@gradientedge/cdk-utils 4.4.4 → 4.4.5

package/api-docs/manager_aws_iam-manager.ts.html

@@ -1,573 +0,0 @@
-
-
-<!DOCTYPE html>
-<html lang="en">
-
-<head>
-  
-  <meta charset="utf-8">
-  <meta name="viewport" content="width=device-width, initial-scale=1">
-  <title>Gradient Edge CDK Utils manager/aws/iam-manager.ts</title>
-
-  <script src="https://cdn.jsdelivr.net/gh/google/code-prettify@master/loader/run_prettify.js"></script>
-  <script src="https://unpkg.com/@babel/standalone/babel.min.js"></script>
-  <script src="./build/entry.js"></script>
-  <script src="https://ajax.googleapis.com/ajax/libs/jquery/3.3.1/jquery.min.js"></script>
-  <!--[if lt IE 9]>
-    <script src="//html5shiv.googlecode.com/svn/trunk/html5.js"></script>
-  <![endif]-->
-  <link href="https://fonts.googleapis.com/css?family=Roboto:100,400,700|Inconsolata,700" rel="stylesheet">
-  <link rel="stylesheet" href="https://use.fontawesome.com/releases/v5.6.3/css/all.css" integrity="sha384-UHRtZLI+pbxtHCWp1t77Bi1L4ZtiqrqD80Kn4Z8NTSRyMA2Fd33n5dQ8lWUE00s/" crossorigin="anonymous">
-  <link type="text/css" rel="stylesheet" href="https://jmblog.github.io/color-themes-for-google-code-prettify/themes/tomorrow-night.min.css">
-  <link type="text/css" rel="stylesheet" href="styles/app.min.css">
-  <link type="text/css" rel="stylesheet" href="styles/iframe.css">
-  <link type="text/css" rel="stylesheet" href="styles.css">
-  <script async defer src="https://buttons.github.io/buttons.js"></script>
-
-  
-</head>
-
-
-
-<body class="layout small-header">
-    <div id="stickyNavbarOverlay"></div>
-    
-
-<div class="top-nav">
-    <div class="inner">
-        <a id="hamburger" role="button" class="navbar-burger" aria-label="menu" aria-expanded="false">
-            <span aria-hidden="true"></span>
-            <span aria-hidden="true"></span>
-            <span aria-hidden="true"></span>
-        </a>
-        <div class="logo">
-             
-                <a class="image" href="index.html">
-                    <img src="logo.png" alt="logo">
-                </a>
-            
-             
-                <a href="index.html">
-                    <h1 class="navbar-item">Gradient Edge CDK Utils Documentation</h1>
-                </a>
-            
-        </div>
-        <div class="menu">
-            
-            <div class="navigation">
-                <a
-                    href="index.html"
-                    class="link"
-                >
-                    API Documentation
-                </a>
-                
-                <div class="dropdown is-hoverable is-right">
-                    <a class="dropdown-trigger link">
-                        Tutorials
-                        <i class="fas fa-chevron-down fa-xs"></i>
-                    </a>
-                    <div class="dropdown-menu">
-                        <div class="dropdown-content">
-                        
-                            <a class="dropdown-item" href="tutorial-Architecture.html">
-                                Architecture
-                            </a>
-                        
-                            <a class="dropdown-item" href="tutorial-Build.html">
-                                Build
-                            </a>
-                        
-                            <a class="dropdown-item" href="tutorial-CI-CD.html">
-                                CI-CD
-                            </a>
-                        
-                            <a class="dropdown-item" href="tutorial-Development.html">
-                                Development
-                            </a>
-                        
-                        </div>
-                    </div>
-                </div>
-                
-                 
-                    
-                        <a
-                            class="link user-link "
-                            href="https://github.com/gradientedge/cdk-utils"
-                        >
-                            Github
-                        </a>
-                    
-                
-                
-            </div>
-        </div>
-    </div>
-</div>
-    <div id="main">
-        <div
-            class="sidebar "
-            id="sidebarNav"
-        >
-            
-                <div class="search-wrapper">
-                    <input id="search" type="text" placeholder="Search docs..." class="input">
-                </div>
-            
-            <nav>
-                
-                    <h2><a href="index.html">Documentation</a></h2><div class="category"></div><div class="category"><h2>cdk-utils.acm-manager</h2><h3>Classes / Construct</h3><ul><li><a href="AcmManager.html">AcmManager</a></li></ul><h3>Interfaces / Properties</h3><ul><li><a href="AcmProps.html">AcmProps</a></li></ul></div><div class="category"><h2>cdk-utils.api-manager</h2><h3>Classes / Construct</h3><ul><li><a href="ApiManager.html">ApiManager</a></li></ul></div><div class="category"><h2>cdk-utils.api-to-eventbridge-target</h2><h3>Classes / member</h3><ul><li><a href="ApiDestinationEvent.html">ApiDestinationEvent</a></li><li><a href="ApiDestinedLambda.html">ApiDestinedLambda</a></li><li><a href="ApiDestinedRestApi.html">ApiDestinedRestApi</a></li></ul><h3>Classes / construct</h3><ul><li><a href="ApiToEventBridgeTarget.html">ApiToEventBridgeTarget</a></li></ul><h3>Interfaces / Types</h3><ul><li><a href="ApiDestinationEventType.html">ApiDestinationEventType</a></li><li><a href="ApiDestinedLambdaEnvironment.html">ApiDestinedLambdaEnvironment</a></li><li><a href="ApiDestinedLambdaType.html">ApiDestinedLambdaType</a></li><li><a href="ApiDestinedRestApiType.html">ApiDestinedRestApiType</a></li></ul><h3>Interfaces / Properties</h3><ul><li><a href="ApiToEventBridgeTargetEventProps.html">ApiToEventBridgeTargetEventProps</a></li><li><a href="ApiToEventBridgeTargetLambdaProps.html">ApiToEventBridgeTargetLambdaProps</a></li><li><a href="ApiToEventBridgeTargetProps.html">ApiToEventBridgeTargetProps</a></li><li><a href="ApiToEventBridgeTargetRestApiProps.html">ApiToEventBridgeTargetRestApiProps</a></li></ul></div><div class="category"><h2>cdk-utils.app-config-manager</h2><h3>Classes / Construct</h3><ul><li><a href="AppConfigManager.html">AppConfigManager</a></li></ul><h3>Interfaces / Properties</h3><ul><li><a href="AppConfigProps.html">AppConfigProps</a></li></ul><h3>Global</h3><ul><li><a href="global.html#ArnsByRegion">ArnsByRegion</a></li></ul></div><div class="category"><h2>cdk-utils.cloudfront-manager</h2><h3>Classes / Construct</h3><ul><li><a href="CloudFrontManager.html">CloudFrontManager</a></li></ul><h3>Interfaces / Properties</h3><ul><li><a href="CloudfrontFunctionProps.html">CloudfrontFunctionProps</a></li><li><a href="CloudFrontProps.html">CloudFrontProps</a></li><li><a href="DistributionProps.html">DistributionProps</a></li></ul></div><div class="category"><h2>cdk-utils.cloudtrail-manager</h2><h3>Classes / Construct</h3><ul><li><a href="CloudTrailManager.html">CloudTrailManager</a></li></ul><h3>Interfaces / Properties</h3><ul><li><a href="CloudTrailProps.html">CloudTrailProps</a></li></ul></div><div class="category"><h2>cdk-utils.cloudwatch-manager</h2><h3>Classes / Construct</h3><ul><li><a href="CloudWatchManager.html">CloudWatchManager</a></li><li><a href="LogManager.html">LogManager</a></li></ul><h3>Interfaces / Properties</h3><ul><li><a href="AlarmProps.html">AlarmProps</a></li><li><a href="AlarmStatusWidgetProps.html">AlarmStatusWidgetProps</a></li><li><a href="DashboardProps.html">DashboardProps</a></li><li><a href="GraphWidgetProps.html">GraphWidgetProps</a></li><li><a href="LogProps.html">LogProps</a></li><li><a href="LogQueryWidgetProps.html">LogQueryWidgetProps</a></li><li><a href="MetricFilterProps.html">MetricFilterProps</a></li><li><a href="MetricProps.html">MetricProps</a></li><li><a href="NumericWidgetProps.html">NumericWidgetProps</a></li><li><a href="TextWidgetProps.html">TextWidgetProps</a></li></ul><h3>Global</h3><ul><li><a href="global.html#CloudWatchWidgetType">CloudWatchWidgetType</a></li></ul></div><div class="category"><h2>cdk-utils.codebuild-manager</h2><h3>Classes / Construct</h3><ul><li><a href="CodeBuildManager.html">CodeBuildManager</a></li></ul></div><div class="category"><h2>cdk-utils.common-construct</h2><h3>Classes / Construct</h3><ul><li><a href="CommonConstruct.html">CommonConstruct</a></li></ul></div><div class="category"><h2>cdk-utils.common-stack</h2><h3>Classes / Construct</h3><ul><li><a href="CommonStack.html">CommonStack</a></li></ul><h3>Interfaces / Properties</h3><ul><li><a href="CommonStackProps.html">CommonStackProps</a></li></ul></div><div class="category"><h2>cdk-utils.dynamodb-manager</h2><h3>Classes / Construct</h3><ul><li><a href="DynamodbManager.html">DynamodbManager</a></li></ul><h3>Interfaces / Properties</h3><ul><li><a href="TableProps.html">TableProps</a></li></ul></div><div class="category"><h2>cdk-utils.ecr-manager</h2><h3>Classes / Construct</h3><ul><li><a href="EcrManager.html">EcrManager</a></li></ul></div><div class="category"><h2>cdk-utils.ecs-manager</h2><h3>Classes / Construct</h3><ul><li><a href="EcsManager.html">EcsManager</a></li></ul><h3>Interfaces / Properties</h3><ul><li><a href="EcsClusterProps.html">EcsClusterProps</a></li><li><a href="EcsTaskProps.html">EcsTaskProps</a></li></ul></div><div class="category"><h2>cdk-utils.eks-manager</h2><h3>Classes / Construct</h3><ul><li><a href="EksManager.html">EksManager</a></li></ul><h3>Interfaces / Properties</h3><ul><li><a href="EksClusterProps.html">EksClusterProps</a></li></ul></div><div class="category"><h2>cdk-utils.event-manager</h2><h3>Classes / Construct</h3><ul><li><a href="EventManager.html">EventManager</a></li></ul><h3>Interfaces / Properties</h3><ul><li><a href="EventBusProps.html">EventBusProps</a></li><li><a href="EventRuleProps.html">EventRuleProps</a></li><li><a href="RuleProps.html">RuleProps</a></li></ul></div><div class="category"><h2>cdk-utils.graphql-api-lambda</h2><h3>Classes / construct</h3><ul><li><a href="GraphQLApiLambda.html">GraphQLApiLambda</a></li></ul><h3>Interfaces / Types</h3><ul><li><a href="GraphQlApiLambdaEnvironment.html">GraphQlApiLambdaEnvironment</a></li></ul><h3>Interfaces / Properties</h3><ul><li><a href="GraphQlApiLambdaProps.html">GraphQlApiLambdaProps</a></li></ul></div><div class="category"><h2>cdk-utils.iam-manager</h2><h3>Classes / Construct</h3><ul><li><a href="IamManager.html">IamManager</a></li></ul></div><div class="category"><h2>cdk-utils.lambda-manager</h2><h3>Classes / Construct</h3><ul><li><a href="LambdaManager.html">LambdaManager</a></li></ul><h3>Interfaces / Properties</h3><ul><li><a href="LambdaEdgeProps.html">LambdaEdgeProps</a></li><li><a href="LambdaProps.html">LambdaProps</a></li></ul><h3>Interfaces / Types</h3><ul><li><a href="LambdaEnvironment.html">LambdaEnvironment</a></li></ul></div><div class="category"><h2>cdk-utils.route53-manager</h2><h3>Classes / Construct</h3><ul><li><a href="Route53Manager.html">Route53Manager</a></li></ul><h3>Interfaces / Properties</h3><ul><li><a href="Route53Props.html">Route53Props</a></li></ul></div><div class="category"><h2>cdk-utils.s3-manager</h2><h3>Classes / Construct</h3><ul><li><a href="S3Manager.html">S3Manager</a></li></ul><h3>Interfaces / Properties</h3><ul><li><a href="LifecycleRule.html">LifecycleRule</a></li><li><a href="S3BucketProps.html">S3BucketProps</a></li></ul></div><div class="category"><h2>cdk-utils.secrets-manager</h2><h3>Classes / Construct</h3><ul><li><a href="SecretsManager.html">SecretsManager</a></li></ul></div><div class="category"><h2>cdk-utils.site-with-ecs-backend</h2><h3>Classes / construct</h3><ul><li><a href="SiteWithEcsBackend.html">SiteWithEcsBackend</a></li></ul><h3>Interfaces / Properties</h3><ul><li><a href="HealthCheck.html">HealthCheck</a></li><li><a href="SiteWithEcsBackendProps.html">SiteWithEcsBackendProps</a></li></ul></div><div class="category"><h2>cdk-utils.sns-manager</h2><h3>Classes / Construct</h3><ul><li><a href="SnsManager.html">SnsManager</a></li></ul><h3>Interfaces / Properties</h3><ul><li><a href="SubscriptionProps.html">SubscriptionProps</a></li></ul></div><div class="category"><h2>cdk-utils.ssm-manager</h2><h3>Classes / Construct</h3><ul><li><a href="SsmManager.html">SsmManager</a></li><li><a href="SSMParameterReader.html">SSMParameterReader</a></li></ul><h3>Interfaces / Properties</h3><ul><li><a href="SSMParameterReaderProps.html">SSMParameterReaderProps</a></li></ul></div><div class="category"><h2>cdk-utils.static-site</h2><h3>Classes / construct</h3><ul><li><a href="StaticSite.html">StaticSite</a></li></ul><h3>Interfaces / Properties</h3><ul><li><a href="StaticSiteProps.html">StaticSiteProps</a></li></ul></div><div class="category"><h2>cdk-utils.utils</h2><h3>Global</h3><ul><li><a href="global.html#createCfnOutput">createCfnOutput</a></li><li><a href="global.html#defaultResponseObject">defaultResponseObject</a></li><li><a href="global.html#isDevStage">isDevStage</a></li><li><a href="global.html#isPrdStage">isPrdStage</a></li><li><a href="global.html#isTestStage">isTestStage</a></li><li><a href="global.html#isUatStage">isUatStage</a></li><li><a href="global.html#LogLevel">LogLevel</a></li><li><a href="global.html#redirectError">redirectError</a></li><li><a href="global.html#redirectSuccess">redirectSuccess</a></li></ul></div><div class="category"><h2>cdk-utils.vpc-manager</h2><h3>Classes / Construct</h3><ul><li><a href="VpcManager.html">VpcManager</a></li></ul><h3>Global</h3><ul><li><a href="global.html#CommonVpcIdentifier">CommonVpcIdentifier</a></li></ul></div><div class="category"><h2>cdk-utils.waf-manager</h2><h3>Classes / Construct</h3><ul><li><a href="WafManager.html">WafManager</a></li></ul><h3>Interfaces / Properties</h3><ul><li><a href="WafIPSetProps.html">WafIPSetProps</a></li><li><a href="WafWebACLProps.html">WafWebACLProps</a></li></ul></div>
-                
-            </nav>
-        </div>
-        <div class="core" id="main-content-wrapper">
-            <div class="content">
-                <header class="page-title">
-                    <p>Source</p>
-                    <h1>manager/aws/iam-manager.ts</h1>
-                </header>
-                
-
-
-
-    
-    <section>
-        <article>
-            <pre class="prettyprint source linenums"><code>import * as cdk from 'aws-cdk-lib'
-import * as ecs from 'aws-cdk-lib/aws-ecs'
-import * as iam from 'aws-cdk-lib/aws-iam'
-import * as logs from 'aws-cdk-lib/aws-logs'
-import * as s3 from 'aws-cdk-lib/aws-s3'
-import * as common from '../../common'
-import * as utils from '../../utils'
-
-/**
- * @stability stable
- * @category cdk-utils.iam-manager
- * @subcategory Construct
- * @classdesc Provides operations on AWS IAM.
- * - A new instance of this class is injected into {@link common.CommonConstruct} constructor.
- * - If a custom construct extends {@link common.CommonConstruct}, an instance is available within the context.
- * @example
- * import * as common from '@gradientedge/cdk-utils'
- *
- * class CustomConstruct extends common.common.CommonConstruct {
- *   constructor(parent: cdk.Construct, id: string, props: common.CommonStackProps) {
- *     super(parent, id, props)
- *     this.props = props
- *     this.iamManager.createRoleForEcsEvent('MyEcsRole', this, cluster, task)
- *   }
- * }
- *
- * @see [CDK IAM Module]{@link https://docs.aws.amazon.com/cdk/api/v2/docs/aws-cdk-lib.aws_iam-readme.html}
- */
-export class IamManager {
-  /**
-   * @summary Method to create iam statement to read secrets
-   * @param {common.CommonConstruct} scope scope in which this resource is defined
-   */
-  public statementForReadSecrets(scope: common.CommonConstruct) {
-    return new iam.PolicyStatement({
-      effect: iam.Effect.ALLOW,
-      actions: ['secretsmanager:GetSecretValue'],
-      resources: [`arn:aws:secretsmanager:${cdk.Stack.of(scope).region}:${cdk.Stack.of(scope).account}:secret:*`],
-    })
-  }
-
-  /**
-   * @summary Method to create iam statement to put events
-   */
-  public statementForPutEvents() {
-    return new iam.PolicyStatement({
-      effect: iam.Effect.ALLOW,
-      actions: ['events:PutEvents'],
-      resources: ['*'],
-    })
-  }
-
-  /**
-   * @summary Method to create iam statement to read app config
-   */
-  public statementForReadAnyAppConfig() {
-    return new iam.PolicyStatement({
-      effect: iam.Effect.ALLOW,
-      actions: [
-        'ssm:GetDocument',
-        'ssm:ListDocuments',
-        'appconfig:ListApplications',
-        'appconfig:GetApplication',
-        'appconfig:ListEnvironments',
-        'appconfig:GetEnvironment',
-        'appconfig:ListConfigurationProfiles',
-        'appconfig:GetConfigurationProfile',
-        'appconfig:ListDeploymentStrategies',
-        'appconfig:GetDeploymentStrategy',
-        'appconfig:GetConfiguration',
-        'appconfig:ListDeployments',
-      ],
-      resources: ['*'],
-    })
-  }
-
-  /**
-   * @summary Method to create iam statement to list s3 buckets
-   * @param {common.CommonConstruct} scope scope in which this resource is defined
-   * @param {s3.IBucket} bucket
-   */
-  public statementForListBucket(scope: common.CommonConstruct, bucket: s3.IBucket) {
-    return new iam.PolicyStatement({
-      effect: iam.Effect.ALLOW,
-      actions: ['s3:ListBucket'],
-      resources: [bucket.bucketArn],
-    })
-  }
-
-  /**
-   * @summary Method to create iam statement to list all s3 buckets
-   */
-  public statementForListAllMyBuckets() {
-    return new iam.PolicyStatement({
-      effect: iam.Effect.ALLOW,
-      actions: ['s3:ListAllMyBuckets'],
-      resources: ['*'],
-    })
-  }
-
-  /**
-   * @summary Method to create iam statement to get s3 objects in buckets
-   * @param {common.CommonConstruct} scope scope in which this resource is defined
-   * @param {s3.IBucket} bucket
-   */
-  public statementForGetAnyS3Objects(scope: common.CommonConstruct, bucket: s3.IBucket) {
-    return new iam.PolicyStatement({
-      effect: iam.Effect.ALLOW,
-      actions: ['s3:GetObject', 's3:GetObjectAcl'],
-      resources: [bucket.arnForObjects(`*`)],
-    })
-  }
-
-  /**
-   * @summary Method to create iam statement to delete s3 objects in buckets
-   * @param {common.CommonConstruct} scope scope in which this resource is defined
-   * @param {s3.IBucket} bucket
-   */
-  public statementForDeleteAnyS3Objects(scope: common.CommonConstruct, bucket: s3.IBucket) {
-    return new iam.PolicyStatement({
-      effect: iam.Effect.ALLOW,
-      actions: ['s3:DeleteObject'],
-      resources: [bucket.arnForObjects(`*`)],
-    })
-  }
-
-  /**
-   * @summary Method to create iam statement to write s3 objects in buckets
-   * @param {common.CommonConstruct} scope scope in which this resource is defined
-   * @param {s3.IBucket} bucket
-   */
-  public statementForPutAnyS3Objects(scope: common.CommonConstruct, bucket: s3.IBucket) {
-    return new iam.PolicyStatement({
-      effect: iam.Effect.ALLOW,
-      actions: ['s3:PutObject', 's3:PutObjectAcl'],
-      resources: [bucket.arnForObjects(`*`)],
-    })
-  }
-
-  /**
-   * @summary Method to create iam statement to pass iam role
-   */
-  public statementForPassRole() {
-    return new iam.PolicyStatement({
-      effect: iam.Effect.ALLOW,
-      actions: ['iam:PassRole'],
-      resources: ['*'],
-    })
-  }
-
-  /**
-   * @summary Method to create iam statement to invalidate cloudfront cache
-   */
-  public statementForCloudfrontInvalidation() {
-    return new iam.PolicyStatement({
-      effect: iam.Effect.ALLOW,
-      actions: ['cloudfront:GetInvalidation', 'cloudfront:CreateInvalidation'],
-      resources: ['*'],
-    })
-  }
-
-  /**
-   * @summary Method to create iam policy to invalidate cloudfront cache
-   */
-  public policyForCloudfrontInvalidation() {
-    return new iam.PolicyDocument({
-      statements: [
-        this.statementForCreateAnyLogStream(),
-        this.statementForPutAnyLogEvent(),
-        this.statementForCloudfrontInvalidation(),
-        new iam.PolicyStatement({
-          effect: iam.Effect.ALLOW,
-          actions: [
-            'ecr:GetDownloadUrlForLayer',
-            'ecr:BatchGetImage',
-            'ecr:BatchCheckLayerAvailability',
-            'ecr:GetAuthorizationToken',
-          ],
-          resources: ['*'],
-        }),
-      ],
-    })
-  }
-
-  /**
-   * @summary Method to create iam role to invalidate cloudfront cache
-   * @param {string} id scoped id of the resource
-   * @param {common.CommonConstruct} scope scope in which this resource is defined
-   */
-  public roleForCloudfrontInvalidation(id: string, scope: common.CommonConstruct) {
-    return new iam.Role(scope, `${id}-install-deps-project-role`, {
-      assumedBy: new iam.ServicePrincipal('codebuild.amazonaws.com'),
-      inlinePolicies: {
-        codeBuildPolicy: this.policyForCloudfrontInvalidation(),
-      },
-    })
-  }
-
-  /**
-   * @summary Method to create iam statement to assume iam role
-   * @param {common.CommonConstruct} scope scope in which this resource is defined
-   * @param {iam.ServicePrincipal[]} servicePrincipals
-   */
-  public statementForAssumeRole(scope: common.CommonConstruct, servicePrincipals: iam.ServicePrincipal[]) {
-    return new iam.PolicyStatement({
-      effect: iam.Effect.ALLOW,
-      actions: ['sts:AssumeRole'],
-      principals: servicePrincipals,
-    })
-  }
-
-  /**
-   * @summary Method to create iam statement to pass ecs role
-   */
-  public statementForEcsPassRole() {
-    return new iam.PolicyStatement({
-      effect: iam.Effect.ALLOW,
-      actions: ['iam:PassRole'],
-      resources: ['*'],
-      conditions: { StringLike: { 'iam:PassedToService': 'ecs-tasks.amazonaws.com' } },
-    })
-  }
-
-  /**
-   * @summary Method to create iam statement to run ecs task
-   * @param {common.CommonConstruct} scope scope in which this resource is defined
-   * @param {ecs.ICluster} cluster
-   * @param {ecs.ITaskDefinition} task
-   */
-  public statementForRunEcsTask(scope: common.CommonConstruct, cluster: ecs.ICluster, task: ecs.ITaskDefinition) {
-    return new iam.PolicyStatement({
-      effect: iam.Effect.ALLOW,
-      actions: ['ecs:RunTask'],
-      resources: [task.taskDefinitionArn],
-      conditions: { ArnLike: { 'ecs:cluster': cluster.clusterArn } },
-    })
-  }
-
-  /**
-   * @summary Method to create iam statement to create log stream
-   * @param {common.CommonConstruct} scope scope in which this resource is defined
-   * @param {logs.CfnLogGroup} logGroup
-   */
-  public statementForCreateLogStream(scope: common.CommonConstruct, logGroup: logs.CfnLogGroup) {
-    return new iam.PolicyStatement({
-      effect: iam.Effect.ALLOW,
-      actions: ['logs:CreateLogStream'],
-      resources: [
-        `arn:aws:logs:${cdk.Stack.of(scope).region}:${cdk.Stack.of(scope).account}:log-group:${
-          logGroup.logGroupName
-        }:log-stream:${cdk.Stack.of(scope).account}_CloudTrail_eu-west-1*`,
-      ],
-      sid: 'AWSCloudTrailCreateLogStream2014110',
-    })
-  }
-
-  /**
-   * @summary Method to create iam statement to create any log stream
-   */
-  public statementForCreateAnyLogStream() {
-    return new iam.PolicyStatement({
-      effect: iam.Effect.ALLOW,
-      actions: ['logs:CreateLogStream'],
-      resources: ['*'],
-    })
-  }
-
-  /**
-   * @summary Method to create iam statement to write log events
-   * @param {common.CommonConstruct} scope scope in which this resource is defined
-   * @param {logs.CfnLogGroup} logGroup
-   */
-  public statementForPutLogEvent(scope: common.CommonConstruct, logGroup: logs.CfnLogGroup) {
-    return new iam.PolicyStatement({
-      effect: iam.Effect.ALLOW,
-      actions: ['logs:PutLogEvents'],
-      resources: [
-        `arn:aws:logs:${cdk.Stack.of(scope).region}:${cdk.Stack.of(scope).account}:log-group:${
-          logGroup.logGroupName
-        }:log-stream:${cdk.Stack.of(scope).account}_CloudTrail_eu-west-1*`,
-      ],
-      sid: 'AWSCloudTrailPutLogEvents20141101',
-    })
-  }
-
-  /**
-   * @summary Method to create iam statement to write any log events
-   */
-  public statementForPutAnyLogEvent() {
-    return new iam.PolicyStatement({
-      effect: iam.Effect.ALLOW,
-      actions: ['logs:PutLogEvents'],
-      resources: ['*'],
-    })
-  }
-
-  /**
-   * @summary Method to create iam statement for cloud trail
-   * @param {string} id scoped id of the resource
-   * @param {common.CommonConstruct} scope scope in which this resource is defined
-   * @param {logs.CfnLogGroup} logGroup
-   */
-  public createRoleForCloudTrail(id: string, scope: common.CommonConstruct, logGroup: logs.CfnLogGroup) {
-    const policy = new iam.PolicyDocument({
-      statements: [this.statementForCreateLogStream(scope, logGroup), this.statementForPutLogEvent(scope, logGroup)],
-    })
-    const role = new iam.CfnRole(scope, `${id}`, {
-      assumeRolePolicyDocument: new iam.PolicyDocument({
-        statements: [this.statementForAssumeRole(scope, [new iam.ServicePrincipal('cloudtrail.amazonaws.com')])],
-      }),
-      policies: [
-        {
-          policyName: `${id}-policy-${scope.props.stage}`,
-          policyDocument: policy,
-        },
-      ],
-      roleName: `${id}-${scope.props.stage}`,
-    })
-
-    utils.createCfnOutput(`${id}Arn`, scope, role.attrArn)
-    utils.createCfnOutput(`${id}Name`, scope, role.roleName)
-
-    return role
-  }
-
-  /**
-   * @summary Method to create iam statement for ecs event
-   * @param {string} id scoped id of the resource
-   * @param {common.CommonConstruct} scope scope in which this resource is defined
-   * @param {ecs.ICluster} cluster
-   * @param {ecs.ITaskDefinition} task
-   */
-  public createRoleForEcsEvent(
-    id: string,
-    scope: common.CommonConstruct,
-    cluster: ecs.ICluster,
-    task: ecs.ITaskDefinition
-  ) {
-    const policy = new iam.PolicyDocument({
-      statements: [this.statementForRunEcsTask(scope, cluster, task), this.statementForEcsPassRole()],
-    })
-
-    const role = new iam.Role(scope, `${id}`, {
-      assumedBy: new iam.ServicePrincipal('events.amazonaws.com'),
-      description: `Role for ${id} ECS Task execution from EventBridge`,
-      inlinePolicies: { policy },
-      roleName: `${id}-${scope.props.stage}`,
-    })
-
-    utils.createCfnOutput(`${id}Arn`, scope, role.roleArn)
-    utils.createCfnOutput(`${id}Name`, scope, role.roleName)
-
-    return role
-  }
-
-  /**
-   * @summary Method to create iam statement for ecs execution
-   * @param {string} id scoped id of the resource
-   * @param {common.CommonConstruct} scope scope in which this resource is defined
-   * @param {iam.PolicyDocument} policy
-   */
-  public createRoleForEcsExecution(id: string, scope: common.CommonConstruct, policy: iam.PolicyDocument) {
-    const role = new iam.Role(scope, `${id}`, {
-      assumedBy: new iam.ServicePrincipal('ecs-tasks.amazonaws.com'),
-      description: `Role for ${id} ECS Task execution`,
-      inlinePolicies: { policy },
-      managedPolicies: [
-        iam.ManagedPolicy.fromManagedPolicyArn(
-          scope,
-          'AmazonECSTaskExecutionRolePolicy',
-          'arn:aws:iam::aws:policy/service-role/AmazonECSTaskExecutionRolePolicy'
-        ),
-      ],
-      roleName: `${id}-${scope.props.stage}`,
-    })
-
-    utils.createCfnOutput(`${id}Arn`, scope, role.roleArn)
-    utils.createCfnOutput(`${id}Name`, scope, role.roleName)
-
-    return role
-  }
-
-  /**
-   * @summary Method to create iam statement for lambda execution
-   * @param {string} id scoped id of the resource
-   * @param {common.CommonConstruct} scope scope in which this resource is defined
-   * @param {iam.PolicyDocument} policy
-   * @param {iam.ServicePrincipal} servicePrinicpal
-   */
-  public createRoleForLambda(
-    id: string,
-    scope: common.CommonConstruct,
-    policy: iam.PolicyDocument,
-    servicePrinicpal?: iam.ServicePrincipal
-  ) {
-    const role = new iam.Role(scope, `${id}`, {
-      assumedBy: servicePrinicpal ?? new iam.ServicePrincipal('lambda.amazonaws.com'),
-      description: `Role for ${id} Lambda function`,
-      inlinePolicies: { policy },
-      managedPolicies: [
-        iam.ManagedPolicy.fromManagedPolicyArn(
-          scope,
-          `${id}-AWSLambdaBasicExecutionRole`,
-          'arn:aws:iam::aws:policy/service-role/AWSLambdaBasicExecutionRole'
-        ),
-      ],
-      roleName: `${id}-${scope.props.stage}`,
-    })
-
-    utils.createCfnOutput(`${id}Arn`, scope, role.roleArn)
-    utils.createCfnOutput(`${id}Name`, scope, role.roleName)
-
-    return role
-  }
-}
-</code></pre>
-        </article>
-    </section>
-
-
-
-
-            </div>
-            
-        </div>
-        <div id="side-nav" class="side-nav">
-        </div>
-    </div>
-<script src="scripts/app.min.js"></script>
-<script>PR.prettyPrint();</script>
-<script src="scripts/linenumber.js"> </script>
-
-<script src="scripts/search.js"> </script>
-
-
-</body>
-</html>