npm - @gradientedge/cdk-utils - Versions diffs - 8.149.0 → 8.150.0 - Mend

@gradientedge/cdk-utils 8.149.0 → 8.150.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (21) hide show

package/dist/src/lib/aws/construct/graphql-api-lambda-with-cache/main.js CHANGED Viewed

@@ -95,6 +95,12 @@ class GraphQLApiLambdaWithCache extends __1.GraphQLApiLambda {
                 vpc: this.graphQLVpc,
             });
             this.graphQLSecurityGroup.addIngressRule(aws_ec2_1.Peer.anyIpv4(), aws_ec2_1.Port.allTraffic(), 'All Traffic');
+            if (this.props.graphQLVpc.isIPV6) {
+                this.graphQLSecurityGroup.addIngressRule(aws_ec2_1.Peer.anyIpv6(), aws_ec2_1.Port.allTraffic(), 'All Traffic');
+            }
+            else {
+                this.graphQLSecurityGroup.addIngressRule(aws_ec2_1.Peer.anyIpv4(), aws_ec2_1.Port.allTraffic(), 'All Traffic');
+            }
             utils.createCfnOutput(`${this.id}-security-group-id`, this, this.graphQLSecurityGroup.securityGroupId);
         }
     }

package/dist/src/lib/aws/construct/graphql-api-lambda-with-cache/types.d.ts CHANGED Viewed

@@ -1,6 +1,5 @@
+import { ReplicatedElastiCacheProps, VpcProps } from '../../services';
 import { GraphQlApiLambdaProps } from '../graphql-api-lambda';
-import { VpcProps } from 'aws-cdk-lib/aws-ec2';
-import { ReplicatedElastiCacheProps } from '../../services';
 /**
  * @deprecated Use RestApiLambdaWithCacheProps instead. This will be removed in a future release.
  */

package/dist/src/lib/aws/construct/rest-api-lambda-with-cache/main.js CHANGED Viewed

@@ -70,7 +70,12 @@ class RestApiLambdaWithCache extends __1.RestApiLambda {
                 securityGroupName: `${this.id}-security-group-${this.props.stage}`,
                 vpc: this.restApivpc,
             });
-            this.restApiSecurityGroup.addIngressRule(aws_ec2_1.Peer.anyIpv4(), aws_ec2_1.Port.allTraffic(), 'All Traffic');
+            if (this.props.restApiVpc.isIPV6) {
+                this.restApiSecurityGroup.addIngressRule(aws_ec2_1.Peer.anyIpv6(), aws_ec2_1.Port.allTraffic(), 'All Traffic');
+            }
+            else {
+                this.restApiSecurityGroup.addIngressRule(aws_ec2_1.Peer.anyIpv4(), aws_ec2_1.Port.allTraffic(), 'All Traffic');
+            }
             (0, utils_1.createCfnOutput)(`${this.id}-security-group-id`, this, this.restApiSecurityGroup.securityGroupId);
         }
     }

package/dist/src/lib/aws/construct/rest-api-lambda-with-cache/types.d.ts CHANGED Viewed

@@ -1,6 +1,5 @@
 import { RestApiLambdaProps } from '../rest-api-lambda';
-import { VpcProps } from 'aws-cdk-lib/aws-ec2';
-import { ReplicatedElastiCacheProps } from '../../services';
+import { ReplicatedElastiCacheProps, VpcProps } from '../../services';
 /**
  */
 export interface RestApiLambdaWithCacheProps extends RestApiLambdaProps {

package/dist/src/lib/aws/services/virtual-private-cloud/index.d.ts CHANGED Viewed

	@@ -1 +1,2 @@
1 1	export * from './main';
2	+ export * from './types';

package/dist/src/lib/aws/services/virtual-private-cloud/index.js CHANGED Viewed

@@ -15,3 +15,4 @@ var __exportStar = (this && this.__exportStar) || function(m, exports) {
 };
 Object.defineProperty(exports, "__esModule", { value: true });
 __exportStar(require("./main"), exports);
+__exportStar(require("./types"), exports);

package/dist/src/lib/aws/services/virtual-private-cloud/ipv6.d.ts ADDED Viewed

@@ -0,0 +1,7 @@
+import { Vpc } from 'aws-cdk-lib/aws-ec2';
+import { CommonConstruct } from '../../common';
+import { VpcProps } from './types';
+export declare class Ipv6Vpc extends Vpc {
+    egressOnlyInternetGatewayId: string;
+    constructor(scope: CommonConstruct, id: string, props: VpcProps);
+}

package/dist/src/lib/aws/services/virtual-private-cloud/ipv6.js ADDED Viewed

@@ -0,0 +1,42 @@
+"use strict";
+var __importDefault = (this && this.__importDefault) || function (mod) {
+    return (mod && mod.__esModule) ? mod : { "default": mod };
+};
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.Ipv6Vpc = void 0;
+const aws_cdk_lib_1 = require("aws-cdk-lib");
+const aws_ec2_1 = require("aws-cdk-lib/aws-ec2");
+const lodash_1 = __importDefault(require("lodash"));
+class Ipv6Vpc extends aws_ec2_1.Vpc {
+    egressOnlyInternetGatewayId;
+    constructor(scope, id, props) {
+        super(scope, id, props);
+        const cfnVpcCidrBlock = new aws_ec2_1.CfnVPCCidrBlock(this, `${id}-ipv6-cidr`, {
+            amazonProvidedIpv6CidrBlock: true,
+            vpcId: this.vpcId,
+        });
+        const subnetIpv6CidrBlocks = aws_cdk_lib_1.Fn.cidr(aws_cdk_lib_1.Fn.select(0, this.vpcIpv6CidrBlocks), 256, '64');
+        lodash_1.default.forEach([...this.publicSubnets, ...this.privateSubnets, ...this.isolatedSubnets], (subnet, index) => {
+            subnet.node.addDependency(cfnVpcCidrBlock);
+            const cfnSubnet = subnet.node.defaultChild;
+            cfnSubnet.ipv6CidrBlock = aws_cdk_lib_1.Fn.select(index, subnetIpv6CidrBlocks);
+            cfnSubnet.assignIpv6AddressOnCreation = true;
+        });
+        const addDefaultIpv6Routes = (subnets, gatewayId, routerType) => subnets.forEach(subnet => subnet.addRoute(`${id}-default-route`, {
+            destinationIpv6CidrBlock: '::/0',
+            enablesInternetConnectivity: true,
+            routerId: gatewayId,
+            routerType: routerType,
+        }));
+        if (this.internetGatewayId) {
+            addDefaultIpv6Routes(this.publicSubnets, this.internetGatewayId, aws_ec2_1.RouterType.GATEWAY);
+        }
+        if (lodash_1.default.isEmpty(this.privateSubnets)) {
+            return;
+        }
+        const egressIgw = new aws_ec2_1.CfnEgressOnlyInternetGateway(this, `${id}-eigw`, { vpcId: this.vpcId });
+        this.egressOnlyInternetGatewayId = egressIgw.ref;
+        addDefaultIpv6Routes(this.privateSubnets, egressIgw.ref, aws_ec2_1.RouterType.EGRESS_ONLY_INTERNET_GATEWAY);
+    }
+}
+exports.Ipv6Vpc = Ipv6Vpc;

package/dist/src/lib/aws/services/virtual-private-cloud/main.d.ts CHANGED Viewed

@@ -1,5 +1,6 @@
-import { Vpc, VpcProps } from 'aws-cdk-lib/aws-ec2';
+import { Vpc } from 'aws-cdk-lib/aws-ec2';
 import { CommonConstruct } from '../../common';
+import { VpcProps } from './types';
 /**
  * @classdesc Provides operations on AWS VPC.
  * - A new instance of this class is injected into {@link CommonConstruct} constructor.

package/dist/src/lib/aws/services/virtual-private-cloud/main.js CHANGED Viewed

@@ -6,8 +6,9 @@ Object.defineProperty(exports, "__esModule", { value: true });
 exports.VpcManager = void 0;
 const aws_cdk_lib_1 = require("aws-cdk-lib");
 const aws_ec2_1 = require("aws-cdk-lib/aws-ec2");
-const utils_1 = require("../../utils");
 const lodash_1 = __importDefault(require("lodash"));
+const utils_1 = require("../../utils");
+const ipv6_1 = require("./ipv6");
 /**
  */
 const CommonVpcIdentifier = 'CommonVpc';
@@ -37,9 +38,19 @@ class VpcManager {
     createVpc(id, scope, props) {
         if (!props)
             throw `Vpc props undefined for ${id}`;
-        const vpc = new aws_ec2_1.Vpc(scope, `${id}`, {
-            ...props,
-        });
+        let vpc;
+        if (props.isIPV6) {
+            vpc = new ipv6_1.Ipv6Vpc(scope, `${id}`, {
+                ...props,
+                subnetConfiguration: [
+                    { name: `${id}-public`, subnetType: aws_ec2_1.SubnetType.PUBLIC },
+                    { name: `${id}-private`, subnetType: aws_ec2_1.SubnetType.PRIVATE_WITH_EGRESS },
+                ],
+            });
+        }
+        else {
+            vpc = new aws_ec2_1.Vpc(scope, `${id}`, props);
+        }
         (0, utils_1.createCfnOutput)(`${id}Id`, scope, vpc.vpcId);
         (0, utils_1.createCfnOutput)(`${id}PublicSubnetIds`, scope, lodash_1.default.map(vpc.publicSubnets, subnet => subnet.subnetId).toString());
         (0, utils_1.createCfnOutput)(`${id}PrivateSubnetIds`, scope, lodash_1.default.map(vpc.privateSubnets, subnet => subnet.subnetId).toString());

package/dist/src/lib/aws/services/virtual-private-cloud/types.d.ts ADDED Viewed

@@ -0,0 +1,4 @@
+import * as ec2 from 'aws-cdk-lib/aws-ec2';
+export interface VpcProps extends ec2.VpcProps {
+    isIPV6?: boolean;
+}

package/dist/src/lib/aws/services/virtual-private-cloud/types.js ADDED Viewed

	@@ -0,0 +1,2 @@
1	+ "use strict";
2	+ Object.defineProperty(exports, "__esModule", { value: true });

package/package.json CHANGED Viewed

@@ -1,6 +1,6 @@
 {
   "name": "@gradientedge/cdk-utils",
-  "version": "8.149.0",
+  "version": "8.150.0",
   "description": "Utilities for AWS CDK provisioning",
   "main": "dist/index.js",
   "engines": {

package/src/lib/aws/construct/graphql-api-lambda-with-cache/main.ts CHANGED Viewed

@@ -79,6 +79,11 @@ export class GraphQLApiLambdaWithCache extends GraphQLApiLambda {
       })
       this.graphQLSecurityGroup.addIngressRule(Peer.anyIpv4(), Port.allTraffic(), 'All Traffic')
+      if (this.props.graphQLVpc.isIPV6) {
+        this.graphQLSecurityGroup.addIngressRule(Peer.anyIpv6(), Port.allTraffic(), 'All Traffic')
+      } else {
+        this.graphQLSecurityGroup.addIngressRule(Peer.anyIpv4(), Port.allTraffic(), 'All Traffic')
+      }
       utils.createCfnOutput(`${this.id}-security-group-id`, this, this.graphQLSecurityGroup.securityGroupId)
     }

package/src/lib/aws/construct/graphql-api-lambda-with-cache/types.ts CHANGED Viewed

@@ -1,6 +1,5 @@
+import { ReplicatedElastiCacheProps, VpcProps } from '../../services'
 import { GraphQlApiLambdaProps } from '../graphql-api-lambda'
-import { VpcProps } from 'aws-cdk-lib/aws-ec2'
-import { ReplicatedElastiCacheProps } from '../../services'
 /**
  * @deprecated Use RestApiLambdaWithCacheProps instead. This will be removed in a future release.

package/src/lib/aws/construct/rest-api-lambda-with-cache/main.ts CHANGED Viewed

@@ -77,7 +77,11 @@ export abstract class RestApiLambdaWithCache extends RestApiLambda {
         vpc: this.restApivpc,
       })
-      this.restApiSecurityGroup.addIngressRule(Peer.anyIpv4(), Port.allTraffic(), 'All Traffic')
+      if (this.props.restApiVpc.isIPV6) {
+        this.restApiSecurityGroup.addIngressRule(Peer.anyIpv6(), Port.allTraffic(), 'All Traffic')
+      } else {
+        this.restApiSecurityGroup.addIngressRule(Peer.anyIpv4(), Port.allTraffic(), 'All Traffic')
+      }
       createCfnOutput(`${this.id}-security-group-id`, this, this.restApiSecurityGroup.securityGroupId)
     }

package/src/lib/aws/construct/rest-api-lambda-with-cache/types.ts CHANGED Viewed

@@ -1,6 +1,5 @@
 import { RestApiLambdaProps } from '../rest-api-lambda'
-import { VpcProps } from 'aws-cdk-lib/aws-ec2'
-import { ReplicatedElastiCacheProps } from '../../services'
+import { ReplicatedElastiCacheProps, VpcProps } from '../../services'
 /**
  */

package/src/lib/aws/services/virtual-private-cloud/index.ts CHANGED Viewed

	@@ -1 +1,2 @@
1 1	export * from './main'
2	+ export * from './types'

package/src/lib/aws/services/virtual-private-cloud/ipv6.ts ADDED Viewed

@@ -0,0 +1,58 @@
+import { Fn } from 'aws-cdk-lib'
+import {
+  CfnEgressOnlyInternetGateway,
+  CfnSubnet,
+  CfnVPCCidrBlock,
+  ISubnet,
+  RouterType,
+  Subnet,
+  Vpc,
+} from 'aws-cdk-lib/aws-ec2'
+import _ from 'lodash'
+import { CommonConstruct } from '../../common'
+import { VpcProps } from './types'
+export class Ipv6Vpc extends Vpc {
+  public egressOnlyInternetGatewayId: string
+  constructor(scope: CommonConstruct, id: string, props: VpcProps) {
+    super(scope, id, props)
+    const cfnVpcCidrBlock = new CfnVPCCidrBlock(this, `${id}-ipv6-cidr`, {
+      amazonProvidedIpv6CidrBlock: true,
+      vpcId: this.vpcId,
+    })
+    const subnetIpv6CidrBlocks = Fn.cidr(Fn.select(0, this.vpcIpv6CidrBlocks), 256, '64')
+    _.forEach([...this.publicSubnets, ...this.privateSubnets, ...this.isolatedSubnets], (subnet, index) => {
+      subnet.node.addDependency(cfnVpcCidrBlock)
+      const cfnSubnet = subnet.node.defaultChild as CfnSubnet
+      cfnSubnet.ipv6CidrBlock = Fn.select(index, subnetIpv6CidrBlocks)
+      cfnSubnet.assignIpv6AddressOnCreation = true
+    })
+    const addDefaultIpv6Routes = (subnets: ISubnet[], gatewayId: string, routerType: RouterType) =>
+      subnets.forEach(subnet =>
+        (subnet as Subnet).addRoute(`${id}-default-route`, {
+          destinationIpv6CidrBlock: '::/0',
+          enablesInternetConnectivity: true,
+          routerId: gatewayId,
+          routerType: routerType,
+        })
+      )
+    if (this.internetGatewayId) {
+      addDefaultIpv6Routes(this.publicSubnets, this.internetGatewayId, RouterType.GATEWAY)
+    }
+    if (_.isEmpty(this.privateSubnets)) {
+      return
+    }
+    const egressIgw = new CfnEgressOnlyInternetGateway(this, `${id}-eigw`, { vpcId: this.vpcId })
+    this.egressOnlyInternetGatewayId = egressIgw.ref
+    addDefaultIpv6Routes(this.privateSubnets, egressIgw.ref, RouterType.EGRESS_ONLY_INTERNET_GATEWAY)
+  }
+}

package/src/lib/aws/services/virtual-private-cloud/main.ts CHANGED Viewed

@@ -1,8 +1,10 @@
 import { Tags } from 'aws-cdk-lib'
-import { Vpc, VpcProps } from 'aws-cdk-lib/aws-ec2'
+import { SubnetType, Vpc } from 'aws-cdk-lib/aws-ec2'
+import _ from 'lodash'
 import { CommonConstruct } from '../../common'
 import { createCfnOutput } from '../../utils'
-import _ from 'lodash'
+import { Ipv6Vpc } from './ipv6'
+import { VpcProps } from './types'
 /**
  */
@@ -33,9 +35,19 @@ export class VpcManager {
    */
   public createVpc(id: string, scope: CommonConstruct, props: VpcProps) {
     if (!props) throw `Vpc props undefined for ${id}`
-    const vpc = new Vpc(scope, `${id}`, {
-      ...props,
-    })
+    let vpc
+    if (props.isIPV6) {
+      vpc = new Ipv6Vpc(scope, `${id}`, {
+        ...props,
+        subnetConfiguration: [
+          { name: `${id}-public`, subnetType: SubnetType.PUBLIC },
+          { name: `${id}-private`, subnetType: SubnetType.PRIVATE_WITH_EGRESS },
+        ],
+      })
+    } else {
+      vpc = new Vpc(scope, `${id}`, props)
+    }
     createCfnOutput(`${id}Id`, scope, vpc.vpcId)
     createCfnOutput(`${id}PublicSubnetIds`, scope, _.map(vpc.publicSubnets, subnet => subnet.subnetId).toString())

package/src/lib/aws/services/virtual-private-cloud/types.ts ADDED Viewed

@@ -0,0 +1,5 @@
+import * as ec2 from 'aws-cdk-lib/aws-ec2'
+export interface VpcProps extends ec2.VpcProps {
+  isIPV6?: boolean
+}