npm - @gradientedge/cdk-utils - Versions diffs - 8.125.0 → 8.127.0 - Mend

@gradientedge/cdk-utils 8.125.0 → 8.127.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (23) hide show

package/app/api-destined-function/node_modules/.bin/rimraf CHANGED Viewed

@@ -6,12 +6,12 @@ case `uname` in
 esac
 if [ -z "$NODE_PATH" ]; then
-  export NODE_PATH="/home/runner/work/cdk-utils/cdk-utils/node_modules/.pnpm/rimraf@5.0.1/node_modules/rimraf/dist/cjs/src/node_modules:/home/runner/work/cdk-utils/cdk-utils/node_modules/.pnpm/rimraf@5.0.1/node_modules/rimraf/dist/cjs/node_modules:/home/runner/work/cdk-utils/cdk-utils/node_modules/.pnpm/rimraf@5.0.1/node_modules/rimraf/dist/node_modules:/home/runner/work/cdk-utils/cdk-utils/node_modules/.pnpm/rimraf@5.0.1/node_modules/rimraf/node_modules:/home/runner/work/cdk-utils/cdk-utils/node_modules/.pnpm/rimraf@5.0.1/node_modules:/home/runner/work/cdk-utils/cdk-utils/node_modules/.pnpm/node_modules"
+  export NODE_PATH="/home/runner/work/cdk-utils/cdk-utils/node_modules/.pnpm/rimraf@5.0.5/node_modules/rimraf/dist/esm/node_modules:/home/runner/work/cdk-utils/cdk-utils/node_modules/.pnpm/rimraf@5.0.5/node_modules/rimraf/dist/node_modules:/home/runner/work/cdk-utils/cdk-utils/node_modules/.pnpm/rimraf@5.0.5/node_modules/rimraf/node_modules:/home/runner/work/cdk-utils/cdk-utils/node_modules/.pnpm/rimraf@5.0.5/node_modules:/home/runner/work/cdk-utils/cdk-utils/node_modules/.pnpm/node_modules"
 else
-  export NODE_PATH="/home/runner/work/cdk-utils/cdk-utils/node_modules/.pnpm/rimraf@5.0.1/node_modules/rimraf/dist/cjs/src/node_modules:/home/runner/work/cdk-utils/cdk-utils/node_modules/.pnpm/rimraf@5.0.1/node_modules/rimraf/dist/cjs/node_modules:/home/runner/work/cdk-utils/cdk-utils/node_modules/.pnpm/rimraf@5.0.1/node_modules/rimraf/dist/node_modules:/home/runner/work/cdk-utils/cdk-utils/node_modules/.pnpm/rimraf@5.0.1/node_modules/rimraf/node_modules:/home/runner/work/cdk-utils/cdk-utils/node_modules/.pnpm/rimraf@5.0.1/node_modules:/home/runner/work/cdk-utils/cdk-utils/node_modules/.pnpm/node_modules:$NODE_PATH"
+  export NODE_PATH="/home/runner/work/cdk-utils/cdk-utils/node_modules/.pnpm/rimraf@5.0.5/node_modules/rimraf/dist/esm/node_modules:/home/runner/work/cdk-utils/cdk-utils/node_modules/.pnpm/rimraf@5.0.5/node_modules/rimraf/dist/node_modules:/home/runner/work/cdk-utils/cdk-utils/node_modules/.pnpm/rimraf@5.0.5/node_modules/rimraf/node_modules:/home/runner/work/cdk-utils/cdk-utils/node_modules/.pnpm/rimraf@5.0.5/node_modules:/home/runner/work/cdk-utils/cdk-utils/node_modules/.pnpm/node_modules:$NODE_PATH"
 fi
 if [ -x "$basedir/node" ]; then
-  exec "$basedir/node"  "$basedir/../rimraf/dist/cjs/src/bin.js" "$@"
+  exec "$basedir/node"  "$basedir/../rimraf/dist/esm/bin.mjs" "$@"
 else
-  exec node  "$basedir/../rimraf/dist/cjs/src/bin.js" "$@"
+  exec node  "$basedir/../rimraf/dist/esm/bin.mjs" "$@"
 fi

package/app/api-destined-function/package.json CHANGED Viewed

@@ -21,6 +21,6 @@
   },
   "devDependencies": {
     "mkdirp": "^3.0.1",
-    "rimraf": "^5.0.1"
+    "rimraf": "^5.0.5"
   }
 }

package/dist/src/lib/aws/construct/index.d.ts CHANGED Viewed

@@ -9,5 +9,6 @@ export * from './lambda-with-iam-access';
 export * from './rest-api-lambda';
 export * from './rest-api-lambda-with-cache';
 export * from './site-with-ecs-backend';
+export * from './site-with-lambda-backend';
 export * from './static-asset-deployment';
 export * from './static-site';

package/dist/src/lib/aws/construct/index.js CHANGED Viewed

@@ -25,5 +25,6 @@ __exportStar(require("./lambda-with-iam-access"), exports);
 __exportStar(require("./rest-api-lambda"), exports);
 __exportStar(require("./rest-api-lambda-with-cache"), exports);
 __exportStar(require("./site-with-ecs-backend"), exports);
+__exportStar(require("./site-with-lambda-backend"), exports);
 __exportStar(require("./static-asset-deployment"), exports);
 __exportStar(require("./static-site"), exports);

package/dist/src/lib/aws/construct/site-with-lambda-backend/constants.d.ts ADDED Viewed

@@ -0,0 +1,5 @@
+export declare enum SiteWithLambdaBackendResponseHeaderPolicyType {
+    ORIGIN = "origin",
+    STATIC = "static"
+}
+export declare const LAMBDA_ALIAS_NAME_CURRENT = "current";

package/dist/src/lib/aws/construct/site-with-lambda-backend/constants.js ADDED Viewed

@@ -0,0 +1,9 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.LAMBDA_ALIAS_NAME_CURRENT = exports.SiteWithLambdaBackendResponseHeaderPolicyType = void 0;
+var SiteWithLambdaBackendResponseHeaderPolicyType;
+(function (SiteWithLambdaBackendResponseHeaderPolicyType) {
+    SiteWithLambdaBackendResponseHeaderPolicyType["ORIGIN"] = "origin";
+    SiteWithLambdaBackendResponseHeaderPolicyType["STATIC"] = "static";
+})(SiteWithLambdaBackendResponseHeaderPolicyType || (exports.SiteWithLambdaBackendResponseHeaderPolicyType = SiteWithLambdaBackendResponseHeaderPolicyType = {}));
+exports.LAMBDA_ALIAS_NAME_CURRENT = 'current';

package/dist/src/lib/aws/construct/site-with-lambda-backend/index.d.ts ADDED Viewed

@@ -0,0 +1,3 @@
+export * from './constants';
+export * from './main';
+export * from './types';

package/dist/src/lib/aws/construct/site-with-lambda-backend/index.js ADDED Viewed

@@ -0,0 +1,19 @@
+"use strict";
+var __createBinding = (this && this.__createBinding) || (Object.create ? (function(o, m, k, k2) {
+    if (k2 === undefined) k2 = k;
+    var desc = Object.getOwnPropertyDescriptor(m, k);
+    if (!desc || ("get" in desc ? !m.__esModule : desc.writable || desc.configurable)) {
+      desc = { enumerable: true, get: function() { return m[k]; } };
+    }
+    Object.defineProperty(o, k2, desc);
+}) : (function(o, m, k, k2) {
+    if (k2 === undefined) k2 = k;
+    o[k2] = m[k];
+}));
+var __exportStar = (this && this.__exportStar) || function(m, exports) {
+    for (var p in m) if (p !== "default" && !Object.prototype.hasOwnProperty.call(exports, p)) __createBinding(exports, m, p);
+};
+Object.defineProperty(exports, "__esModule", { value: true });
+__exportStar(require("./constants"), exports);
+__exportStar(require("./main"), exports);
+__exportStar(require("./types"), exports);

package/dist/src/lib/aws/construct/site-with-lambda-backend/main.d.ts ADDED Viewed

@@ -0,0 +1,116 @@
+import { ICertificate } from 'aws-cdk-lib/aws-certificatemanager';
+import { CachePolicy, IFunction as CfIFunction, Distribution, FunctionAssociation, OriginRequestPolicy, ResponseHeadersPolicy } from 'aws-cdk-lib/aws-cloudfront';
+import { HttpOrigin } from 'aws-cdk-lib/aws-cloudfront-origins';
+import { PolicyDocument, Role } from 'aws-cdk-lib/aws-iam';
+import { AssetCode, FunctionUrl, IFunction, ILayerVersion } from 'aws-cdk-lib/aws-lambda';
+import { IHostedZone } from 'aws-cdk-lib/aws-route53';
+import { IBucket } from 'aws-cdk-lib/aws-s3';
+import { BucketDeployment } from 'aws-cdk-lib/aws-s3-deployment';
+import { Construct } from 'constructs';
+import { CommonConstruct } from '../../common';
+import { SiteWithLambdaBackendCachePolicyProps, SiteWithLambdaBackendProps, SiteWithLambdaBackendResponseHeadersPolicyProps } from './types';
+/**
+ * @classdesc Provides a construct to create and deploy a site hosted with an clustered ECS/ELB backend
+ * @example
+ * import { SiteWithLambdaBackend, SiteWithLambdaBackendProps } '@gradientedge/cdk-utils'
+ * import { Construct } from 'constructs'
+ *
+ * class CustomConstruct extends SiteWithLambdaBackend {
+ *   constructor(parent: Construct, id: string, props: SiteWithLambdaBackendProps) {
+ *     super(parent, id, props)
+ *     this.props = props
+ *     this.id = id
+ *     this.initResources()
+ *   }
+ * }
+ */
+export declare class SiteWithLambdaBackend extends CommonConstruct {
+    props: SiteWithLambdaBackendProps;
+    id: string;
+    siteHostedZone: IHostedZone;
+    siteCertificate: ICertificate;
+    siteRegionalCertificate: ICertificate;
+    siteSecrets: any;
+    siteLogBucket: IBucket;
+    siteOrigin: HttpOrigin;
+    siteDistribution: Distribution;
+    siteInternalDomainName: string;
+    siteExternalDomainName: string;
+    siteDomainNames: string[];
+    siteCloudfrontFunction: CfIFunction;
+    siteFunctionAssociations: FunctionAssociation[];
+    siteOriginRequestPolicy: OriginRequestPolicy;
+    siteOriginResponseHeadersPolicy?: ResponseHeadersPolicy;
+    siteCachePolicy: CachePolicy;
+    siteStaticAssetDeployment: BucketDeployment;
+    siteLambdaPolicy: PolicyDocument;
+    siteLambdaRole: Role;
+    siteLambdaEnvironment: any;
+    siteLambdaLayers: ILayerVersion[];
+    siteLambdaApplication: AssetCode;
+    siteLambdaFunction: IFunction;
+    siteLambdaUrl: FunctionUrl;
+    constructor(parent: Construct, id: string, props: SiteWithLambdaBackendProps);
+    /**
+     * @summary Initialise and provision resources
+     */
+    protected initResources(): void;
+    /**
+     * @summary Method to resolve a hosted zone based on domain attributes
+     */
+    protected resolveHostedZone(): void;
+    /**
+     * @summary Method to resolve a certificate based on attributes
+     */
+    protected resolveCertificate(): void;
+    protected resolveGlobalCertificate(): void;
+    protected resolveRegionalCertificate(): void;
+    /**
+     * @summary Method to resolve secrets from SecretsManager
+     * - To be implemented in the overriding method in the implementation class
+     */
+    protected resolveSiteSecrets(): void;
+    /**
+     * @summary Method to resolve site domain names
+     */
+    protected resolveSiteDomainNames(): void;
+    /**
+     * Method to create log bucket for site distribution
+     */
+    protected createSiteLogBucket(): void;
+    protected createSiteCachePolicy(id: string, siteCachePolicy: SiteWithLambdaBackendCachePolicyProps): CachePolicy;
+    protected createSiteOriginCachePolicy(): void;
+    protected createSiteOriginRequestPolicy(): void;
+    protected createResponseHeaderPolicy(props: SiteWithLambdaBackendResponseHeadersPolicyProps): ResponseHeadersPolicy | undefined;
+    protected createSiteOriginResponseHeadersPolicy(): void;
+    protected createSiteOrigin(): void;
+    protected createSiteOriginResources(): void;
+    protected createSiteStaticAssetDeployment(): void;
+    protected createSiteLambdaPolicy(): void;
+    protected createSiteLambdaRole(): void;
+    protected createSiteLambdaEnvironment(): void;
+    protected createSiteLambdaLayers(): void;
+    protected createSiteLambdaApplication(): void;
+    protected createSiteLambda(): void;
+    protected createSiteLambdaUrl(): void;
+    /**
+     * @summary Method to create a site cloudfront function
+     */
+    protected createSiteCloudfrontFunction(): void;
+    /**
+     * @summary Method to create a site cloudfront function associations
+     */
+    protected resolveSiteFunctionAssociations(): void;
+    /**
+     * Method to create Site distribution
+     */
+    protected createDistribution(): void;
+    /**
+     * Method to create Route53 records for distribution
+     */
+    protected createNetworkMappings(): void;
+    /**
+     * Method to invalidation the cloudfront distribution cache after a deployment
+     */
+    protected invalidateDistributionCache(): void;
+}

package/dist/src/lib/aws/construct/site-with-lambda-backend/main.js ADDED Viewed

@@ -0,0 +1,317 @@
+"use strict";
+var __importDefault = (this && this.__importDefault) || function (mod) {
+    return (mod && mod.__esModule) ? mod : { "default": mod };
+};
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.SiteWithLambdaBackend = void 0;
+const aws_cdk_lib_1 = require("aws-cdk-lib");
+const aws_cloudfront_1 = require("aws-cdk-lib/aws-cloudfront");
+const aws_cloudfront_origins_1 = require("aws-cdk-lib/aws-cloudfront-origins");
+const aws_iam_1 = require("aws-cdk-lib/aws-iam");
+const aws_lambda_1 = require("aws-cdk-lib/aws-lambda");
+const lodash_1 = __importDefault(require("lodash"));
+const common_1 = require("../../common");
+const constants_1 = require("./constants");
+/**
+ * @classdesc Provides a construct to create and deploy a site hosted with an clustered ECS/ELB backend
+ * @example
+ * import { SiteWithLambdaBackend, SiteWithLambdaBackendProps } '@gradientedge/cdk-utils'
+ * import { Construct } from 'constructs'
+ *
+ * class CustomConstruct extends SiteWithLambdaBackend {
+ *   constructor(parent: Construct, id: string, props: SiteWithLambdaBackendProps) {
+ *     super(parent, id, props)
+ *     this.props = props
+ *     this.id = id
+ *     this.initResources()
+ *   }
+ * }
+ */
+class SiteWithLambdaBackend extends common_1.CommonConstruct {
+    /* site properties */
+    props;
+    id;
+    /* site resources */
+    siteHostedZone;
+    siteCertificate;
+    siteRegionalCertificate;
+    siteSecrets;
+    siteLogBucket;
+    siteOrigin;
+    siteDistribution;
+    siteInternalDomainName;
+    siteExternalDomainName;
+    siteDomainNames;
+    siteCloudfrontFunction;
+    siteFunctionAssociations;
+    siteOriginRequestPolicy;
+    siteOriginResponseHeadersPolicy;
+    siteCachePolicy;
+    siteStaticAssetDeployment;
+    siteLambdaPolicy;
+    siteLambdaRole;
+    siteLambdaEnvironment;
+    siteLambdaLayers;
+    siteLambdaApplication;
+    siteLambdaFunction;
+    siteLambdaUrl;
+    constructor(parent, id, props) {
+        super(parent, id, props);
+        this.props = props;
+        this.id = id;
+    }
+    /**
+     * @summary Initialise and provision resources
+     */
+    initResources() {
+        this.resolveHostedZone();
+        this.resolveCertificate();
+        this.resolveSiteSecrets();
+        this.resolveSiteDomainNames();
+        this.createSiteLogBucket();
+        this.createSiteOriginCachePolicy();
+        this.createSiteOriginRequestPolicy();
+        this.createSiteOriginResponseHeadersPolicy();
+        this.createSiteOrigin();
+        this.createSiteCloudfrontFunction();
+        this.resolveSiteFunctionAssociations();
+        this.createDistribution();
+        this.createNetworkMappings();
+        this.invalidateDistributionCache();
+    }
+    /**
+     * @summary Method to resolve a hosted zone based on domain attributes
+     */
+    resolveHostedZone() {
+        this.siteHostedZone = this.route53Manager.withHostedZoneFromFullyQualifiedDomainName(`${this.id}-hosted-zone`, this, this.props.useExistingHostedZone);
+    }
+    /**
+     * @summary Method to resolve a certificate based on attributes
+     */
+    resolveCertificate() {
+        this.resolveGlobalCertificate();
+        this.resolveRegionalCertificate();
+    }
+    resolveGlobalCertificate() {
+        if (this.props.siteCertificate.useExistingCertificate &&
+            this.props.siteCertificate.certificateSsmName &&
+            this.props.siteCertificate.certificateRegion) {
+            this.props.siteCertificate.certificateArn = this.ssmManager.readStringParameterFromRegion(`${this.id}-certificate-parameter`, this, this.props.siteCertificate.certificateSsmName, this.props.siteCertificate.certificateRegion);
+        }
+        this.siteCertificate = this.acmManager.resolveCertificate(`${this.id}-certificate`, this, this.props.siteCertificate);
+    }
+    resolveRegionalCertificate() {
+        if (this.props.siteRegionalCertificate.useExistingCertificate &&
+            this.props.siteRegionalCertificate.certificateSsmName &&
+            this.props.siteRegionalCertificate.certificateRegion) {
+            this.props.siteRegionalCertificate.certificateArn = this.ssmManager.readStringParameterFromRegion(`${this.id}-regional-certificate-parameter`, this, this.props.siteRegionalCertificate.certificateSsmName, this.props.siteRegionalCertificate.certificateRegion);
+        }
+        this.siteRegionalCertificate = this.acmManager.resolveCertificate(`${this.id}-regional-certificate`, this, this.props.siteRegionalCertificate, this.siteHostedZone);
+    }
+    /**
+     * @summary Method to resolve secrets from SecretsManager
+     * - To be implemented in the overriding method in the implementation class
+     */
+    resolveSiteSecrets() { }
+    /**
+     * @summary Method to resolve site domain names
+     */
+    resolveSiteDomainNames() {
+        /* the internal domain name used by ELB */
+        this.siteInternalDomainName =
+            this.isProductionStage() || this.props.skipStageForARecords
+                ? `${this.props.siteSubDomain}-internal.${this.fullyQualifiedDomainName}`
+                : `${this.props.siteSubDomain}-internal-${this.props.stage}.${this.fullyQualifiedDomainName}`;
+        /* the external domain name exposed to CloudFront */
+        this.siteExternalDomainName =
+            this.isProductionStage() || this.props.skipStageForARecords
+                ? `${this.props.siteSubDomain}.${this.fullyQualifiedDomainName}`
+                : `${this.props.siteSubDomain}-${this.props.stage}.${this.fullyQualifiedDomainName}`;
+        this.siteDomainNames = [this.siteExternalDomainName];
+    }
+    /**
+     * Method to create log bucket for site distribution
+     */
+    createSiteLogBucket() {
+        this.siteLogBucket = this.s3Manager.createS3Bucket(`${this.id}-site-logs`, this, this.props.siteLogBucket);
+    }
+    createSiteCachePolicy(id, siteCachePolicy) {
+        return new aws_cloudfront_1.CachePolicy(this, `${id}`, {
+            cachePolicyName: `${this.id}-${siteCachePolicy.cachePolicyName}`,
+            comment: `Policy for ${this.id}-distribution - ${this.props.stage} stage`,
+            cookieBehavior: siteCachePolicy.cookieBehavior,
+            enableAcceptEncodingBrotli: siteCachePolicy.enableAcceptEncodingBrotli,
+            enableAcceptEncodingGzip: siteCachePolicy.enableAcceptEncodingGzip,
+            headerBehavior: siteCachePolicy.headerBehavior,
+            maxTtl: aws_cdk_lib_1.Duration.seconds(siteCachePolicy.maxTtlInSeconds),
+            minTtl: aws_cdk_lib_1.Duration.seconds(siteCachePolicy.minTtlInSeconds),
+            queryStringBehavior: siteCachePolicy.queryStringBehavior,
+        });
+    }
+    createSiteOriginCachePolicy() {
+        if (!this.props.siteCachePolicy)
+            return;
+        this.siteCachePolicy = this.createSiteCachePolicy(`${this.id}-site-cache-policy`, this.props.siteCachePolicy);
+        lodash_1.default.assign(this.props.siteDistribution.defaultBehavior, {
+            cachePolicy: this.siteCachePolicy,
+        });
+    }
+    createSiteOriginRequestPolicy() {
+        if (!this.props.siteOriginRequestPolicy)
+            return;
+        this.siteOriginRequestPolicy = new aws_cloudfront_1.OriginRequestPolicy(this, `${this.id}-sorp`, {
+            comment: `Request Policy for ${this.id}-distribution - ${this.props.stage} stage`,
+            cookieBehavior: this.props.siteOriginRequestPolicy.cookieBehavior,
+            headerBehavior: this.props.siteOriginRequestPolicy.headerBehavior,
+            originRequestPolicyName: `${this.id}-origin-request`,
+            queryStringBehavior: this.props.siteOriginRequestPolicy.queryStringBehavior,
+        });
+        lodash_1.default.assign(this.props.siteDistribution.defaultBehavior, {
+            originRequestPolicy: this.siteOriginRequestPolicy,
+        });
+    }
+    createResponseHeaderPolicy(props) {
+        if (!props)
+            return undefined;
+        return new aws_cloudfront_1.ResponseHeadersPolicy(this, `${this.id}-${props.type}-srhp`, {
+            ...props,
+            comment: `Response Header Policy for ${props.type} for ${this.id}-distribution - ${this.props.stage} stage`,
+            responseHeadersPolicyName: `${this.id}-${props.type}-response`,
+            securityHeadersBehavior: {
+                ...props.securityHeadersBehavior,
+                strictTransportSecurity: {
+                    ...props.securityHeadersBehavior?.strictTransportSecurity,
+                    accessControlMaxAge: aws_cdk_lib_1.Duration.seconds(props.securityHeadersBehavior?.strictTransportSecurity?.accessControlMaxAgeInSeconds),
+                },
+            },
+        });
+    }
+    createSiteOriginResponseHeadersPolicy() {
+        if (!this.props.siteOriginResponseHeadersPolicy)
+            return;
+        this.siteOriginResponseHeadersPolicy = this.createResponseHeaderPolicy(this.props.siteOriginResponseHeadersPolicy);
+        lodash_1.default.assign(this.props.siteDistribution.defaultBehavior, {
+            responseHeadersPolicy: this.siteOriginResponseHeadersPolicy,
+        });
+    }
+    createSiteOrigin() {
+        this.createSiteOriginResources();
+        this.siteOrigin = new aws_cloudfront_origins_1.HttpOrigin(aws_cdk_lib_1.Fn.select(2, aws_cdk_lib_1.Fn.split('/', this.siteLambdaUrl.url)), {
+            httpPort: 443,
+            originId: `${this.id}-server`,
+            protocolPolicy: aws_cloudfront_1.OriginProtocolPolicy.HTTPS_ONLY,
+        });
+    }
+    createSiteOriginResources() {
+        this.createSiteStaticAssetDeployment();
+        this.createSiteLambdaPolicy();
+        this.createSiteLambdaRole();
+        this.createSiteLambdaEnvironment();
+        this.createSiteLambdaLayers();
+        this.createSiteLambdaApplication();
+        this.createSiteLambda();
+        this.createSiteLambdaUrl();
+    }
+    createSiteStaticAssetDeployment() { }
+    createSiteLambdaPolicy() {
+        this.siteLambdaPolicy = new aws_iam_1.PolicyDocument({
+            statements: [
+                new aws_iam_1.PolicyStatement({
+                    actions: ['lambda:InvokeFunctionUrl'],
+                    effect: aws_iam_1.Effect.ALLOW,
+                    resources: ['*'],
+                }),
+            ],
+        });
+    }
+    createSiteLambdaRole() {
+        this.siteLambdaRole = this.iamManager.createRoleForLambda(`${this.id}-role`, this, this.siteLambdaPolicy);
+    }
+    createSiteLambdaEnvironment() {
+        this.siteLambdaEnvironment = {
+            AWS_LAMBDA_EXEC_WRAPPER: this.props.siteExecWrapperPath ?? '/opt/bootstrap',
+            LOG_LEVEL: this.props.logLevel,
+            NODE_ENV: this.props.nodeEnv,
+            PORT: this.props.sitePort,
+            READINESS_CHECK_PATH: this.props.siteHealthEndpoint,
+            READINESS_CHECK_PORT: this.props.sitePort,
+            STAGE: this.props.stage,
+            TZ: this.props.timezone,
+        };
+    }
+    createSiteLambdaLayers() {
+        this.siteLambdaLayers = this.lambdaManager.createWebAdapterLayer(`${this.id}-web-adapter`, this);
+    }
+    createSiteLambdaApplication() { }
+    createSiteLambda() {
+        this.siteLambdaFunction = this.lambdaManager.createLambdaFunction(`${this.id}-lambda`, this, this.props.siteLambda, this.siteLambdaRole, this.siteLambdaLayers, this.siteLambdaApplication, this.props.siteLambda.handler, this.siteLambdaEnvironment);
+    }
+    createSiteLambdaUrl() {
+        const lambdaAlias = lodash_1.default.find(this.props.siteLambda.lambdaAliases, alias => alias.aliasName === constants_1.LAMBDA_ALIAS_NAME_CURRENT);
+        const lambdaFn = lambdaAlias
+            ? aws_lambda_1.Function.fromFunctionAttributes(this, `${this.id}-fn-alias`, {
+                functionArn: `${this.siteLambdaFunction.functionArn}:${lambdaAlias.aliasName}`,
+                sameEnvironment: true,
+            })
+            : this.siteLambdaFunction;
+        lambdaFn.node.addDependency(this.siteLambdaFunction);
+        this.siteLambdaUrl = lambdaFn.addFunctionUrl({
+            authType: aws_lambda_1.FunctionUrlAuthType.NONE,
+        });
+        this.siteLambdaUrl.node.addDependency(this.siteLambdaFunction);
+        this.siteLambdaUrl.node.addDependency(lambdaFn);
+        const principal = new aws_iam_1.AnyPrincipal();
+        principal.addToPolicy(new aws_iam_1.PolicyStatement({
+            actions: ['lambda:InvokeFunctionUrl'],
+            conditions: { StringEquals: { 'lambda:FunctionUrlAuthType': aws_lambda_1.FunctionUrlAuthType.NONE } },
+            effect: aws_iam_1.Effect.ALLOW,
+            resources: ['*'],
+        }));
+        lambdaFn.grantInvokeUrl({ grantPrincipal: principal });
+        this.addCfnOutput(`${this.id}-url`, this.siteLambdaUrl.url);
+    }
+    /**
+     * @summary Method to create a site cloudfront function
+     */
+    createSiteCloudfrontFunction() {
+        if (this.props.siteCloudfrontFunctionProps) {
+            this.siteCloudfrontFunction = this.cloudFrontManager.createCloudfrontFunction(`${this.id}-function`, this, this.props.siteCloudfrontFunctionProps);
+        }
+    }
+    /**
+     * @summary Method to create a site cloudfront function associations
+     */
+    resolveSiteFunctionAssociations() {
+        if (this.props.siteCloudfrontFunctionProps) {
+            this.siteFunctionAssociations = [
+                {
+                    eventType: aws_cloudfront_1.FunctionEventType.VIEWER_REQUEST,
+                    function: this.siteCloudfrontFunction,
+                },
+            ];
+        }
+    }
+    /**
+     * Method to create Site distribution
+     */
+    createDistribution() {
+        this.siteDistribution = this.cloudFrontManager.createDistributionWithHttpOrigin(`${this.id}-distribution`, this, this.props.siteDistribution, this.siteOrigin, this.siteDomainNames, this.siteLogBucket, this.siteCertificate, this.siteFunctionAssociations, this.props.siteDistribution.defaultBehavior.responseHeadersPolicy);
+        this.siteDistribution.node.addDependency(this.siteLambdaFunction);
+        this.siteDistribution.node.addDependency(this.siteLambdaUrl);
+    }
+    /**
+     * Method to create Route53 records for distribution
+     */
+    createNetworkMappings() {
+        this.route53Manager.createCloudFrontTargetARecord(`${this.id}-a-record`, this, this.siteDistribution, this.siteHostedZone, this.props.siteRecordName, this.props.skipStageForARecords);
+    }
+    /**
+     * Method to invalidation the cloudfront distribution cache after a deployment
+     */
+    invalidateDistributionCache() {
+        if (this.props.siteCacheInvalidationDockerFilePath) {
+            this.cloudFrontManager.invalidateCache(`${this.id}-cache-invalidation`, this, this.props.siteCacheInvalidationDockerFilePath, this.siteDistribution.distributionId);
+        }
+    }
+}
+exports.SiteWithLambdaBackend = SiteWithLambdaBackend;

package/dist/src/lib/aws/construct/site-with-lambda-backend/types.d.ts ADDED Viewed

@@ -0,0 +1,45 @@
+import { CachePolicyProps, OriginRequestPolicyProps, ResponseHeadersPolicyProps, ResponseHeadersStrictTransportSecurity, ResponseSecurityHeadersBehavior } from 'aws-cdk-lib/aws-cloudfront';
+import { CommonStackProps } from '../../common';
+import { AcmProps, CloudfrontFunctionProps, DistributionProps, LambdaProps, LogProps, S3BucketProps } from '../../services';
+import { SiteWithLambdaBackendResponseHeaderPolicyType } from './constants';
+/**
+ */
+export interface SiteWithLambdaBackendProps extends CommonStackProps {
+    logLevel: string;
+    nodeEnv: string;
+    siteCacheInvalidationDockerFilePath?: string;
+    siteCertificate: AcmProps;
+    siteCloudfrontFunctionProps?: CloudfrontFunctionProps;
+    siteDistribution: DistributionProps;
+    siteExecWrapperPath: string;
+    siteFunctionFilePath?: string;
+    siteHealthEndpoint: string;
+    siteLambda: LambdaProps;
+    siteLog: LogProps;
+    siteLogBucket: S3BucketProps;
+    sitePort: string;
+    siteCachePolicy?: SiteWithLambdaBackendCachePolicyProps;
+    siteOriginRequestPolicy: OriginRequestPolicyProps;
+    siteOriginResponseHeadersPolicy: SiteWithLambdaBackendResponseHeadersPolicyProps;
+    siteRecordName?: string;
+    siteRegionalCertificate: AcmProps;
+    siteSubDomain: string;
+    timezone: string;
+    useExistingHostedZone: boolean;
+    useExistingVpc: boolean;
+}
+export interface SiteWithLambdaBackendResponseHeadersStrictTransportSecurity extends ResponseHeadersStrictTransportSecurity {
+    accessControlMaxAgeInSeconds: number;
+}
+export interface SiteWithLambdaBackendSecurityHeadersBehavior extends ResponseSecurityHeadersBehavior {
+    strictTransportSecurity: SiteWithLambdaBackendResponseHeadersStrictTransportSecurity;
+}
+export interface SiteWithLambdaBackendResponseHeadersPolicyProps extends ResponseHeadersPolicyProps {
+    securityHeadersBehavior: SiteWithLambdaBackendSecurityHeadersBehavior;
+    type: SiteWithLambdaBackendResponseHeaderPolicyType;
+}
+export interface SiteWithLambdaBackendCachePolicyProps extends CachePolicyProps {
+    defaultTtlInSeconds: number;
+    minTtlInSeconds: number;
+    maxTtlInSeconds: number;
+}

package/dist/src/lib/aws/construct/site-with-lambda-backend/types.js ADDED Viewed

	@@ -0,0 +1,2 @@
1	+ "use strict";
2	+ Object.defineProperty(exports, "__esModule", { value: true });

package/dist/src/lib/aws/services/cloudwatch/main.js CHANGED Viewed

@@ -182,7 +182,7 @@ class CloudWatchManager {
         const metricProps = props.metricProps;
         return this.createWidget(id, scope, {
             ...props,
-            metricProps: lodash_1.default.map(metricProps, { ...lodash_1.default, distributionId }),
+            metricProps: metricProps.map(metricProp => ({ ...metricProp, distributionId })),
         });
     }
     /**
@@ -198,7 +198,7 @@ class CloudWatchManager {
         const metricProps = props.metricProps;
         return this.createWidget(id, scope, {
             ...props,
-            metricProps: lodash_1.default.map(metricProps, { ...lodash_1.default, stateMachineArn }),
+            metricProps: metricProps.map(metricProp => ({ ...metricProp, stateMachineArn })),
         });
     }
     /**
@@ -215,7 +215,7 @@ class CloudWatchManager {
         const metricProps = props.metricProps;
         return this.createWidget(id, scope, {
             ...props,
-            metricProps: lodash_1.default.map(metricProps, { ...lodash_1.default, eventBusName, ruleName }),
+            metricProps: metricProps.map(metricProp => ({ ...metricProp, eventBusName, ruleName })),
         });
     }
     /**
@@ -231,7 +231,7 @@ class CloudWatchManager {
         const metricProps = props.metricProps;
         return this.createWidget(id, scope, {
             ...props,
-            metricProps: lodash_1.default.map(metricProps, { ...lodash_1.default, apiName }),
+            metricProps: metricProps.map(metricProp => ({ ...metricProp, apiName })),
         });
     }
     /**
@@ -247,7 +247,7 @@ class CloudWatchManager {
         const metricProps = props.metricProps;
         return this.createWidget(id, scope, {
             ...props,
-            metricProps: lodash_1.default.map(metricProps, { ...lodash_1.default, functionName }),
+            metricProps: metricProps.map(metricProp => ({ ...metricProp, functionName })),
         });
     }
     /**
@@ -263,7 +263,7 @@ class CloudWatchManager {
         const metricProps = props.metricProps;
         return this.createWidget(id, scope, {
             ...props,
-            metricProps: lodash_1.default.map(metricProps, { ...lodash_1.default, service }),
+            metricProps: metricProps.map(metricProp => ({ ...metricProp, service })),
         });
     }
     /**
@@ -279,7 +279,7 @@ class CloudWatchManager {
         const metricProps = props.metricProps;
         return this.createWidget(id, scope, {
             ...props,
-            metricProps: lodash_1.default.map(metricProps, { ...lodash_1.default, clusterName }),
+            metricProps: metricProps.map(metricProp => ({ ...metricProp, clusterName })),
         });
     }
     /**
@@ -296,7 +296,7 @@ class CloudWatchManager {
         const metricProps = props.metricProps;
         return this.createWidget(id, scope, {
             ...props,
-            metricProps: lodash_1.default.map(metricProps, { ...lodash_1.default, clusterName, serviceName }),
+            metricProps: metricProps.map(metricProp => ({ ...metricProp, clusterName, serviceName })),
         });
     }
     /**
@@ -312,7 +312,7 @@ class CloudWatchManager {
         const metricProps = props.metricProps;
         return this.createWidget(id, scope, {
             ...props,
-            metricProps: lodash_1.default.map(metricProps, { ...lodash_1.default, loadBalancer }),
+            metricProps: metricProps.map(metricProp => ({ ...metricProp, loadBalancer })),
         });
     }
     /**
@@ -328,7 +328,7 @@ class CloudWatchManager {
         const metricProps = props.metricProps;
         return this.createWidget(id, scope, {
             ...props,
-            metricProps: lodash_1.default.map(metricProps, { ...lodash_1.default, cacheClusterId }),
+            metricProps: metricProps.map(metricProp => ({ ...metricProp, cacheClusterId })),
         });
     }
     /**