@jaypie/constructs 1.1.48 → 1.1.50

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@jaypie/constructs",
-  "version": "1.1.48",
+  "version": "1.1.50",
   "description": "CDK constructs for Jaypie applications",
   "license": "MIT",
   "author": "Finlayson Studio",
@@ -27,6 +27,7 @@
   },
   "dependencies": {
     "@jaypie/cdk": "^1.1.13",
+    "@jaypie/errors": "^1.1.5",
     "aws-cdk-lib": "^2.216.0",
     "constructs": "^10.4.2",
     "datadog-cdk-constructs-v2": "^3.2.0"
@@ -47,5 +48,5 @@
   "publishConfig": {
     "access": "public"
   },
-  "gitHead": "8b4e9cd66d90be510f7970a01c19407c08ec1fb3"
+  "gitHead": "bf576dceb3b91415c7556d3b0a0cdeb5ef8c766c"
 }

package/dist/cjs/JaypieSsoGroups.d.ts

@@ -1,121 +0,0 @@
-import { Construct } from "constructs";
-import * as sso from "aws-cdk-lib/aws-sso";
-/**
- * Account categories for SSO group assignments
- */
-export interface JaypieSsoAccountMap {
-    development: string[];
-    management: string[];
-    operations: string[];
-    production: string[];
-    sandbox: string[];
-    security: string[];
-    stage: string[];
-}
-/**
- * Mapping of group types to Google Workspace group GUIDs
- */
-export interface JaypieSsoGroupMap {
-    administrators: string;
-    analysts: string;
-    developers: string;
-}
-/**
- * IAM Policy Statement structure for inline policies
- */
-export interface PolicyStatement {
-    Effect: "Allow" | "Deny";
-    Action: string[] | string;
-    Resource: string[] | string;
-    Condition?: Record<string, unknown>;
-}
-/**
- * Properties for the JaypieSsoGroups construct
- */
-export interface JaypieSsoGroupsProps {
-    /**
-     * ARN of the IAM Identity Center instance
-     */
-    instanceArn: string;
-    /**
-     * Mapping of account categories to AWS account IDs
-     */
-    accountMap: JaypieSsoAccountMap;
-    /**
-     * Mapping of group types to Google Workspace group GUIDs
-     */
-    groupMap: JaypieSsoGroupMap;
-    /**
-     * Additional inline policy statements to append to each group's permission set
-     * Each group can have its own set of policy statements that will be merged
-     * with the default policies.
-     */
-    inlinePolicyStatements?: {
-        administrators?: PolicyStatement[];
-        analysts?: PolicyStatement[];
-        developers?: PolicyStatement[];
-    };
-}
-/**
- * Permission set types with corresponding AWS managed policies
- */
-export declare enum PermissionSetType {
-    ADMINISTRATOR = "Administrator",
-    ANALYST = "Analyst",
-    DEVELOPER = "Developer"
-}
-/**
- * Construct to simplify AWS SSO group management.
- * This construct encapsulates the complexity of creating permission sets
- * and assigning them to groups across multiple AWS accounts.
- */
-export declare class JaypieSsoGroups extends Construct {
-    private readonly permissionSets;
-    private readonly instanceArn;
-    private readonly props;
-    constructor(scope: Construct, id: string, props: JaypieSsoGroupsProps);
-    /**
-     * Creates the Administrator permission set with AdministratorAccess policy
-     * and billing access
-     */
-    private createAdministratorPermissionSet;
-    /**
-     * Creates the Analyst permission set with ReadOnlyAccess policy
-     * and limited write access
-     */
-    private createAnalystPermissionSet;
-    /**
-     * Creates the Developer permission set with SystemAdministrator policy
-     * and expanded write access
-     */
-    private createDeveloperPermissionSet;
-    /**
-     * Gets the permission set for the specified type
-     */
-    getPermissionSet(type: PermissionSetType): sso.CfnPermissionSet;
-    /**
-     * Merges default inline policies with additional user-provided policy statements
-     *
-     * @param defaultPolicy - The default policy object with Version and Statement properties
-     * @param additionalStatements - Optional additional policy statements to merge
-     * @returns The merged policy object
-     */
-    private mergeInlinePolicies;
-    /**
-     * Creates assignments between permission sets, groups, and accounts
-     * based on the provided configuration
-     */
-    private createPermissionSetAssignments;
-    /**
-     * Assigns Administrator permissions to appropriate accounts
-     */
-    private assignAdministratorPermissions;
-    /**
-     * Assigns Analyst permissions to appropriate accounts
-     */
-    private assignAnalystPermissions;
-    /**
-     * Assigns Developer permissions to appropriate accounts
-     */
-    private assignDeveloperPermissions;
-}

package/dist/esm/JaypieSsoGroups.d.ts

@@ -1,121 +0,0 @@
-import { Construct } from "constructs";
-import * as sso from "aws-cdk-lib/aws-sso";
-/**
- * Account categories for SSO group assignments
- */
-export interface JaypieSsoAccountMap {
-    development: string[];
-    management: string[];
-    operations: string[];
-    production: string[];
-    sandbox: string[];
-    security: string[];
-    stage: string[];
-}
-/**
- * Mapping of group types to Google Workspace group GUIDs
- */
-export interface JaypieSsoGroupMap {
-    administrators: string;
-    analysts: string;
-    developers: string;
-}
-/**
- * IAM Policy Statement structure for inline policies
- */
-export interface PolicyStatement {
-    Effect: "Allow" | "Deny";
-    Action: string[] | string;
-    Resource: string[] | string;
-    Condition?: Record<string, unknown>;
-}
-/**
- * Properties for the JaypieSsoGroups construct
- */
-export interface JaypieSsoGroupsProps {
-    /**
-     * ARN of the IAM Identity Center instance
-     */
-    instanceArn: string;
-    /**
-     * Mapping of account categories to AWS account IDs
-     */
-    accountMap: JaypieSsoAccountMap;
-    /**
-     * Mapping of group types to Google Workspace group GUIDs
-     */
-    groupMap: JaypieSsoGroupMap;
-    /**
-     * Additional inline policy statements to append to each group's permission set
-     * Each group can have its own set of policy statements that will be merged
-     * with the default policies.
-     */
-    inlinePolicyStatements?: {
-        administrators?: PolicyStatement[];
-        analysts?: PolicyStatement[];
-        developers?: PolicyStatement[];
-    };
-}
-/**
- * Permission set types with corresponding AWS managed policies
- */
-export declare enum PermissionSetType {
-    ADMINISTRATOR = "Administrator",
-    ANALYST = "Analyst",
-    DEVELOPER = "Developer"
-}
-/**
- * Construct to simplify AWS SSO group management.
- * This construct encapsulates the complexity of creating permission sets
- * and assigning them to groups across multiple AWS accounts.
- */
-export declare class JaypieSsoGroups extends Construct {
-    private readonly permissionSets;
-    private readonly instanceArn;
-    private readonly props;
-    constructor(scope: Construct, id: string, props: JaypieSsoGroupsProps);
-    /**
-     * Creates the Administrator permission set with AdministratorAccess policy
-     * and billing access
-     */
-    private createAdministratorPermissionSet;
-    /**
-     * Creates the Analyst permission set with ReadOnlyAccess policy
-     * and limited write access
-     */
-    private createAnalystPermissionSet;
-    /**
-     * Creates the Developer permission set with SystemAdministrator policy
-     * and expanded write access
-     */
-    private createDeveloperPermissionSet;
-    /**
-     * Gets the permission set for the specified type
-     */
-    getPermissionSet(type: PermissionSetType): sso.CfnPermissionSet;
-    /**
-     * Merges default inline policies with additional user-provided policy statements
-     *
-     * @param defaultPolicy - The default policy object with Version and Statement properties
-     * @param additionalStatements - Optional additional policy statements to merge
-     * @returns The merged policy object
-     */
-    private mergeInlinePolicies;
-    /**
-     * Creates assignments between permission sets, groups, and accounts
-     * based on the provided configuration
-     */
-    private createPermissionSetAssignments;
-    /**
-     * Assigns Administrator permissions to appropriate accounts
-     */
-    private assignAdministratorPermissions;
-    /**
-     * Assigns Analyst permissions to appropriate accounts
-     */
-    private assignAnalystPermissions;
-    /**
-     * Assigns Developer permissions to appropriate accounts
-     */
-    private assignDeveloperPermissions;
-}