@gradientedge/cdk-utils 4.7.0 → 4.9.1

package/app/api-destined-function/layers/nodejs/node_modules/.yarn-integrity

@@ -23,7 +23,7 @@
     "glob@^7.1.3": "https://registry.yarnpkg.com/glob/-/glob-7.2.0.tgz#d15535af7732e02e948f4c41628bd910293f6023",
     "inflight@^1.0.4": "https://registry.yarnpkg.com/inflight/-/inflight-1.0.6.tgz#49bd6331d7d02d0c09bc910a1075ba8165b56df9",
     "inherits@2": "https://registry.yarnpkg.com/inherits/-/inherits-2.0.4.tgz#0fa2c64f932917c3433a0ded55363aae37416b7c",
-    "minimatch@^3.0.4": "https://registry.yarnpkg.com/minimatch/-/minimatch-3.1.1.tgz#879ad447200773912898b46cd516a7abbb5e50b0",
+    "minimatch@^3.0.4": "https://registry.yarnpkg.com/minimatch/-/minimatch-3.1.2.tgz#19cd194bfd3e428f049a70817c038d89ab4be35b",
     "mkdirp@^1.0.4": "https://registry.yarnpkg.com/mkdirp/-/mkdirp-1.0.4.tgz#3eb5ed62622756d79a5f0e2a221dfebad75c2f7e",
     "once@^1.3.0": "https://registry.yarnpkg.com/once/-/once-1.4.0.tgz#583b1aa775961d4b113ac17d9c50baef9dd76bd1",
     "path-is-absolute@^1.0.0": "https://registry.yarnpkg.com/path-is-absolute/-/path-is-absolute-1.0.1.tgz#174b9268735534ffbc7ace6bf53a5a9e1b5c5f5f",

package/dist/src/lib/construct/api-to-eventbridge-target/main.d.ts

@@ -80,36 +80,100 @@ export declare class ApiToEventBridgeTarget extends CommonConstruct {
      * @protected
      */
     protected createApiDestinedLambdaFunction(): void;
+    /**
+     * @summary Method to create or use an existing eventbus for api destined payload deliveries
+     * @protected
+     */
     protected createApiDestinedEventBus(): void;
+    /**
+     * @summary Method to create a log group for successful api destined payload deliveries
+     * @protected
+     */
     protected createApiDestinationLogGroupSuccess(): void;
     /**
      * Method to create EventBridge rule with lambda target for success
      * @protected
      */
     protected createApiDestinationRuleSuccess(): void;
+    /**
+     * @summary Method to create a log group for failed api destined payload deliveries
+     * @protected
+     */
     protected createApiDestinationLogGroupFailure(): void;
     /**
      * Method to create EventBridge rule with lambda target for failure
      * @protected
      */
     protected createApiDestinationRuleFailure(): void;
+    /**
+     * @summary Method to create a role for sns topic
+     * @protected
+     */
     protected createApiDestinedTopicRole(): void;
+    /**
+     * @summary Method to create API destined SNS topic
+     * @protected
+     */
     protected createApiDestinedTopic(): void;
+    /**
+     * @summary Method to create api integration request parameters
+     * @protected
+     */
     protected createApiDestinedIntegrationRequestParameters(): void;
+    /**
+     * @summary Method to create api integration request templates
+     * @protected
+     */
     protected createApiDestinedIntegrationRequestTemplates(): void;
+    /**
+     * @summary Method to create api integration response
+     * @protected
+     */
     protected createApiDestinedIntegrationResponse(): void;
+    /**
+     * @summary Method to create api integration error response
+     * @protected
+     */
     protected createApiDestinedIntegrationErrorResponse(): void;
+    /**
+     * @summary Method to create api integration
+     * @protected
+     */
     protected createApiDestinedIntegration(): void;
+    /**
+     * @summary Method to create api integration method response
+     * @protected
+     */
     protected createApiDestinedMethodResponse(): void;
+    /**
+     * @summary Method to create api integration method error response
+     * @protected
+     */
     protected createApiDestinedMethodErrorResponse(): void;
     /**
      * @summary Method to create rest restApi for Api
      * @protected
      */
     protected createApiDestinedRestApi(): void;
+    /**
+     * @summary Method to create api integration response model
+     * @protected
+     */
     protected createApiDestinedResponseModel(): void;
+    /**
+     * @summary Method to create api integration error response model
+     * @protected
+     */
     protected createApiDestinedErrorResponseModel(): void;
+    /**
+     * @summary Method to create api integration resource
+     * @protected
+     */
     protected createApiDestinedResource(): void;
+    /**
+     * @summary Method to create api integration resource method
+     * @protected
+     */
     protected createApiDestinedResourceMethod(): void;
     /**
      * @summary Method to create custom restApi domain for Api API

package/dist/src/lib/construct/api-to-eventbridge-target/main.js

@@ -22,6 +22,7 @@ Object.defineProperty(exports, "__esModule", { value: true });
 exports.ApiToEventBridgeTarget = void 0;
 const cdk = __importStar(require("aws-cdk-lib"));
 const apig = __importStar(require("aws-cdk-lib/aws-apigateway"));
+const events = __importStar(require("aws-cdk-lib/aws-events"));
 const eventstargets = __importStar(require("aws-cdk-lib/aws-events-targets"));
 const iam = __importStar(require("aws-cdk-lib/aws-iam"));
 const destinations = __importStar(require("aws-cdk-lib/aws-lambda-destinations"));
@@ -214,13 +215,23 @@ class ApiToEventBridgeTarget extends common_1.CommonConstruct {
             },
         }, this.apiDestinedLambda.role, this.apiDestinedLambda.layers, this.props.lambda.source, this.props.lambda.handler ?? 'lambda.handler', this.apiDestinedLambda.environment);
     }
+    /**
+     * @summary Method to create or use an existing eventbus for api destined payload deliveries
+     * @protected
+     */
     createApiDestinedEventBus() {
-        if (this.props.api.useExisting)
+        if (this.props.api.useExisting) {
+            this.apiEvent.eventBus = events.EventBus.fromEventBusName(this, `${this.id}-destined-event-bus`, `${this.props.event.eventBusName}-${this.props.stage}`);
             return;
+        }
         this.apiEvent.eventBus = this.eventManager.createEventBus(`${this.id}-destined-event-bus`, this, {
             eventBusName: `${this.props.event.eventBusName}`,
         });
     }
+    /**
+     * @summary Method to create a log group for successful api destined payload deliveries
+     * @protected
+     */
     createApiDestinationLogGroupSuccess() {
         if (this.props.api.useExisting)
             return;
@@ -257,6 +268,10 @@ class ApiToEventBridgeTarget extends common_1.CommonConstruct {
         };
         this.apiEvent.ruleSuccess = this.eventManager.createRule(`${this.id}-api-destination-rule-success`, this, this.props.event.ruleSuccess, this.apiEvent.eventBus, [new eventstargets.CloudWatchLogGroup(this.apiEvent.logGroupSuccess)]);
     }
+    /**
+     * @summary Method to create a log group for failed api destined payload deliveries
+     * @protected
+     */
     createApiDestinationLogGroupFailure() {
         if (this.props.api.useExisting)
             return;
@@ -289,11 +304,19 @@ class ApiToEventBridgeTarget extends common_1.CommonConstruct {
         };
         this.apiEvent.ruleFailure = this.eventManager.createRule(`${this.id}-api-destination-rule-failure`, this, this.props.event.ruleFailure, this.apiEvent.eventBus, [new eventstargets.CloudWatchLogGroup(this.apiEvent.logGroupFailure)]);
     }
+    /**
+     * @summary Method to create a role for sns topic
+     * @protected
+     */
     createApiDestinedTopicRole() {
         this.apiDestinedRestApi.topicRole = new iam.Role(this, `${this.id}-sns-rest-api-role`, {
             assumedBy: new iam.ServicePrincipal('apigateway.amazonaws.com'),
         });
     }
+    /**
+     * @summary Method to create API destined SNS topic
+     * @protected
+     */
     createApiDestinedTopic() {
         if (!this.props.api.withResource)
             return;
@@ -302,6 +325,10 @@ class ApiToEventBridgeTarget extends common_1.CommonConstruct {
         }, this.apiDestinedLambda.function);
         this.apiDestinedRestApi.topic.grantPublish(this.apiDestinedRestApi.topicRole);
     }
+    /**
+     * @summary Method to create api integration request parameters
+     * @protected
+     */
     createApiDestinedIntegrationRequestParameters() {
         if (!this.props.api.withResource)
             return;
@@ -309,6 +336,10 @@ class ApiToEventBridgeTarget extends common_1.CommonConstruct {
             'integration.request.header.Content-Type': "'application/x-www-form-urlencoded'",
         };
     }
+    /**
+     * @summary Method to create api integration request templates
+     * @protected
+     */
     createApiDestinedIntegrationRequestTemplates() {
         if (!this.props.api.withResource)
             return;
@@ -321,6 +352,10 @@ class ApiToEventBridgeTarget extends common_1.CommonConstruct {
             ].join('&'),
         };
     }
+    /**
+     * @summary Method to create api integration response
+     * @protected
+     */
     createApiDestinedIntegrationResponse() {
         if (!this.props.api.withResource)
             return;
@@ -334,6 +369,10 @@ class ApiToEventBridgeTarget extends common_1.CommonConstruct {
             ...this.props.api.integrationResponse,
         };
     }
+    /**
+     * @summary Method to create api integration error response
+     * @protected
+     */
     createApiDestinedIntegrationErrorResponse() {
         if (!this.props.api.withResource)
             return;
@@ -356,6 +395,10 @@ class ApiToEventBridgeTarget extends common_1.CommonConstruct {
             ...this.props.api.integrationErrorResponse,
         };
     }
+    /**
+     * @summary Method to create api integration
+     * @protected
+     */
     createApiDestinedIntegration() {
         if (!this.props.api.withResource)
             return;
@@ -378,6 +421,10 @@ class ApiToEventBridgeTarget extends common_1.CommonConstruct {
             },
         });
     }
+    /**
+     * @summary Method to create api integration method response
+     * @protected
+     */
     createApiDestinedMethodResponse() {
         if (!this.props.api.withResource)
             return;
@@ -396,6 +443,10 @@ class ApiToEventBridgeTarget extends common_1.CommonConstruct {
             ...this.props.api.methodResponse,
         };
     }
+    /**
+     * @summary Method to create api integration method error response
+     * @protected
+     */
     createApiDestinedMethodErrorResponse() {
         if (!this.props.api.withResource)
             return;
@@ -451,6 +502,10 @@ class ApiToEventBridgeTarget extends common_1.CommonConstruct {
         this.addCfnOutput(`${this.id}-restApiId`, this.apiDestinedRestApi.api.restApiId);
         this.addCfnOutput(`${this.id}-restApiRootResourceId`, this.apiDestinedRestApi.api.root.resourceId);
     }
+    /**
+     * @summary Method to create api integration response model
+     * @protected
+     */
     createApiDestinedResponseModel() {
         if (!this.props.api.withResource)
             return;
@@ -469,6 +524,10 @@ class ApiToEventBridgeTarget extends common_1.CommonConstruct {
             ...this.props.api.responseModel,
         });
     }
+    /**
+     * @summary Method to create api integration error response model
+     * @protected
+     */
     createApiDestinedErrorResponseModel() {
         if (!this.props.api.withResource)
             return;
@@ -490,6 +549,10 @@ class ApiToEventBridgeTarget extends common_1.CommonConstruct {
             ...this.props.api.errorResponseModel,
         });
     }
+    /**
+     * @summary Method to create api integration resource
+     * @protected
+     */
     createApiDestinedResource() {
         if (!this.props.api.withResource)
             return;
@@ -506,10 +569,15 @@ class ApiToEventBridgeTarget extends common_1.CommonConstruct {
         }
         this.apiDestinedRestApi.resource = rootResource.addResource(this.props.api.resource ?? this.apiResource);
     }
+    /**
+     * @summary Method to create api integration resource method
+     * @protected
+     */
     createApiDestinedResourceMethod() {
         if (!this.props.api.withResource)
             return;
         this.apiDestinedRestApi.method = this.apiDestinedRestApi.resource.addMethod('POST', this.apiDestinedRestApi.integration, {
+            authorizer: this.apiDestinedRestApi.authoriser,
             methodResponses: [this.apiDestinedRestApi.methodResponse, this.apiDestinedRestApi.methodErrorResponse],
         });
     }

package/dist/src/lib/construct/graphql-api-lambda/main.js

@@ -188,7 +188,14 @@ class GraphQLApiLambda extends common_1.CommonConstruct {
                     stage: this.graphQLApi.deploymentStage,
                 }));
             });
+            return;
         }
+        // add default mapping if apiRootPaths not set
+        new apig.BasePathMapping(this, `${this.id}-base-bath-mapping`, {
+            domainName: this.graphQLApiDomain,
+            restApi: this.graphQLApi,
+            stage: this.graphQLApi.deploymentStage,
+        });
     }
     /**
      * @summary Method to create route53 records for GraphQL API

package/dist/src/lib/construct/graphql-api-lambda-with-cache/main.d.ts

@@ -30,7 +30,6 @@ export declare class GraphQLApiLambdaWithCache extends GraphQLApiLambda {
     graphQLVpc: ec2.IVpc;
     graphQLElastiCache: elasticache.CfnCacheCluster;
     graphQLSecurityGroup: ec2.ISecurityGroup;
-    securityGroupStackName: string;
     securityGroupExportName: string;
     vpcExportName: string;
     constructor(parent: Construct, id: string, props: GraphQlApiLambdaWithCacheProps);

package/dist/src/lib/construct/graphql-api-lambda-with-cache/main.js

@@ -54,7 +54,6 @@ class GraphQLApiLambdaWithCache extends __1.GraphQLApiLambda {
     graphQLVpc;
     graphQLElastiCache;
     graphQLSecurityGroup;
-    securityGroupStackName;
     securityGroupExportName;
     vpcExportName;
     constructor(parent, id, props) {
@@ -73,8 +72,8 @@ class GraphQLApiLambdaWithCache extends __1.GraphQLApiLambda {
      * @protected
      */
     setVpc() {
-        if (this.props.vpcExportName) {
-            this.graphQLVpc = this.vpcManager.retrieveCommonVpc(`${this.id}`, this, this.props.vpcExportName);
+        if (this.props.useExistingVpc) {
+            this.graphQLVpc = this.vpcManager.retrieveCommonVpc(`${this.id}`, this, this.props.vpcName);
         }
         else {
             this.graphQLVpc = this.vpcManager.createCommonVpc(this, this.props.graphQLVpc, this.props.graphQLVpc.vpcName);

package/dist/src/lib/manager/aws/api-manager.d.ts

@@ -40,4 +40,24 @@ export declare class ApiManager {
      * @param certificate the certificate used for custom restApi domain
      */
     createApiDomain(id: string, scope: common.CommonConstruct, domainName: string, certificate: acm.ICertificate): apig.DomainName;
+    /**
+     * @summary Method to create an API gateway resource
+     * @param {string} id
+     * @param {common.CommonConstruct} scope
+     * @param {apig.IResource} parent
+     * @param {string} path
+     * @param {apig.Integration} integration
+     * @param {boolean} addProxy
+     * @param {string[]?} allowedOrigins
+     * @param {string[]?} allowedMethods
+     * @param {string[]?} allowedHeaders
+     */
+    createApiResource(id: string, scope: common.CommonConstruct, parent: apig.IResource, path: string, integration: apig.Integration, addProxy: boolean, allowedOrigins?: string[], allowedMethods?: string[], allowedHeaders?: string[]): apig.Resource;
+    /**
+     * @summary Method to create an api deployment
+     * @param {string} id
+     * @param {common.CommonConstruct} scope
+     * @param {apig.IRestApi} restApi
+     */
+    createApiDeployment(id: string, scope: common.CommonConstruct, restApi: apig.IRestApi): void;
 }

package/dist/src/lib/manager/aws/api-manager.js

@@ -84,7 +84,7 @@ class ApiManager {
             restApiName: `${props.restApiName}-${scope.props.stage}`,
             handler: lambdaFunction,
             defaultCorsPreflightOptions: props.defaultCorsPreflightOptions,
-            proxy: props.proxy || true,
+            proxy: props.proxy ?? true,
         });
         utils.createCfnOutput(`${id}-restApiId`, scope, api.restApiId);
         utils.createCfnOutput(`${id}-restApiName`, scope, api.restApiName);
@@ -107,5 +107,55 @@ class ApiManager {
         utils.createCfnOutput(`${id}-customDomainName`, scope, apiDomain.domainName);
         return apiDomain;
     }
+    /**
+     * @summary Method to create an API gateway resource
+     * @param {string} id
+     * @param {common.CommonConstruct} scope
+     * @param {apig.IResource} parent
+     * @param {string} path
+     * @param {apig.Integration} integration
+     * @param {boolean} addProxy
+     * @param {string[]?} allowedOrigins
+     * @param {string[]?} allowedMethods
+     * @param {string[]?} allowedHeaders
+     */
+    createApiResource(id, scope, parent, path, integration, addProxy, allowedOrigins, allowedMethods, allowedHeaders) {
+        const methods = allowedMethods ?? apig.Cors.ALL_METHODS;
+        const resource = parent.addResource(path, {
+            defaultCorsPreflightOptions: {
+                allowOrigins: allowedOrigins ?? apig.Cors.ALL_ORIGINS,
+                allowMethods: [...methods, 'OPTIONS'],
+                allowHeaders: allowedHeaders ?? apig.Cors.DEFAULT_HEADERS,
+                allowCredentials: true,
+            },
+        });
+        methods.forEach(method => resource.addMethod(method, integration));
+        utils.createCfnOutput(`${id}-${path}ResourceId`, scope, resource.resourceId);
+        if (addProxy) {
+            const resourceProxy = resource.addResource(`{${path}+}`, {
+                defaultCorsPreflightOptions: {
+                    allowOrigins: allowedOrigins ?? apig.Cors.ALL_ORIGINS,
+                    allowMethods: [...methods, 'OPTIONS'],
+                    allowHeaders: allowedHeaders ?? apig.Cors.DEFAULT_HEADERS,
+                    allowCredentials: true,
+                },
+            });
+            methods.forEach(method => resourceProxy.addMethod(method, integration));
+            utils.createCfnOutput(`${id}-${path}ProxyResourceId`, scope, resourceProxy.resourceId);
+        }
+        return resource;
+    }
+    /**
+     * @summary Method to create an api deployment
+     * @param {string} id
+     * @param {common.CommonConstruct} scope
+     * @param {apig.IRestApi} restApi
+     */
+    createApiDeployment(id, scope, restApi) {
+        new apig.Deployment(scope, `${id}`, {
+            api: restApi,
+            retainDeployments: false,
+        });
+    }
 }
 exports.ApiManager = ApiManager;

package/dist/src/lib/types/aws/index.d.ts

@@ -152,7 +152,8 @@ export interface GraphQlApiLambdaWithCacheProps extends GraphQlApiLambdaProps {
     graphQLVpc: ec2.VpcProps;
     graphQLElastiCache: ElastiCacheProps;
     securityGroupExportName: string;
-    vpcExportName: string;
+    useExistingVpc: boolean;
+    vpcName?: string;
 }
 /**
  * @category cdk-utils.api-to-eventbridge-target
@@ -171,6 +172,7 @@ export interface ApiDestinationEventType {
  */
 export interface ApiDestinedRestApiType {
     api: apig.IRestApi;
+    authoriser?: apig.IAuthorizer;
     certificate: acm.ICertificate;
     domain: apig.DomainName;
     errorResponseModel: apig.Model;

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@gradientedge/cdk-utils",
-  "version": "4.7.0",
+  "version": "4.9.1",
   "description": "Utilities for AWS CDK provisioning",
   "main": "dist/index.js",
   "engines": {

package/src/lib/construct/api-to-eventbridge-target/main.ts

@@ -1,5 +1,6 @@
 import * as cdk from 'aws-cdk-lib'
 import * as apig from 'aws-cdk-lib/aws-apigateway'
+import * as events from 'aws-cdk-lib/aws-events'
 import * as eventstargets from 'aws-cdk-lib/aws-events-targets'
 import * as iam from 'aws-cdk-lib/aws-iam'
 import * as lambda from 'aws-cdk-lib/aws-lambda'
@@ -245,13 +246,28 @@ export class ApiToEventBridgeTarget extends CommonConstruct {
     )
   }
 
+  /**
+   * @summary Method to create or use an existing eventbus for api destined payload deliveries
+   * @protected
+   */
   protected createApiDestinedEventBus() {
-    if (this.props.api.useExisting) return
+    if (this.props.api.useExisting) {
+      this.apiEvent.eventBus = events.EventBus.fromEventBusName(
+        this,
+        `${this.id}-destined-event-bus`,
+        `${this.props.event.eventBusName}-${this.props.stage}`
+      )
+      return
+    }
     this.apiEvent.eventBus = this.eventManager.createEventBus(`${this.id}-destined-event-bus`, this, {
       eventBusName: `${this.props.event.eventBusName}`,
     })
   }
 
+  /**
+   * @summary Method to create a log group for successful api destined payload deliveries
+   * @protected
+   */
   protected createApiDestinationLogGroupSuccess() {
     if (this.props.api.useExisting) return
     this.apiEvent.logGroupSuccess = this.logManager.createLogGroup(`${this.id}-destination-success-log`, this, {
@@ -294,6 +310,10 @@ export class ApiToEventBridgeTarget extends CommonConstruct {
     )
   }
 
+  /**
+   * @summary Method to create a log group for failed api destined payload deliveries
+   * @protected
+   */
   protected createApiDestinationLogGroupFailure() {
     if (this.props.api.useExisting) return
     this.apiEvent.logGroupFailure = this.logManager.createLogGroup(`${this.id}-destination-failure-log`, this, {
@@ -332,12 +352,20 @@ export class ApiToEventBridgeTarget extends CommonConstruct {
     )
   }
 
+  /**
+   * @summary Method to create a role for sns topic
+   * @protected
+   */
   protected createApiDestinedTopicRole() {
     this.apiDestinedRestApi.topicRole = new iam.Role(this, `${this.id}-sns-rest-api-role`, {
       assumedBy: new iam.ServicePrincipal('apigateway.amazonaws.com'),
     })
   }
 
+  /**
+   * @summary Method to create API destined SNS topic
+   * @protected
+   */
   protected createApiDestinedTopic() {
     if (!this.props.api.withResource) return
     this.apiDestinedRestApi.topic = this.snsManager.createLambdaNotificationService(
@@ -352,6 +380,10 @@ export class ApiToEventBridgeTarget extends CommonConstruct {
     this.apiDestinedRestApi.topic.grantPublish(this.apiDestinedRestApi.topicRole)
   }
 
+  /**
+   * @summary Method to create api integration request parameters
+   * @protected
+   */
   protected createApiDestinedIntegrationRequestParameters() {
     if (!this.props.api.withResource) return
     this.apiDestinedRestApi.integrationRequestParameters = {
@@ -359,6 +391,10 @@ export class ApiToEventBridgeTarget extends CommonConstruct {
     }
   }
 
+  /**
+   * @summary Method to create api integration request templates
+   * @protected
+   */
   protected createApiDestinedIntegrationRequestTemplates() {
     if (!this.props.api.withResource) return
     this.apiDestinedRestApi.integrationRequestTemplates = {
@@ -371,6 +407,10 @@ export class ApiToEventBridgeTarget extends CommonConstruct {
     }
   }
 
+  /**
+   * @summary Method to create api integration response
+   * @protected
+   */
   protected createApiDestinedIntegrationResponse() {
     if (!this.props.api.withResource) return
     this.apiDestinedRestApi.integrationResponse = {
@@ -384,6 +424,10 @@ export class ApiToEventBridgeTarget extends CommonConstruct {
     }
   }
 
+  /**
+   * @summary Method to create api integration error response
+   * @protected
+   */
   protected createApiDestinedIntegrationErrorResponse() {
     if (!this.props.api.withResource) return
     this.apiDestinedRestApi.integrationErrorResponse = {
@@ -406,6 +450,10 @@ export class ApiToEventBridgeTarget extends CommonConstruct {
     }
   }
 
+  /**
+   * @summary Method to create api integration
+   * @protected
+   */
   protected createApiDestinedIntegration() {
     if (!this.props.api.withResource) return
     this.apiDestinedRestApi.integration = new apig.Integration({
@@ -428,6 +476,10 @@ export class ApiToEventBridgeTarget extends CommonConstruct {
     })
   }
 
+  /**
+   * @summary Method to create api integration method response
+   * @protected
+   */
   protected createApiDestinedMethodResponse() {
     if (!this.props.api.withResource) return
     this.apiDestinedRestApi.methodResponse = {
@@ -446,6 +498,10 @@ export class ApiToEventBridgeTarget extends CommonConstruct {
     }
   }
 
+  /**
+   * @summary Method to create api integration method error response
+   * @protected
+   */
   protected createApiDestinedMethodErrorResponse() {
     if (!this.props.api.withResource) return
     this.apiDestinedRestApi.methodErrorResponse = {
@@ -506,6 +562,10 @@ export class ApiToEventBridgeTarget extends CommonConstruct {
     this.addCfnOutput(`${this.id}-restApiRootResourceId`, this.apiDestinedRestApi.api.root.resourceId)
   }
 
+  /**
+   * @summary Method to create api integration response model
+   * @protected
+   */
   protected createApiDestinedResponseModel() {
     if (!this.props.api.withResource) return
     this.apiDestinedRestApi.responseModel = new apig.Model(this, `${this.id}-response-model`, {
@@ -524,6 +584,10 @@ export class ApiToEventBridgeTarget extends CommonConstruct {
     })
   }
 
+  /**
+   * @summary Method to create api integration error response model
+   * @protected
+   */
   protected createApiDestinedErrorResponseModel() {
     if (!this.props.api.withResource) return
     this.apiDestinedRestApi.errorResponseModel = new apig.Model(this, `${this.id}-error-response-model`, {
@@ -545,6 +609,10 @@ export class ApiToEventBridgeTarget extends CommonConstruct {
     })
   }
 
+  /**
+   * @summary Method to create api integration resource
+   * @protected
+   */
   protected createApiDestinedResource() {
     if (!this.props.api.withResource) return
 
@@ -562,12 +630,17 @@ export class ApiToEventBridgeTarget extends CommonConstruct {
     this.apiDestinedRestApi.resource = rootResource.addResource(this.props.api.resource ?? this.apiResource)
   }
 
+  /**
+   * @summary Method to create api integration resource method
+   * @protected
+   */
   protected createApiDestinedResourceMethod() {
     if (!this.props.api.withResource) return
     this.apiDestinedRestApi.method = this.apiDestinedRestApi.resource.addMethod(
       'POST',
       this.apiDestinedRestApi.integration,
       {
+        authorizer: this.apiDestinedRestApi.authoriser,
         methodResponses: [this.apiDestinedRestApi.methodResponse, this.apiDestinedRestApi.methodErrorResponse],
       }
     )

package/src/lib/construct/graphql-api-lambda/main.ts

@@ -231,7 +231,15 @@ export class GraphQLApiLambda extends CommonConstruct {
           })
         )
       })
+      return
     }
+
+    // add default mapping if apiRootPaths not set
+    new apig.BasePathMapping(this, `${this.id}-base-bath-mapping`, {
+      domainName: this.graphQLApiDomain,
+      restApi: this.graphQLApi,
+      stage: this.graphQLApi.deploymentStage,
+    })
   }
 
   /**

package/src/lib/construct/graphql-api-lambda-with-cache/main.ts

@@ -37,7 +37,6 @@ export class GraphQLApiLambdaWithCache extends GraphQLApiLambda {
   graphQLVpc: ec2.IVpc
   graphQLElastiCache: elasticache.CfnCacheCluster
   graphQLSecurityGroup: ec2.ISecurityGroup
-  securityGroupStackName: string
   securityGroupExportName: string
   vpcExportName: string
 
@@ -60,8 +59,8 @@ export class GraphQLApiLambdaWithCache extends GraphQLApiLambda {
    * @protected
    */
   protected setVpc() {
-    if (this.props.vpcExportName) {
-      this.graphQLVpc = this.vpcManager.retrieveCommonVpc(`${this.id}`, this, this.props.vpcExportName)
+    if (this.props.useExistingVpc) {
+      this.graphQLVpc = this.vpcManager.retrieveCommonVpc(`${this.id}`, this, this.props.vpcName)
     } else {
       this.graphQLVpc = this.vpcManager.createCommonVpc(this, this.props.graphQLVpc, this.props.graphQLVpc.vpcName)
     }

package/src/lib/manager/aws/api-manager.ts

@@ -71,7 +71,7 @@ export class ApiManager {
       restApiName: `${props.restApiName}-${scope.props.stage}`,
       handler: lambdaFunction,
       defaultCorsPreflightOptions: props.defaultCorsPreflightOptions,
-      proxy: props.proxy || true,
+      proxy: props.proxy ?? true,
     })
 
     utils.createCfnOutput(`${id}-restApiId`, scope, api.restApiId)
@@ -99,4 +99,68 @@ export class ApiManager {
 
     return apiDomain
   }
+
+  /**
+   * @summary Method to create an API gateway resource
+   * @param {string} id
+   * @param {common.CommonConstruct} scope
+   * @param {apig.IResource} parent
+   * @param {string} path
+   * @param {apig.Integration} integration
+   * @param {boolean} addProxy
+   * @param {string[]?} allowedOrigins
+   * @param {string[]?} allowedMethods
+   * @param {string[]?} allowedHeaders
+   */
+  public createApiResource(
+    id: string,
+    scope: common.CommonConstruct,
+    parent: apig.IResource,
+    path: string,
+    integration: apig.Integration,
+    addProxy: boolean,
+    allowedOrigins?: string[],
+    allowedMethods?: string[],
+    allowedHeaders?: string[]
+  ) {
+    const methods = allowedMethods ?? apig.Cors.ALL_METHODS
+    const resource = parent.addResource(path, {
+      defaultCorsPreflightOptions: {
+        allowOrigins: allowedOrigins ?? apig.Cors.ALL_ORIGINS,
+        allowMethods: [...methods, 'OPTIONS'],
+        allowHeaders: allowedHeaders ?? apig.Cors.DEFAULT_HEADERS,
+        allowCredentials: true,
+      },
+    })
+    methods.forEach(method => resource.addMethod(method, integration))
+    utils.createCfnOutput(`${id}-${path}ResourceId`, scope, resource.resourceId)
+
+    if (addProxy) {
+      const resourceProxy = resource.addResource(`{${path}+}`, {
+        defaultCorsPreflightOptions: {
+          allowOrigins: allowedOrigins ?? apig.Cors.ALL_ORIGINS,
+          allowMethods: [...methods, 'OPTIONS'],
+          allowHeaders: allowedHeaders ?? apig.Cors.DEFAULT_HEADERS,
+          allowCredentials: true,
+        },
+      })
+      methods.forEach(method => resourceProxy.addMethod(method, integration))
+      utils.createCfnOutput(`${id}-${path}ProxyResourceId`, scope, resourceProxy.resourceId)
+    }
+
+    return resource
+  }
+
+  /**
+   * @summary Method to create an api deployment
+   * @param {string} id
+   * @param {common.CommonConstruct} scope
+   * @param {apig.IRestApi} restApi
+   */
+  public createApiDeployment(id: string, scope: common.CommonConstruct, restApi: apig.IRestApi) {
+    new apig.Deployment(scope, `${id}`, {
+      api: restApi,
+      retainDeployments: false,
+    })
+  }
 }

package/src/lib/types/aws/index.ts

@@ -161,7 +161,8 @@ export interface GraphQlApiLambdaWithCacheProps extends GraphQlApiLambdaProps {
   graphQLVpc: ec2.VpcProps
   graphQLElastiCache: ElastiCacheProps
   securityGroupExportName: string
-  vpcExportName: string
+  useExistingVpc: boolean
+  vpcName?: string
 }
 
 /**
@@ -182,6 +183,7 @@ export interface ApiDestinationEventType {
  */
 export interface ApiDestinedRestApiType {
   api: apig.IRestApi
+  authoriser?: apig.IAuthorizer
   certificate: acm.ICertificate
   domain: apig.DomainName
   errorResponseModel: apig.Model