@fjall/components-infrastructure 0.89.5 → 0.94.0

package/dist/lib/resources/aws/networking/crossAccountDelegationRecord.js

@@ -0,0 +1,26 @@
+import { Construct } from "constructs";
+import { Tags } from "aws-cdk-lib";
+import { CrossAccountZoneDelegationRecord as CdkCrossAccountZoneDelegationRecord } from "aws-cdk-lib/aws-route53";
+// CDK's CrossAccountZoneDelegationRecord is a custom-resource Lambda: user-level tags
+// on the record itself may not reach AWS. We tag the wrapping Fjall Construct for
+// assertion purposes; create-path tags still propagate to child resources (Lambda,
+// log group) via CDK's standard tag propagation.
+export class CrossAccountDelegationRecord extends Construct {
+    record;
+    description;
+    constructor(scope, id, props) {
+        super(scope, id);
+        this.description =
+            props.description ??
+                `Fjall-managed cross-account delegation for ${props.delegatedZoneName} in parent ${props.parentHostedZoneName}`;
+        this.record = new CdkCrossAccountZoneDelegationRecord(this, "Record", {
+            delegationRole: props.delegationRole,
+            delegatedZone: props.delegatedZone,
+            parentHostedZoneName: props.parentHostedZoneName
+        });
+        Tags.of(this).add("fjall:description", this.description);
+        Tags.of(this).add("fjall:costAllocation:environment", props.costAllocationEnvironment ?? "management");
+        Tags.of(this).add("fjall:costAllocation:service", "crossAccountDelegation");
+        Tags.of(this).add("fjall:costAllocation:domain", props.costAllocationDomain ?? props.delegatedZoneName);
+    }
+}

package/dist/lib/resources/aws/networking/dnsRecord/aRecord.d.ts

@@ -0,0 +1,12 @@
+import { Construct } from "constructs";
+import { ARecord as CdkARecord } from "aws-cdk-lib/aws-route53";
+import { type DnsRecordCommonProps } from "./dnsRecordBase.js";
+export interface ARecordProps extends DnsRecordCommonProps {
+    readonly values: string[];
+}
+export declare class ARecord extends Construct {
+    readonly record: CdkARecord;
+    readonly description: string;
+    readonly fqdn: string;
+    constructor(scope: Construct, id: string, props: ARecordProps);
+}

package/dist/lib/resources/aws/networking/dnsRecord/aRecord.js

@@ -0,0 +1,21 @@
+import { Construct } from "constructs";
+import { ARecord as CdkARecord, RecordTarget } from "aws-cdk-lib/aws-route53";
+import { applyDnsRecordTags, defaultDnsComment, resolveFqdn, resolveTtl } from "./dnsRecordBase.js";
+export class ARecord extends Construct {
+    record;
+    description;
+    fqdn;
+    constructor(scope, id, props) {
+        super(scope, id);
+        this.fqdn = resolveFqdn(props.zoneName, props.recordName);
+        this.description = props.description ?? defaultDnsComment("A", this.fqdn);
+        this.record = new CdkARecord(this, "Record", {
+            zone: props.zone,
+            recordName: this.fqdn,
+            target: RecordTarget.fromIpAddresses(...props.values),
+            ttl: resolveTtl(props.ttl),
+            comment: this.description
+        });
+        applyDnsRecordTags(this, props);
+    }
+}

package/dist/lib/resources/aws/networking/dnsRecord/aaaaRecord.d.ts

@@ -0,0 +1,12 @@
+import { Construct } from "constructs";
+import { AaaaRecord as CdkAaaaRecord } from "aws-cdk-lib/aws-route53";
+import { type DnsRecordCommonProps } from "./dnsRecordBase.js";
+export interface AaaaRecordProps extends DnsRecordCommonProps {
+    readonly values: string[];
+}
+export declare class AaaaRecord extends Construct {
+    readonly record: CdkAaaaRecord;
+    readonly description: string;
+    readonly fqdn: string;
+    constructor(scope: Construct, id: string, props: AaaaRecordProps);
+}

package/dist/lib/resources/aws/networking/dnsRecord/aaaaRecord.js

@@ -0,0 +1,22 @@
+import { Construct } from "constructs";
+import { AaaaRecord as CdkAaaaRecord, RecordTarget } from "aws-cdk-lib/aws-route53";
+import { applyDnsRecordTags, defaultDnsComment, resolveFqdn, resolveTtl } from "./dnsRecordBase.js";
+export class AaaaRecord extends Construct {
+    record;
+    description;
+    fqdn;
+    constructor(scope, id, props) {
+        super(scope, id);
+        this.fqdn = resolveFqdn(props.zoneName, props.recordName);
+        this.description =
+            props.description ?? defaultDnsComment("AAAA", this.fqdn);
+        this.record = new CdkAaaaRecord(this, "Record", {
+            zone: props.zone,
+            recordName: this.fqdn,
+            target: RecordTarget.fromIpAddresses(...props.values),
+            ttl: resolveTtl(props.ttl),
+            comment: this.description
+        });
+        applyDnsRecordTags(this, props);
+    }
+}

package/dist/lib/resources/aws/networking/dnsRecord/aliasRecord.d.ts

@@ -0,0 +1,12 @@
+import { Construct } from "constructs";
+import { ARecord as CdkARecord, type IAliasRecordTarget } from "aws-cdk-lib/aws-route53";
+import { type DnsRecordCommonProps } from "./dnsRecordBase.js";
+export interface AliasRecordProps extends DnsRecordCommonProps {
+    readonly target: IAliasRecordTarget;
+}
+export declare class AliasRecord extends Construct {
+    readonly record: CdkARecord;
+    readonly description: string;
+    readonly fqdn: string;
+    constructor(scope: Construct, id: string, props: AliasRecordProps);
+}

package/dist/lib/resources/aws/networking/dnsRecord/aliasRecord.js

@@ -0,0 +1,23 @@
+import { Construct } from "constructs";
+import { ARecord as CdkARecord, RecordTarget } from "aws-cdk-lib/aws-route53";
+import { applyDnsRecordTags, defaultDnsComment, resolveFqdn } from "./dnsRecordBase.js";
+export class AliasRecord extends Construct {
+    record;
+    description;
+    fqdn;
+    constructor(scope, id, props) {
+        super(scope, id);
+        this.fqdn = resolveFqdn(props.zoneName, props.recordName);
+        this.description =
+            props.description ?? defaultDnsComment("alias", this.fqdn);
+        // Route53 ignores TTL on ALIAS records — the target dictates caching behaviour,
+        // so we deliberately do not forward props.ttl to the underlying CDK resource.
+        this.record = new CdkARecord(this, "Record", {
+            zone: props.zone,
+            recordName: this.fqdn,
+            target: RecordTarget.fromAlias(props.target),
+            comment: this.description
+        });
+        applyDnsRecordTags(this, props);
+    }
+}

package/dist/lib/resources/aws/networking/dnsRecord/caaRecord.d.ts

@@ -0,0 +1,17 @@
+import { Construct } from "constructs";
+import { CaaRecord as CdkCaaRecord, type CaaTag } from "aws-cdk-lib/aws-route53";
+import { type DnsRecordCommonProps } from "./dnsRecordBase.js";
+export interface CaaRecordValue {
+    readonly flag: number;
+    readonly tag: CaaTag;
+    readonly value: string;
+}
+export interface CaaRecordProps extends DnsRecordCommonProps {
+    readonly values: CaaRecordValue[];
+}
+export declare class CaaRecord extends Construct {
+    readonly record: CdkCaaRecord;
+    readonly description: string;
+    readonly fqdn: string;
+    constructor(scope: Construct, id: string, props: CaaRecordProps);
+}

package/dist/lib/resources/aws/networking/dnsRecord/caaRecord.js

@@ -0,0 +1,21 @@
+import { Construct } from "constructs";
+import { CaaRecord as CdkCaaRecord } from "aws-cdk-lib/aws-route53";
+import { applyDnsRecordTags, defaultDnsComment, resolveFqdn, resolveTtl } from "./dnsRecordBase.js";
+export class CaaRecord extends Construct {
+    record;
+    description;
+    fqdn;
+    constructor(scope, id, props) {
+        super(scope, id);
+        this.fqdn = resolveFqdn(props.zoneName, props.recordName);
+        this.description = props.description ?? defaultDnsComment("CAA", this.fqdn);
+        this.record = new CdkCaaRecord(this, "Record", {
+            zone: props.zone,
+            recordName: this.fqdn,
+            values: props.values,
+            ttl: resolveTtl(props.ttl),
+            comment: this.description
+        });
+        applyDnsRecordTags(this, props);
+    }
+}

package/dist/lib/resources/aws/networking/dnsRecord/cnameRecord.d.ts

@@ -0,0 +1,12 @@
+import { Construct } from "constructs";
+import { CnameRecord as CdkCnameRecord } from "aws-cdk-lib/aws-route53";
+import { type DnsRecordCommonProps } from "./dnsRecordBase.js";
+export interface CnameRecordProps extends DnsRecordCommonProps {
+    readonly domainName: string;
+}
+export declare class CnameRecord extends Construct {
+    readonly record: CdkCnameRecord;
+    readonly description: string;
+    readonly fqdn: string;
+    constructor(scope: Construct, id: string, props: CnameRecordProps);
+}

package/dist/lib/resources/aws/networking/dnsRecord/cnameRecord.js

@@ -0,0 +1,22 @@
+import { Construct } from "constructs";
+import { CnameRecord as CdkCnameRecord } from "aws-cdk-lib/aws-route53";
+import { applyDnsRecordTags, defaultDnsComment, resolveFqdn, resolveTtl } from "./dnsRecordBase.js";
+export class CnameRecord extends Construct {
+    record;
+    description;
+    fqdn;
+    constructor(scope, id, props) {
+        super(scope, id);
+        this.fqdn = resolveFqdn(props.zoneName, props.recordName);
+        this.description =
+            props.description ?? defaultDnsComment("CNAME", this.fqdn);
+        this.record = new CdkCnameRecord(this, "Record", {
+            zone: props.zone,
+            recordName: this.fqdn,
+            domainName: props.domainName,
+            ttl: resolveTtl(props.ttl),
+            comment: this.description
+        });
+        applyDnsRecordTags(this, props);
+    }
+}

package/dist/lib/resources/aws/networking/dnsRecord/dnsRecordBase.d.ts

@@ -0,0 +1,17 @@
+import { Duration } from "aws-cdk-lib";
+import { type Construct } from "constructs";
+import type { IHostedZone } from "aws-cdk-lib/aws-route53";
+export interface DnsRecordCommonProps {
+    readonly zone: IHostedZone;
+    readonly zoneName: string;
+    readonly recordName: string;
+    readonly ttl?: number;
+    readonly description?: string;
+    readonly costAllocationEnvironment?: string;
+    readonly costAllocationDomain?: string;
+}
+export declare const DEFAULT_DNS_TTL_SECONDS = 300;
+export declare function resolveFqdn(zoneName: string, recordName: string): string;
+export declare function resolveTtl(ttlSeconds: number | undefined): Duration;
+export declare function defaultDnsComment(recordType: string, fqdn: string): string;
+export declare function applyDnsRecordTags(construct: Construct, props: Pick<DnsRecordCommonProps, "zoneName" | "costAllocationEnvironment" | "costAllocationDomain">): void;

package/dist/lib/resources/aws/networking/dnsRecord/dnsRecordBase.js

@@ -0,0 +1,17 @@
+import { Duration, Tags } from "aws-cdk-lib";
+import { DNS_APEX } from "@fjall/util";
+export const DEFAULT_DNS_TTL_SECONDS = 300;
+export function resolveFqdn(zoneName, recordName) {
+    return recordName === DNS_APEX ? zoneName : `${recordName}.${zoneName}`;
+}
+export function resolveTtl(ttlSeconds) {
+    return Duration.seconds(ttlSeconds ?? DEFAULT_DNS_TTL_SECONDS);
+}
+export function defaultDnsComment(recordType, fqdn) {
+    return `Fjall-managed ${recordType} record for ${fqdn}`;
+}
+export function applyDnsRecordTags(construct, props) {
+    Tags.of(construct).add("fjall:costAllocation:environment", props.costAllocationEnvironment ?? "management");
+    Tags.of(construct).add("fjall:costAllocation:service", "dnsRecord");
+    Tags.of(construct).add("fjall:costAllocation:domain", props.costAllocationDomain ?? props.zoneName);
+}

package/dist/lib/resources/aws/networking/dnsRecord/index.d.ts

@@ -0,0 +1,10 @@
+export { ARecord, type ARecordProps } from "./aRecord.js";
+export { AaaaRecord, type AaaaRecordProps } from "./aaaaRecord.js";
+export { CnameRecord, type CnameRecordProps } from "./cnameRecord.js";
+export { MxRecord, type MxRecordProps, type MxRecordValue } from "./mxRecord.js";
+export { TxtRecord, type TxtRecordProps } from "./txtRecord.js";
+export { NsRecord, type NsRecordProps } from "./nsRecord.js";
+export { SrvRecord, type SrvRecordProps, type SrvRecordValue } from "./srvRecord.js";
+export { CaaRecord, type CaaRecordProps, type CaaRecordValue } from "./caaRecord.js";
+export { AliasRecord, type AliasRecordProps } from "./aliasRecord.js";
+export { DEFAULT_DNS_TTL_SECONDS, type DnsRecordCommonProps } from "./dnsRecordBase.js";

package/dist/lib/resources/aws/networking/dnsRecord/index.js

@@ -0,0 +1,10 @@
+export { ARecord } from "./aRecord.js";
+export { AaaaRecord } from "./aaaaRecord.js";
+export { CnameRecord } from "./cnameRecord.js";
+export { MxRecord } from "./mxRecord.js";
+export { TxtRecord } from "./txtRecord.js";
+export { NsRecord } from "./nsRecord.js";
+export { SrvRecord } from "./srvRecord.js";
+export { CaaRecord } from "./caaRecord.js";
+export { AliasRecord } from "./aliasRecord.js";
+export { DEFAULT_DNS_TTL_SECONDS } from "./dnsRecordBase.js";

package/dist/lib/resources/aws/networking/dnsRecord/mxRecord.d.ts

@@ -0,0 +1,16 @@
+import { Construct } from "constructs";
+import { MxRecord as CdkMxRecord } from "aws-cdk-lib/aws-route53";
+import { type DnsRecordCommonProps } from "./dnsRecordBase.js";
+export interface MxRecordValue {
+    readonly hostName: string;
+    readonly priority: number;
+}
+export interface MxRecordProps extends DnsRecordCommonProps {
+    readonly values: MxRecordValue[];
+}
+export declare class MxRecord extends Construct {
+    readonly record: CdkMxRecord;
+    readonly description: string;
+    readonly fqdn: string;
+    constructor(scope: Construct, id: string, props: MxRecordProps);
+}

package/dist/lib/resources/aws/networking/dnsRecord/mxRecord.js

@@ -0,0 +1,21 @@
+import { Construct } from "constructs";
+import { MxRecord as CdkMxRecord } from "aws-cdk-lib/aws-route53";
+import { applyDnsRecordTags, defaultDnsComment, resolveFqdn, resolveTtl } from "./dnsRecordBase.js";
+export class MxRecord extends Construct {
+    record;
+    description;
+    fqdn;
+    constructor(scope, id, props) {
+        super(scope, id);
+        this.fqdn = resolveFqdn(props.zoneName, props.recordName);
+        this.description = props.description ?? defaultDnsComment("MX", this.fqdn);
+        this.record = new CdkMxRecord(this, "Record", {
+            zone: props.zone,
+            recordName: this.fqdn,
+            values: props.values,
+            ttl: resolveTtl(props.ttl),
+            comment: this.description
+        });
+        applyDnsRecordTags(this, props);
+    }
+}

package/dist/lib/resources/aws/networking/dnsRecord/nsRecord.d.ts

@@ -0,0 +1,12 @@
+import { Construct } from "constructs";
+import { NsRecord as CdkNsRecord } from "aws-cdk-lib/aws-route53";
+import { type DnsRecordCommonProps } from "./dnsRecordBase.js";
+export interface NsRecordProps extends DnsRecordCommonProps {
+    readonly values: string[];
+}
+export declare class NsRecord extends Construct {
+    readonly record: CdkNsRecord;
+    readonly description: string;
+    readonly fqdn: string;
+    constructor(scope: Construct, id: string, props: NsRecordProps);
+}

package/dist/lib/resources/aws/networking/dnsRecord/nsRecord.js

@@ -0,0 +1,21 @@
+import { Construct } from "constructs";
+import { NsRecord as CdkNsRecord } from "aws-cdk-lib/aws-route53";
+import { applyDnsRecordTags, defaultDnsComment, resolveFqdn, resolveTtl } from "./dnsRecordBase.js";
+export class NsRecord extends Construct {
+    record;
+    description;
+    fqdn;
+    constructor(scope, id, props) {
+        super(scope, id);
+        this.fqdn = resolveFqdn(props.zoneName, props.recordName);
+        this.description = props.description ?? defaultDnsComment("NS", this.fqdn);
+        this.record = new CdkNsRecord(this, "Record", {
+            zone: props.zone,
+            recordName: this.fqdn,
+            values: props.values,
+            ttl: resolveTtl(props.ttl),
+            comment: this.description
+        });
+        applyDnsRecordTags(this, props);
+    }
+}

package/dist/lib/resources/aws/networking/dnsRecord/srvRecord.d.ts

@@ -0,0 +1,18 @@
+import { Construct } from "constructs";
+import { SrvRecord as CdkSrvRecord } from "aws-cdk-lib/aws-route53";
+import { type DnsRecordCommonProps } from "./dnsRecordBase.js";
+export interface SrvRecordValue {
+    readonly hostName: string;
+    readonly priority: number;
+    readonly weight: number;
+    readonly port: number;
+}
+export interface SrvRecordProps extends DnsRecordCommonProps {
+    readonly values: SrvRecordValue[];
+}
+export declare class SrvRecord extends Construct {
+    readonly record: CdkSrvRecord;
+    readonly description: string;
+    readonly fqdn: string;
+    constructor(scope: Construct, id: string, props: SrvRecordProps);
+}

package/dist/lib/resources/aws/networking/dnsRecord/srvRecord.js

@@ -0,0 +1,21 @@
+import { Construct } from "constructs";
+import { SrvRecord as CdkSrvRecord } from "aws-cdk-lib/aws-route53";
+import { applyDnsRecordTags, defaultDnsComment, resolveFqdn, resolveTtl } from "./dnsRecordBase.js";
+export class SrvRecord extends Construct {
+    record;
+    description;
+    fqdn;
+    constructor(scope, id, props) {
+        super(scope, id);
+        this.fqdn = resolveFqdn(props.zoneName, props.recordName);
+        this.description = props.description ?? defaultDnsComment("SRV", this.fqdn);
+        this.record = new CdkSrvRecord(this, "Record", {
+            zone: props.zone,
+            recordName: this.fqdn,
+            values: props.values,
+            ttl: resolveTtl(props.ttl),
+            comment: this.description
+        });
+        applyDnsRecordTags(this, props);
+    }
+}

package/dist/lib/resources/aws/networking/dnsRecord/txtRecord.d.ts

@@ -0,0 +1,12 @@
+import { Construct } from "constructs";
+import { TxtRecord as CdkTxtRecord } from "aws-cdk-lib/aws-route53";
+import { type DnsRecordCommonProps } from "./dnsRecordBase.js";
+export interface TxtRecordProps extends DnsRecordCommonProps {
+    readonly values: string[];
+}
+export declare class TxtRecord extends Construct {
+    readonly record: CdkTxtRecord;
+    readonly description: string;
+    readonly fqdn: string;
+    constructor(scope: Construct, id: string, props: TxtRecordProps);
+}

package/dist/lib/resources/aws/networking/dnsRecord/txtRecord.js

@@ -0,0 +1,21 @@
+import { Construct } from "constructs";
+import { TxtRecord as CdkTxtRecord } from "aws-cdk-lib/aws-route53";
+import { applyDnsRecordTags, defaultDnsComment, resolveFqdn, resolveTtl } from "./dnsRecordBase.js";
+export class TxtRecord extends Construct {
+    record;
+    description;
+    fqdn;
+    constructor(scope, id, props) {
+        super(scope, id);
+        this.fqdn = resolveFqdn(props.zoneName, props.recordName);
+        this.description = props.description ?? defaultDnsComment("TXT", this.fqdn);
+        this.record = new CdkTxtRecord(this, "Record", {
+            zone: props.zone,
+            recordName: this.fqdn,
+            values: props.values,
+            ttl: resolveTtl(props.ttl),
+            comment: this.description
+        });
+        applyDnsRecordTags(this, props);
+    }
+}

package/dist/lib/resources/aws/networking/domain.d.ts

@@ -1,6 +1,6 @@
 import { Construct } from "constructs";
 import { type IHostedZone } from "aws-cdk-lib/aws-route53";
-import type { DomainApexProps } from "../../../utils/domainTypes";
+import type { DomainApexProps } from "../../../utils/domainTypes.js";
 export declare class Domain extends Construct {
     readonly hostedZoneId: string;
     readonly hostedZone: IHostedZone;

package/dist/lib/resources/aws/networking/domain.js

@@ -1,20 +1,20 @@
-"use strict";
-Object.defineProperty(exports, "__esModule", { value: true });
-exports.Domain = void 0;
-const constructs_1 = require("constructs");
-const aws_cdk_lib_1 = require("aws-cdk-lib");
-const capitaliseString_1 = require("../../../utils/capitaliseString");
-const iam_1 = require("../iam");
-const aws_iam_1 = require("aws-cdk-lib/aws-iam");
-const aws_route53_1 = require("aws-cdk-lib/aws-route53");
-const domainTypes_1 = require("../../../utils/domainTypes");
-const domainCertificate_1 = require("./domainCertificate");
-class Domain extends constructs_1.Construct {
+import { Construct } from "constructs";
+import { CfnOutput, Fn } from "aws-cdk-lib";
+import { toPascalCase, getSafeZoneName } from "../../../utils/capitaliseString.js";
+import { Role } from "../iam/index.js";
+import { OrganizationPrincipal, PolicyDocument, PolicyStatement } from "aws-cdk-lib/aws-iam";
+import { HostedZone as AWSHostedZone } from "aws-cdk-lib/aws-route53";
+import { getDomainExportNames, addDnsRecords } from "../../../utils/domainTypes.js";
+import { DomainCertificate } from "./domainCertificate.js";
+export class Domain extends Construct {
+    hostedZoneId;
+    hostedZone;
+    zoneName;
     constructor(scope, id, props) {
         super(scope, id);
         this.zoneName = props.zoneName;
         if (!props.hostedZoneId) {
-            const createdZone = new aws_route53_1.HostedZone(this, `${(0, capitaliseString_1.getSafeZoneName)(props.zoneName)}HostedZone`, {
+            const createdZone = new AWSHostedZone(this, `${getSafeZoneName(props.zoneName)}HostedZone`, {
                 zoneName: props.zoneName,
                 comment: `Hosted Zone for ${props.zoneName}`
             });
@@ -25,14 +25,14 @@ class Domain extends constructs_1.Construct {
         }
         else {
             this.hostedZoneId = props.hostedZoneId;
-            this.hostedZone = aws_route53_1.HostedZone.fromHostedZoneAttributes(this, `${(0, capitaliseString_1.getSafeZoneName)(props.zoneName)}ImportedHostedZone`, {
+            this.hostedZone = AWSHostedZone.fromHostedZoneAttributes(this, `${getSafeZoneName(props.zoneName)}ImportedHostedZone`, {
                 hostedZoneId: props.hostedZoneId,
                 zoneName: props.zoneName
             });
         }
         this.addZoneIdOutput();
         if (props.records) {
-            (0, domainTypes_1.addDnsRecords)(this, this.hostedZone, this.zoneName, props.records);
+            addDnsRecords(this, this.hostedZone, this.zoneName, props.records);
         }
         if (props.certificates) {
             this.addCertificates(props.certificates);
@@ -40,22 +40,22 @@ class Domain extends constructs_1.Construct {
     }
     addDelegationRole(zone) {
         const domainLabel = this.zoneName.split(".")[0] ?? "default";
-        const safeDomainLabel = (0, capitaliseString_1.toPascalCase)(domainLabel);
-        const role = new iam_1.Role(this, `${safeDomainLabel}DelegateHostedZoneRole`, {
-            assumedBy: new aws_iam_1.OrganizationPrincipal(aws_cdk_lib_1.Fn.importValue("OrganisationId")),
+        const safeDomainLabel = toPascalCase(domainLabel);
+        const role = new Role(this, `${safeDomainLabel}DelegateHostedZoneRole`, {
+            assumedBy: new OrganizationPrincipal(Fn.importValue("OrganisationId")),
             roleName: `${domainLabel}DelegateHostedZoneRole`,
             inlinePolicies: {
-                ["listHostedZones"]: new aws_iam_1.PolicyDocument({
+                ["listHostedZones"]: new PolicyDocument({
                     statements: [
-                        new aws_iam_1.PolicyStatement({
+                        new PolicyStatement({
                             actions: ["route53:ListHostedZonesByName"],
                             resources: ["*"]
                         })
                     ]
                 }),
-                ["changeResourceRecordSets"]: new aws_iam_1.PolicyDocument({
+                ["changeResourceRecordSets"]: new PolicyDocument({
                     statements: [
-                        new aws_iam_1.PolicyStatement({
+                        new PolicyStatement({
                             actions: ["route53:ChangeResourceRecordSets"],
                             resources: [`arn:aws:route53:::hostedzone/${zone.hostedZoneId}`]
                         })
@@ -64,33 +64,33 @@ class Domain extends constructs_1.Construct {
             }
         });
         zone.grantDelegation(role);
-        new aws_cdk_lib_1.CfnOutput(this, `${safeDomainLabel}DelegateHostedZoneRoleArn`, {
+        new CfnOutput(this, `${safeDomainLabel}DelegateHostedZoneRoleArn`, {
             key: `${safeDomainLabel}DelegateHostedZoneRoleArn`,
             value: role.roleArn,
             exportName: `${domainLabel}DelegateHostedZoneRoleArn`
         });
     }
     addZoneIdOutput() {
-        const safeKey = (0, capitaliseString_1.toPascalCase)((0, capitaliseString_1.getSafeZoneName)(this.zoneName));
-        const exports = (0, domainTypes_1.getDomainExportNames)(this.zoneName);
-        new aws_cdk_lib_1.CfnOutput(this, `${safeKey}HostedZoneId`, {
+        const safeKey = toPascalCase(getSafeZoneName(this.zoneName));
+        const exports = getDomainExportNames(this.zoneName);
+        new CfnOutput(this, `${safeKey}HostedZoneId`, {
             key: `${safeKey}HostedZoneId`,
             value: this.hostedZoneId,
             exportName: exports.hostedZoneId
         });
     }
     addNameserverOutput(zone) {
-        const safeKey = (0, capitaliseString_1.toPascalCase)((0, capitaliseString_1.getSafeZoneName)(this.zoneName));
-        new aws_cdk_lib_1.CfnOutput(this, `${safeKey}Nameservers`, {
+        const safeKey = toPascalCase(getSafeZoneName(this.zoneName));
+        new CfnOutput(this, `${safeKey}Nameservers`, {
             key: `${safeKey}Nameservers`,
-            value: aws_cdk_lib_1.Fn.join(",", zone.hostedZoneNameServers ?? [])
+            value: Fn.join(",", zone.hostedZoneNameServers ?? [])
         });
     }
     addCertificates(certificates) {
-        const safeZone = (0, capitaliseString_1.toPascalCase)((0, capitaliseString_1.getSafeZoneName)(this.zoneName));
+        const safeZone = toPascalCase(getSafeZoneName(this.zoneName));
         certificates.forEach((cert, index) => {
-            const safeCertName = (0, capitaliseString_1.toPascalCase)(cert.domainName.split(".").join(""));
-            new domainCertificate_1.DomainCertificate(this, `${safeZone}${safeCertName}Cert${index}`, {
+            const safeCertName = toPascalCase(cert.domainName.split(".").join(""));
+            new DomainCertificate(this, `${safeZone}${safeCertName}Cert${index}`, {
                 domainName: cert.domainName,
                 subjectAlternativeNames: cert.subjectAlternativeNames,
                 hostedZone: this.hostedZone
@@ -98,5 +98,3 @@ class Domain extends constructs_1.Construct {
         });
     }
 }
-exports.Domain = Domain;
-//# sourceMappingURL=data:application/json;base64,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

package/dist/lib/resources/aws/networking/domainCertificate.d.ts

@@ -2,12 +2,17 @@ import { Construct } from "constructs";
 import { Certificate } from "aws-cdk-lib/aws-certificatemanager";
 import { type IHostedZone } from "aws-cdk-lib/aws-route53";
 export interface DomainCertificateProps {
-    domainName: string;
-    subjectAlternativeNames?: string[];
-    hostedZone: IHostedZone;
+    readonly domainName: string;
+    readonly subjectAlternativeNames?: string[];
+    readonly hostedZone: IHostedZone;
+    readonly description?: string;
+    readonly transparencyLogging?: boolean;
+    readonly costAllocationEnvironment?: string;
+    readonly costAllocationDomain?: string;
 }
 export declare class DomainCertificate extends Construct {
     readonly certificate: Certificate;
     readonly certificateArn: string;
+    readonly description: string;
     constructor(scope: Construct, id: string, props: DomainCertificateProps);
 }