAAqB,MAAM,EAAuB,MAAM,2BAA2B,CAAA;AAC1F,OAAO,EAAE,YAAY,EAAE,MAAM,yBAAyB,CAAA;AACtD,OAAO,EAAE,SAAS,EAAE,MAAM,gBAAgB,CAAA;AAE1C;;;GAGG;AACH,qBAAa,sBAAuB,YAAW,SAAS;IACtD,OAAO,CAAC,MAAM,EAAE,MAAM,EAAE,EAAE,EAAE,YAAY;
|
|
1
|
+
{"version":3,"file":"cdkTypescript.d.ts","sourceRoot":"","sources":["../../../src/converters/cdkTypescript.ts"],"names":[],"mappings":"AAAA,OAAO,EAAqB,MAAM,EAAuB,MAAM,2BAA2B,CAAA;AAC1F,OAAO,EAAE,YAAY,EAAE,MAAM,yBAAyB,CAAA;AACtD,OAAO,EAAE,SAAS,EAAE,MAAM,gBAAgB,CAAA;AAE1C;;;GAGG;AACH,qBAAa,sBAAuB,YAAW,SAAS;IACtD,OAAO,CAAC,MAAM,EAAE,MAAM,EAAE,EAAE,EAAE,YAAY,EAAE,OAAO,CAAC,EAAE;QAAE,YAAY,CAAC,EAAE,MAAM,CAAA;KAAE;IA6E7E,OAAO,CAAC,cAAc;IAuBtB,OAAO,CAAC,gBAAgB;IAkBxB;;OAEG;IACH,OAAO,CAAC,iBAAiB;IA6CzB;;;;;;;;;;OAUG;IACH,OAAO,CAAC,iBAAiB;CA0D1B"}
|
|
@@ -6,10 +6,11 @@ exports.CdkTypescriptConverter = void 0;
|
|
|
6
6
|
* to build a new iam.PolicyDocument with multiple iam.PolicyStatement objects.
|
|
7
7
|
*/
|
|
8
8
|
class CdkTypescriptConverter {
|
|
9
|
-
convert(policy, sb) {
|
|
9
|
+
convert(policy, sb, options) {
|
|
10
10
|
// sb.pushLine("import * as iam from 'aws-cdk-lib/aws-iam';")
|
|
11
11
|
// sb.pushLine('')
|
|
12
|
-
|
|
12
|
+
const variableName = options?.variableName || 'policyDocument';
|
|
13
|
+
sb.pushLine(`const ${variableName} = new iam.PolicyDocument({`);
|
|
13
14
|
sb.withIndent((docBuffer) => {
|
|
14
15
|
docBuffer.pushLine('statements: [');
|
|
15
16
|
docBuffer.withIndent((stmtsBuffer) => {
|
|
@@ -97,12 +98,11 @@ class CdkTypescriptConverter {
|
|
|
97
98
|
}
|
|
98
99
|
/**
|
|
99
100
|
* For Principals, we create new iam.Principal-based classes (e.g. ArnPrincipal, ServicePrincipal).
|
|
100
|
-
* If a wildcard is found, we can use `new iam.AnyPrincipal()` in the 'principals' array.
|
|
101
101
|
*/
|
|
102
102
|
convertPrincipals(principals, propertyName, hasSingleWildcard, sb) {
|
|
103
103
|
if (hasSingleWildcard) {
|
|
104
104
|
// If it is just "*", then new iam.AnyPrincipal()
|
|
105
|
-
sb.pushLine(`${propertyName}: [new iam.
|
|
105
|
+
sb.pushLine(`${propertyName}: [new iam.StarPrincipal()],`);
|
|
106
106
|
return;
|
|
107
107
|
}
|
|
108
108
|
if (!principals.length) {
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"cdkTypescript.js","sourceRoot":"","sources":["../../../src/converters/cdkTypescript.ts"],"names":[],"mappings":";;;AAIA;;;GAGG;AACH,MAAa,sBAAsB;IACjC,OAAO,CAAC,MAAc,EAAE,EAAgB;
|
|
1
|
+
{"version":3,"file":"cdkTypescript.js","sourceRoot":"","sources":["../../../src/converters/cdkTypescript.ts"],"names":[],"mappings":";;;AAIA;;;GAGG;AACH,MAAa,sBAAsB;IACjC,OAAO,CAAC,MAAc,EAAE,EAAgB,EAAE,OAAmC;QAC3E,6DAA6D;QAC7D,kBAAkB;QAElB,MAAM,YAAY,GAAG,OAAO,EAAE,YAAY,IAAI,gBAAgB,CAAA;QAE9D,EAAE,CAAC,QAAQ,CAAC,SAAS,YAAY,6BAA6B,CAAC,CAAA;QAC/D,EAAE,CAAC,UAAU,CAAC,CAAC,SAAS,EAAE,EAAE;YAC1B,SAAS,CAAC,QAAQ,CAAC,eAAe,CAAC,CAAA;YACnC,SAAS,CAAC,UAAU,CAAC,CAAC,WAAW,EAAE,EAAE;gBACnC,MAAM,UAAU,GAAG,MAAM,CAAC,UAAU,EAAE,CAAA;gBACtC,UAAU,CAAC,OAAO,CAAC,CAAC,SAAS,EAAE,GAAG,EAAE,EAAE;oBACpC,WAAW,CAAC,QAAQ,CAAC,2BAA2B,CAAC,CAAA;oBACjD,WAAW,CAAC,UAAU,CAAC,CAAC,UAAU,EAAE,EAAE;wBACpC,MAAM;wBACN,IAAI,SAAS,CAAC,GAAG,EAAE,EAAE,CAAC;4BACpB,UAAU,CAAC,QAAQ,CAAC,SAAS,SAAS,CAAC,GAAG,EAAE,IAAI,CAAC,CAAA;wBACnD,CAAC;wBAED,sBAAsB;wBACtB,gFAAgF;wBAEhF,MAAM,MAAM,GAAG,SAAS,CAAC,MAAM,EAAE,CAAC,CAAC,CAAC,MAAM,CAAC,CAAC,CAAC,OAAO,CAAA;wBACpD,IAAI,SAAS,CAAC,MAAM,EAAE,EAAE,CAAC;4BACvB,UAAU,CAAC,QAAQ,CAAC,sBAAsB,MAAM,CAAC,WAAW,EAAE,GAAG,CAAC,CAAA;wBACpE,CAAC;wBAED,uBAAuB;wBACvB,IAAI,SAAS,CAAC,iBAAiB,EAAE,EAAE,CAAC;4BAClC,IAAI,CAAC,cAAc,CAAC,SAAS,CAAC,OAAO,EAAE,EAAE,SAAS,EAAE,UAAU,CAAC,CAAA;wBACjE,CAAC;6BAAM,IAAI,SAAS,CAAC,oBAAoB,EAAE,EAAE,CAAC;4BAC5C,iCAAiC;4BACjC,IAAI,CAAC,cAAc,CAAC,SAAS,CAAC,UAAU,EAAE,EAAE,YAAY,EAAE,UAAU,CAAC,CAAA;wBACvE,CAAC;wBAED,2BAA2B;wBAC3B,IAAI,SAAS,CAAC,mBAAmB,EAAE,EAAE,CAAC;4BACpC,IAAI,CAAC,gBAAgB,CAAC,SAAS,CAAC,SAAS,EAAE,EAAE,WAAW,EAAE,UAAU,CAAC,CAAA;wBACvE,CAAC;6BAAM,IAAI,SAAS,CAAC,sBAAsB,EAAE,EAAE,CAAC;4BAC9C,mCAAmC;4BACnC,IAAI,CAAC,gBAAgB,CAAC,SAAS,CAAC,YAAY,EAAE,EAAE,cAAc,EAAE,UAAU,CAAC,CAAA;wBAC7E,CAAC;wBAED,6BAA6B;wBAC7B,IAAI,SAAS,CAAC,oBAAoB,EAAE,EAAE,CAAC;4BACrC,IAAI,CAAC,iBAAiB,CACpB,SAAS,CAAC,UAAU,EAAE,EACtB,YAAY,EACZ,SAAS,CAAC,0BAA0B,EAAE,EACtC,UAAU,CACX,CAAA;wBACH,CAAC;6BAAM,IAAI,SAAS,CAAC,uBAAuB,EAAE,EAAE,CAAC;4BAC/C,IAAI,CAAC,iBAAiB,CACpB,SAAS,CAAC,aAAa,EAAE,EACzB,eAAe,EACf,SAAS,CAAC,6BAA6B,EAAE,EACzC,UAAU,CACX,CAAA;wBACH,CAAC;wBAED,aAAa;wBACb,IAAI,CAAC,iBAAiB,CAAC,SAAS,CAAC,UAAU,EAAE,EAAE,UAAU,CAAC,CAAA;oBAC5D,CAAC,CAAC,CAAA;oBAEF,IAAI,GAAG,KAAK,UAAU,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;wBAClC,WAAW,CAAC,QAAQ,CAAC,IAAI,CAAC,CAAA;oBAC5B,CAAC;yBAAM,CAAC;wBACN,WAAW,CAAC,QAAQ,CAAC,KAAK,CAAC,CAAA;oBAC7B,CAAC;oBACD,8FAA8F;gBAChG,CAAC,CAAC,CAAA;YACJ,CAAC,CAAC,CAAA;YACF,SAAS,CAAC,QAAQ,CAAC,GAAG,CAAC,CAAA;QACzB,CAAC,CAAC,CAAA;QACF,EAAE,CAAC,QAAQ,CAAC,KAAK,CAAC,CAAA;IACpB,CAAC;IAEO,cAAc,CACpB,OAAiB,EACjB,YAAsC,EACtC,EAAgB;QAEhB,IAAI,CAAC,OAAO,CAAC,MAAM,EAAE,CAAC;YACpB,OAAM;QACR,CAAC;QAED,EAAE,CAAC,QAAQ,CAAC,GAAG,YAAY,KAAK,CAAC,CAAA;QACjC,EAAE,CAAC,UAAU,CAAC,CAAC,SAAS,EAAE,EAAE;YAC1B,MAAM,SAAS,GAAG,OAAO,CAAC,MAAM,GAAG,CAAC,CAAA;YACpC,OAAO,CAAC,OAAO,CAAC,CAAC,MAAM,EAAE,KAAK,EAAE,EAAE;gBAChC,IAAI,YAAY,GAAG,IAAI,MAAM,CAAC,KAAK,EAAE,GAAG,CAAA;gBACxC,IAAI,KAAK,GAAG,SAAS,EAAE,CAAC;oBACtB,YAAY,IAAI,GAAG,CAAA;gBACrB,CAAC;gBACD,SAAS,CAAC,QAAQ,CAAC,YAAY,CAAC,CAAA;YAClC,CAAC,CAAC,CAAA;QACJ,CAAC,CAAC,CAAA;QACF,EAAE,CAAC,QAAQ,CAAC,IAAI,CAAC,CAAA;IACnB,CAAC;IAEO,gBAAgB,CACtB,SAAqB,EACrB,YAA0C,EAC1C,EAAgB;QAEhB,IAAI,CAAC,SAAS,CAAC,MAAM,EAAE,CAAC;YACtB,OAAM;QACR,CAAC;QAED,EAAE,CAAC,QAAQ,CAAC,GAAG,YAAY,KAAK,CAAC,CAAA;QACjC,EAAE,CAAC,UAAU,CAAC,CAAC,SAAS,EAAE,EAAE;YAC1B,SAAS,CAAC,OAAO,CAAC,CAAC,GAAG,EAAE,EAAE;gBACxB,SAAS,CAAC,QAAQ,CAAC,IAAI,GAAG,CAAC,KAAK,EAAE,IAAI,CAAC,CAAA;YACzC,CAAC,CAAC,CAAA;QACJ,CAAC,CAAC,CAAA;QACF,EAAE,CAAC,QAAQ,CAAC,IAAI,CAAC,CAAA;IACnB,CAAC;IAED;;OAEG;IACK,iBAAiB,CACvB,UAAuB,EACvB,YAA4C,EAC5C,iBAA0B,EAC1B,EAAgB;QAEhB,IAAI,iBAAiB,EAAE,CAAC;YACtB,iDAAiD;YACjD,EAAE,CAAC,QAAQ,CAAC,GAAG,YAAY,8BAA8B,CAAC,CAAA;YAC1D,OAAM;QACR,CAAC;QAED,IAAI,CAAC,UAAU,CAAC,MAAM,EAAE,CAAC;YACvB,OAAM;QACR,CAAC;QAED,EAAE,CAAC,QAAQ,CAAC,GAAG,YAAY,KAAK,CAAC,CAAA;QACjC,EAAE,CAAC,UAAU,CAAC,CAAC,SAAS,EAAE,EAAE;YAC1B,UAAU,CAAC,OAAO,CAAC,CAAC,CAAC,EAAE,EAAE;gBACvB,MAAM,IAAI,GAAG,CAAC,CAAC,IAAI,EAAE,CAAA,CAAC,6CAA6C;gBACnE,MAAM,KAAK,GAAG,CAAC,CAAC,KAAK,EAAE,CAAA;gBAEvB,IAAI,aAAa,GAAG,EAAE,CAAA;gBACtB,IAAI,IAAI,KAAK,KAAK,EAAE,CAAC;oBACnB,qCAAqC;oBACrC,aAAa,GAAG,yBAAyB,KAAK,IAAI,CAAA;gBACpD,CAAC;qBAAM,IAAI,IAAI,KAAK,SAAS,EAAE,CAAC;oBAC9B,aAAa,GAAG,6BAA6B,KAAK,IAAI,CAAA;gBACxD,CAAC;qBAAM,IAAI,IAAI,KAAK,WAAW,EAAE,CAAC;oBAChC,6FAA6F;oBAC7F,aAAa,GAAG,+BAA+B,KAAK,IAAI,CAAA;gBAC1D,CAAC;qBAAM,IAAI,IAAI,KAAK,eAAe,EAAE,CAAC;oBACpC,aAAa,GAAG,mCAAmC,KAAK,IAAI,CAAA;gBAC9D,CAAC;qBAAM,CAAC;oBACN,gDAAgD;oBAChD,mFAAmF;oBACnF,aAAa,GAAG,yBAAyB,KAAK,IAAI,CAAA;gBACpD,CAAC;gBAED,SAAS,CAAC,QAAQ,CAAC,GAAG,aAAa,GAAG,CAAC,CAAA;YACzC,CAAC,CAAC,CAAA;QACJ,CAAC,CAAC,CAAA;QACF,EAAE,CAAC,QAAQ,CAAC,IAAI,CAAC,CAAA;IACnB,CAAC;IAED;;;;;;;;;;OAUG;IACK,iBAAiB,CAAC,UAAuB,EAAE,EAAgB;QACjE,IAAI,CAAC,UAAU,CAAC,MAAM,EAAE,CAAC;YACvB,OAAM;QACR,CAAC;QAED,0EAA0E;QAC1E,sFAAsF;QACtF,MAAM,YAAY,GAAsD,EAAE,CAAA;QAE1E,KAAK,MAAM,IAAI,IAAI,UAAU,EAAE,CAAC;YAC9B,MAAM,QAAQ,GAAG,IAAI,CAAC,SAAS,EAAE,CAAC,KAAK,EAAE,CAAA,CAAC,kDAAkD;YAC5F,MAAM,YAAY,GAAG,IAAI,CAAC,YAAY,EAAE,CAAA,CAAC,sBAAsB;YAC/D,MAAM,MAAM,GAAG,IAAI,CAAC,eAAe,EAAE,CAAA,CAAC,mBAAmB;YACzD,IAAI,CAAC,YAAY,CAAC,QAAQ,CAAC,EAAE,CAAC;gBAC5B,YAAY,CAAC,QAAQ,CAAC,GAAG,EAAE,CAAA;YAC7B,CAAC;YACD,oFAAoF;YACpF,IAAI,CAAC,YAAY,CAAC,QAAQ,CAAC,CAAC,YAAY,CAAC,EAAE,CAAC;gBAC1C,kEAAkE;gBAClE,YAAY,CAAC,QAAQ,CAAC,CAAC,YAAY,CAAC,GAAG,MAAM,CAAC,MAAM,KAAK,CAAC,CAAC,CAAC,CAAC,MAAM,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,MAAM,CAAA;YACjF,CAAC;iBAAM,CAAC;gBACN,yEAAyE;gBACzE,MAAM,QAAQ,GAAG,YAAY,CAAC,QAAQ,CAAC,CAAC,YAAY,CAAC,CAAA;gBACrD,IAAI,KAAK,CAAC,OAAO,CAAC,QAAQ,CAAC,EAAE,CAAC;oBAC5B,QAAQ,CAAC,IAAI,CAAC,GAAG,MAAM,CAAC,CAAA;gBAC1B,CAAC;qBAAM,CAAC;oBACN,0CAA0C;oBAC1C,YAAY,CAAC,QAAQ,CAAC,CAAC,YAAY,CAAC,GAAG,CAAC,QAAQ,EAAE,GAAG,MAAM,CAAC,CAAA;gBAC9D,CAAC;YACH,CAAC;QACH,CAAC;QAED,EAAE,CAAC,QAAQ,CAAC,eAAe,CAAC,CAAA;QAC5B,EAAE,CAAC,UAAU,CAAC,CAAC,UAAU,EAAE,EAAE;YAC3B,MAAM,CAAC,OAAO,CAAC,YAAY,CAAC,CAAC,OAAO,CAAC,CAAC,CAAC,EAAE,EAAE,MAAM,CAAC,EAAE,EAAE;gBACpD,UAAU,CAAC,QAAQ,CAAC,GAAG,EAAE,KAAK,CAAC,CAAA;gBAC/B,UAAU,CAAC,UAAU,CAAC,CAAC,QAAQ,EAAE,EAAE;oBACjC,MAAM,CAAC,OAAO,CAAC,MAAM,CAAC,CAAC,OAAO,CAAC,CAAC,CAAC,CAAC,EAAE,GAAG,CAAC,EAAE,EAAE;wBAC1C,IAAI,KAAK,CAAC,OAAO,CAAC,GAAG,CAAC,EAAE,CAAC;4BACvB,4CAA4C;4BAC5C,QAAQ,CAAC,QAAQ,CAAC,IAAI,CAAC,MAAM,CAAC,CAAA;4BAC9B,QAAQ,CAAC,UAAU,CAAC,CAAC,SAAS,EAAE,EAAE;gCAChC,GAAG,CAAC,OAAO,CAAC,CAAC,CAAC,EAAE,EAAE;oCAChB,SAAS,CAAC,QAAQ,CAAC,IAAI,CAAC,IAAI,CAAC,CAAA;gCAC/B,CAAC,CAAC,CAAA;4BACJ,CAAC,CAAC,CAAA;4BACF,QAAQ,CAAC,QAAQ,CAAC,IAAI,CAAC,CAAA;wBACzB,CAAC;6BAAM,CAAC;4BACN,gBAAgB;4BAChB,QAAQ,CAAC,QAAQ,CAAC,IAAI,CAAC,OAAO,GAAG,IAAI,CAAC,CAAA;wBACxC,CAAC;oBACH,CAAC,CAAC,CAAA;gBACJ,CAAC,CAAC,CAAA;gBACF,UAAU,CAAC,QAAQ,CAAC,IAAI,CAAC,CAAA;YAC3B,CAAC,CAAC,CAAA;QACJ,CAAC,CAAC,CAAA;QACF,EAAE,CAAC,QAAQ,CAAC,IAAI,CAAC,CAAA;IACnB,CAAC;CACF;AA5OD,wDA4OC"}
|
|
@@ -1,5 +1,8 @@
|
|
|
1
1
|
import { Policy } from '@cloud-copilot/iam-policy';
|
|
2
2
|
import { StringBuffer } from '../util/StringBuffer.js';
|
|
3
|
+
export interface ConverterOptions {
|
|
4
|
+
variableName?: string;
|
|
5
|
+
}
|
|
3
6
|
export interface Converter {
|
|
4
7
|
/**
|
|
5
8
|
* Converts the given policy to a new format in the given StringBuffer
|
|
@@ -7,6 +10,6 @@ export interface Converter {
|
|
|
7
10
|
* @param policy the policy to convert
|
|
8
11
|
* @param buffer the buffer to write the result to
|
|
9
12
|
*/
|
|
10
|
-
convert(policy: Policy, buffer: StringBuffer): void;
|
|
13
|
+
convert(policy: Policy, buffer: StringBuffer, options?: ConverterOptions): void;
|
|
11
14
|
}
|
|
12
15
|
//# sourceMappingURL=converter.d.ts.map
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"converter.d.ts","sourceRoot":"","sources":["../../../src/converters/converter.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,MAAM,EAAE,MAAM,2BAA2B,CAAA;AAClD,OAAO,EAAE,YAAY,EAAE,MAAM,yBAAyB,CAAA;AAEtD,MAAM,WAAW,SAAS;IACxB;;;;;OAKG;IACH,OAAO,CAAC,MAAM,EAAE,MAAM,EAAE,MAAM,EAAE,YAAY,GAAG,IAAI,CAAA;
|
|
1
|
+
{"version":3,"file":"converter.d.ts","sourceRoot":"","sources":["../../../src/converters/converter.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,MAAM,EAAE,MAAM,2BAA2B,CAAA;AAClD,OAAO,EAAE,YAAY,EAAE,MAAM,yBAAyB,CAAA;AAEtD,MAAM,WAAW,gBAAgB;IAC/B,YAAY,CAAC,EAAE,MAAM,CAAA;CACtB;AACD,MAAM,WAAW,SAAS;IACxB;;;;;OAKG;IACH,OAAO,CAAC,MAAM,EAAE,MAAM,EAAE,MAAM,EAAE,YAAY,EAAE,OAAO,CAAC,EAAE,gBAAgB,GAAG,IAAI,CAAA;CAChF"}
|
|
@@ -5,7 +5,9 @@ import { Converter } from './converter.js';
|
|
|
5
5
|
* Converts an IAM policy to a Terraform aws_iam_policy_document data object.
|
|
6
6
|
*/
|
|
7
7
|
export declare class TerraformConverter implements Converter {
|
|
8
|
-
convert(policy: Policy, stringBuffer: StringBuffer
|
|
8
|
+
convert(policy: Policy, stringBuffer: StringBuffer, options?: {
|
|
9
|
+
variableName?: string;
|
|
10
|
+
}): void;
|
|
9
11
|
private convertActions;
|
|
10
12
|
private convertResources;
|
|
11
13
|
private convertPrincipals;
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"terraform.d.ts","sourceRoot":"","sources":["../../../src/converters/terraform.ts"],"names":[],"mappings":"AAAA,OAAO,EAAqB,MAAM,EAAuB,MAAM,2BAA2B,CAAA;AAC1F,OAAO,EAAE,YAAY,EAAE,MAAM,yBAAyB,CAAA;AACtD,OAAO,EAAE,SAAS,EAAE,MAAM,gBAAgB,CAAA;AAE1C;;GAEG;AACH,qBAAa,kBAAmB,YAAW,SAAS;IAClD,OAAO,CAAC,MAAM,EAAE,MAAM,EAAE,YAAY,EAAE,YAAY;
|
|
1
|
+
{"version":3,"file":"terraform.d.ts","sourceRoot":"","sources":["../../../src/converters/terraform.ts"],"names":[],"mappings":"AAAA,OAAO,EAAqB,MAAM,EAAuB,MAAM,2BAA2B,CAAA;AAC1F,OAAO,EAAE,YAAY,EAAE,MAAM,yBAAyB,CAAA;AACtD,OAAO,EAAE,SAAS,EAAE,MAAM,gBAAgB,CAAA;AAE1C;;GAEG;AACH,qBAAa,kBAAmB,YAAW,SAAS;IAClD,OAAO,CAAC,MAAM,EAAE,MAAM,EAAE,YAAY,EAAE,YAAY,EAAE,OAAO,CAAC,EAAE;QAAE,YAAY,CAAC,EAAE,MAAM,CAAA;KAAE;IAsEvF,OAAO,CAAC,cAAc;IAatB,OAAO,CAAC,gBAAgB;IAaxB,OAAO,CAAC,iBAAiB;IAqDzB,OAAO,CAAC,iBAAiB;CAuB1B"}
|
|
@@ -5,8 +5,9 @@ exports.TerraformConverter = void 0;
|
|
|
5
5
|
* Converts an IAM policy to a Terraform aws_iam_policy_document data object.
|
|
6
6
|
*/
|
|
7
7
|
class TerraformConverter {
|
|
8
|
-
convert(policy, stringBuffer) {
|
|
9
|
-
|
|
8
|
+
convert(policy, stringBuffer, options) {
|
|
9
|
+
const variableName = options?.variableName || 'policy';
|
|
10
|
+
stringBuffer.pushLine(`data "aws_iam_policy_document" "${variableName}" {`);
|
|
10
11
|
stringBuffer.withIndent((policyBuffer) => {
|
|
11
12
|
if (policy.version() && policy.version() !== '2012-10-17') {
|
|
12
13
|
policyBuffer.pushLine(`version = "${policy.version()}"`);
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"terraform.js","sourceRoot":"","sources":["../../../src/converters/terraform.ts"],"names":[],"mappings":";;;AAIA;;GAEG;AACH,MAAa,kBAAkB;IAC7B,OAAO,CAAC,MAAc,EAAE,YAA0B;
|
|
1
|
+
{"version":3,"file":"terraform.js","sourceRoot":"","sources":["../../../src/converters/terraform.ts"],"names":[],"mappings":";;;AAIA;;GAEG;AACH,MAAa,kBAAkB;IAC7B,OAAO,CAAC,MAAc,EAAE,YAA0B,EAAE,OAAmC;QACrF,MAAM,YAAY,GAAG,OAAO,EAAE,YAAY,IAAI,QAAQ,CAAA;QAEtD,YAAY,CAAC,QAAQ,CAAC,mCAAmC,YAAY,KAAK,CAAC,CAAA;QAC3E,YAAY,CAAC,UAAU,CAAC,CAAC,YAAY,EAAE,EAAE;YACvC,IAAI,MAAM,CAAC,OAAO,EAAE,IAAI,MAAM,CAAC,OAAO,EAAE,KAAK,YAAY,EAAE,CAAC;gBAC1D,YAAY,CAAC,QAAQ,CAAC,cAAc,MAAM,CAAC,OAAO,EAAE,GAAG,CAAC,CAAA;YAC1D,CAAC;YAED,KAAK,MAAM,SAAS,IAAI,MAAM,CAAC,UAAU,EAAE,EAAE,CAAC;gBAC5C,YAAY,CAAC,QAAQ,CAAC,aAAa,CAAC,CAAA;gBACpC,YAAY,CAAC,UAAU,CAAC,CAAC,eAAe,EAAE,EAAE;oBAC1C,IAAI,SAAS,CAAC,GAAG,EAAE,EAAE,CAAC;wBACpB,eAAe,CAAC,QAAQ,CAAC,UAAU,SAAS,CAAC,GAAG,EAAE,GAAG,CAAC,CAAA;wBACtD,eAAe,CAAC,QAAQ,CAAC,EAAE,CAAC,CAAA;oBAC9B,CAAC;oBACD,IAAI,SAAS,CAAC,MAAM,EAAE,EAAE,CAAC;wBACvB,eAAe,CAAC,QAAQ,CAAC,iBAAiB,CAAC,CAAA;oBAC7C,CAAC;oBACD,IAAI,SAAS,CAAC,iBAAiB,EAAE,EAAE,CAAC;wBAClC,eAAe,CAAC,QAAQ,CAAC,aAAa,CAAC,CAAA;wBACvC,IAAI,CAAC,cAAc,CAAC,SAAS,CAAC,OAAO,EAAE,EAAE,eAAe,CAAC,CAAA;wBACzD,eAAe,CAAC,QAAQ,CAAC,GAAG,CAAC,CAAA;oBAC/B,CAAC;oBACD,IAAI,SAAS,CAAC,oBAAoB,EAAE,EAAE,CAAC;wBACrC,eAAe,CAAC,QAAQ,CAAC,iBAAiB,CAAC,CAAA;wBAC3C,IAAI,CAAC,cAAc,CAAC,SAAS,CAAC,UAAU,EAAE,EAAE,eAAe,CAAC,CAAA;wBAC5D,eAAe,CAAC,QAAQ,CAAC,GAAG,CAAC,CAAA;oBAC/B,CAAC;oBACD,IAAI,SAAS,CAAC,mBAAmB,EAAE,EAAE,CAAC;wBACpC,eAAe,CAAC,QAAQ,CAAC,eAAe,CAAC,CAAA;wBACzC,IAAI,CAAC,gBAAgB,CAAC,SAAS,CAAC,SAAS,EAAE,EAAE,eAAe,CAAC,CAAA;wBAC7D,eAAe,CAAC,QAAQ,CAAC,GAAG,CAAC,CAAA;oBAC/B,CAAC;oBACD,IAAI,SAAS,CAAC,sBAAsB,EAAE,EAAE,CAAC;wBACvC,eAAe,CAAC,QAAQ,CAAC,mBAAmB,CAAC,CAAA;wBAC7C,IAAI,CAAC,gBAAgB,CAAC,SAAS,CAAC,YAAY,EAAE,EAAE,eAAe,CAAC,CAAA;wBAChE,eAAe,CAAC,QAAQ,CAAC,GAAG,CAAC,CAAA;oBAC/B,CAAC;oBACD,IAAI,SAAS,CAAC,oBAAoB,EAAE,EAAE,CAAC;wBACrC,IAAI,CAAC,iBAAiB,CACpB,SAAS,CAAC,UAAU,EAAE,EACtB,YAAY,EACZ,SAAS,CAAC,0BAA0B,EAAE,EACtC,eAAe,CAChB,CAAA;oBACH,CAAC;oBACD,IAAI,SAAS,CAAC,uBAAuB,EAAE,EAAE,CAAC;wBACxC,IAAI,CAAC,iBAAiB,CACpB,SAAS,CAAC,aAAa,EAAE,EACzB,gBAAgB,EAChB,SAAS,CAAC,6BAA6B,EAAE,EACzC,eAAe,CAChB,CAAA;oBACH,CAAC;oBACD,IAAI,CAAC,iBAAiB,CAAC,SAAS,CAAC,UAAU,EAAE,EAAE,eAAe,CAAC,CAAA;gBACjE,CAAC,CAAC,CAAA;gBAEF,YAAY,CAAC,QAAQ,CAAC,GAAG,CAAC,CAAA;YAC5B,CAAC;QACH,CAAC,CAAC,CAAA;QAEF,YAAY,CAAC,MAAM,EAAE,CAAA;QAErB,YAAY,CAAC,QAAQ,EAAE,CAAA;QACvB,YAAY,CAAC,QAAQ,CAAC,GAAG,CAAC,CAAA;QAE1B,OAAM;IACR,CAAC;IAEO,cAAc,CAAC,OAAiB,EAAE,eAA6B;QACrE,MAAM,WAAW,GAAG,OAAO,CAAC,MAAM,CAAA;QAClC,eAAe,CAAC,UAAU,CAAC,CAAC,aAAa,EAAE,EAAE;YAC3C,OAAO,CAAC,OAAO,CAAC,CAAC,MAAM,EAAE,KAAK,EAAE,EAAE;gBAChC,IAAI,YAAY,GAAG,IAAI,MAAM,CAAC,KAAK,EAAE,GAAG,CAAA;gBACxC,IAAI,WAAW,GAAG,CAAC,IAAI,KAAK,GAAG,WAAW,GAAG,CAAC,EAAE,CAAC;oBAC/C,YAAY,IAAI,GAAG,CAAA;gBACrB,CAAC;gBACD,aAAa,CAAC,QAAQ,CAAC,YAAY,CAAC,CAAA;YACtC,CAAC,CAAC,CAAA;QACJ,CAAC,CAAC,CAAA;IACJ,CAAC;IAEO,gBAAgB,CAAC,SAAqB,EAAE,eAA6B;QAC3E,MAAM,aAAa,GAAG,SAAS,CAAC,MAAM,CAAA;QACtC,eAAe,CAAC,UAAU,CAAC,CAAC,eAAe,EAAE,EAAE;YAC7C,SAAS,CAAC,OAAO,CAAC,CAAC,QAAQ,EAAE,KAAK,EAAE,EAAE;gBACpC,IAAI,cAAc,GAAG,IAAI,QAAQ,CAAC,KAAK,EAAE,GAAG,CAAA;gBAC5C,IAAI,aAAa,GAAG,CAAC,IAAI,KAAK,GAAG,aAAa,GAAG,CAAC,EAAE,CAAC;oBACnD,cAAc,IAAI,GAAG,CAAA;gBACvB,CAAC;gBACD,eAAe,CAAC,QAAQ,CAAC,cAAc,CAAC,CAAA;YAC1C,CAAC,CAAC,CAAA;QACJ,CAAC,CAAC,CAAA;IACJ,CAAC;IAEO,iBAAiB,CACvB,UAAuB,EACvB,aAA8C,EAC9C,iBAA0B,EAC1B,eAA6B;QAE7B,IAAI,iBAAiB,EAAE,CAAC;YACtB,eAAe,CAAC,QAAQ,CAAC,GAAG,aAAa,IAAI,CAAC,CAAA;YAC9C,eAAe,CAAC,UAAU,CAAC,CAAC,eAAe,EAAE,EAAE;gBAC7C,eAAe,CAAC,QAAQ,CAAC,mBAAmB,CAAC,CAAA;gBAC7C,eAAe,CAAC,QAAQ,CAAC,mBAAmB,CAAC,CAAA;YAC/C,CAAC,CAAC,CAAA;YACF,eAAe,CAAC,QAAQ,CAAC,GAAG,CAAC,CAAA;YAC7B,eAAe,CAAC,QAAQ,CAAC,EAAE,CAAC,CAAA;YAC5B,OAAM;QACR,CAAC;QAED,MAAM,gBAAgB,GAAG,UAAU,CAAC,MAAM,CACxC,CAAC,GAAG,EAAE,SAAS,EAAE,EAAE;YACjB,MAAM,IAAI,GAAG,SAAS,CAAC,IAAI,EAAE,CAAA;YAC7B,IAAI,CAAC,GAAG,CAAC,IAAI,CAAC,EAAE,CAAC;gBACf,GAAG,CAAC,IAAI,CAAC,GAAG,EAAE,CAAA;YAChB,CAAC;YACD,GAAG,CAAC,IAAI,CAAC,CAAC,IAAI,CAAC,SAAS,CAAC,CAAA;YACzB,OAAO,GAAG,CAAA;QACZ,CAAC,EACD,EAAiC,CAClC,CAAA;QAED,KAAK,MAAM,IAAI,IAAI,gBAAgB,EAAE,CAAC;YACpC,eAAe,CAAC,QAAQ,CAAC,GAAG,aAAa,IAAI,CAAC,CAAA;YAC9C,eAAe,CAAC,UAAU,CAAC,CAAC,eAAe,EAAE,EAAE;gBAC7C,eAAe,CAAC,QAAQ,CAAC,kBAAkB,IAAI,GAAG,CAAC,CAAA;gBACnD,eAAe,CAAC,QAAQ,CAAC,iBAAiB,CAAC,CAAA;gBAC3C,MAAM,iBAAiB,GAAG,gBAAgB,CAAC,IAAI,CAAC,CAAA;gBAChD,MAAM,cAAc,GAAG,iBAAiB,CAAC,MAAM,CAAA;gBAC/C,eAAe,CAAC,UAAU,CAAC,CAAC,iBAAiB,EAAE,EAAE;oBAC/C,iBAAiB,CAAC,OAAO,CAAC,CAAC,SAAS,EAAE,KAAK,EAAE,EAAE;wBAC7C,IAAI,gBAAgB,GAAG,IAAI,SAAS,CAAC,KAAK,EAAE,GAAG,CAAA;wBAC/C,IAAI,cAAc,GAAG,CAAC,IAAI,KAAK,GAAG,cAAc,GAAG,CAAC,EAAE,CAAC;4BACrD,gBAAgB,IAAI,GAAG,CAAA;wBACzB,CAAC;wBACD,iBAAiB,CAAC,QAAQ,CAAC,gBAAgB,CAAC,CAAA;oBAC9C,CAAC,CAAC,CAAA;gBACJ,CAAC,CAAC,CAAA;gBAEF,eAAe,CAAC,QAAQ,CAAC,GAAG,CAAC,CAAA;YAC/B,CAAC,CAAC,CAAA;YACF,eAAe,CAAC,QAAQ,CAAC,GAAG,CAAC,CAAA;YAC7B,eAAe,CAAC,QAAQ,CAAC,EAAE,CAAC,CAAA;QAC9B,CAAC;IACH,CAAC;IAEO,iBAAiB,CAAC,UAAuB,EAAE,eAA6B;QAC9E,KAAK,MAAM,SAAS,IAAI,UAAU,EAAE,CAAC;YACnC,eAAe,CAAC,QAAQ,CAAC,aAAa,CAAC,CAAA;YACvC,eAAe,CAAC,UAAU,CAAC,CAAC,eAAe,EAAE,EAAE;gBAC7C,eAAe,CAAC,QAAQ,CAAC,eAAe,SAAS,CAAC,SAAS,EAAE,CAAC,KAAK,EAAE,GAAG,CAAC,CAAA;gBACzE,eAAe,CAAC,QAAQ,CAAC,eAAe,SAAS,CAAC,YAAY,EAAE,GAAG,CAAC,CAAA;gBACpE,eAAe,CAAC,QAAQ,CAAC,cAAc,CAAC,CAAA;gBACxC,MAAM,cAAc,GAAG,SAAS,CAAC,eAAe,EAAE,CAAC,MAAM,CAAA;gBACzD,eAAe,CAAC,UAAU,CAAC,CAAC,YAAY,EAAE,EAAE;oBAC1C,SAAS,CAAC,eAAe,EAAE,CAAC,OAAO,CAAC,CAAC,KAAK,EAAE,KAAK,EAAE,EAAE;wBACnD,IAAI,WAAW,GAAG,IAAI,KAAK,GAAG,CAAA;wBAC9B,IAAI,cAAc,GAAG,CAAC,IAAI,KAAK,GAAG,cAAc,GAAG,CAAC,EAAE,CAAC;4BACrD,WAAW,IAAI,GAAG,CAAA;wBACpB,CAAC;wBACD,YAAY,CAAC,QAAQ,CAAC,WAAW,CAAC,CAAA;oBACpC,CAAC,CAAC,CAAA;gBACJ,CAAC,CAAC,CAAA;gBACF,eAAe,CAAC,QAAQ,CAAC,GAAG,CAAC,CAAA;YAC/B,CAAC,CAAC,CAAA;YACF,eAAe,CAAC,QAAQ,CAAC,GAAG,CAAC,CAAA;YAC7B,eAAe,CAAC,QAAQ,CAAC,EAAE,CAAC,CAAA;QAC9B,CAAC;IACH,CAAC;CACF;AA7KD,gDA6KC"}
|
package/dist/esm/cli.js
CHANGED
|
@@ -6,9 +6,15 @@ import { convert } from './convert.js';
|
|
|
6
6
|
import { tryParseJson } from './util/json.js';
|
|
7
7
|
async function run() {
|
|
8
8
|
const cli = parseCliArguments('iam-convert', {}, {
|
|
9
|
+
indentWith: {
|
|
10
|
+
description: 'The character to use for indentation, defaults to spaces',
|
|
11
|
+
type: 'enum',
|
|
12
|
+
values: 'single',
|
|
13
|
+
validValues: ['spaces', 'tabs']
|
|
14
|
+
},
|
|
9
15
|
indentBy: {
|
|
10
|
-
description: 'The
|
|
11
|
-
type: '
|
|
16
|
+
description: 'The number of indent characters to use, defaults to 2 for spaces and 1 for tabs',
|
|
17
|
+
type: 'number',
|
|
12
18
|
values: 'single'
|
|
13
19
|
},
|
|
14
20
|
lineSeparator: {
|
|
@@ -21,12 +27,17 @@ async function run() {
|
|
|
21
27
|
description: 'The format to convert to',
|
|
22
28
|
type: 'enum',
|
|
23
29
|
values: 'single',
|
|
24
|
-
validValues: ['tf', 'cf', 'cdk-ts']
|
|
30
|
+
validValues: ['tf', 'cf', 'cdk-ts', 'cdk-py']
|
|
25
31
|
},
|
|
26
32
|
file: {
|
|
27
33
|
description: 'A file to read the policy from. If not provided, stdin is used',
|
|
28
34
|
type: 'string',
|
|
29
35
|
values: 'single'
|
|
36
|
+
},
|
|
37
|
+
variableName: {
|
|
38
|
+
description: 'The variable name to use for the policy variable, default is different for each format',
|
|
39
|
+
type: 'string',
|
|
40
|
+
values: 'single'
|
|
30
41
|
}
|
|
31
42
|
}, {
|
|
32
43
|
expectOperands: false
|
|
@@ -63,8 +74,9 @@ async function run() {
|
|
|
63
74
|
const policy = loadPolicy(json);
|
|
64
75
|
const format = cli.args.format || 'tf';
|
|
65
76
|
const result = convert(policy, format, {
|
|
66
|
-
indentBy: cli.args.indentBy,
|
|
67
|
-
lineSeparator: cli.args.lineSeparator == 'crlf' ? `\r\n` : undefined
|
|
77
|
+
indentBy: getIndent(cli.args.indentWith, cli.args.indentBy),
|
|
78
|
+
lineSeparator: cli.args.lineSeparator == 'crlf' ? `\r\n` : undefined,
|
|
79
|
+
variableName: cli.args.variableName
|
|
68
80
|
});
|
|
69
81
|
console.log(result);
|
|
70
82
|
}
|
|
@@ -75,4 +87,10 @@ run()
|
|
|
75
87
|
})
|
|
76
88
|
.then(() => { })
|
|
77
89
|
.finally(() => { });
|
|
90
|
+
function getIndent(indentWith, indentBy) {
|
|
91
|
+
if (indentWith === 'tabs') {
|
|
92
|
+
return '\t'.repeat(indentBy == undefined ? 1 : indentBy);
|
|
93
|
+
}
|
|
94
|
+
return ' '.repeat(indentBy == undefined ? 2 : indentBy);
|
|
95
|
+
}
|
|
78
96
|
//# sourceMappingURL=cli.js.map
|
package/dist/esm/cli.js.map
CHANGED
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"cli.js","sourceRoot":"","sources":["../../src/cli.ts"],"names":[],"mappings":";AAEA,OAAO,EAAE,iBAAiB,EAAE,SAAS,EAAE,MAAM,oBAAoB,CAAA;AACjE,OAAO,EAAE,UAAU,EAAE,oBAAoB,EAAE,MAAM,2BAA2B,CAAA;AAC5E,OAAO,EAAE,UAAU,EAAE,YAAY,EAAE,MAAM,IAAI,CAAA;AAC7C,OAAO,EAAE,OAAO,EAAE,MAAM,cAAc,CAAA;AACtC,OAAO,EAAE,YAAY,EAAE,MAAM,gBAAgB,CAAA;AAE7C,KAAK,UAAU,GAAG;IAChB,MAAM,GAAG,GAAG,iBAAiB,CAC3B,aAAa,EACb,EAAE,EACF;QACE,QAAQ,EAAE;YACR,WAAW,EACT,
|
|
1
|
+
{"version":3,"file":"cli.js","sourceRoot":"","sources":["../../src/cli.ts"],"names":[],"mappings":";AAEA,OAAO,EAAE,iBAAiB,EAAE,SAAS,EAAE,MAAM,oBAAoB,CAAA;AACjE,OAAO,EAAE,UAAU,EAAE,oBAAoB,EAAE,MAAM,2BAA2B,CAAA;AAC5E,OAAO,EAAE,UAAU,EAAE,YAAY,EAAE,MAAM,IAAI,CAAA;AAC7C,OAAO,EAAE,OAAO,EAAE,MAAM,cAAc,CAAA;AACtC,OAAO,EAAE,YAAY,EAAE,MAAM,gBAAgB,CAAA;AAE7C,KAAK,UAAU,GAAG;IAChB,MAAM,GAAG,GAAG,iBAAiB,CAC3B,aAAa,EACb,EAAE,EACF;QACE,UAAU,EAAE;YACV,WAAW,EAAE,0DAA0D;YACvE,IAAI,EAAE,MAAM;YACZ,MAAM,EAAE,QAAQ;YAChB,WAAW,EAAE,CAAC,QAAQ,EAAE,MAAM,CAAC;SAChC;QACD,QAAQ,EAAE;YACR,WAAW,EACT,iFAAiF;YACnF,IAAI,EAAE,QAAQ;YACd,MAAM,EAAE,QAAQ;SACjB;QACD,aAAa,EAAE;YACb,WAAW,EACT,oGAAoG;YACtG,IAAI,EAAE,MAAM;YACZ,MAAM,EAAE,QAAQ;YAChB,WAAW,EAAE,CAAC,IAAI,EAAE,MAAM,CAAC;SAC5B;QACD,MAAM,EAAE;YACN,WAAW,EAAE,0BAA0B;YACvC,IAAI,EAAE,MAAM;YACZ,MAAM,EAAE,QAAQ;YAChB,WAAW,EAAE,CAAC,IAAI,EAAE,IAAI,EAAE,QAAQ,EAAE,QAAQ,CAAC;SAC9C;QACD,IAAI,EAAE;YACJ,WAAW,EAAE,gEAAgE;YAC7E,IAAI,EAAE,QAAQ;YACd,MAAM,EAAE,QAAQ;SACjB;QACD,YAAY,EAAE;YACZ,WAAW,EACT,wFAAwF;YAC1F,IAAI,EAAE,QAAQ;YACd,MAAM,EAAE,QAAQ;SACjB;KACO,EACV;QACE,cAAc,EAAE,KAAK;KACtB,CACF,CAAA;IAED,IAAI,cAAc,GAAuB,SAAS,CAAA;IAElD,IAAI,GAAG,CAAC,IAAI,CAAC,IAAI,EAAE,CAAC;QAClB,MAAM,UAAU,GAAG,UAAU,CAAC,GAAG,CAAC,IAAI,CAAC,IAAI,CAAC,CAAA;QAC5C,IAAI,CAAC,UAAU,EAAE,CAAC;YAChB,OAAO,CAAC,KAAK,CAAC,QAAQ,GAAG,CAAC,IAAI,CAAC,IAAI,iBAAiB,CAAC,CAAA;YACrD,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC,CAAA;QACjB,CAAC;QACD,cAAc,GAAG,YAAY,CAAC,GAAG,CAAC,IAAI,CAAC,IAAI,EAAE,OAAO,CAAC,CAAA;IACvD,CAAC;SAAM,CAAC;QACN,MAAM,KAAK,GAAG,MAAM,SAAS,CAAC,SAAS,CAAC,CAAA;QAExC,IAAI,CAAC,KAAK,EAAE,CAAC;YACX,OAAO,CAAC,KAAK,CACX,uFAAuF,CACxF,CAAA;YACD,GAAG,CAAC,SAAS,EAAE,CAAA;YACf,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC,CAAA;QACjB,CAAC;QACD,cAAc,GAAG,KAAK,CAAA;IACxB,CAAC;IAED,MAAM,IAAI,GAAG,YAAY,CAAC,cAAc,CAAC,CAAA;IACzC,IAAI,CAAC,IAAI,EAAE,CAAC;QACV,OAAO,CAAC,KAAK,CAAC,uBAAuB,CAAC,CAAA;QACtC,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC,CAAA;IACjB,CAAC;IACD,MAAM,YAAY,GAAG,oBAAoB,CAAC,IAAI,CAAC,CAAA;IAC/C,IAAI,YAAY,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;QAC5B,OAAO,CAAC,KAAK,CAAC,yBAAyB,CAAC,CAAA;QACxC,OAAO,CAAC,KAAK,CAAC,YAAY,CAAC,CAAA;QAC3B,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC,CAAA;IACjB,CAAC;IAED,MAAM,MAAM,GAAG,UAAU,CAAC,IAAI,CAAC,CAAA;IAC/B,MAAM,MAAM,GAAG,GAAG,CAAC,IAAI,CAAC,MAAM,IAAI,IAAI,CAAA;IACtC,MAAM,MAAM,GAAG,OAAO,CAAC,MAAM,EAAE,MAAM,EAAE;QACrC,QAAQ,EAAE,SAAS,CAAC,GAAG,CAAC,IAAI,CAAC,UAAU,EAAE,GAAG,CAAC,IAAI,CAAC,QAAQ,CAAC;QAC3D,aAAa,EAAE,GAAG,CAAC,IAAI,CAAC,aAAa,IAAI,MAAM,CAAC,CAAC,CAAC,MAAM,CAAC,CAAC,CAAC,SAAS;QACpE,YAAY,EAAE,GAAG,CAAC,IAAI,CAAC,YAAY;KACpC,CAAC,CAAA;IAEF,OAAO,CAAC,GAAG,CAAC,MAAM,CAAC,CAAA;AACrB,CAAC;AAED,GAAG,EAAE;KACF,KAAK,CAAC,CAAC,CAAC,EAAE,EAAE;IACX,OAAO,CAAC,KAAK,CAAC,CAAC,CAAC,CAAA;IAChB,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC,CAAA;AACjB,CAAC,CAAC;KACD,IAAI,CAAC,GAAG,EAAE,GAAE,CAAC,CAAC;KACd,OAAO,CAAC,GAAG,EAAE,GAAE,CAAC,CAAC,CAAA;AAEpB,SAAS,SAAS,CAAC,UAAyC,EAAE,QAA4B;IACxF,IAAI,UAAU,KAAK,MAAM,EAAE,CAAC;QAC1B,OAAO,IAAI,CAAC,MAAM,CAAC,QAAQ,IAAI,SAAS,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,QAAQ,CAAC,CAAA;IAC1D,CAAC;IACD,OAAO,GAAG,CAAC,MAAM,CAAC,QAAQ,IAAI,SAAS,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,QAAQ,CAAC,CAAA;AACzD,CAAC"}
|
package/dist/esm/convert.d.ts
CHANGED
|
@@ -1,14 +1,13 @@
|
|
|
1
1
|
import { Policy } from '@cloud-copilot/iam-policy';
|
|
2
|
+
import { CdkPythonConverter } from './converters/cdkPython.js';
|
|
2
3
|
import { CdkTypescriptConverter } from './converters/cdkTypescript.js';
|
|
3
4
|
import { CloudFormationConverter } from './converters/cloudFormation.js';
|
|
4
5
|
import { TerraformConverter } from './converters/terraform.js';
|
|
5
6
|
declare const converters: {
|
|
6
|
-
/**
|
|
7
|
-
* Convert to Terraform
|
|
8
|
-
*/
|
|
9
7
|
tf: typeof TerraformConverter;
|
|
10
8
|
cf: typeof CloudFormationConverter;
|
|
11
9
|
'cdk-ts': typeof CdkTypescriptConverter;
|
|
10
|
+
'cdk-py': typeof CdkPythonConverter;
|
|
12
11
|
};
|
|
13
12
|
/**
|
|
14
13
|
* Convert a policy to a string in the specified format
|
|
@@ -21,6 +20,7 @@ declare const converters: {
|
|
|
21
20
|
export declare function convert(policy: Policy, format: keyof typeof converters, options?: {
|
|
22
21
|
indentBy?: string;
|
|
23
22
|
lineSeparator?: string;
|
|
23
|
+
variableName?: string;
|
|
24
24
|
}): string;
|
|
25
25
|
export {};
|
|
26
26
|
//# sourceMappingURL=convert.d.ts.map
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"convert.d.ts","sourceRoot":"","sources":["../../src/convert.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,MAAM,EAAE,MAAM,2BAA2B,CAAA;AAClD,OAAO,EAAE,sBAAsB,EAAE,MAAM,+BAA+B,CAAA;AACtE,OAAO,EAAE,uBAAuB,EAAE,MAAM,gCAAgC,CAAA;AACxE,OAAO,EAAE,kBAAkB,EAAE,MAAM,2BAA2B,CAAA;AAI9D,QAAA,MAAM,UAAU
|
|
1
|
+
{"version":3,"file":"convert.d.ts","sourceRoot":"","sources":["../../src/convert.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,MAAM,EAAE,MAAM,2BAA2B,CAAA;AAClD,OAAO,EAAE,kBAAkB,EAAE,MAAM,2BAA2B,CAAA;AAC9D,OAAO,EAAE,sBAAsB,EAAE,MAAM,+BAA+B,CAAA;AACtE,OAAO,EAAE,uBAAuB,EAAE,MAAM,gCAAgC,CAAA;AACxE,OAAO,EAAE,kBAAkB,EAAE,MAAM,2BAA2B,CAAA;AAI9D,QAAA,MAAM,UAAU;;;;;CAKf,CAAA;AAED;;;;;;;GAOG;AACH,wBAAgB,OAAO,CACrB,MAAM,EAAE,MAAM,EACd,MAAM,EAAE,MAAM,OAAO,UAAU,EAC/B,OAAO,CAAC,EAAE;IAAE,QAAQ,CAAC,EAAE,MAAM,CAAC;IAAC,aAAa,CAAC,EAAE,MAAM,CAAC;IAAC,YAAY,CAAC,EAAE,MAAM,CAAA;CAAE,GAC7E,MAAM,CAWR"}
|
package/dist/esm/convert.js
CHANGED
|
@@ -1,15 +1,14 @@
|
|
|
1
|
+
import { CdkPythonConverter } from './converters/cdkPython.js';
|
|
1
2
|
import { CdkTypescriptConverter } from './converters/cdkTypescript.js';
|
|
2
3
|
import { CloudFormationConverter } from './converters/cloudFormation.js';
|
|
3
4
|
import { TerraformConverter } from './converters/terraform.js';
|
|
4
5
|
import { defaultOptions } from './defaults.js';
|
|
5
6
|
import { StringBuffer } from './util/StringBuffer.js';
|
|
6
7
|
const converters = {
|
|
7
|
-
/**
|
|
8
|
-
* Convert to Terraform
|
|
9
|
-
*/
|
|
10
8
|
tf: TerraformConverter,
|
|
11
9
|
cf: CloudFormationConverter,
|
|
12
|
-
'cdk-ts': CdkTypescriptConverter
|
|
10
|
+
'cdk-ts': CdkTypescriptConverter,
|
|
11
|
+
'cdk-py': CdkPythonConverter
|
|
13
12
|
};
|
|
14
13
|
/**
|
|
15
14
|
* Convert a policy to a string in the specified format
|
|
@@ -26,7 +25,7 @@ export function convert(policy, format, options) {
|
|
|
26
25
|
options = { ...defaultOptions, ...(options || {}) };
|
|
27
26
|
const converter = new converters[format]();
|
|
28
27
|
const stringBuffer = new StringBuffer(options.indentBy, options.lineSeparator);
|
|
29
|
-
converter.convert(policy, stringBuffer);
|
|
28
|
+
converter.convert(policy, stringBuffer, { variableName: options.variableName });
|
|
30
29
|
return stringBuffer.toString();
|
|
31
30
|
}
|
|
32
31
|
//# sourceMappingURL=convert.js.map
|
package/dist/esm/convert.js.map
CHANGED
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"convert.js","sourceRoot":"","sources":["../../src/convert.ts"],"names":[],"mappings":"AACA,OAAO,EAAE,sBAAsB,EAAE,MAAM,+BAA+B,CAAA;AACtE,OAAO,EAAE,uBAAuB,EAAE,MAAM,gCAAgC,CAAA;AACxE,OAAO,EAAE,kBAAkB,EAAE,MAAM,2BAA2B,CAAA;AAC9D,OAAO,EAAE,cAAc,EAAE,MAAM,eAAe,CAAA;AAC9C,OAAO,EAAE,YAAY,EAAE,MAAM,wBAAwB,CAAA;AAErD,MAAM,UAAU,GAAG;IACjB
|
|
1
|
+
{"version":3,"file":"convert.js","sourceRoot":"","sources":["../../src/convert.ts"],"names":[],"mappings":"AACA,OAAO,EAAE,kBAAkB,EAAE,MAAM,2BAA2B,CAAA;AAC9D,OAAO,EAAE,sBAAsB,EAAE,MAAM,+BAA+B,CAAA;AACtE,OAAO,EAAE,uBAAuB,EAAE,MAAM,gCAAgC,CAAA;AACxE,OAAO,EAAE,kBAAkB,EAAE,MAAM,2BAA2B,CAAA;AAC9D,OAAO,EAAE,cAAc,EAAE,MAAM,eAAe,CAAA;AAC9C,OAAO,EAAE,YAAY,EAAE,MAAM,wBAAwB,CAAA;AAErD,MAAM,UAAU,GAAG;IACjB,EAAE,EAAE,kBAAkB;IACtB,EAAE,EAAE,uBAAuB;IAC3B,QAAQ,EAAE,sBAAsB;IAChC,QAAQ,EAAE,kBAAkB;CAC7B,CAAA;AAED;;;;;;;GAOG;AACH,MAAM,UAAU,OAAO,CACrB,MAAc,EACd,MAA+B,EAC/B,OAA8E;IAE9E,IAAI,CAAC,UAAU,CAAC,MAAM,CAAC,EAAE,CAAC;QACxB,MAAM,IAAI,KAAK,CAAC,uBAAuB,MAAM,EAAE,CAAC,CAAA;IAClD,CAAC;IAED,OAAO,GAAG,EAAE,GAAG,cAAc,EAAE,GAAG,CAAC,OAAO,IAAI,EAAE,CAAC,EAAE,CAAA;IAEnD,MAAM,SAAS,GAAG,IAAI,UAAU,CAAC,MAAM,CAAC,EAAE,CAAA;IAC1C,MAAM,YAAY,GAAG,IAAI,YAAY,CAAC,OAAO,CAAC,QAAQ,EAAE,OAAO,CAAC,aAAa,CAAC,CAAA;IAC9E,SAAS,CAAC,OAAO,CAAC,MAAM,EAAE,YAAY,EAAE,EAAE,YAAY,EAAE,OAAO,CAAC,YAAY,EAAE,CAAC,CAAA;IAC/E,OAAO,YAAY,CAAC,QAAQ,EAAE,CAAA;AAChC,CAAC"}
|
|
@@ -0,0 +1,34 @@
|
|
|
1
|
+
import { Policy } from '@cloud-copilot/iam-policy';
|
|
2
|
+
import { StringBuffer } from '../util/StringBuffer.js';
|
|
3
|
+
import { Converter } from './converter.js';
|
|
4
|
+
/**
|
|
5
|
+
* Converts an IAM policy into Python code for AWS CDK (using `aws_cdk.aws_iam`).
|
|
6
|
+
* Produces something like:
|
|
7
|
+
*
|
|
8
|
+
*/
|
|
9
|
+
export declare class CdkPythonConverter implements Converter {
|
|
10
|
+
convert(policy: Policy, sb: StringBuffer, options?: {
|
|
11
|
+
variableName?: string;
|
|
12
|
+
}): void;
|
|
13
|
+
private convertActions;
|
|
14
|
+
private convertResources;
|
|
15
|
+
/**
|
|
16
|
+
* Convert Principals into Python code, e.g. `[iam.ArnPrincipal("arn..."), iam.ServicePrincipal("...")]`.
|
|
17
|
+
*
|
|
18
|
+
* If `*` is present (and singled out by your policy logic), we use `iam.AnyPrincipal()`.
|
|
19
|
+
* Otherwise, we pick principal classes based on `principal.type()`.
|
|
20
|
+
*/
|
|
21
|
+
private convertPrincipals;
|
|
22
|
+
/**
|
|
23
|
+
* Convert conditions into a Python dict structure, e.g.
|
|
24
|
+
*
|
|
25
|
+
* conditions={
|
|
26
|
+
* "StringEquals": {
|
|
27
|
+
* "aws:username": "FoxMulder",
|
|
28
|
+
* "aws:someKey": ["val1","val2"]
|
|
29
|
+
* }
|
|
30
|
+
* }
|
|
31
|
+
*/
|
|
32
|
+
private convertConditions;
|
|
33
|
+
}
|
|
34
|
+
//# sourceMappingURL=cdkPython.d.ts.map
|
|
@@ -0,0 +1 @@
|
|
|
1
|
+
{"version":3,"file":"cdkPython.d.ts","sourceRoot":"","sources":["../../../src/converters/cdkPython.ts"],"names":[],"mappings":"AAAA,OAAO,EAAqB,MAAM,EAAuB,MAAM,2BAA2B,CAAA;AAC1F,OAAO,EAAE,YAAY,EAAE,MAAM,yBAAyB,CAAA;AACtD,OAAO,EAAE,SAAS,EAAE,MAAM,gBAAgB,CAAA;AAE1C;;;;GAIG;AACH,qBAAa,kBAAmB,YAAW,SAAS;IAClD,OAAO,CAAC,MAAM,EAAE,MAAM,EAAE,EAAE,EAAE,YAAY,EAAE,OAAO,CAAC,EAAE;QAAE,YAAY,CAAC,EAAE,MAAM,CAAA;KAAE;IAmE7E,OAAO,CAAC,cAAc;IAiBtB,OAAO,CAAC,gBAAgB;IAiBxB;;;;;OAKG;IACH,OAAO,CAAC,iBAAiB;IA8CzB;;;;;;;;;OASG;IACH,OAAO,CAAC,iBAAiB;CAuD1B"}
|
|
@@ -0,0 +1,194 @@
|
|
|
1
|
+
/**
|
|
2
|
+
* Converts an IAM policy into Python code for AWS CDK (using `aws_cdk.aws_iam`).
|
|
3
|
+
* Produces something like:
|
|
4
|
+
*
|
|
5
|
+
*/
|
|
6
|
+
export class CdkPythonConverter {
|
|
7
|
+
convert(policy, sb, options) {
|
|
8
|
+
// sb.pushLine('import aws_cdk.aws_iam as iam')
|
|
9
|
+
// sb.pushLine('')
|
|
10
|
+
const variableName = options?.variableName || 'policy_document';
|
|
11
|
+
sb.pushLine(`${variableName} = iam.PolicyDocument(`);
|
|
12
|
+
sb.withIndent((docBuffer) => {
|
|
13
|
+
docBuffer.pushLine('statements=[');
|
|
14
|
+
docBuffer.withIndent((statementsBuffer) => {
|
|
15
|
+
const statements = policy.statements();
|
|
16
|
+
statements.forEach((statement, idx) => {
|
|
17
|
+
statementsBuffer.pushLine('iam.PolicyStatement(');
|
|
18
|
+
statementsBuffer.withIndent((stmtBuffer) => {
|
|
19
|
+
// Sid
|
|
20
|
+
if (statement.sid()) {
|
|
21
|
+
stmtBuffer.pushLine(`sid="${statement.sid()}",`);
|
|
22
|
+
}
|
|
23
|
+
if (statement.effect() && !statement.isAllow()) {
|
|
24
|
+
stmtBuffer.pushLine(`effect=Effect.DENY,`);
|
|
25
|
+
}
|
|
26
|
+
// Actions / NotActions
|
|
27
|
+
if (statement.isActionStatement()) {
|
|
28
|
+
this.convertActions(statement.actions(), 'actions', stmtBuffer);
|
|
29
|
+
}
|
|
30
|
+
else if (statement.isNotActionStatement()) {
|
|
31
|
+
// CDK also supports not_actions
|
|
32
|
+
this.convertActions(statement.notActions(), 'not_actions', stmtBuffer);
|
|
33
|
+
}
|
|
34
|
+
// Resources / NotResources
|
|
35
|
+
if (statement.isResourceStatement()) {
|
|
36
|
+
this.convertResources(statement.resources(), 'resources', stmtBuffer);
|
|
37
|
+
}
|
|
38
|
+
else if (statement.isNotResourceStatement()) {
|
|
39
|
+
this.convertResources(statement.notResources(), 'not_resources', stmtBuffer);
|
|
40
|
+
}
|
|
41
|
+
// Principals / NotPrincipals
|
|
42
|
+
if (statement.isPrincipalStatement()) {
|
|
43
|
+
this.convertPrincipals(statement.principals(), 'principals', statement.hasSingleWildcardPrincipal(), stmtBuffer);
|
|
44
|
+
}
|
|
45
|
+
else if (statement.isNotPrincipalStatement()) {
|
|
46
|
+
this.convertPrincipals(statement.notPrincipals(), 'not_principals', statement.hasSingleWildcardNotPrincipal(), stmtBuffer);
|
|
47
|
+
}
|
|
48
|
+
// Conditions
|
|
49
|
+
this.convertConditions(statement.conditions(), stmtBuffer);
|
|
50
|
+
});
|
|
51
|
+
statementsBuffer.pushLine('),'); // end of iam.PolicyStatement
|
|
52
|
+
});
|
|
53
|
+
});
|
|
54
|
+
docBuffer.pushLine('],'); // end of statements array
|
|
55
|
+
});
|
|
56
|
+
sb.pushLine(')'); // end of iam.PolicyDocument
|
|
57
|
+
}
|
|
58
|
+
convertActions(actions, propertyName, sb) {
|
|
59
|
+
if (!actions.length) {
|
|
60
|
+
return;
|
|
61
|
+
}
|
|
62
|
+
sb.pushLine(`${propertyName}=[`);
|
|
63
|
+
sb.withIndent((arrBuffer) => {
|
|
64
|
+
actions.forEach((action) => {
|
|
65
|
+
arrBuffer.pushLine(`"${action.value()}",`);
|
|
66
|
+
});
|
|
67
|
+
});
|
|
68
|
+
sb.pushLine('],');
|
|
69
|
+
}
|
|
70
|
+
convertResources(resources, propertyName, sb) {
|
|
71
|
+
if (!resources.length) {
|
|
72
|
+
return;
|
|
73
|
+
}
|
|
74
|
+
sb.pushLine(`${propertyName}=[`);
|
|
75
|
+
sb.withIndent((arrBuffer) => {
|
|
76
|
+
resources.forEach((res) => {
|
|
77
|
+
arrBuffer.pushLine(`"${res.value()}",`);
|
|
78
|
+
});
|
|
79
|
+
});
|
|
80
|
+
sb.pushLine('],');
|
|
81
|
+
}
|
|
82
|
+
/**
|
|
83
|
+
* Convert Principals into Python code, e.g. `[iam.ArnPrincipal("arn..."), iam.ServicePrincipal("...")]`.
|
|
84
|
+
*
|
|
85
|
+
* If `*` is present (and singled out by your policy logic), we use `iam.AnyPrincipal()`.
|
|
86
|
+
* Otherwise, we pick principal classes based on `principal.type()`.
|
|
87
|
+
*/
|
|
88
|
+
convertPrincipals(principals, propertyName, hasSingleWildcard, sb) {
|
|
89
|
+
if (hasSingleWildcard) {
|
|
90
|
+
sb.pushLine(`${propertyName}=[iam.StarPrincipal()],`);
|
|
91
|
+
return;
|
|
92
|
+
}
|
|
93
|
+
if (!principals.length) {
|
|
94
|
+
return;
|
|
95
|
+
}
|
|
96
|
+
sb.pushLine(`${propertyName}=[`);
|
|
97
|
+
sb.withIndent((arrBuffer) => {
|
|
98
|
+
for (const p of principals) {
|
|
99
|
+
const type = p.type(); // e.g. "AWS", "Service", "Federated", "*"
|
|
100
|
+
const value = p.value();
|
|
101
|
+
let principalCtor;
|
|
102
|
+
if (type === 'AWS') {
|
|
103
|
+
if (value === '*') {
|
|
104
|
+
principalCtor = 'iam.AnyPrincipal()';
|
|
105
|
+
}
|
|
106
|
+
else {
|
|
107
|
+
principalCtor = `iam.ArnPrincipal("${value}")`;
|
|
108
|
+
}
|
|
109
|
+
}
|
|
110
|
+
else if (type === 'Service') {
|
|
111
|
+
principalCtor = `iam.ServicePrincipal("${value}")`;
|
|
112
|
+
}
|
|
113
|
+
else if (type === 'Federated') {
|
|
114
|
+
// e.g. cognito-identity.amazonaws.com
|
|
115
|
+
// in TS: new iam.FederatedPrincipal(..., {...}, "sts.amazonaws.com")
|
|
116
|
+
// in Python, it's iam.FederatedPrincipal(..., {...}, "sts.amazonaws.com")
|
|
117
|
+
// We'll just provide an empty policy document for now.
|
|
118
|
+
principalCtor = `iam.FederatedPrincipal("${value}")`;
|
|
119
|
+
}
|
|
120
|
+
else {
|
|
121
|
+
// fallback
|
|
122
|
+
principalCtor = `iam.ArnPrincipal("${value}")`;
|
|
123
|
+
}
|
|
124
|
+
arrBuffer.pushLine(`${principalCtor},`);
|
|
125
|
+
}
|
|
126
|
+
});
|
|
127
|
+
sb.pushLine('],');
|
|
128
|
+
}
|
|
129
|
+
/**
|
|
130
|
+
* Convert conditions into a Python dict structure, e.g.
|
|
131
|
+
*
|
|
132
|
+
* conditions={
|
|
133
|
+
* "StringEquals": {
|
|
134
|
+
* "aws:username": "FoxMulder",
|
|
135
|
+
* "aws:someKey": ["val1","val2"]
|
|
136
|
+
* }
|
|
137
|
+
* }
|
|
138
|
+
*/
|
|
139
|
+
convertConditions(conditions, sb) {
|
|
140
|
+
if (!conditions.length) {
|
|
141
|
+
return;
|
|
142
|
+
}
|
|
143
|
+
// We'll build a nested object/dict in memory:
|
|
144
|
+
// { operator: { key: string | string[] } }
|
|
145
|
+
const conditionMap = {};
|
|
146
|
+
for (const cond of conditions) {
|
|
147
|
+
const operator = cond.operation().value(); // e.g. "StringEquals", "ForAnyValue:StringLike", etc.
|
|
148
|
+
const key = cond.conditionKey(); // e.g. "aws:username"
|
|
149
|
+
const vals = cond.conditionValues(); // string[]
|
|
150
|
+
if (!conditionMap[operator]) {
|
|
151
|
+
conditionMap[operator] = {};
|
|
152
|
+
}
|
|
153
|
+
if (!conditionMap[operator][key]) {
|
|
154
|
+
conditionMap[operator][key] = vals.length === 1 ? vals[0] : [...vals];
|
|
155
|
+
}
|
|
156
|
+
else {
|
|
157
|
+
// If already present, merge
|
|
158
|
+
const existing = conditionMap[operator][key];
|
|
159
|
+
if (Array.isArray(existing)) {
|
|
160
|
+
existing.push(...vals);
|
|
161
|
+
}
|
|
162
|
+
else {
|
|
163
|
+
conditionMap[operator][key] = [existing, ...vals];
|
|
164
|
+
}
|
|
165
|
+
}
|
|
166
|
+
}
|
|
167
|
+
sb.pushLine('conditions={');
|
|
168
|
+
sb.withIndent((conditionsBuffer) => {
|
|
169
|
+
for (const [op, keyMap] of Object.entries(conditionMap)) {
|
|
170
|
+
conditionsBuffer.pushLine(`"${op}": {`);
|
|
171
|
+
conditionsBuffer.withIndent((opBuffer) => {
|
|
172
|
+
for (const [k, val] of Object.entries(keyMap)) {
|
|
173
|
+
if (Array.isArray(val)) {
|
|
174
|
+
// e.g. "aws:prefix": ["val1", "val2"]
|
|
175
|
+
opBuffer.pushLine(`"${k}": [`);
|
|
176
|
+
opBuffer.withIndent((arrBuffer) => {
|
|
177
|
+
val.forEach((item) => {
|
|
178
|
+
arrBuffer.pushLine(`"${item}",`);
|
|
179
|
+
});
|
|
180
|
+
});
|
|
181
|
+
opBuffer.pushLine('],');
|
|
182
|
+
}
|
|
183
|
+
else {
|
|
184
|
+
opBuffer.pushLine(`"${k}": "${val}",`);
|
|
185
|
+
}
|
|
186
|
+
}
|
|
187
|
+
});
|
|
188
|
+
conditionsBuffer.pushLine('},');
|
|
189
|
+
}
|
|
190
|
+
});
|
|
191
|
+
sb.pushLine('},');
|
|
192
|
+
}
|
|
193
|
+
}
|
|
194
|
+
//# sourceMappingURL=cdkPython.js.map
|
|
@@ -0,0 +1 @@
|
|
|
1
|
+
{"version":3,"file":"cdkPython.js","sourceRoot":"","sources":["../../../src/converters/cdkPython.ts"],"names":[],"mappings":"AAIA;;;;GAIG;AACH,MAAM,OAAO,kBAAkB;IAC7B,OAAO,CAAC,MAAc,EAAE,EAAgB,EAAE,OAAmC;QAC3E,+CAA+C;QAC/C,kBAAkB;QAElB,MAAM,YAAY,GAAG,OAAO,EAAE,YAAY,IAAI,iBAAiB,CAAA;QAE/D,EAAE,CAAC,QAAQ,CAAC,GAAG,YAAY,wBAAwB,CAAC,CAAA;QACpD,EAAE,CAAC,UAAU,CAAC,CAAC,SAAS,EAAE,EAAE;YAC1B,SAAS,CAAC,QAAQ,CAAC,cAAc,CAAC,CAAA;YAClC,SAAS,CAAC,UAAU,CAAC,CAAC,gBAAgB,EAAE,EAAE;gBACxC,MAAM,UAAU,GAAG,MAAM,CAAC,UAAU,EAAE,CAAA;gBACtC,UAAU,CAAC,OAAO,CAAC,CAAC,SAAS,EAAE,GAAG,EAAE,EAAE;oBACpC,gBAAgB,CAAC,QAAQ,CAAC,sBAAsB,CAAC,CAAA;oBACjD,gBAAgB,CAAC,UAAU,CAAC,CAAC,UAAU,EAAE,EAAE;wBACzC,MAAM;wBACN,IAAI,SAAS,CAAC,GAAG,EAAE,EAAE,CAAC;4BACpB,UAAU,CAAC,QAAQ,CAAC,QAAQ,SAAS,CAAC,GAAG,EAAE,IAAI,CAAC,CAAA;wBAClD,CAAC;wBAED,IAAI,SAAS,CAAC,MAAM,EAAE,IAAI,CAAC,SAAS,CAAC,OAAO,EAAE,EAAE,CAAC;4BAC/C,UAAU,CAAC,QAAQ,CAAC,qBAAqB,CAAC,CAAA;wBAC5C,CAAC;wBAED,uBAAuB;wBACvB,IAAI,SAAS,CAAC,iBAAiB,EAAE,EAAE,CAAC;4BAClC,IAAI,CAAC,cAAc,CAAC,SAAS,CAAC,OAAO,EAAE,EAAE,SAAS,EAAE,UAAU,CAAC,CAAA;wBACjE,CAAC;6BAAM,IAAI,SAAS,CAAC,oBAAoB,EAAE,EAAE,CAAC;4BAC5C,gCAAgC;4BAChC,IAAI,CAAC,cAAc,CAAC,SAAS,CAAC,UAAU,EAAE,EAAE,aAAa,EAAE,UAAU,CAAC,CAAA;wBACxE,CAAC;wBAED,2BAA2B;wBAC3B,IAAI,SAAS,CAAC,mBAAmB,EAAE,EAAE,CAAC;4BACpC,IAAI,CAAC,gBAAgB,CAAC,SAAS,CAAC,SAAS,EAAE,EAAE,WAAW,EAAE,UAAU,CAAC,CAAA;wBACvE,CAAC;6BAAM,IAAI,SAAS,CAAC,sBAAsB,EAAE,EAAE,CAAC;4BAC9C,IAAI,CAAC,gBAAgB,CAAC,SAAS,CAAC,YAAY,EAAE,EAAE,eAAe,EAAE,UAAU,CAAC,CAAA;wBAC9E,CAAC;wBAED,6BAA6B;wBAC7B,IAAI,SAAS,CAAC,oBAAoB,EAAE,EAAE,CAAC;4BACrC,IAAI,CAAC,iBAAiB,CACpB,SAAS,CAAC,UAAU,EAAE,EACtB,YAAY,EACZ,SAAS,CAAC,0BAA0B,EAAE,EACtC,UAAU,CACX,CAAA;wBACH,CAAC;6BAAM,IAAI,SAAS,CAAC,uBAAuB,EAAE,EAAE,CAAC;4BAC/C,IAAI,CAAC,iBAAiB,CACpB,SAAS,CAAC,aAAa,EAAE,EACzB,gBAAgB,EAChB,SAAS,CAAC,6BAA6B,EAAE,EACzC,UAAU,CACX,CAAA;wBACH,CAAC;wBAED,aAAa;wBACb,IAAI,CAAC,iBAAiB,CAAC,SAAS,CAAC,UAAU,EAAE,EAAE,UAAU,CAAC,CAAA;oBAC5D,CAAC,CAAC,CAAA;oBAEF,gBAAgB,CAAC,QAAQ,CAAC,IAAI,CAAC,CAAA,CAAC,6BAA6B;gBAC/D,CAAC,CAAC,CAAA;YACJ,CAAC,CAAC,CAAA;YACF,SAAS,CAAC,QAAQ,CAAC,IAAI,CAAC,CAAA,CAAC,0BAA0B;QACrD,CAAC,CAAC,CAAA;QACF,EAAE,CAAC,QAAQ,CAAC,GAAG,CAAC,CAAA,CAAC,4BAA4B;IAC/C,CAAC;IAEO,cAAc,CACpB,OAAiB,EACjB,YAAuC,EACvC,EAAgB;QAEhB,IAAI,CAAC,OAAO,CAAC,MAAM,EAAE,CAAC;YACpB,OAAM;QACR,CAAC;QACD,EAAE,CAAC,QAAQ,CAAC,GAAG,YAAY,IAAI,CAAC,CAAA;QAChC,EAAE,CAAC,UAAU,CAAC,CAAC,SAAS,EAAE,EAAE;YAC1B,OAAO,CAAC,OAAO,CAAC,CAAC,MAAM,EAAE,EAAE;gBACzB,SAAS,CAAC,QAAQ,CAAC,IAAI,MAAM,CAAC,KAAK,EAAE,IAAI,CAAC,CAAA;YAC5C,CAAC,CAAC,CAAA;QACJ,CAAC,CAAC,CAAA;QACF,EAAE,CAAC,QAAQ,CAAC,IAAI,CAAC,CAAA;IACnB,CAAC;IAEO,gBAAgB,CACtB,SAAqB,EACrB,YAA2C,EAC3C,EAAgB;QAEhB,IAAI,CAAC,SAAS,CAAC,MAAM,EAAE,CAAC;YACtB,OAAM;QACR,CAAC;QACD,EAAE,CAAC,QAAQ,CAAC,GAAG,YAAY,IAAI,CAAC,CAAA;QAChC,EAAE,CAAC,UAAU,CAAC,CAAC,SAAS,EAAE,EAAE;YAC1B,SAAS,CAAC,OAAO,CAAC,CAAC,GAAG,EAAE,EAAE;gBACxB,SAAS,CAAC,QAAQ,CAAC,IAAI,GAAG,CAAC,KAAK,EAAE,IAAI,CAAC,CAAA;YACzC,CAAC,CAAC,CAAA;QACJ,CAAC,CAAC,CAAA;QACF,EAAE,CAAC,QAAQ,CAAC,IAAI,CAAC,CAAA;IACnB,CAAC;IAED;;;;;OAKG;IACK,iBAAiB,CACvB,UAAuB,EACvB,YAA6C,EAC7C,iBAA0B,EAC1B,EAAgB;QAEhB,IAAI,iBAAiB,EAAE,CAAC;YACtB,EAAE,CAAC,QAAQ,CAAC,GAAG,YAAY,yBAAyB,CAAC,CAAA;YACrD,OAAM;QACR,CAAC;QACD,IAAI,CAAC,UAAU,CAAC,MAAM,EAAE,CAAC;YACvB,OAAM;QACR,CAAC;QAED,EAAE,CAAC,QAAQ,CAAC,GAAG,YAAY,IAAI,CAAC,CAAA;QAChC,EAAE,CAAC,UAAU,CAAC,CAAC,SAAS,EAAE,EAAE;YAC1B,KAAK,MAAM,CAAC,IAAI,UAAU,EAAE,CAAC;gBAC3B,MAAM,IAAI,GAAG,CAAC,CAAC,IAAI,EAAE,CAAA,CAAC,0CAA0C;gBAChE,MAAM,KAAK,GAAG,CAAC,CAAC,KAAK,EAAE,CAAA;gBAEvB,IAAI,aAAqB,CAAA;gBACzB,IAAI,IAAI,KAAK,KAAK,EAAE,CAAC;oBACnB,IAAI,KAAK,KAAK,GAAG,EAAE,CAAC;wBAClB,aAAa,GAAG,oBAAoB,CAAA;oBACtC,CAAC;yBAAM,CAAC;wBACN,aAAa,GAAG,qBAAqB,KAAK,IAAI,CAAA;oBAChD,CAAC;gBACH,CAAC;qBAAM,IAAI,IAAI,KAAK,SAAS,EAAE,CAAC;oBAC9B,aAAa,GAAG,yBAAyB,KAAK,IAAI,CAAA;gBACpD,CAAC;qBAAM,IAAI,IAAI,KAAK,WAAW,EAAE,CAAC;oBAChC,sCAAsC;oBACtC,qEAAqE;oBACrE,0EAA0E;oBAC1E,uDAAuD;oBACvD,aAAa,GAAG,2BAA2B,KAAK,IAAI,CAAA;gBACtD,CAAC;qBAAM,CAAC;oBACN,WAAW;oBACX,aAAa,GAAG,qBAAqB,KAAK,IAAI,CAAA;gBAChD,CAAC;gBAED,SAAS,CAAC,QAAQ,CAAC,GAAG,aAAa,GAAG,CAAC,CAAA;YACzC,CAAC;QACH,CAAC,CAAC,CAAA;QACF,EAAE,CAAC,QAAQ,CAAC,IAAI,CAAC,CAAA;IACnB,CAAC;IAED;;;;;;;;;OASG;IACK,iBAAiB,CAAC,UAAuB,EAAE,EAAgB;QACjE,IAAI,CAAC,UAAU,CAAC,MAAM,EAAE,CAAC;YACvB,OAAM;QACR,CAAC;QAED,8CAA8C;QAC9C,2CAA2C;QAC3C,MAAM,YAAY,GAAsD,EAAE,CAAA;QAE1E,KAAK,MAAM,IAAI,IAAI,UAAU,EAAE,CAAC;YAC9B,MAAM,QAAQ,GAAG,IAAI,CAAC,SAAS,EAAE,CAAC,KAAK,EAAE,CAAA,CAAC,sDAAsD;YAChG,MAAM,GAAG,GAAG,IAAI,CAAC,YAAY,EAAE,CAAA,CAAC,sBAAsB;YACtD,MAAM,IAAI,GAAG,IAAI,CAAC,eAAe,EAAE,CAAA,CAAC,WAAW;YAC/C,IAAI,CAAC,YAAY,CAAC,QAAQ,CAAC,EAAE,CAAC;gBAC5B,YAAY,CAAC,QAAQ,CAAC,GAAG,EAAE,CAAA;YAC7B,CAAC;YAED,IAAI,CAAC,YAAY,CAAC,QAAQ,CAAC,CAAC,GAAG,CAAC,EAAE,CAAC;gBACjC,YAAY,CAAC,QAAQ,CAAC,CAAC,GAAG,CAAC,GAAG,IAAI,CAAC,MAAM,KAAK,CAAC,CAAC,CAAC,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,GAAG,IAAI,CAAC,CAAA;YACvE,CAAC;iBAAM,CAAC;gBACN,4BAA4B;gBAC5B,MAAM,QAAQ,GAAG,YAAY,CAAC,QAAQ,CAAC,CAAC,GAAG,CAAC,CAAA;gBAC5C,IAAI,KAAK,CAAC,OAAO,CAAC,QAAQ,CAAC,EAAE,CAAC;oBAC5B,QAAQ,CAAC,IAAI,CAAC,GAAG,IAAI,CAAC,CAAA;gBACxB,CAAC;qBAAM,CAAC;oBACN,YAAY,CAAC,QAAQ,CAAC,CAAC,GAAG,CAAC,GAAG,CAAC,QAAQ,EAAE,GAAG,IAAI,CAAC,CAAA;gBACnD,CAAC;YACH,CAAC;QACH,CAAC;QAED,EAAE,CAAC,QAAQ,CAAC,cAAc,CAAC,CAAA;QAC3B,EAAE,CAAC,UAAU,CAAC,CAAC,gBAAgB,EAAE,EAAE;YACjC,KAAK,MAAM,CAAC,EAAE,EAAE,MAAM,CAAC,IAAI,MAAM,CAAC,OAAO,CAAC,YAAY,CAAC,EAAE,CAAC;gBACxD,gBAAgB,CAAC,QAAQ,CAAC,IAAI,EAAE,MAAM,CAAC,CAAA;gBACvC,gBAAgB,CAAC,UAAU,CAAC,CAAC,QAAQ,EAAE,EAAE;oBACvC,KAAK,MAAM,CAAC,CAAC,EAAE,GAAG,CAAC,IAAI,MAAM,CAAC,OAAO,CAAC,MAAM,CAAC,EAAE,CAAC;wBAC9C,IAAI,KAAK,CAAC,OAAO,CAAC,GAAG,CAAC,EAAE,CAAC;4BACvB,sCAAsC;4BACtC,QAAQ,CAAC,QAAQ,CAAC,IAAI,CAAC,MAAM,CAAC,CAAA;4BAC9B,QAAQ,CAAC,UAAU,CAAC,CAAC,SAAS,EAAE,EAAE;gCAChC,GAAG,CAAC,OAAO,CAAC,CAAC,IAAI,EAAE,EAAE;oCACnB,SAAS,CAAC,QAAQ,CAAC,IAAI,IAAI,IAAI,CAAC,CAAA;gCAClC,CAAC,CAAC,CAAA;4BACJ,CAAC,CAAC,CAAA;4BACF,QAAQ,CAAC,QAAQ,CAAC,IAAI,CAAC,CAAA;wBACzB,CAAC;6BAAM,CAAC;4BACN,QAAQ,CAAC,QAAQ,CAAC,IAAI,CAAC,OAAO,GAAG,IAAI,CAAC,CAAA;wBACxC,CAAC;oBACH,CAAC;gBACH,CAAC,CAAC,CAAA;gBACF,gBAAgB,CAAC,QAAQ,CAAC,IAAI,CAAC,CAAA;YACjC,CAAC;QACH,CAAC,CAAC,CAAA;QACF,EAAE,CAAC,QAAQ,CAAC,IAAI,CAAC,CAAA;IACnB,CAAC;CACF"}
|
|
@@ -6,12 +6,13 @@ import { Converter } from './converter.js';
|
|
|
6
6
|
* to build a new iam.PolicyDocument with multiple iam.PolicyStatement objects.
|
|
7
7
|
*/
|
|
8
8
|
export declare class CdkTypescriptConverter implements Converter {
|
|
9
|
-
convert(policy: Policy, sb: StringBuffer
|
|
9
|
+
convert(policy: Policy, sb: StringBuffer, options?: {
|
|
10
|
+
variableName?: string;
|
|
11
|
+
}): void;
|
|
10
12
|
private convertActions;
|
|
11
13
|
private convertResources;
|
|
12
14
|
/**
|
|
13
15
|
* For Principals, we create new iam.Principal-based classes (e.g. ArnPrincipal, ServicePrincipal).
|
|
14
|
-
* If a wildcard is found, we can use `new iam.AnyPrincipal()` in the 'principals' array.
|
|
15
16
|
*/
|
|
16
17
|
private convertPrincipals;
|
|
17
18
|
/**
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"cdkTypescript.d.ts","sourceRoot":"","sources":["../../../src/converters/cdkTypescript.ts"],"names":[],"mappings":"AAAA,OAAO,EAAqB,MAAM,EAAuB,MAAM,2BAA2B,CAAA;AAC1F,OAAO,EAAE,YAAY,EAAE,MAAM,yBAAyB,CAAA;AACtD,OAAO,EAAE,SAAS,EAAE,MAAM,gBAAgB,CAAA;AAE1C;;;GAGG;AACH,qBAAa,sBAAuB,YAAW,SAAS;IACtD,OAAO,CAAC,MAAM,EAAE,MAAM,EAAE,EAAE,EAAE,YAAY;
|
|
1
|
+
{"version":3,"file":"cdkTypescript.d.ts","sourceRoot":"","sources":["../../../src/converters/cdkTypescript.ts"],"names":[],"mappings":"AAAA,OAAO,EAAqB,MAAM,EAAuB,MAAM,2BAA2B,CAAA;AAC1F,OAAO,EAAE,YAAY,EAAE,MAAM,yBAAyB,CAAA;AACtD,OAAO,EAAE,SAAS,EAAE,MAAM,gBAAgB,CAAA;AAE1C;;;GAGG;AACH,qBAAa,sBAAuB,YAAW,SAAS;IACtD,OAAO,CAAC,MAAM,EAAE,MAAM,EAAE,EAAE,EAAE,YAAY,EAAE,OAAO,CAAC,EAAE;QAAE,YAAY,CAAC,EAAE,MAAM,CAAA;KAAE;IA6E7E,OAAO,CAAC,cAAc;IAuBtB,OAAO,CAAC,gBAAgB;IAkBxB;;OAEG;IACH,OAAO,CAAC,iBAAiB;IA6CzB;;;;;;;;;;OAUG;IACH,OAAO,CAAC,iBAAiB;CA0D1B"}
|
|
@@ -3,10 +3,11 @@
|
|
|
3
3
|
* to build a new iam.PolicyDocument with multiple iam.PolicyStatement objects.
|
|
4
4
|
*/
|
|
5
5
|
export class CdkTypescriptConverter {
|
|
6
|
-
convert(policy, sb) {
|
|
6
|
+
convert(policy, sb, options) {
|
|
7
7
|
// sb.pushLine("import * as iam from 'aws-cdk-lib/aws-iam';")
|
|
8
8
|
// sb.pushLine('')
|
|
9
|
-
|
|
9
|
+
const variableName = options?.variableName || 'policyDocument';
|
|
10
|
+
sb.pushLine(`const ${variableName} = new iam.PolicyDocument({`);
|
|
10
11
|
sb.withIndent((docBuffer) => {
|
|
11
12
|
docBuffer.pushLine('statements: [');
|
|
12
13
|
docBuffer.withIndent((stmtsBuffer) => {
|
|
@@ -94,12 +95,11 @@ export class CdkTypescriptConverter {
|
|
|
94
95
|
}
|
|
95
96
|
/**
|
|
96
97
|
* For Principals, we create new iam.Principal-based classes (e.g. ArnPrincipal, ServicePrincipal).
|
|
97
|
-
* If a wildcard is found, we can use `new iam.AnyPrincipal()` in the 'principals' array.
|
|
98
98
|
*/
|
|
99
99
|
convertPrincipals(principals, propertyName, hasSingleWildcard, sb) {
|
|
100
100
|
if (hasSingleWildcard) {
|
|
101
101
|
// If it is just "*", then new iam.AnyPrincipal()
|
|
102
|
-
sb.pushLine(`${propertyName}: [new iam.
|
|
102
|
+
sb.pushLine(`${propertyName}: [new iam.StarPrincipal()],`);
|
|
103
103
|
return;
|
|
104
104
|
}
|
|
105
105
|
if (!principals.length) {
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"cdkTypescript.js","sourceRoot":"","sources":["../../../src/converters/cdkTypescript.ts"],"names":[],"mappings":"AAIA;;;GAGG;AACH,MAAM,OAAO,sBAAsB;IACjC,OAAO,CAAC,MAAc,EAAE,EAAgB;
|
|
1
|
+
{"version":3,"file":"cdkTypescript.js","sourceRoot":"","sources":["../../../src/converters/cdkTypescript.ts"],"names":[],"mappings":"AAIA;;;GAGG;AACH,MAAM,OAAO,sBAAsB;IACjC,OAAO,CAAC,MAAc,EAAE,EAAgB,EAAE,OAAmC;QAC3E,6DAA6D;QAC7D,kBAAkB;QAElB,MAAM,YAAY,GAAG,OAAO,EAAE,YAAY,IAAI,gBAAgB,CAAA;QAE9D,EAAE,CAAC,QAAQ,CAAC,SAAS,YAAY,6BAA6B,CAAC,CAAA;QAC/D,EAAE,CAAC,UAAU,CAAC,CAAC,SAAS,EAAE,EAAE;YAC1B,SAAS,CAAC,QAAQ,CAAC,eAAe,CAAC,CAAA;YACnC,SAAS,CAAC,UAAU,CAAC,CAAC,WAAW,EAAE,EAAE;gBACnC,MAAM,UAAU,GAAG,MAAM,CAAC,UAAU,EAAE,CAAA;gBACtC,UAAU,CAAC,OAAO,CAAC,CAAC,SAAS,EAAE,GAAG,EAAE,EAAE;oBACpC,WAAW,CAAC,QAAQ,CAAC,2BAA2B,CAAC,CAAA;oBACjD,WAAW,CAAC,UAAU,CAAC,CAAC,UAAU,EAAE,EAAE;wBACpC,MAAM;wBACN,IAAI,SAAS,CAAC,GAAG,EAAE,EAAE,CAAC;4BACpB,UAAU,CAAC,QAAQ,CAAC,SAAS,SAAS,CAAC,GAAG,EAAE,IAAI,CAAC,CAAA;wBACnD,CAAC;wBAED,sBAAsB;wBACtB,gFAAgF;wBAEhF,MAAM,MAAM,GAAG,SAAS,CAAC,MAAM,EAAE,CAAC,CAAC,CAAC,MAAM,CAAC,CAAC,CAAC,OAAO,CAAA;wBACpD,IAAI,SAAS,CAAC,MAAM,EAAE,EAAE,CAAC;4BACvB,UAAU,CAAC,QAAQ,CAAC,sBAAsB,MAAM,CAAC,WAAW,EAAE,GAAG,CAAC,CAAA;wBACpE,CAAC;wBAED,uBAAuB;wBACvB,IAAI,SAAS,CAAC,iBAAiB,EAAE,EAAE,CAAC;4BAClC,IAAI,CAAC,cAAc,CAAC,SAAS,CAAC,OAAO,EAAE,EAAE,SAAS,EAAE,UAAU,CAAC,CAAA;wBACjE,CAAC;6BAAM,IAAI,SAAS,CAAC,oBAAoB,EAAE,EAAE,CAAC;4BAC5C,iCAAiC;4BACjC,IAAI,CAAC,cAAc,CAAC,SAAS,CAAC,UAAU,EAAE,EAAE,YAAY,EAAE,UAAU,CAAC,CAAA;wBACvE,CAAC;wBAED,2BAA2B;wBAC3B,IAAI,SAAS,CAAC,mBAAmB,EAAE,EAAE,CAAC;4BACpC,IAAI,CAAC,gBAAgB,CAAC,SAAS,CAAC,SAAS,EAAE,EAAE,WAAW,EAAE,UAAU,CAAC,CAAA;wBACvE,CAAC;6BAAM,IAAI,SAAS,CAAC,sBAAsB,EAAE,EAAE,CAAC;4BAC9C,mCAAmC;4BACnC,IAAI,CAAC,gBAAgB,CAAC,SAAS,CAAC,YAAY,EAAE,EAAE,cAAc,EAAE,UAAU,CAAC,CAAA;wBAC7E,CAAC;wBAED,6BAA6B;wBAC7B,IAAI,SAAS,CAAC,oBAAoB,EAAE,EAAE,CAAC;4BACrC,IAAI,CAAC,iBAAiB,CACpB,SAAS,CAAC,UAAU,EAAE,EACtB,YAAY,EACZ,SAAS,CAAC,0BAA0B,EAAE,EACtC,UAAU,CACX,CAAA;wBACH,CAAC;6BAAM,IAAI,SAAS,CAAC,uBAAuB,EAAE,EAAE,CAAC;4BAC/C,IAAI,CAAC,iBAAiB,CACpB,SAAS,CAAC,aAAa,EAAE,EACzB,eAAe,EACf,SAAS,CAAC,6BAA6B,EAAE,EACzC,UAAU,CACX,CAAA;wBACH,CAAC;wBAED,aAAa;wBACb,IAAI,CAAC,iBAAiB,CAAC,SAAS,CAAC,UAAU,EAAE,EAAE,UAAU,CAAC,CAAA;oBAC5D,CAAC,CAAC,CAAA;oBAEF,IAAI,GAAG,KAAK,UAAU,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;wBAClC,WAAW,CAAC,QAAQ,CAAC,IAAI,CAAC,CAAA;oBAC5B,CAAC;yBAAM,CAAC;wBACN,WAAW,CAAC,QAAQ,CAAC,KAAK,CAAC,CAAA;oBAC7B,CAAC;oBACD,8FAA8F;gBAChG,CAAC,CAAC,CAAA;YACJ,CAAC,CAAC,CAAA;YACF,SAAS,CAAC,QAAQ,CAAC,GAAG,CAAC,CAAA;QACzB,CAAC,CAAC,CAAA;QACF,EAAE,CAAC,QAAQ,CAAC,KAAK,CAAC,CAAA;IACpB,CAAC;IAEO,cAAc,CACpB,OAAiB,EACjB,YAAsC,EACtC,EAAgB;QAEhB,IAAI,CAAC,OAAO,CAAC,MAAM,EAAE,CAAC;YACpB,OAAM;QACR,CAAC;QAED,EAAE,CAAC,QAAQ,CAAC,GAAG,YAAY,KAAK,CAAC,CAAA;QACjC,EAAE,CAAC,UAAU,CAAC,CAAC,SAAS,EAAE,EAAE;YAC1B,MAAM,SAAS,GAAG,OAAO,CAAC,MAAM,GAAG,CAAC,CAAA;YACpC,OAAO,CAAC,OAAO,CAAC,CAAC,MAAM,EAAE,KAAK,EAAE,EAAE;gBAChC,IAAI,YAAY,GAAG,IAAI,MAAM,CAAC,KAAK,EAAE,GAAG,CAAA;gBACxC,IAAI,KAAK,GAAG,SAAS,EAAE,CAAC;oBACtB,YAAY,IAAI,GAAG,CAAA;gBACrB,CAAC;gBACD,SAAS,CAAC,QAAQ,CAAC,YAAY,CAAC,CAAA;YAClC,CAAC,CAAC,CAAA;QACJ,CAAC,CAAC,CAAA;QACF,EAAE,CAAC,QAAQ,CAAC,IAAI,CAAC,CAAA;IACnB,CAAC;IAEO,gBAAgB,CACtB,SAAqB,EACrB,YAA0C,EAC1C,EAAgB;QAEhB,IAAI,CAAC,SAAS,CAAC,MAAM,EAAE,CAAC;YACtB,OAAM;QACR,CAAC;QAED,EAAE,CAAC,QAAQ,CAAC,GAAG,YAAY,KAAK,CAAC,CAAA;QACjC,EAAE,CAAC,UAAU,CAAC,CAAC,SAAS,EAAE,EAAE;YAC1B,SAAS,CAAC,OAAO,CAAC,CAAC,GAAG,EAAE,EAAE;gBACxB,SAAS,CAAC,QAAQ,CAAC,IAAI,GAAG,CAAC,KAAK,EAAE,IAAI,CAAC,CAAA;YACzC,CAAC,CAAC,CAAA;QACJ,CAAC,CAAC,CAAA;QACF,EAAE,CAAC,QAAQ,CAAC,IAAI,CAAC,CAAA;IACnB,CAAC;IAED;;OAEG;IACK,iBAAiB,CACvB,UAAuB,EACvB,YAA4C,EAC5C,iBAA0B,EAC1B,EAAgB;QAEhB,IAAI,iBAAiB,EAAE,CAAC;YACtB,iDAAiD;YACjD,EAAE,CAAC,QAAQ,CAAC,GAAG,YAAY,8BAA8B,CAAC,CAAA;YAC1D,OAAM;QACR,CAAC;QAED,IAAI,CAAC,UAAU,CAAC,MAAM,EAAE,CAAC;YACvB,OAAM;QACR,CAAC;QAED,EAAE,CAAC,QAAQ,CAAC,GAAG,YAAY,KAAK,CAAC,CAAA;QACjC,EAAE,CAAC,UAAU,CAAC,CAAC,SAAS,EAAE,EAAE;YAC1B,UAAU,CAAC,OAAO,CAAC,CAAC,CAAC,EAAE,EAAE;gBACvB,MAAM,IAAI,GAAG,CAAC,CAAC,IAAI,EAAE,CAAA,CAAC,6CAA6C;gBACnE,MAAM,KAAK,GAAG,CAAC,CAAC,KAAK,EAAE,CAAA;gBAEvB,IAAI,aAAa,GAAG,EAAE,CAAA;gBACtB,IAAI,IAAI,KAAK,KAAK,EAAE,CAAC;oBACnB,qCAAqC;oBACrC,aAAa,GAAG,yBAAyB,KAAK,IAAI,CAAA;gBACpD,CAAC;qBAAM,IAAI,IAAI,KAAK,SAAS,EAAE,CAAC;oBAC9B,aAAa,GAAG,6BAA6B,KAAK,IAAI,CAAA;gBACxD,CAAC;qBAAM,IAAI,IAAI,KAAK,WAAW,EAAE,CAAC;oBAChC,6FAA6F;oBAC7F,aAAa,GAAG,+BAA+B,KAAK,IAAI,CAAA;gBAC1D,CAAC;qBAAM,IAAI,IAAI,KAAK,eAAe,EAAE,CAAC;oBACpC,aAAa,GAAG,mCAAmC,KAAK,IAAI,CAAA;gBAC9D,CAAC;qBAAM,CAAC;oBACN,gDAAgD;oBAChD,mFAAmF;oBACnF,aAAa,GAAG,yBAAyB,KAAK,IAAI,CAAA;gBACpD,CAAC;gBAED,SAAS,CAAC,QAAQ,CAAC,GAAG,aAAa,GAAG,CAAC,CAAA;YACzC,CAAC,CAAC,CAAA;QACJ,CAAC,CAAC,CAAA;QACF,EAAE,CAAC,QAAQ,CAAC,IAAI,CAAC,CAAA;IACnB,CAAC;IAED;;;;;;;;;;OAUG;IACK,iBAAiB,CAAC,UAAuB,EAAE,EAAgB;QACjE,IAAI,CAAC,UAAU,CAAC,MAAM,EAAE,CAAC;YACvB,OAAM;QACR,CAAC;QAED,0EAA0E;QAC1E,sFAAsF;QACtF,MAAM,YAAY,GAAsD,EAAE,CAAA;QAE1E,KAAK,MAAM,IAAI,IAAI,UAAU,EAAE,CAAC;YAC9B,MAAM,QAAQ,GAAG,IAAI,CAAC,SAAS,EAAE,CAAC,KAAK,EAAE,CAAA,CAAC,kDAAkD;YAC5F,MAAM,YAAY,GAAG,IAAI,CAAC,YAAY,EAAE,CAAA,CAAC,sBAAsB;YAC/D,MAAM,MAAM,GAAG,IAAI,CAAC,eAAe,EAAE,CAAA,CAAC,mBAAmB;YACzD,IAAI,CAAC,YAAY,CAAC,QAAQ,CAAC,EAAE,CAAC;gBAC5B,YAAY,CAAC,QAAQ,CAAC,GAAG,EAAE,CAAA;YAC7B,CAAC;YACD,oFAAoF;YACpF,IAAI,CAAC,YAAY,CAAC,QAAQ,CAAC,CAAC,YAAY,CAAC,EAAE,CAAC;gBAC1C,kEAAkE;gBAClE,YAAY,CAAC,QAAQ,CAAC,CAAC,YAAY,CAAC,GAAG,MAAM,CAAC,MAAM,KAAK,CAAC,CAAC,CAAC,CAAC,MAAM,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,MAAM,CAAA;YACjF,CAAC;iBAAM,CAAC;gBACN,yEAAyE;gBACzE,MAAM,QAAQ,GAAG,YAAY,CAAC,QAAQ,CAAC,CAAC,YAAY,CAAC,CAAA;gBACrD,IAAI,KAAK,CAAC,OAAO,CAAC,QAAQ,CAAC,EAAE,CAAC;oBAC5B,QAAQ,CAAC,IAAI,CAAC,GAAG,MAAM,CAAC,CAAA;gBAC1B,CAAC;qBAAM,CAAC;oBACN,0CAA0C;oBAC1C,YAAY,CAAC,QAAQ,CAAC,CAAC,YAAY,CAAC,GAAG,CAAC,QAAQ,EAAE,GAAG,MAAM,CAAC,CAAA;gBAC9D,CAAC;YACH,CAAC;QACH,CAAC;QAED,EAAE,CAAC,QAAQ,CAAC,eAAe,CAAC,CAAA;QAC5B,EAAE,CAAC,UAAU,CAAC,CAAC,UAAU,EAAE,EAAE;YAC3B,MAAM,CAAC,OAAO,CAAC,YAAY,CAAC,CAAC,OAAO,CAAC,CAAC,CAAC,EAAE,EAAE,MAAM,CAAC,EAAE,EAAE;gBACpD,UAAU,CAAC,QAAQ,CAAC,GAAG,EAAE,KAAK,CAAC,CAAA;gBAC/B,UAAU,CAAC,UAAU,CAAC,CAAC,QAAQ,EAAE,EAAE;oBACjC,MAAM,CAAC,OAAO,CAAC,MAAM,CAAC,CAAC,OAAO,CAAC,CAAC,CAAC,CAAC,EAAE,GAAG,CAAC,EAAE,EAAE;wBAC1C,IAAI,KAAK,CAAC,OAAO,CAAC,GAAG,CAAC,EAAE,CAAC;4BACvB,4CAA4C;4BAC5C,QAAQ,CAAC,QAAQ,CAAC,IAAI,CAAC,MAAM,CAAC,CAAA;4BAC9B,QAAQ,CAAC,UAAU,CAAC,CAAC,SAAS,EAAE,EAAE;gCAChC,GAAG,CAAC,OAAO,CAAC,CAAC,CAAC,EAAE,EAAE;oCAChB,SAAS,CAAC,QAAQ,CAAC,IAAI,CAAC,IAAI,CAAC,CAAA;gCAC/B,CAAC,CAAC,CAAA;4BACJ,CAAC,CAAC,CAAA;4BACF,QAAQ,CAAC,QAAQ,CAAC,IAAI,CAAC,CAAA;wBACzB,CAAC;6BAAM,CAAC;4BACN,gBAAgB;4BAChB,QAAQ,CAAC,QAAQ,CAAC,IAAI,CAAC,OAAO,GAAG,IAAI,CAAC,CAAA;wBACxC,CAAC;oBACH,CAAC,CAAC,CAAA;gBACJ,CAAC,CAAC,CAAA;gBACF,UAAU,CAAC,QAAQ,CAAC,IAAI,CAAC,CAAA;YAC3B,CAAC,CAAC,CAAA;QACJ,CAAC,CAAC,CAAA;QACF,EAAE,CAAC,QAAQ,CAAC,IAAI,CAAC,CAAA;IACnB,CAAC;CACF"}
|
|
@@ -1,5 +1,8 @@
|
|
|
1
1
|
import { Policy } from '@cloud-copilot/iam-policy';
|
|
2
2
|
import { StringBuffer } from '../util/StringBuffer.js';
|
|
3
|
+
export interface ConverterOptions {
|
|
4
|
+
variableName?: string;
|
|
5
|
+
}
|
|
3
6
|
export interface Converter {
|
|
4
7
|
/**
|
|
5
8
|
* Converts the given policy to a new format in the given StringBuffer
|
|
@@ -7,6 +10,6 @@ export interface Converter {
|
|
|
7
10
|
* @param policy the policy to convert
|
|
8
11
|
* @param buffer the buffer to write the result to
|
|
9
12
|
*/
|
|
10
|
-
convert(policy: Policy, buffer: StringBuffer): void;
|
|
13
|
+
convert(policy: Policy, buffer: StringBuffer, options?: ConverterOptions): void;
|
|
11
14
|
}
|
|
12
15
|
//# sourceMappingURL=converter.d.ts.map
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"converter.d.ts","sourceRoot":"","sources":["../../../src/converters/converter.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,MAAM,EAAE,MAAM,2BAA2B,CAAA;AAClD,OAAO,EAAE,YAAY,EAAE,MAAM,yBAAyB,CAAA;AAEtD,MAAM,WAAW,SAAS;IACxB;;;;;OAKG;IACH,OAAO,CAAC,MAAM,EAAE,MAAM,EAAE,MAAM,EAAE,YAAY,GAAG,IAAI,CAAA;
|
|
1
|
+
{"version":3,"file":"converter.d.ts","sourceRoot":"","sources":["../../../src/converters/converter.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,MAAM,EAAE,MAAM,2BAA2B,CAAA;AAClD,OAAO,EAAE,YAAY,EAAE,MAAM,yBAAyB,CAAA;AAEtD,MAAM,WAAW,gBAAgB;IAC/B,YAAY,CAAC,EAAE,MAAM,CAAA;CACtB;AACD,MAAM,WAAW,SAAS;IACxB;;;;;OAKG;IACH,OAAO,CAAC,MAAM,EAAE,MAAM,EAAE,MAAM,EAAE,YAAY,EAAE,OAAO,CAAC,EAAE,gBAAgB,GAAG,IAAI,CAAA;CAChF"}
|
|
@@ -5,7 +5,9 @@ import { Converter } from './converter.js';
|
|
|
5
5
|
* Converts an IAM policy to a Terraform aws_iam_policy_document data object.
|
|
6
6
|
*/
|
|
7
7
|
export declare class TerraformConverter implements Converter {
|
|
8
|
-
convert(policy: Policy, stringBuffer: StringBuffer
|
|
8
|
+
convert(policy: Policy, stringBuffer: StringBuffer, options?: {
|
|
9
|
+
variableName?: string;
|
|
10
|
+
}): void;
|
|
9
11
|
private convertActions;
|
|
10
12
|
private convertResources;
|
|
11
13
|
private convertPrincipals;
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"terraform.d.ts","sourceRoot":"","sources":["../../../src/converters/terraform.ts"],"names":[],"mappings":"AAAA,OAAO,EAAqB,MAAM,EAAuB,MAAM,2BAA2B,CAAA;AAC1F,OAAO,EAAE,YAAY,EAAE,MAAM,yBAAyB,CAAA;AACtD,OAAO,EAAE,SAAS,EAAE,MAAM,gBAAgB,CAAA;AAE1C;;GAEG;AACH,qBAAa,kBAAmB,YAAW,SAAS;IAClD,OAAO,CAAC,MAAM,EAAE,MAAM,EAAE,YAAY,EAAE,YAAY;
|
|
1
|
+
{"version":3,"file":"terraform.d.ts","sourceRoot":"","sources":["../../../src/converters/terraform.ts"],"names":[],"mappings":"AAAA,OAAO,EAAqB,MAAM,EAAuB,MAAM,2BAA2B,CAAA;AAC1F,OAAO,EAAE,YAAY,EAAE,MAAM,yBAAyB,CAAA;AACtD,OAAO,EAAE,SAAS,EAAE,MAAM,gBAAgB,CAAA;AAE1C;;GAEG;AACH,qBAAa,kBAAmB,YAAW,SAAS;IAClD,OAAO,CAAC,MAAM,EAAE,MAAM,EAAE,YAAY,EAAE,YAAY,EAAE,OAAO,CAAC,EAAE;QAAE,YAAY,CAAC,EAAE,MAAM,CAAA;KAAE;IAsEvF,OAAO,CAAC,cAAc;IAatB,OAAO,CAAC,gBAAgB;IAaxB,OAAO,CAAC,iBAAiB;IAqDzB,OAAO,CAAC,iBAAiB;CAuB1B"}
|
|
@@ -2,8 +2,9 @@
|
|
|
2
2
|
* Converts an IAM policy to a Terraform aws_iam_policy_document data object.
|
|
3
3
|
*/
|
|
4
4
|
export class TerraformConverter {
|
|
5
|
-
convert(policy, stringBuffer) {
|
|
6
|
-
|
|
5
|
+
convert(policy, stringBuffer, options) {
|
|
6
|
+
const variableName = options?.variableName || 'policy';
|
|
7
|
+
stringBuffer.pushLine(`data "aws_iam_policy_document" "${variableName}" {`);
|
|
7
8
|
stringBuffer.withIndent((policyBuffer) => {
|
|
8
9
|
if (policy.version() && policy.version() !== '2012-10-17') {
|
|
9
10
|
policyBuffer.pushLine(`version = "${policy.version()}"`);
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"terraform.js","sourceRoot":"","sources":["../../../src/converters/terraform.ts"],"names":[],"mappings":"AAIA;;GAEG;AACH,MAAM,OAAO,kBAAkB;IAC7B,OAAO,CAAC,MAAc,EAAE,YAA0B;
|
|
1
|
+
{"version":3,"file":"terraform.js","sourceRoot":"","sources":["../../../src/converters/terraform.ts"],"names":[],"mappings":"AAIA;;GAEG;AACH,MAAM,OAAO,kBAAkB;IAC7B,OAAO,CAAC,MAAc,EAAE,YAA0B,EAAE,OAAmC;QACrF,MAAM,YAAY,GAAG,OAAO,EAAE,YAAY,IAAI,QAAQ,CAAA;QAEtD,YAAY,CAAC,QAAQ,CAAC,mCAAmC,YAAY,KAAK,CAAC,CAAA;QAC3E,YAAY,CAAC,UAAU,CAAC,CAAC,YAAY,EAAE,EAAE;YACvC,IAAI,MAAM,CAAC,OAAO,EAAE,IAAI,MAAM,CAAC,OAAO,EAAE,KAAK,YAAY,EAAE,CAAC;gBAC1D,YAAY,CAAC,QAAQ,CAAC,cAAc,MAAM,CAAC,OAAO,EAAE,GAAG,CAAC,CAAA;YAC1D,CAAC;YAED,KAAK,MAAM,SAAS,IAAI,MAAM,CAAC,UAAU,EAAE,EAAE,CAAC;gBAC5C,YAAY,CAAC,QAAQ,CAAC,aAAa,CAAC,CAAA;gBACpC,YAAY,CAAC,UAAU,CAAC,CAAC,eAAe,EAAE,EAAE;oBAC1C,IAAI,SAAS,CAAC,GAAG,EAAE,EAAE,CAAC;wBACpB,eAAe,CAAC,QAAQ,CAAC,UAAU,SAAS,CAAC,GAAG,EAAE,GAAG,CAAC,CAAA;wBACtD,eAAe,CAAC,QAAQ,CAAC,EAAE,CAAC,CAAA;oBAC9B,CAAC;oBACD,IAAI,SAAS,CAAC,MAAM,EAAE,EAAE,CAAC;wBACvB,eAAe,CAAC,QAAQ,CAAC,iBAAiB,CAAC,CAAA;oBAC7C,CAAC;oBACD,IAAI,SAAS,CAAC,iBAAiB,EAAE,EAAE,CAAC;wBAClC,eAAe,CAAC,QAAQ,CAAC,aAAa,CAAC,CAAA;wBACvC,IAAI,CAAC,cAAc,CAAC,SAAS,CAAC,OAAO,EAAE,EAAE,eAAe,CAAC,CAAA;wBACzD,eAAe,CAAC,QAAQ,CAAC,GAAG,CAAC,CAAA;oBAC/B,CAAC;oBACD,IAAI,SAAS,CAAC,oBAAoB,EAAE,EAAE,CAAC;wBACrC,eAAe,CAAC,QAAQ,CAAC,iBAAiB,CAAC,CAAA;wBAC3C,IAAI,CAAC,cAAc,CAAC,SAAS,CAAC,UAAU,EAAE,EAAE,eAAe,CAAC,CAAA;wBAC5D,eAAe,CAAC,QAAQ,CAAC,GAAG,CAAC,CAAA;oBAC/B,CAAC;oBACD,IAAI,SAAS,CAAC,mBAAmB,EAAE,EAAE,CAAC;wBACpC,eAAe,CAAC,QAAQ,CAAC,eAAe,CAAC,CAAA;wBACzC,IAAI,CAAC,gBAAgB,CAAC,SAAS,CAAC,SAAS,EAAE,EAAE,eAAe,CAAC,CAAA;wBAC7D,eAAe,CAAC,QAAQ,CAAC,GAAG,CAAC,CAAA;oBAC/B,CAAC;oBACD,IAAI,SAAS,CAAC,sBAAsB,EAAE,EAAE,CAAC;wBACvC,eAAe,CAAC,QAAQ,CAAC,mBAAmB,CAAC,CAAA;wBAC7C,IAAI,CAAC,gBAAgB,CAAC,SAAS,CAAC,YAAY,EAAE,EAAE,eAAe,CAAC,CAAA;wBAChE,eAAe,CAAC,QAAQ,CAAC,GAAG,CAAC,CAAA;oBAC/B,CAAC;oBACD,IAAI,SAAS,CAAC,oBAAoB,EAAE,EAAE,CAAC;wBACrC,IAAI,CAAC,iBAAiB,CACpB,SAAS,CAAC,UAAU,EAAE,EACtB,YAAY,EACZ,SAAS,CAAC,0BAA0B,EAAE,EACtC,eAAe,CAChB,CAAA;oBACH,CAAC;oBACD,IAAI,SAAS,CAAC,uBAAuB,EAAE,EAAE,CAAC;wBACxC,IAAI,CAAC,iBAAiB,CACpB,SAAS,CAAC,aAAa,EAAE,EACzB,gBAAgB,EAChB,SAAS,CAAC,6BAA6B,EAAE,EACzC,eAAe,CAChB,CAAA;oBACH,CAAC;oBACD,IAAI,CAAC,iBAAiB,CAAC,SAAS,CAAC,UAAU,EAAE,EAAE,eAAe,CAAC,CAAA;gBACjE,CAAC,CAAC,CAAA;gBAEF,YAAY,CAAC,QAAQ,CAAC,GAAG,CAAC,CAAA;YAC5B,CAAC;QACH,CAAC,CAAC,CAAA;QAEF,YAAY,CAAC,MAAM,EAAE,CAAA;QAErB,YAAY,CAAC,QAAQ,EAAE,CAAA;QACvB,YAAY,CAAC,QAAQ,CAAC,GAAG,CAAC,CAAA;QAE1B,OAAM;IACR,CAAC;IAEO,cAAc,CAAC,OAAiB,EAAE,eAA6B;QACrE,MAAM,WAAW,GAAG,OAAO,CAAC,MAAM,CAAA;QAClC,eAAe,CAAC,UAAU,CAAC,CAAC,aAAa,EAAE,EAAE;YAC3C,OAAO,CAAC,OAAO,CAAC,CAAC,MAAM,EAAE,KAAK,EAAE,EAAE;gBAChC,IAAI,YAAY,GAAG,IAAI,MAAM,CAAC,KAAK,EAAE,GAAG,CAAA;gBACxC,IAAI,WAAW,GAAG,CAAC,IAAI,KAAK,GAAG,WAAW,GAAG,CAAC,EAAE,CAAC;oBAC/C,YAAY,IAAI,GAAG,CAAA;gBACrB,CAAC;gBACD,aAAa,CAAC,QAAQ,CAAC,YAAY,CAAC,CAAA;YACtC,CAAC,CAAC,CAAA;QACJ,CAAC,CAAC,CAAA;IACJ,CAAC;IAEO,gBAAgB,CAAC,SAAqB,EAAE,eAA6B;QAC3E,MAAM,aAAa,GAAG,SAAS,CAAC,MAAM,CAAA;QACtC,eAAe,CAAC,UAAU,CAAC,CAAC,eAAe,EAAE,EAAE;YAC7C,SAAS,CAAC,OAAO,CAAC,CAAC,QAAQ,EAAE,KAAK,EAAE,EAAE;gBACpC,IAAI,cAAc,GAAG,IAAI,QAAQ,CAAC,KAAK,EAAE,GAAG,CAAA;gBAC5C,IAAI,aAAa,GAAG,CAAC,IAAI,KAAK,GAAG,aAAa,GAAG,CAAC,EAAE,CAAC;oBACnD,cAAc,IAAI,GAAG,CAAA;gBACvB,CAAC;gBACD,eAAe,CAAC,QAAQ,CAAC,cAAc,CAAC,CAAA;YAC1C,CAAC,CAAC,CAAA;QACJ,CAAC,CAAC,CAAA;IACJ,CAAC;IAEO,iBAAiB,CACvB,UAAuB,EACvB,aAA8C,EAC9C,iBAA0B,EAC1B,eAA6B;QAE7B,IAAI,iBAAiB,EAAE,CAAC;YACtB,eAAe,CAAC,QAAQ,CAAC,GAAG,aAAa,IAAI,CAAC,CAAA;YAC9C,eAAe,CAAC,UAAU,CAAC,CAAC,eAAe,EAAE,EAAE;gBAC7C,eAAe,CAAC,QAAQ,CAAC,mBAAmB,CAAC,CAAA;gBAC7C,eAAe,CAAC,QAAQ,CAAC,mBAAmB,CAAC,CAAA;YAC/C,CAAC,CAAC,CAAA;YACF,eAAe,CAAC,QAAQ,CAAC,GAAG,CAAC,CAAA;YAC7B,eAAe,CAAC,QAAQ,CAAC,EAAE,CAAC,CAAA;YAC5B,OAAM;QACR,CAAC;QAED,MAAM,gBAAgB,GAAG,UAAU,CAAC,MAAM,CACxC,CAAC,GAAG,EAAE,SAAS,EAAE,EAAE;YACjB,MAAM,IAAI,GAAG,SAAS,CAAC,IAAI,EAAE,CAAA;YAC7B,IAAI,CAAC,GAAG,CAAC,IAAI,CAAC,EAAE,CAAC;gBACf,GAAG,CAAC,IAAI,CAAC,GAAG,EAAE,CAAA;YAChB,CAAC;YACD,GAAG,CAAC,IAAI,CAAC,CAAC,IAAI,CAAC,SAAS,CAAC,CAAA;YACzB,OAAO,GAAG,CAAA;QACZ,CAAC,EACD,EAAiC,CAClC,CAAA;QAED,KAAK,MAAM,IAAI,IAAI,gBAAgB,EAAE,CAAC;YACpC,eAAe,CAAC,QAAQ,CAAC,GAAG,aAAa,IAAI,CAAC,CAAA;YAC9C,eAAe,CAAC,UAAU,CAAC,CAAC,eAAe,EAAE,EAAE;gBAC7C,eAAe,CAAC,QAAQ,CAAC,kBAAkB,IAAI,GAAG,CAAC,CAAA;gBACnD,eAAe,CAAC,QAAQ,CAAC,iBAAiB,CAAC,CAAA;gBAC3C,MAAM,iBAAiB,GAAG,gBAAgB,CAAC,IAAI,CAAC,CAAA;gBAChD,MAAM,cAAc,GAAG,iBAAiB,CAAC,MAAM,CAAA;gBAC/C,eAAe,CAAC,UAAU,CAAC,CAAC,iBAAiB,EAAE,EAAE;oBAC/C,iBAAiB,CAAC,OAAO,CAAC,CAAC,SAAS,EAAE,KAAK,EAAE,EAAE;wBAC7C,IAAI,gBAAgB,GAAG,IAAI,SAAS,CAAC,KAAK,EAAE,GAAG,CAAA;wBAC/C,IAAI,cAAc,GAAG,CAAC,IAAI,KAAK,GAAG,cAAc,GAAG,CAAC,EAAE,CAAC;4BACrD,gBAAgB,IAAI,GAAG,CAAA;wBACzB,CAAC;wBACD,iBAAiB,CAAC,QAAQ,CAAC,gBAAgB,CAAC,CAAA;oBAC9C,CAAC,CAAC,CAAA;gBACJ,CAAC,CAAC,CAAA;gBAEF,eAAe,CAAC,QAAQ,CAAC,GAAG,CAAC,CAAA;YAC/B,CAAC,CAAC,CAAA;YACF,eAAe,CAAC,QAAQ,CAAC,GAAG,CAAC,CAAA;YAC7B,eAAe,CAAC,QAAQ,CAAC,EAAE,CAAC,CAAA;QAC9B,CAAC;IACH,CAAC;IAEO,iBAAiB,CAAC,UAAuB,EAAE,eAA6B;QAC9E,KAAK,MAAM,SAAS,IAAI,UAAU,EAAE,CAAC;YACnC,eAAe,CAAC,QAAQ,CAAC,aAAa,CAAC,CAAA;YACvC,eAAe,CAAC,UAAU,CAAC,CAAC,eAAe,EAAE,EAAE;gBAC7C,eAAe,CAAC,QAAQ,CAAC,eAAe,SAAS,CAAC,SAAS,EAAE,CAAC,KAAK,EAAE,GAAG,CAAC,CAAA;gBACzE,eAAe,CAAC,QAAQ,CAAC,eAAe,SAAS,CAAC,YAAY,EAAE,GAAG,CAAC,CAAA;gBACpE,eAAe,CAAC,QAAQ,CAAC,cAAc,CAAC,CAAA;gBACxC,MAAM,cAAc,GAAG,SAAS,CAAC,eAAe,EAAE,CAAC,MAAM,CAAA;gBACzD,eAAe,CAAC,UAAU,CAAC,CAAC,YAAY,EAAE,EAAE;oBAC1C,SAAS,CAAC,eAAe,EAAE,CAAC,OAAO,CAAC,CAAC,KAAK,EAAE,KAAK,EAAE,EAAE;wBACnD,IAAI,WAAW,GAAG,IAAI,KAAK,GAAG,CAAA;wBAC9B,IAAI,cAAc,GAAG,CAAC,IAAI,KAAK,GAAG,cAAc,GAAG,CAAC,EAAE,CAAC;4BACrD,WAAW,IAAI,GAAG,CAAA;wBACpB,CAAC;wBACD,YAAY,CAAC,QAAQ,CAAC,WAAW,CAAC,CAAA;oBACpC,CAAC,CAAC,CAAA;gBACJ,CAAC,CAAC,CAAA;gBACF,eAAe,CAAC,QAAQ,CAAC,GAAG,CAAC,CAAA;YAC/B,CAAC,CAAC,CAAA;YACF,eAAe,CAAC,QAAQ,CAAC,GAAG,CAAC,CAAA;YAC7B,eAAe,CAAC,QAAQ,CAAC,EAAE,CAAC,CAAA;QAC9B,CAAC;IACH,CAAC;CACF"}
|