npm - @gradientedge/cdk-utils - Versions diffs - 8.118.0 → 8.120.0 - Mend

@gradientedge/cdk-utils 8.118.0 → 8.120.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (309) hide show

package/dist/src/lib/services/{aws/identity-access-management → identity-access-management}/main.js RENAMED Viewed

@@ -1,41 +1,18 @@
 "use strict";
-var __createBinding = (this && this.__createBinding) || (Object.create ? (function(o, m, k, k2) {
-    if (k2 === undefined) k2 = k;
-    var desc = Object.getOwnPropertyDescriptor(m, k);
-    if (!desc || ("get" in desc ? !m.__esModule : desc.writable || desc.configurable)) {
-      desc = { enumerable: true, get: function() { return m[k]; } };
-    }
-    Object.defineProperty(o, k2, desc);
-}) : (function(o, m, k, k2) {
-    if (k2 === undefined) k2 = k;
-    o[k2] = m[k];
-}));
-var __setModuleDefault = (this && this.__setModuleDefault) || (Object.create ? (function(o, v) {
-    Object.defineProperty(o, "default", { enumerable: true, value: v });
-}) : function(o, v) {
-    o["default"] = v;
-});
-var __importStar = (this && this.__importStar) || function (mod) {
-    if (mod && mod.__esModule) return mod;
-    var result = {};
-    if (mod != null) for (var k in mod) if (k !== "default" && Object.prototype.hasOwnProperty.call(mod, k)) __createBinding(result, mod, k);
-    __setModuleDefault(result, mod);
-    return result;
-};
 Object.defineProperty(exports, "__esModule", { value: true });
 exports.IamManager = void 0;
-const cdk = __importStar(require("aws-cdk-lib"));
-const iam = __importStar(require("aws-cdk-lib/aws-iam"));
-const utils = __importStar(require("../../../utils"));
+const aws_cdk_lib_1 = require("aws-cdk-lib");
+const aws_iam_1 = require("aws-cdk-lib/aws-iam");
+const utils_1 = require("../../utils");
 /**
- * @classdesc Provides operations on AWS IAM.
+ * @classdesc Provides operations on AWS
  * - A new instance of this class is injected into {@link CommonConstruct} constructor.
  * - If a custom construct extends {@link CommonConstruct}, an instance is available within the context.
  * @example
  * import { CommonConstruct } from '@gradientedge/cdk-utils'
  *
  * class CustomConstruct extends CommonConstruct {
- *   constructor(parent: cdk.Construct, id: string, props: common.CommonStackProps) {
+ *   constructor(parent: Construct, id: string, props: common.CommonStackProps) {
  *     super(parent, id, props)
  *     this.props = props
  *     this.iamManager.createRoleForEcsEvent('MyEcsRole', this, cluster, task)
@@ -50,11 +27,11 @@ class IamManager {
      * @param resourceArns list of ARNs to allow access to
      */
     statementForReadSecrets(scope, resourceArns) {
-        return new iam.PolicyStatement({
+        return new aws_iam_1.PolicyStatement({
             actions: ['secretsmanager:GetSecretValue'],
-            effect: iam.Effect.ALLOW,
+            effect: aws_iam_1.Effect.ALLOW,
             resources: resourceArns ?? [
-                `arn:aws:secretsmanager:${cdk.Stack.of(scope).region}:${cdk.Stack.of(scope).account}:secret:*`,
+                `arn:aws:secretsmanager:${aws_cdk_lib_1.Stack.of(scope).region}:${aws_cdk_lib_1.Stack.of(scope).account}:secret:*`,
             ],
         });
     }
@@ -63,20 +40,20 @@ class IamManager {
      * @param resourceArns list of ARNs to allow access to
      */
     statementForPutEvents(resourceArns) {
-        return new iam.PolicyStatement({
+        return new aws_iam_1.PolicyStatement({
             actions: ['events:PutEvents'],
-            effect: iam.Effect.ALLOW,
+            effect: aws_iam_1.Effect.ALLOW,
             resources: resourceArns ?? ['*'],
         });
     }
     /**
-     * @summary Method to create iam statement to start stepfunction execution
+     * @summary Method to create iam statement to start step function execution
      * @param resourceArns list of ARNs to allow access to
      */
     statementForStartExecution(resourceArns) {
-        return new iam.PolicyStatement({
+        return new aws_iam_1.PolicyStatement({
             actions: ['states:StartExecution'],
-            effect: iam.Effect.ALLOW,
+            effect: aws_iam_1.Effect.ALLOW,
             resources: resourceArns ?? ['*'],
         });
     }
@@ -85,9 +62,9 @@ class IamManager {
      * @param resourceArns list of ARNs to allow access to
      */
     statementForPollQueue(resourceArns) {
-        return new iam.PolicyStatement({
+        return new aws_iam_1.PolicyStatement({
             actions: ['sqs:ReceiveMessage', 'sqs:DeleteMessage', 'sqs:GetQueueAttributes'],
-            effect: iam.Effect.ALLOW,
+            effect: aws_iam_1.Effect.ALLOW,
             resources: resourceArns ?? ['*'],
         });
     }
@@ -96,9 +73,9 @@ class IamManager {
      * @param resourceArns list of ARNs to allow access to
      */
     statementForInvokeLambda(resourceArns) {
-        return new iam.PolicyStatement({
+        return new aws_iam_1.PolicyStatement({
             actions: ['lambda:InvokeFunction'],
-            effect: iam.Effect.ALLOW,
+            effect: aws_iam_1.Effect.ALLOW,
             resources: resourceArns ?? ['*'],
         });
     }
@@ -107,7 +84,7 @@ class IamManager {
      * @param resourceArns list of ARNs to allow access to
      */
     statementForReadAnyAppConfig(resourceArns) {
-        return new iam.PolicyStatement({
+        return new aws_iam_1.PolicyStatement({
             actions: [
                 'ssm:GetDocument',
                 'ssm:ListDocuments',
@@ -122,7 +99,7 @@ class IamManager {
                 'appconfig:GetConfiguration',
                 'appconfig:ListDeployments',
             ],
-            effect: iam.Effect.ALLOW,
+            effect: aws_iam_1.Effect.ALLOW,
             resources: resourceArns ?? ['*'],
         });
     }
@@ -131,9 +108,9 @@ class IamManager {
      * @param resourceArns list of ARNs to allow access to
      */
     statementForAppConfigExecution(resourceArns) {
-        return new iam.PolicyStatement({
+        return new aws_iam_1.PolicyStatement({
             actions: ['appconfig:GetLatestConfiguration', 'appconfig:StartConfigurationSession'],
-            effect: iam.Effect.ALLOW,
+            effect: aws_iam_1.Effect.ALLOW,
             resources: resourceArns ?? ['*'],
         });
     }
@@ -142,9 +119,9 @@ class IamManager {
      * @param resourceArns list of ARNs to allow access to
      */
     statementForPutXrayTelemetry(resourceArns) {
-        return new iam.PolicyStatement({
+        return new aws_iam_1.PolicyStatement({
             actions: ['xray:PutTraceSegments', 'xray:PutTelemetryRecords'],
-            effect: iam.Effect.ALLOW,
+            effect: aws_iam_1.Effect.ALLOW,
             resources: resourceArns ?? ['*'],
         });
     }
@@ -153,9 +130,9 @@ class IamManager {
      * @param resourceArns list of ARNs to allow access to
      */
     statementForDecryptKms(resourceArns) {
-        return new iam.PolicyStatement({
+        return new aws_iam_1.PolicyStatement({
             actions: ['kms:Decrypt'],
-            effect: iam.Effect.ALLOW,
+            effect: aws_iam_1.Effect.ALLOW,
             resources: resourceArns ?? ['*'],
         });
     }
@@ -165,9 +142,9 @@ class IamManager {
      * @param bucket
      */
     statementForListBucket(scope, bucket) {
-        return new iam.PolicyStatement({
+        return new aws_iam_1.PolicyStatement({
             actions: ['s3:ListBucket'],
-            effect: iam.Effect.ALLOW,
+            effect: aws_iam_1.Effect.ALLOW,
             resources: [bucket.bucketArn],
         });
     }
@@ -176,9 +153,9 @@ class IamManager {
      * @param resourceArns list of ARNs to allow access to
      */
     statementForListAllMyBuckets(resourceArns) {
-        return new iam.PolicyStatement({
+        return new aws_iam_1.PolicyStatement({
             actions: ['s3:ListAllMyBuckets'],
-            effect: iam.Effect.ALLOW,
+            effect: aws_iam_1.Effect.ALLOW,
             resources: resourceArns ?? ['*'],
         });
     }
@@ -189,9 +166,9 @@ class IamManager {
      * @param resourceArns list of ARNs to allow access to
      */
     statementForGetAnyS3Objects(scope, bucket, resourceArns) {
-        return new iam.PolicyStatement({
+        return new aws_iam_1.PolicyStatement({
             actions: ['s3:GetObject', 's3:GetObjectAcl'],
-            effect: iam.Effect.ALLOW,
+            effect: aws_iam_1.Effect.ALLOW,
             resources: resourceArns ?? [bucket.arnForObjects(`*`)],
         });
     }
@@ -202,9 +179,9 @@ class IamManager {
      * @param resourceArns list of ARNs to allow access to
      */
     statementForDeleteAnyS3Objects(scope, bucket, resourceArns) {
-        return new iam.PolicyStatement({
+        return new aws_iam_1.PolicyStatement({
             actions: ['s3:DeleteObject'],
-            effect: iam.Effect.ALLOW,
+            effect: aws_iam_1.Effect.ALLOW,
             resources: resourceArns ?? [bucket.arnForObjects(`*`)],
         });
     }
@@ -215,9 +192,9 @@ class IamManager {
      * @param resourceArns list of ARNs to allow access to
      */
     statementForPutAnyS3Objects(scope, bucket, resourceArns) {
-        return new iam.PolicyStatement({
+        return new aws_iam_1.PolicyStatement({
             actions: ['s3:PutObject', 's3:PutObjectAcl'],
-            effect: iam.Effect.ALLOW,
+            effect: aws_iam_1.Effect.ALLOW,
             resources: resourceArns ?? [bucket.arnForObjects(`*`)],
         });
     }
@@ -226,9 +203,9 @@ class IamManager {
      * @param resourceArns list of ARNs to allow access to
      */
     statementForPassRole(resourceArns) {
-        return new iam.PolicyStatement({
+        return new aws_iam_1.PolicyStatement({
             actions: ['iam:PassRole'],
-            effect: iam.Effect.ALLOW,
+            effect: aws_iam_1.Effect.ALLOW,
             resources: resourceArns ?? ['*'],
         });
     }
@@ -237,9 +214,9 @@ class IamManager {
      * @param resourceArns list of ARNs to allow access to
      */
     statementForCloudfrontInvalidation(resourceArns) {
-        return new iam.PolicyStatement({
+        return new aws_iam_1.PolicyStatement({
             actions: ['cloudfront:GetInvalidation', 'cloudfront:CreateInvalidation'],
-            effect: iam.Effect.ALLOW,
+            effect: aws_iam_1.Effect.ALLOW,
             resources: resourceArns ?? ['*'],
         });
     }
@@ -248,9 +225,9 @@ class IamManager {
      * @param resourceArns list of ARNs to allow access to
      */
     statementForWriteEfs(resourceArns) {
-        return new iam.PolicyStatement({
+        return new aws_iam_1.PolicyStatement({
             actions: ['elasticfilesystem:*'],
-            effect: iam.Effect.ALLOW,
+            effect: aws_iam_1.Effect.ALLOW,
             resources: resourceArns ?? ['*'],
         });
     }
@@ -259,19 +236,19 @@ class IamManager {
      * @param resourceArns list of ARNs to allow access to
      */
     policyForCloudfrontInvalidation(resourceArns) {
-        return new iam.PolicyDocument({
+        return new aws_iam_1.PolicyDocument({
             statements: [
                 this.statementForCreateAnyLogStream(),
                 this.statementForPutAnyLogEvent(),
                 this.statementForCloudfrontInvalidation(),
-                new iam.PolicyStatement({
+                new aws_iam_1.PolicyStatement({
                     actions: [
                         'ecr:GetDownloadUrlForLayer',
                         'ecr:BatchGetImage',
                         'ecr:BatchCheckLayerAvailability',
                         'ecr:GetAuthorizationToken',
                     ],
-                    effect: iam.Effect.ALLOW,
+                    effect: aws_iam_1.Effect.ALLOW,
                     resources: resourceArns ?? ['*'],
                 }),
             ],
@@ -283,8 +260,8 @@ class IamManager {
      * @param scope scope in which this resource is defined
      */
     roleForCloudfrontInvalidation(id, scope) {
-        return new iam.Role(scope, `${id}-install-deps-project-role`, {
-            assumedBy: new iam.ServicePrincipal('codebuild.amazonaws.com'),
+        return new aws_iam_1.Role(scope, `${id}-install-deps-project-role`, {
+            assumedBy: new aws_iam_1.ServicePrincipal('codebuild.amazonaws.com'),
             inlinePolicies: {
                 codeBuildPolicy: this.policyForCloudfrontInvalidation(),
             },
@@ -296,9 +273,9 @@ class IamManager {
      * @param servicePrincipals
      */
     statementForAssumeRole(scope, servicePrincipals) {
-        return new iam.PolicyStatement({
+        return new aws_iam_1.PolicyStatement({
             actions: ['sts:AssumeRole'],
-            effect: iam.Effect.ALLOW,
+            effect: aws_iam_1.Effect.ALLOW,
             principals: servicePrincipals,
         });
     }
@@ -307,10 +284,10 @@ class IamManager {
      * @param resourceArns list of ARNs to allow access to
      */
     statementForEcsPassRole(resourceArns) {
-        return new iam.PolicyStatement({
+        return new aws_iam_1.PolicyStatement({
             actions: ['iam:PassRole'],
             conditions: { StringLike: { 'iam:PassedToService': 'ecs-tasks.amazonaws.com' } },
-            effect: iam.Effect.ALLOW,
+            effect: aws_iam_1.Effect.ALLOW,
             resources: resourceArns ?? ['*'],
         });
     }
@@ -321,10 +298,10 @@ class IamManager {
      * @param task
      */
     statementForRunEcsTask(scope, cluster, task) {
-        return new iam.PolicyStatement({
+        return new aws_iam_1.PolicyStatement({
             actions: ['ecs:RunTask'],
             conditions: { ArnLike: { 'ecs:cluster': cluster.clusterArn } },
-            effect: iam.Effect.ALLOW,
+            effect: aws_iam_1.Effect.ALLOW,
             resources: [task.taskDefinitionArn],
         });
     }
@@ -334,11 +311,11 @@ class IamManager {
      * @param logGroup
      */
     statementForCreateLogStream(scope, logGroup) {
-        return new iam.PolicyStatement({
+        return new aws_iam_1.PolicyStatement({
             actions: ['logs:CreateLogStream'],
-            effect: iam.Effect.ALLOW,
+            effect: aws_iam_1.Effect.ALLOW,
             resources: [
-                `arn:aws:logs:${cdk.Stack.of(scope).region}:${cdk.Stack.of(scope).account}:log-group:${logGroup.logGroupName}:log-stream:${cdk.Stack.of(scope).account}_CloudTrail_eu-west-1*`,
+                `arn:aws:logs:${aws_cdk_lib_1.Stack.of(scope).region}:${aws_cdk_lib_1.Stack.of(scope).account}:log-group:${logGroup.logGroupName}:log-stream:${aws_cdk_lib_1.Stack.of(scope).account}_CloudTrail_eu-west-1*`,
             ],
             sid: 'AWSCloudTrailCreateLogStream2014110',
         });
@@ -348,9 +325,9 @@ class IamManager {
      * @param resourceArns list of ARNs to allow access to
      */
     statementForCreateAnyLogStream(resourceArns) {
-        return new iam.PolicyStatement({
+        return new aws_iam_1.PolicyStatement({
             actions: ['logs:CreateLogStream'],
-            effect: iam.Effect.ALLOW,
+            effect: aws_iam_1.Effect.ALLOW,
             resources: resourceArns ?? ['*'],
         });
     }
@@ -360,11 +337,11 @@ class IamManager {
      * @param logGroup
      */
     statementForPutLogEvent(scope, logGroup) {
-        return new iam.PolicyStatement({
+        return new aws_iam_1.PolicyStatement({
             actions: ['logs:PutLogEvents'],
-            effect: iam.Effect.ALLOW,
+            effect: aws_iam_1.Effect.ALLOW,
             resources: [
-                `arn:aws:logs:${cdk.Stack.of(scope).region}:${cdk.Stack.of(scope).account}:log-group:${logGroup.logGroupName}:log-stream:${cdk.Stack.of(scope).account}_CloudTrail_eu-west-1*`,
+                `arn:aws:logs:${aws_cdk_lib_1.Stack.of(scope).region}:${aws_cdk_lib_1.Stack.of(scope).account}:log-group:${logGroup.logGroupName}:log-stream:${aws_cdk_lib_1.Stack.of(scope).account}_CloudTrail_eu-west-1*`,
             ],
             sid: 'AWSCloudTrailPutLogEvents20141101',
         });
@@ -374,9 +351,9 @@ class IamManager {
      * @param resourceArns list of ARNs to allow access to
      */
     statementForPutAnyLogEvent(resourceArns) {
-        return new iam.PolicyStatement({
+        return new aws_iam_1.PolicyStatement({
             actions: ['logs:PutLogEvents'],
-            effect: iam.Effect.ALLOW,
+            effect: aws_iam_1.Effect.ALLOW,
             resources: resourceArns ?? ['*'],
         });
     }
@@ -385,7 +362,7 @@ class IamManager {
      * @param resourceArns list of ARNs to allow access to
      */
     statementForReadTableItems(resourceArns) {
-        return new iam.PolicyStatement({
+        return new aws_iam_1.PolicyStatement({
             actions: [
                 'dynamodb:PartiQLSelect',
                 'dynamodb:DescribeTable',
@@ -396,7 +373,7 @@ class IamManager {
                 'dynamodb:GetRecords',
                 'dynamodb:BatchGetItem',
             ],
-            effect: iam.Effect.ALLOW,
+            effect: aws_iam_1.Effect.ALLOW,
             resources: resourceArns ?? ['*'],
         });
     }
@@ -405,9 +382,9 @@ class IamManager {
      * @param resourceArns list of ARNs to allow access to
      */
     statementForWriteTableItems(resourceArns) {
-        return new iam.PolicyStatement({
+        return new aws_iam_1.PolicyStatement({
             actions: ['dynamodb:BatchWriteItem', 'dynamodb:DeleteItem', 'dynamodb:PutItem', 'dynamodb:UpdateItem'],
-            effect: iam.Effect.ALLOW,
+            effect: aws_iam_1.Effect.ALLOW,
             resources: resourceArns ?? ['*'],
         });
     }
@@ -418,12 +395,12 @@ class IamManager {
      * @param logGroup
      */
     createRoleForCloudTrail(id, scope, logGroup) {
-        const policy = new iam.PolicyDocument({
+        const policy = new aws_iam_1.PolicyDocument({
             statements: [this.statementForCreateLogStream(scope, logGroup), this.statementForPutLogEvent(scope, logGroup)],
         });
-        const role = new iam.CfnRole(scope, `${id}`, {
-            assumeRolePolicyDocument: new iam.PolicyDocument({
-                statements: [this.statementForAssumeRole(scope, [new iam.ServicePrincipal('cloudtrail.amazonaws.com')])],
+        const role = new aws_iam_1.CfnRole(scope, `${id}`, {
+            assumeRolePolicyDocument: new aws_iam_1.PolicyDocument({
+                statements: [this.statementForAssumeRole(scope, [new aws_iam_1.ServicePrincipal('cloudtrail.amazonaws.com')])],
             }),
             policies: [
                 {
@@ -433,8 +410,8 @@ class IamManager {
             ],
             roleName: `${id}-${scope.props.stage}`,
         });
-        utils.createCfnOutput(`${id}Arn`, scope, role.attrArn);
-        utils.createCfnOutput(`${id}Name`, scope, role.roleName);
+        (0, utils_1.createCfnOutput)(`${id}Arn`, scope, role.attrArn);
+        (0, utils_1.createCfnOutput)(`${id}Name`, scope, role.roleName);
         return role;
     }
     /**
@@ -445,17 +422,17 @@ class IamManager {
      * @param task
      */
     createRoleForEcsEvent(id, scope, cluster, task) {
-        const policy = new iam.PolicyDocument({
+        const policy = new aws_iam_1.PolicyDocument({
             statements: [this.statementForRunEcsTask(scope, cluster, task), this.statementForEcsPassRole()],
         });
-        const role = new iam.Role(scope, `${id}`, {
-            assumedBy: new iam.ServicePrincipal('events.amazonaws.com'),
+        const role = new aws_iam_1.Role(scope, `${id}`, {
+            assumedBy: new aws_iam_1.ServicePrincipal('events.amazonaws.com'),
             description: `Role for ${id} ECS Task execution from EventBridge`,
             inlinePolicies: { policy },
             roleName: `${id}-${scope.props.stage}`,
         });
-        utils.createCfnOutput(`${id}Arn`, scope, role.roleArn);
-        utils.createCfnOutput(`${id}Name`, scope, role.roleName);
+        (0, utils_1.createCfnOutput)(`${id}Arn`, scope, role.roleArn);
+        (0, utils_1.createCfnOutput)(`${id}Name`, scope, role.roleName);
         return role;
     }
     /**
@@ -465,17 +442,17 @@ class IamManager {
      * @param policy
      */
     createRoleForEcsExecution(id, scope, policy) {
-        const role = new iam.Role(scope, `${id}`, {
-            assumedBy: new iam.ServicePrincipal('ecs-tasks.amazonaws.com'),
+        const role = new aws_iam_1.Role(scope, `${id}`, {
+            assumedBy: new aws_iam_1.ServicePrincipal('ecs-tasks.amazonaws.com'),
             description: `Role for ${id} ECS Task execution`,
             inlinePolicies: { policy },
             managedPolicies: [
-                iam.ManagedPolicy.fromManagedPolicyArn(scope, `${id}-AmazonECSTaskExecutionRolePolicy`, 'arn:aws:iam::aws:policy/service-role/AmazonECSTaskExecutionRolePolicy'),
+                aws_iam_1.ManagedPolicy.fromManagedPolicyArn(scope, `${id}-AmazonECSTaskExecutionRolePolicy`, 'arn:aws:iam::aws:policy/service-role/AmazonECSTaskExecutionRolePolicy'),
             ],
             roleName: `${id}-${scope.props.stage}`,
         });
-        utils.createCfnOutput(`${id}Arn`, scope, role.roleArn);
-        utils.createCfnOutput(`${id}Name`, scope, role.roleName);
+        (0, utils_1.createCfnOutput)(`${id}Arn`, scope, role.roleArn);
+        (0, utils_1.createCfnOutput)(`${id}Name`, scope, role.roleName);
         return role;
     }
     /**
@@ -483,20 +460,20 @@ class IamManager {
      * @param id scoped id of the resource
      * @param scope scope in which this resource is defined
      * @param policy
-     * @param servicePrinicpal
+     * @param servicePrincipal
      */
-    createRoleForLambda(id, scope, policy, servicePrinicpal) {
-        const role = new iam.Role(scope, `${id}`, {
-            assumedBy: servicePrinicpal ?? new iam.ServicePrincipal('lambda.amazonaws.com'),
+    createRoleForLambda(id, scope, policy, servicePrincipal) {
+        const role = new aws_iam_1.Role(scope, `${id}`, {
+            assumedBy: servicePrincipal ?? new aws_iam_1.ServicePrincipal('lambda.amazonaws.com'),
             description: `Role for ${id} Lambda function`,
             inlinePolicies: { policy },
             managedPolicies: [
-                iam.ManagedPolicy.fromManagedPolicyArn(scope, `${id}-AWSLambdaBasicExecutionRole`, 'arn:aws:iam::aws:policy/service-role/AWSLambdaBasicExecutionRole'),
+                aws_iam_1.ManagedPolicy.fromManagedPolicyArn(scope, `${id}-AWSLambdaBasicExecutionRole`, 'arn:aws:iam::aws:policy/service-role/AWSLambdaBasicExecutionRole'),
             ],
             roleName: `${id}-${scope.props.stage}`,
         });
-        utils.createCfnOutput(`${id}Arn`, scope, role.roleArn);
-        utils.createCfnOutput(`${id}Name`, scope, role.roleName);
+        (0, utils_1.createCfnOutput)(`${id}Arn`, scope, role.roleArn);
+        (0, utils_1.createCfnOutput)(`${id}Name`, scope, role.roleName);
         return role;
     }
     /**
@@ -504,17 +481,17 @@ class IamManager {
      * @param id scoped id of the resource
      * @param scope scope in which this resource is defined
      * @param policy
-     * @param servicePrinicpal
+     * @param servicePrincipal
      */
-    createRoleForAppConfigSecrets(id, scope, policy, servicePrinicpal) {
-        const role = new iam.Role(scope, `${id}`, {
-            assumedBy: servicePrinicpal ?? new iam.ServicePrincipal('appconfig.amazonaws.com'),
+    createRoleForAppConfigSecrets(id, scope, policy, servicePrincipal) {
+        const role = new aws_iam_1.Role(scope, `${id}`, {
+            assumedBy: servicePrincipal ?? new aws_iam_1.ServicePrincipal('appconfig.amazonaws.com'),
             description: `Role for ${id} AppConfig Secrets`,
             inlinePolicies: { policy },
             roleName: `${id}-${scope.props.stage}`,
         });
-        utils.createCfnOutput(`${id}Arn`, scope, role.roleArn);
-        utils.createCfnOutput(`${id}Name`, scope, role.roleName);
+        (0, utils_1.createCfnOutput)(`${id}Arn`, scope, role.roleArn);
+        (0, utils_1.createCfnOutput)(`${id}Name`, scope, role.roleName);
         return role;
     }
     /**
@@ -522,20 +499,20 @@ class IamManager {
      * @param id scoped id of the resource
      * @param scope scope in which this resource is defined
      * @param policy
-     * @param servicePrinicpal
+     * @param servicePrincipal
      */
-    createRoleForStepFunction(id, scope, policy, servicePrinicpal) {
-        const role = new iam.Role(scope, `${id}`, {
-            assumedBy: servicePrinicpal ?? new iam.ServicePrincipal('states.amazonaws.com'),
+    createRoleForStepFunction(id, scope, policy, servicePrincipal) {
+        const role = new aws_iam_1.Role(scope, `${id}`, {
+            assumedBy: servicePrincipal ?? new aws_iam_1.ServicePrincipal('states.amazonaws.com'),
             description: `Role for ${id} Lambda function`,
             inlinePolicies: { policy },
             managedPolicies: [
-                iam.ManagedPolicy.fromManagedPolicyArn(scope, `${id}-AWSLambdaBasicExecutionRole`, 'arn:aws:iam::aws:policy/service-role/AWSLambdaBasicExecutionRole'),
+                aws_iam_1.ManagedPolicy.fromManagedPolicyArn(scope, `${id}-AWSLambdaBasicExecutionRole`, 'arn:aws:iam::aws:policy/service-role/AWSLambdaBasicExecutionRole'),
             ],
             roleName: `${id}-${scope.props.stage}`,
         });
-        utils.createCfnOutput(`${id}Arn`, scope, role.roleArn);
-        utils.createCfnOutput(`${id}Name`, scope, role.roleName);
+        (0, utils_1.createCfnOutput)(`${id}Arn`, scope, role.roleArn);
+        (0, utils_1.createCfnOutput)(`${id}Name`, scope, role.roleName);
         return role;
     }
     /**
@@ -546,15 +523,15 @@ class IamManager {
      * @param stepFunctionArn the arn of the step function
      */
     createRoleForSqsToSfnPipe(id, scope, queueArn, stepFunctionArn) {
-        const role = new iam.Role(scope, `${id}`, {
-            assumedBy: new iam.ServicePrincipal('pipes.amazonaws.com'),
+        const role = new aws_iam_1.Role(scope, `${id}`, {
+            assumedBy: new aws_iam_1.ServicePrincipal('pipes.amazonaws.com'),
             description: `Role for ${id} Pipe`,
             roleName: `${id}-${scope.props.stage}`,
         });
         role.addToPolicy(this.statementForPollQueue([queueArn]));
         role.addToPolicy(this.statementForStartExecution([stepFunctionArn]));
-        utils.createCfnOutput(`${id}Arn`, scope, role.roleArn);
-        utils.createCfnOutput(`${id}Name`, scope, role.roleName);
+        (0, utils_1.createCfnOutput)(`${id}Arn`, scope, role.roleArn);
+        (0, utils_1.createCfnOutput)(`${id}Name`, scope, role.roleName);
         return role;
     }
     /**
@@ -566,17 +543,17 @@ class IamManager {
      * @param servicePrincipals
      */
     createPolicyForSqsEvent(id, scope, sqsQueue, eventBridgeRule, servicePrincipals) {
-        return new iam.PolicyDocument({
+        return new aws_iam_1.PolicyDocument({
             statements: [
-                new iam.PolicyStatement({
+                new aws_iam_1.PolicyStatement({
                     actions: ['sqs:*'],
                     conditions: {
                         ArnEquals: {
                             'aws:SourceArn': eventBridgeRule,
                         },
                     },
-                    effect: iam.Effect.ALLOW,
-                    principals: servicePrincipals ?? [new iam.ServicePrincipal('events.amazonaws.com')],
+                    effect: aws_iam_1.Effect.ALLOW,
+                    principals: servicePrincipals ?? [new aws_iam_1.ServicePrincipal('events.amazonaws.com')],
                     resources: [sqsQueue.queueArn],
                 }),
             ],

package/dist/src/lib/services/index.d.ts CHANGED Viewed

@@ -1 +1,28 @@
-export * from './aws';
+export * from './api-gateway';
+export * from './appconfig';
+export * from './certificate-manager';
+export * from './cloudfront';
+export * from './cloudtrail';
+export * from './cloudwatch';
+export * from './codebuild';
+export * from './constants';
+export * from './dynamodb';
+export * from './elastic-container-registry';
+export * from './elastic-container-service';
+export * from './elastic-file-system';
+export * from './elastic-kubernetes-service';
+export * from './elasticache';
+export * from './eventbridge';
+export * from './evidently';
+export * from './identity-access-management';
+export * from './key-management-service';
+export * from './lambda';
+export * from './route53';
+export * from './secrets-manager';
+export * from './simple-notification-service';
+export * from './simple-queue-service';
+export * from './simple-storage-service';
+export * from './step-function';
+export * from './systems-manager';
+export * from './virtual-private-cloud';
+export * from './web-application-firewall';

package/dist/src/lib/services/index.js CHANGED Viewed

@@ -14,4 +14,31 @@ var __exportStar = (this && this.__exportStar) || function(m, exports) {
     for (var p in m) if (p !== "default" && !Object.prototype.hasOwnProperty.call(exports, p)) __createBinding(exports, m, p);
 };
 Object.defineProperty(exports, "__esModule", { value: true });
-__exportStar(require("./aws"), exports);
+__exportStar(require("./api-gateway"), exports);
+__exportStar(require("./appconfig"), exports);
+__exportStar(require("./certificate-manager"), exports);
+__exportStar(require("./cloudfront"), exports);
+__exportStar(require("./cloudtrail"), exports);
+__exportStar(require("./cloudwatch"), exports);
+__exportStar(require("./codebuild"), exports);
+__exportStar(require("./constants"), exports);
+__exportStar(require("./dynamodb"), exports);
+__exportStar(require("./elastic-container-registry"), exports);
+__exportStar(require("./elastic-container-service"), exports);
+__exportStar(require("./elastic-file-system"), exports);
+__exportStar(require("./elastic-kubernetes-service"), exports);
+__exportStar(require("./elasticache"), exports);
+__exportStar(require("./eventbridge"), exports);
+__exportStar(require("./evidently"), exports);
+__exportStar(require("./identity-access-management"), exports);
+__exportStar(require("./key-management-service"), exports);
+__exportStar(require("./lambda"), exports);
+__exportStar(require("./route53"), exports);
+__exportStar(require("./secrets-manager"), exports);
+__exportStar(require("./simple-notification-service"), exports);
+__exportStar(require("./simple-queue-service"), exports);
+__exportStar(require("./simple-storage-service"), exports);
+__exportStar(require("./step-function"), exports);
+__exportStar(require("./systems-manager"), exports);
+__exportStar(require("./virtual-private-cloud"), exports);
+__exportStar(require("./web-application-firewall"), exports);