@friggframework/devtools 2.0.0--canary.461.ec909cf.0 → 2.0.0--canary.461.7b36f0f.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
Files changed (70) hide show
  1. package/frigg-cli/__tests__/unit/commands/build.test.js +6 -6
  2. package/frigg-cli/build-command/index.js +1 -1
  3. package/frigg-cli/deploy-command/index.js +6 -6
  4. package/frigg-cli/generate-command/index.js +2 -2
  5. package/frigg-cli/generate-iam-command.js +10 -10
  6. package/frigg-cli/start-command/index.js +1 -1
  7. package/frigg-cli/start-command/start-command.test.js +3 -3
  8. package/frigg-cli/utils/database-validator.js +14 -21
  9. package/infrastructure/REFACTOR.md +532 -0
  10. package/infrastructure/TRANSFORMATION-VISUAL.md +239 -0
  11. package/infrastructure/__tests__/postgres-config.test.js +1 -1
  12. package/infrastructure/create-frigg-infrastructure.js +1 -1
  13. package/infrastructure/{DEPLOYMENT-INSTRUCTIONS.md → docs/deployment-instructions.md} +3 -3
  14. package/infrastructure/{IAM-POLICY-TEMPLATES.md → docs/iam-policy-templates.md} +9 -10
  15. package/infrastructure/domains/database/aurora-discovery.js +81 -0
  16. package/infrastructure/domains/database/aurora-discovery.test.js +188 -0
  17. package/infrastructure/domains/integration/integration-builder.js +178 -0
  18. package/infrastructure/domains/integration/integration-builder.test.js +362 -0
  19. package/infrastructure/domains/integration/websocket-builder.js +69 -0
  20. package/infrastructure/domains/integration/websocket-builder.test.js +195 -0
  21. package/infrastructure/domains/networking/vpc-discovery.test.js +257 -0
  22. package/infrastructure/domains/parameters/ssm-builder.js +79 -0
  23. package/infrastructure/domains/parameters/ssm-builder.test.js +188 -0
  24. package/infrastructure/domains/parameters/ssm-discovery.js +84 -0
  25. package/infrastructure/domains/parameters/ssm-discovery.test.js +210 -0
  26. package/infrastructure/{iam-generator.js → domains/security/iam-generator.js} +2 -2
  27. package/infrastructure/domains/security/kms-builder.js +169 -0
  28. package/infrastructure/domains/security/kms-builder.test.js +354 -0
  29. package/infrastructure/domains/security/kms-discovery.js +80 -0
  30. package/infrastructure/domains/security/kms-discovery.test.js +176 -0
  31. package/infrastructure/domains/shared/base-builder.js +112 -0
  32. package/infrastructure/domains/shared/builder-orchestrator.js +212 -0
  33. package/infrastructure/domains/shared/builder-orchestrator.test.js +213 -0
  34. package/infrastructure/domains/shared/environment-builder.js +118 -0
  35. package/infrastructure/domains/shared/environment-builder.test.js +246 -0
  36. package/infrastructure/domains/shared/providers/aws-provider-adapter.test.js +366 -0
  37. package/infrastructure/domains/shared/providers/azure-provider-adapter.stub.js +93 -0
  38. package/infrastructure/domains/shared/providers/cloud-provider-adapter.js +136 -0
  39. package/infrastructure/domains/shared/providers/gcp-provider-adapter.stub.js +82 -0
  40. package/infrastructure/domains/shared/providers/provider-factory.js +108 -0
  41. package/infrastructure/domains/shared/providers/provider-factory.test.js +170 -0
  42. package/infrastructure/domains/shared/resource-discovery.js +132 -0
  43. package/infrastructure/domains/shared/resource-discovery.test.js +410 -0
  44. package/infrastructure/domains/shared/utilities/base-definition-factory.js.bak +338 -0
  45. package/infrastructure/domains/shared/utilities/base-definition-factory.test.js +248 -0
  46. package/infrastructure/domains/shared/utilities/handler-path-resolver.test.js +259 -0
  47. package/infrastructure/domains/shared/utilities/prisma-layer-manager.js +55 -0
  48. package/infrastructure/domains/shared/utilities/prisma-layer-manager.test.js +134 -0
  49. package/infrastructure/domains/shared/validation/env-validator.test.js +173 -0
  50. package/infrastructure/esbuild.config.js +53 -0
  51. package/infrastructure/infrastructure-composer.js +85 -0
  52. package/infrastructure/scripts/build-prisma-layer.js +60 -47
  53. package/infrastructure/{build-time-discovery.test.js → scripts/build-time-discovery.test.js} +5 -4
  54. package/layers/prisma/nodejs/package.json +8 -0
  55. package/management-ui/server/utils/environment/awsParameterStore.js +29 -18
  56. package/package.json +8 -8
  57. package/infrastructure/aws-discovery.js +0 -1704
  58. package/infrastructure/aws-discovery.test.js +0 -1666
  59. package/infrastructure/serverless-template.js +0 -2804
  60. package/infrastructure/serverless-template.test.js +0 -1897
  61. /package/infrastructure/{POSTGRES-CONFIGURATION.md → docs/POSTGRES-CONFIGURATION.md} +0 -0
  62. /package/infrastructure/{WEBSOCKET-CONFIGURATION.md → docs/WEBSOCKET-CONFIGURATION.md} +0 -0
  63. /package/infrastructure/{GENERATE-IAM-DOCS.md → docs/generate-iam-command.md} +0 -0
  64. /package/infrastructure/{iam-generator.test.js → domains/security/iam-generator.test.js} +0 -0
  65. /package/infrastructure/{frigg-deployment-iam-stack.yaml → domains/security/templates/frigg-deployment-iam-stack.yaml} +0 -0
  66. /package/infrastructure/{iam-policy-basic.json → domains/security/templates/iam-policy-basic.json} +0 -0
  67. /package/infrastructure/{iam-policy-full.json → domains/security/templates/iam-policy-full.json} +0 -0
  68. /package/infrastructure/{env-validator.js → domains/shared/validation/env-validator.js} +0 -0
  69. /package/infrastructure/{build-time-discovery.js → scripts/build-time-discovery.js} +0 -0
  70. /package/infrastructure/{run-discovery.js → scripts/run-discovery.js} +0 -0
package/infrastructure/domains/shared/utilities/base-definition-factory.js.bak ADDED
@@ -0,0 +1,338 @@
1
+ /**
2
+ * Base Serverless Definition Factory
3
+ *
4
+ * Utility Layer - Hexagonal Architecture
5
+ *
6
+ * Creates the base serverless.yml configuration with core functions,
7
+ * resources, plugins, and provider settings.
8
+ */
9
+
10
+ const { buildEnvironment } = require('../environment-builder');
11
+
12
+ /**
13
+ * Create base serverless definition with core functions and resources
14
+ *
15
+ * This creates the foundation serverless configuration that all
16
+ * Frigg applications need, including:
17
+ * - Core Lambda functions (auth, user, health, dbMigrate)
18
+ * - Error handling infrastructure (SQS, SNS, CloudWatch)
19
+ * - Prisma Lambda Layer
20
+ * - Base plugins and esbuild configuration
21
+ *
22
+ * @param {Object} AppDefinition - Application definition
23
+ * @param {Object} appEnvironmentVars - Environment variables from app definition
24
+ * @param {Object} discoveredResources - AWS resources discovered during build
25
+ * @returns {Object} Base serverless definition
26
+ */
27
+ function createBaseDefinition(
28
+ AppDefinition,
29
+ appEnvironmentVars,
30
+ discoveredResources
31
+ ) {
32
+ const region = process.env.AWS_REGION || 'us-east-1';
33
+
34
+ // Function-level package config to exclude Prisma and AWS SDK
35
+ const functionPackageConfig = {
36
+ exclude: [
37
+ // Exclude AWS SDK (already in Lambda runtime or externalized by esbuild)
38
+ 'node_modules/aws-sdk/**',
39
+ 'node_modules/@aws-sdk/**',
40
+
41
+ // Exclude Prisma (provided via Lambda Layer)
42
+ 'node_modules/@prisma/**',
43
+ 'node_modules/.prisma/**',
44
+ 'node_modules/prisma/**',
45
+ 'node_modules/@friggframework/core/generated/**',
46
+
47
+ // Exclude nested node_modules from symlinked frigg packages (for npm link development)
48
+ 'node_modules/@friggframework/core/node_modules/**',
49
+ 'node_modules/@friggframework/devtools/node_modules/**',
50
+
51
+ // Exclude development/test files from backend project
52
+ 'coverage/**',
53
+ 'test/**',
54
+ 'src/**',
55
+ 'layers/**',
56
+ '**/*.test.js',
57
+ '**/*.spec.js',
58
+ '.git/**',
59
+ '.github/**',
60
+ ],
61
+ };
62
+
63
+ return {
64
+ frameworkVersion: '>=3.17.0',
65
+ service: AppDefinition.name || 'create-frigg-app',
66
+ package: {
67
+ individually: true,
68
+ },
69
+ useDotenv: true,
70
+ provider: {
71
+ name: AppDefinition.provider || 'aws',
72
+ ...(process.env.AWS_PROFILE && { profile: process.env.AWS_PROFILE }),
73
+ runtime: 'nodejs22.x', // Node.js 22.x (latest Lambda runtime with AWS SDK v3)
74
+ timeout: 29, // Set to 29s to give buffer before API Gateway's 30s timeout
75
+ region,
76
+ stage: '${opt:stage}',
77
+ environment: buildEnvironment(appEnvironmentVars, discoveredResources),
78
+ iamRoleStatements: [
79
+ {
80
+ Effect: 'Allow',
81
+ Action: ['sns:Publish'],
82
+ Resource: { Ref: 'InternalErrorBridgeTopic' },
83
+ },
84
+ {
85
+ Effect: 'Allow',
86
+ Action: [
87
+ 'sqs:SendMessage',
88
+ 'sqs:SendMessageBatch',
89
+ 'sqs:GetQueueUrl',
90
+ 'sqs:GetQueueAttributes',
91
+ ],
92
+ Resource: [
93
+ { 'Fn::GetAtt': ['InternalErrorQueue', 'Arn'] },
94
+ {
95
+ 'Fn::Join': [
96
+ ':',
97
+ [
98
+ 'arn:aws:sqs:${self:provider.region}:*:${self:service}--${self:provider.stage}-*Queue',
99
+ ],
100
+ ],
101
+ },
102
+ ],
103
+ },
104
+ ],
105
+ httpApi: {
106
+ payload: '2.0',
107
+ cors: {
108
+ allowedOrigins: ['*'],
109
+ allowedHeaders: ['*'],
110
+ allowedMethods: ['*'],
111
+ allowCredentials: false,
112
+ },
113
+ name: '${opt:stage, "dev"}-${self:service}',
114
+ disableDefaultEndpoint: false,
115
+ },
116
+ },
117
+ plugins: [
118
+ 'serverless-esbuild',
119
+ 'serverless-dotenv-plugin',
120
+ 'serverless-offline-sqs',
121
+ 'serverless-offline',
122
+ '@friggframework/serverless-plugin',
123
+ ],
124
+ custom: {
125
+ esbuild: {
126
+ bundle: true,
127
+ minify: true,
128
+ sourcemap: true,
129
+ target: 'node22',
130
+ platform: 'node',
131
+ format: 'cjs',
132
+ external: [
133
+ '@aws-sdk/*',
134
+ 'aws-sdk',
135
+ '@prisma/client',
136
+ 'prisma',
137
+ '.prisma/*',
138
+ ],
139
+ packager: 'npm',
140
+ keepNames: true,
141
+ keepOutputDirectory: false, // Clean up .esbuild directory after packaging
142
+ exclude: [
143
+ 'aws-sdk',
144
+ '@aws-sdk/*',
145
+ '@prisma/client',
146
+ 'prisma',
147
+ ],
148
+ },
149
+ 'serverless-offline': {
150
+ httpPort: 3001,
151
+ lambdaPort: 4001,
152
+ websocketPort: 3002,
153
+ location: '.', // Set base directory for handler resolution to current directory
154
+ skipCacheInvalidation: false,
155
+ },
156
+ 'serverless-offline-sqs': {
157
+ autoCreate: false,
158
+ apiVersion: '2012-11-05',
159
+ endpoint: 'http://localhost:4566',
160
+ region,
161
+ accessKeyId: 'root',
162
+ secretAccessKey: 'root',
163
+ skipCacheInvalidation: false,
164
+ },
165
+ },
166
+ functions: {
167
+ auth: {
168
+ handler: 'node_modules/@friggframework/core/handlers/routers/auth.handler',
169
+ layers: [{ Ref: 'PrismaLambdaLayer' }],
170
+ skipEsbuild: true, // Handlers in node_modules don't need bundling
171
+ package: functionPackageConfig,
172
+ events: [
173
+ { httpApi: { path: '/api/integrations', method: 'ANY' } },
174
+ {
175
+ httpApi: {
176
+ path: '/api/integrations/{proxy+}',
177
+ method: 'ANY',
178
+ },
179
+ },
180
+ { httpApi: { path: '/api/authorize', method: 'ANY' } },
181
+ ],
182
+ },
183
+ user: {
184
+ handler: 'node_modules/@friggframework/core/handlers/routers/user.handler',
185
+ layers: [{ Ref: 'PrismaLambdaLayer' }],
186
+ skipEsbuild: true, // Handlers in node_modules don't need bundling
187
+ package: functionPackageConfig,
188
+ events: [{ httpApi: { path: '/user/{proxy+}', method: 'ANY' } }],
189
+ },
190
+ health: {
191
+ handler: 'node_modules/@friggframework/core/handlers/routers/health.handler',
192
+ layers: [{ Ref: 'PrismaLambdaLayer' }],
193
+ skipEsbuild: true, // Handlers in node_modules don't need bundling
194
+ package: functionPackageConfig,
195
+ events: [
196
+ { httpApi: { path: '/health', method: 'GET' } },
197
+ { httpApi: { path: '/health/{proxy+}', method: 'GET' } },
198
+ ],
199
+ },
200
+ dbMigrate: {
201
+ handler: 'node_modules/@friggframework/core/handlers/database-migration-handler.handler',
202
+ // DO NOT use Prisma layer - this function includes Prisma CLI separately
203
+ skipEsbuild: true, // Handlers in node_modules don't need bundling
204
+ timeout: 300, // 5 minutes for long-running migrations
205
+ memorySize: 1024, // Extra memory for Prisma CLI and migration operations
206
+ reservedConcurrency: 1, // Prevent concurrent migrations (CRITICAL for data safety)
207
+ description: 'Runs database migrations via Prisma CLI (invoke manually from CI/CD or triggers). Prisma CLI bundled separately.',
208
+ package: {
209
+ individually: true,
210
+ patterns: [
211
+ // Include handler
212
+ 'node_modules/@friggframework/core/handlers/database-migration-handler.js',
213
+
214
+ // Include ONLY PostgreSQL Prisma client (exclude MongoDB)
215
+ 'node_modules/@friggframework/core/generated/prisma-postgresql/**',
216
+ '!node_modules/@friggframework/core/generated/prisma-mongodb/**', // Exclude MongoDB client entirely
217
+
218
+ // Include Prisma runtime
219
+ 'node_modules/@prisma/client/**',
220
+ 'node_modules/.prisma/**',
221
+ 'node_modules/prisma/**', // Prisma CLI
222
+
223
+ // Exclude unnecessary engines and files
224
+ '!node_modules/prisma/node_modules/**',
225
+ '!**/query-engine-darwin*', // Exclude macOS binaries (keep rhel for Lambda)
226
+ '!**/runtime/*.wasm', // WASM engines
227
+ '!**/*.md',
228
+ '!**/*.map',
229
+ '!**/LICENSE*',
230
+ '!**/*.d.ts',
231
+ '!**/*.d.mts',
232
+ ],
233
+ },
234
+ maximumEventAge: 60,
235
+ maximumRetryAttempts: 0,
236
+ tags: {
237
+ Purpose: 'DatabaseMigration',
238
+ ManagedBy: 'Frigg',
239
+ },
240
+ environment: {
241
+ CI: '1',
242
+ PRISMA_HIDE_UPDATE_MESSAGE: '1',
243
+ PRISMA_MIGRATE_SKIP_SEED: '1',
244
+ },
245
+ },
246
+ },
247
+ layers: {
248
+ prisma: {
249
+ path: 'layers/prisma',
250
+ name: '${self:service}-prisma-${sls:stage}',
251
+ description: 'Prisma runtime client only (NO CLI) with rhel-openssl-3.0.x binaries (~10-15MB). CLI packaged separately in dbMigrate function.',
252
+ compatibleRuntimes: ['nodejs20.x', 'nodejs22.x'],
253
+ retain: false,
254
+ },
255
+ },
256
+ resources: {
257
+ Resources: {
258
+ InternalErrorQueue: {
259
+ Type: 'AWS::SQS::Queue',
260
+ Properties: {
261
+ QueueName:
262
+ '${self:service}-internal-error-queue-${self:provider.stage}',
263
+ MessageRetentionPeriod: 300,
264
+ },
265
+ },
266
+ InternalErrorBridgeTopic: {
267
+ Type: 'AWS::SNS::Topic',
268
+ Properties: {
269
+ Subscription: [
270
+ {
271
+ Protocol: 'sqs',
272
+ Endpoint: {
273
+ 'Fn::GetAtt': ['InternalErrorQueue', 'Arn'],
274
+ },
275
+ },
276
+ ],
277
+ },
278
+ },
279
+ InternalErrorBridgePolicy: {
280
+ Type: 'AWS::SQS::QueuePolicy',
281
+ Properties: {
282
+ Queues: [{ Ref: 'InternalErrorQueue' }],
283
+ PolicyDocument: {
284
+ Version: '2012-10-17',
285
+ Statement: [
286
+ {
287
+ Sid: 'Allow Dead Letter SNS to publish to SQS',
288
+ Effect: 'Allow',
289
+ Principal: { Service: 'sns.amazonaws.com' },
290
+ Resource: {
291
+ 'Fn::GetAtt': [
292
+ 'InternalErrorQueue',
293
+ 'Arn',
294
+ ],
295
+ },
296
+ Action: [
297
+ 'SQS:SendMessage',
298
+ 'SQS:SendMessageBatch',
299
+ ],
300
+ Condition: {
301
+ ArnEquals: {
302
+ 'aws:SourceArn': {
303
+ Ref: 'InternalErrorBridgeTopic',
304
+ },
305
+ },
306
+ },
307
+ },
308
+ ],
309
+ },
310
+ },
311
+ },
312
+ ApiGatewayAlarm5xx: {
313
+ Type: 'AWS::CloudWatch::Alarm',
314
+ Properties: {
315
+ AlarmDescription: 'API Gateway 5xx Errors',
316
+ Namespace: 'AWS/ApiGateway',
317
+ MetricName: '5XXError',
318
+ Statistic: 'Sum',
319
+ Threshold: 0,
320
+ ComparisonOperator: 'GreaterThanThreshold',
321
+ EvaluationPeriods: 1,
322
+ Period: 60,
323
+ AlarmActions: [{ Ref: 'InternalErrorBridgeTopic' }],
324
+ Dimensions: [
325
+ { Name: 'ApiId', Value: { Ref: 'HttpApi' } },
326
+ { Name: 'Stage', Value: '${self:provider.stage}' },
327
+ ],
328
+ },
329
+ },
330
+ },
331
+ },
332
+ };
333
+ }
334
+
335
+ module.exports = {
336
+ createBaseDefinition,
337
+ };
338
+
package/infrastructure/domains/shared/utilities/base-definition-factory.test.js ADDED
@@ -0,0 +1,248 @@
1
+ /**
2
+ * Tests for Base Definition Factory
3
+ *
4
+ * Tests creation of base serverless configuration
5
+ */
6
+
7
+ const { createBaseDefinition } = require('./base-definition-factory');
8
+
9
+ describe('Base Definition Factory', () => {
10
+ beforeEach(() => {
11
+ delete process.env.AWS_REGION;
12
+ delete process.env.AWS_PROFILE;
13
+ });
14
+
15
+ describe('createBaseDefinition()', () => {
16
+ it('should create base serverless definition with minimal app definition', () => {
17
+ const appDefinition = {
18
+ name: 'test-app',
19
+ };
20
+ const appEnvironmentVars = {};
21
+ const discoveredResources = {};
22
+
23
+ const result = createBaseDefinition(appDefinition, appEnvironmentVars, discoveredResources);
24
+
25
+ expect(result.service).toBe('test-app');
26
+ expect(result.frameworkVersion).toBe('>=3.17.0');
27
+ expect(result.provider.name).toBe('aws');
28
+ expect(result.provider.runtime).toBe('nodejs22.x');
29
+ expect(result.provider.timeout).toBe(29);
30
+ expect(result.provider.stage).toBe('${opt:stage}');
31
+ });
32
+
33
+ it('should default service name to create-frigg-app', () => {
34
+ const result = createBaseDefinition({}, {}, {});
35
+
36
+ expect(result.service).toBe('create-frigg-app');
37
+ });
38
+
39
+ it('should use custom provider if specified', () => {
40
+ const appDefinition = {
41
+ provider: 'custom-provider',
42
+ };
43
+
44
+ const result = createBaseDefinition(appDefinition, {}, {});
45
+
46
+ expect(result.provider.name).toBe('custom-provider');
47
+ });
48
+
49
+ it('should use AWS_REGION environment variable', () => {
50
+ process.env.AWS_REGION = 'eu-west-1';
51
+
52
+ const result = createBaseDefinition({}, {}, {});
53
+
54
+ expect(result.provider.region).toBe('eu-west-1');
55
+ expect(result.custom['serverless-offline-sqs'].region).toBe('eu-west-1');
56
+ });
57
+
58
+ it('should default to us-east-1 region', () => {
59
+ delete process.env.AWS_REGION;
60
+
61
+ const result = createBaseDefinition({}, {}, {});
62
+
63
+ expect(result.provider.region).toBe('us-east-1');
64
+ });
65
+
66
+ it('should include AWS_PROFILE if set', () => {
67
+ process.env.AWS_PROFILE = 'my-profile';
68
+
69
+ const result = createBaseDefinition({}, {}, {});
70
+
71
+ expect(result.provider.profile).toBe('my-profile');
72
+ });
73
+
74
+ it('should not include AWS_PROFILE if not set', () => {
75
+ delete process.env.AWS_PROFILE;
76
+
77
+ const result = createBaseDefinition({}, {}, {});
78
+
79
+ expect(result.provider.profile).toBeUndefined();
80
+ });
81
+
82
+ it('should include core Lambda functions', () => {
83
+ const result = createBaseDefinition({}, {}, {});
84
+
85
+ expect(result.functions.auth).toBeDefined();
86
+ expect(result.functions.user).toBeDefined();
87
+ expect(result.functions.health).toBeDefined();
88
+ expect(result.functions.dbMigrate).toBeDefined();
89
+ });
90
+
91
+ it('should configure auth function correctly', () => {
92
+ const result = createBaseDefinition({}, {}, {});
93
+
94
+ expect(result.functions.auth.handler).toBe('node_modules/@friggframework/core/handlers/routers/auth.handler');
95
+ expect(result.functions.auth.layers).toEqual([{ Ref: 'PrismaLambdaLayer' }]);
96
+ expect(result.functions.auth.events).toHaveLength(3);
97
+ });
98
+
99
+ it('should configure dbMigrate function correctly', () => {
100
+ const result = createBaseDefinition({}, {}, {});
101
+
102
+ expect(result.functions.dbMigrate.timeout).toBe(300);
103
+ expect(result.functions.dbMigrate.memorySize).toBe(1024);
104
+ expect(result.functions.dbMigrate.reservedConcurrency).toBe(1);
105
+ expect(result.functions.dbMigrate.esbuild).toBe(false);
106
+ expect(result.functions.dbMigrate.layers).toBeUndefined(); // No Prisma layer
107
+ });
108
+
109
+ it('should include Prisma Lambda Layer', () => {
110
+ const result = createBaseDefinition({}, {}, {});
111
+
112
+ expect(result.layers.prisma).toBeDefined();
113
+ expect(result.layers.prisma.path).toBe('layers/prisma');
114
+ expect(result.layers.prisma.description).toContain('runtime client only');
115
+ });
116
+
117
+ it('should include error handling resources', () => {
118
+ const result = createBaseDefinition({}, {}, {});
119
+
120
+ expect(result.resources.Resources.InternalErrorQueue).toBeDefined();
121
+ expect(result.resources.Resources.InternalErrorBridgeTopic).toBeDefined();
122
+ expect(result.resources.Resources.InternalErrorBridgePolicy).toBeDefined();
123
+ expect(result.resources.Resources.ApiGatewayAlarm5xx).toBeDefined();
124
+ });
125
+
126
+ it('should include base IAM permissions', () => {
127
+ const result = createBaseDefinition({}, {}, {});
128
+
129
+ const snsPermission = result.provider.iamRoleStatements.find(
130
+ stmt => stmt.Action.includes('sns:Publish')
131
+ );
132
+ expect(snsPermission).toBeDefined();
133
+
134
+ const sqsPermission = result.provider.iamRoleStatements.find(
135
+ stmt => stmt.Action.includes('sqs:SendMessage')
136
+ );
137
+ expect(sqsPermission).toBeDefined();
138
+ });
139
+
140
+ it('should include required plugins', () => {
141
+ const result = createBaseDefinition({}, {}, {});
142
+
143
+ expect(result.plugins).toContain('serverless-esbuild');
144
+ expect(result.plugins).toContain('serverless-dotenv-plugin');
145
+ expect(result.plugins).toContain('serverless-offline-sqs');
146
+ expect(result.plugins).toContain('serverless-offline');
147
+ expect(result.plugins).toContain('@friggframework/serverless-plugin');
148
+ });
149
+
150
+ it('should configure esbuild correctly', () => {
151
+ const result = createBaseDefinition({}, {}, {});
152
+
153
+ expect(result.custom.esbuild.bundle).toBe(true);
154
+ expect(result.custom.esbuild.minify).toBe(true);
155
+ expect(result.custom.esbuild.target).toBe('node22');
156
+ expect(result.custom.esbuild.external).toContain('@aws-sdk/*');
157
+ expect(result.custom.esbuild.external).toContain('@prisma/client');
158
+ });
159
+
160
+ it('should configure CORS for HTTP API', () => {
161
+ const result = createBaseDefinition({}, {}, {});
162
+
163
+ expect(result.provider.httpApi.cors.allowedOrigins).toEqual(['*']);
164
+ expect(result.provider.httpApi.cors.allowedMethods).toEqual(['*']);
165
+ });
166
+
167
+ it('should merge app environment variables', () => {
168
+ const appEnvironmentVars = {
169
+ API_KEY: "${env:API_KEY, ''}",
170
+ CUSTOM_VAR: "${env:CUSTOM_VAR, ''}",
171
+ };
172
+
173
+ const result = createBaseDefinition({}, appEnvironmentVars, {});
174
+
175
+ expect(result.provider.environment.API_KEY).toBe("${env:API_KEY, ''}");
176
+ expect(result.provider.environment.CUSTOM_VAR).toBe("${env:CUSTOM_VAR, ''}");
177
+ });
178
+
179
+ it('should add standard Frigg environment variables', () => {
180
+ const result = createBaseDefinition({}, {}, {});
181
+
182
+ expect(result.provider.environment.FRIGG_STACK).toBe('${self:service}');
183
+ expect(result.provider.environment.FRIGG_STAGE).toBe('${self:provider.stage}');
184
+ expect(result.provider.environment.FRIGG_REGION).toBe('${self:provider.region}');
185
+ });
186
+
187
+ it('should add KMS key ARN from discovered resources', () => {
188
+ const discoveredResources = {
189
+ kmsKeyId: 'arn:aws:kms:us-east-1:123:key/abc',
190
+ };
191
+
192
+ const result = createBaseDefinition({}, {}, discoveredResources);
193
+
194
+ expect(result.provider.environment.KMS_KEY_ARN).toBe('arn:aws:kms:us-east-1:123:key/abc');
195
+ });
196
+
197
+ it('should add database connection info from discovered resources', () => {
198
+ const discoveredResources = {
199
+ auroraClusterEndpoint: 'db.example.com',
200
+ auroraPort: 5432,
201
+ };
202
+
203
+ const result = createBaseDefinition({}, {}, discoveredResources);
204
+
205
+ expect(result.provider.environment.DATABASE_HOST).toBe('db.example.com');
206
+ expect(result.provider.environment.DATABASE_PORT).toBe('5432');
207
+ });
208
+
209
+ it('should add database secret ARN from discovered resources', () => {
210
+ const discoveredResources = {
211
+ databaseSecretArn: 'arn:aws:secretsmanager:us-east-1:123:secret:db',
212
+ };
213
+
214
+ const result = createBaseDefinition({}, {}, discoveredResources);
215
+
216
+ expect(result.provider.environment.DATABASE_SECRET_ARN).toBe('arn:aws:secretsmanager:us-east-1:123:secret:db');
217
+ });
218
+
219
+ it('should configure serverless-offline ports', () => {
220
+ const result = createBaseDefinition({}, {}, {});
221
+
222
+ expect(result.custom['serverless-offline'].httpPort).toBe(3001);
223
+ expect(result.custom['serverless-offline'].lambdaPort).toBe(4001);
224
+ expect(result.custom['serverless-offline'].websocketPort).toBe(3002);
225
+ });
226
+
227
+ it('should configure serverless-offline-sqs for LocalStack', () => {
228
+ const result = createBaseDefinition({}, {}, {});
229
+
230
+ expect(result.custom['serverless-offline-sqs'].endpoint).toBe('http://localhost:4566');
231
+ expect(result.custom['serverless-offline-sqs'].accessKeyId).toBe('root');
232
+ expect(result.custom['serverless-offline-sqs'].secretAccessKey).toBe('root');
233
+ });
234
+
235
+ it('should set package.individually to true', () => {
236
+ const result = createBaseDefinition({}, {}, {});
237
+
238
+ expect(result.package.individually).toBe(true);
239
+ });
240
+
241
+ it('should enable dotenv', () => {
242
+ const result = createBaseDefinition({}, {}, {});
243
+
244
+ expect(result.useDotenv).toBe(true);
245
+ });
246
+ });
247
+ });
248
+