@gradientedge/cdk-utils 8.100.0 → 8.102.0

package/README.md

@@ -62,7 +62,7 @@ pnpm add @gradientedge/cdk-utils
 [aws-cdk]: https://docs.aws.amazon.com/cdk/latest/guide/home.html
 [aws-cli-badge]: https://img.shields.io/badge/aws--cli-2.3.4-777BB4?logo=amazon-aws
 [aws-cli-url]: https://aws.amazon.com/cli/
-[builds]: https://img.shields.io/github/workflow/status/gradientedge/cdk-utils/CI-Pipeline/main
+[builds]: https://img.shields.io/github/actions/workflow/status/gradientedge/cdk-utils/ci.yml?branch=main
 [builds-url]: https://github.com/gradientedge/cdk-utils/actions
 [cdk-badge]: https://img.shields.io/github/package-json/dependency-version/gradientedge/cdk-utils/aws-cdk-lib
 [cdk-url]: https://aws.amazon.com/cdk/

package/dist/src/lib/services/aws/identity-access-management/main.d.ts

@@ -207,6 +207,14 @@ export declare class IamManager {
      * @param servicePrinicpal
      */
     createRoleForLambda(id: string, scope: CommonConstruct, policy: iam.PolicyDocument, servicePrinicpal?: iam.ServicePrincipal): cdk.aws_iam.Role;
+    /**
+     * @summary Method to create iam statement for appconfig secrets manager integration
+     * @param id scoped id of the resource
+     * @param scope scope in which this resource is defined
+     * @param policy
+     * @param servicePrinicpal
+     */
+    createRoleForAppConfigSecrets(id: string, scope: CommonConstruct, policy: iam.PolicyDocument, servicePrinicpal?: iam.ServicePrincipal): cdk.aws_iam.Role;
     /**
      * @summary Method to create iam statement for step function execution
      * @param id scoped id of the resource

package/dist/src/lib/services/aws/identity-access-management/main.js

@@ -499,6 +499,24 @@ class IamManager {
         utils.createCfnOutput(`${id}Name`, scope, role.roleName);
         return role;
     }
+    /**
+     * @summary Method to create iam statement for appconfig secrets manager integration
+     * @param id scoped id of the resource
+     * @param scope scope in which this resource is defined
+     * @param policy
+     * @param servicePrinicpal
+     */
+    createRoleForAppConfigSecrets(id, scope, policy, servicePrinicpal) {
+        const role = new iam.Role(scope, `${id}`, {
+            assumedBy: servicePrinicpal ?? new iam.ServicePrincipal('appconfig.amazonaws.com'),
+            description: `Role for ${id} AppConfig Secrets`,
+            inlinePolicies: { policy },
+            roleName: `${id}-${scope.props.stage}`,
+        });
+        utils.createCfnOutput(`${id}Arn`, scope, role.roleArn);
+        utils.createCfnOutput(`${id}Name`, scope, role.roleName);
+        return role;
+    }
     /**
      * @summary Method to create iam statement for step function execution
      * @param id scoped id of the resource

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@gradientedge/cdk-utils",
-  "version": "8.100.0",
+  "version": "8.102.0",
   "description": "Utilities for AWS CDK provisioning",
   "main": "dist/index.js",
   "engines": {
@@ -46,15 +46,15 @@
     }
   },
   "dependencies": {
-    "@aws-sdk/client-secrets-manager": "^3.357.0",
-    "@aws-sdk/credential-providers": "^3.357.0",
+    "@aws-sdk/client-secrets-manager": "^3.360.0",
+    "@aws-sdk/credential-providers": "^3.360.0",
     "@aws-sdk/types": "^3.357.0",
     "@types/lodash": "^4.14.195",
-    "@types/node": "^20.3.1",
+    "@types/node": "^20.3.2",
     "@types/uuid": "^9.0.2",
     "app-root-path": "^3.1.0",
     "aws-cdk-lib": "^2.85.0",
-    "constructs": "^10.2.56",
+    "constructs": "^10.2.60",
     "lodash": "^4.17.21",
     "moment": "^2.29.4",
     "nconf": "^0.12.0",
@@ -67,8 +67,8 @@
     "@babel/eslint-parser": "^7.22.5",
     "@babel/plugin-proposal-class-properties": "^7.18.6",
     "@types/jest": "^29.5.2",
-    "@typescript-eslint/eslint-plugin": "^5.60.0",
-    "@typescript-eslint/parser": "^5.60.0",
+    "@typescript-eslint/eslint-plugin": "^5.60.1",
+    "@typescript-eslint/parser": "^5.60.1",
     "aws-cdk": "^2.85.0",
     "better-docs": "^2.7.2",
     "codecov": "^3.8.3",
@@ -78,7 +78,7 @@
     "eslint": "^8.43.0",
     "eslint-config-prettier": "^8.8.0",
     "eslint-plugin-import": "^2.27.5",
-    "eslint-plugin-jsdoc": "^46.2.6",
+    "eslint-plugin-jsdoc": "^46.3.0",
     "husky": "^8.0.3",
     "jest": "^29.5.0",
     "jest-extended": "^4.0.0",

package/src/lib/services/aws/identity-access-management/main.ts

@@ -538,6 +538,32 @@ export class IamManager {
     return role
   }
 
+  /**
+   * @summary Method to create iam statement for appconfig secrets manager integration
+   * @param id scoped id of the resource
+   * @param scope scope in which this resource is defined
+   * @param policy
+   * @param servicePrinicpal
+   */
+  public createRoleForAppConfigSecrets(
+    id: string,
+    scope: CommonConstruct,
+    policy: iam.PolicyDocument,
+    servicePrinicpal?: iam.ServicePrincipal
+  ) {
+    const role = new iam.Role(scope, `${id}`, {
+      assumedBy: servicePrinicpal ?? new iam.ServicePrincipal('appconfig.amazonaws.com'),
+      description: `Role for ${id} AppConfig Secrets`,
+      inlinePolicies: { policy },
+      roleName: `${id}-${scope.props.stage}`,
+    })
+
+    utils.createCfnOutput(`${id}Arn`, scope, role.roleArn)
+    utils.createCfnOutput(`${id}Name`, scope, role.roleName)
+
+    return role
+  }
+
   /**
    * @summary Method to create iam statement for step function execution
    * @param id scoped id of the resource