@openhi/constructs 0.0.98 → 0.0.100

package/lib/index.d.mts

@@ -1083,9 +1083,10 @@ declare class OpenHiAuthService extends OpenHiService {
 interface OpenHiGlobalServiceProps extends OpenHiServiceProps {
 }
 /**
- * Global Infrastructure stack: owns global DNS and certificates.
- * Resources (root zone, optional child zone, wildcard cert) are created
- * in protected methods; subclasses may override to customize.
+ * Global Infrastructure stack: owns global DNS, certificates, and the
+ * cross-region EventBridge buses (data, ops). Resources (root zone, optional
+ * child zone, wildcard cert, data/ops buses) are created in protected methods;
+ * subclasses may override to customize.
  */
 declare class OpenHiGlobalService extends OpenHiService {
     static readonly SERVICE_TYPE = "global";
@@ -1104,12 +1105,30 @@ declare class OpenHiGlobalService extends OpenHiService {
         zoneName: string;
         serviceType?: OpenHiServiceType;
     }): IHostedZone;
+    /**
+     * Returns the data event bus by name (deterministic per branch). Use from other stacks to obtain an IEventBus reference.
+     */
+    static dataEventBusFromConstruct(scope: Construct): IEventBus;
+    /**
+     * Returns the ops event bus by name (deterministic per branch). Use from other stacks to obtain an IEventBus reference.
+     */
+    static opsEventBusFromConstruct(scope: Construct): IEventBus;
     get serviceType(): string;
     /** Override so this.props is typed with this service's options. */
     props: OpenHiGlobalServiceProps;
     readonly rootHostedZone: IHostedZone;
     readonly childHostedZone?: IHostedZone;
     readonly rootWildcardCertificate: ICertificate;
+    /**
+     * Event bus for data-related events (ingestion, transformation, storage).
+     * Other stacks obtain it via {@link OpenHiGlobalService.dataEventBusFromConstruct}.
+     */
+    readonly dataEventBus: IEventBus;
+    /**
+     * Event bus for operational events (monitoring, alerting, system health).
+     * Other stacks obtain it via {@link OpenHiGlobalService.opsEventBusFromConstruct}.
+     */
+    readonly opsEventBus: IEventBus;
     constructor(ohEnv: OpenHiEnvironment, props?: OpenHiGlobalServiceProps);
     /**
      * Validates that config required for the Global stack is present.
@@ -1133,6 +1152,16 @@ declare class OpenHiGlobalService extends OpenHiService {
      * Override to customize certificate creation.
      */
     protected createRootWildcardCertificate(): ICertificate;
+    /**
+     * Creates the data event bus.
+     * Override to customize.
+     */
+    protected createDataEventBus(): IEventBus;
+    /**
+     * Creates the ops event bus.
+     * Override to customize.
+     */
+    protected createOpsEventBus(): IEventBus;
 }
 
 /**
@@ -1219,21 +1248,14 @@ declare class OpenHiRestApiService extends OpenHiService {
 interface OpenHiDataServiceProps extends OpenHiServiceProps {
 }
 /**
- * Data storage service stack: centralizes DynamoDB, S3, EventBridge event buses,
- * and other persistence resources for OpenHI. Creates the single-table data store
- * and the data/ops event buses in protected methods;
- * subclasses may override to customize.
+ * Data storage service stack: centralizes DynamoDB, S3, and other persistence
+ * resources for OpenHI. Creates the single-table data store in a protected
+ * method; subclasses may override to customize. EventBridge event buses
+ * (data, ops) are owned by {@link OpenHiGlobalService} so they deploy ahead of
+ * regional services.
  */
 declare class OpenHiDataService extends OpenHiService {
     static readonly SERVICE_TYPE = "data";
-    /**
-     * Returns the data event bus by name (deterministic per branch). Use from other stacks to obtain an IEventBus reference.
-     */
-    static dataEventBusFromConstruct(scope: Construct): IEventBus;
-    /**
-     * Returns the ops event bus by name (deterministic per branch). Use from other stacks to obtain an IEventBus reference.
-     */
-    static opsEventBusFromConstruct(scope: Construct): IEventBus;
     /**
      * Returns the data store table by name. Use from other stacks (e.g. REST API Lambda) to obtain an ITable reference.
      */
@@ -1241,16 +1263,6 @@ declare class OpenHiDataService extends OpenHiService {
     get serviceType(): string;
     /** Override so this.props is typed with this service's options. */
     props: OpenHiDataServiceProps;
-    /**
-     * Event bus for data-related events (ingestion, transformation, storage).
-     * Other stacks obtain it via {@link OpenHiDataService.dataEventBusFromConstruct}.
-     */
-    readonly dataEventBus: IEventBus;
-    /**
-     * Event bus for operational events (monitoring, alerting, system health).
-     * Other stacks obtain it via {@link OpenHiDataService.opsEventBusFromConstruct}.
-     */
-    readonly opsEventBus: IEventBus;
     /**
      * The single-table DynamoDB data store. Use {@link OpenHiDataService.dynamoDbDataStoreFromConstruct}
      * from other stacks to obtain an ITable reference by name.
@@ -1273,16 +1285,6 @@ declare class OpenHiDataService extends OpenHiService {
      */
     readonly dataStorePostgresReplica: DataStorePostgresReplica;
     constructor(ohEnv: OpenHiEnvironment, props?: OpenHiDataServiceProps);
-    /**
-     * Creates the data event bus.
-     * Override to customize.
-     */
-    protected createDataEventBus(): IEventBus;
-    /**
-     * Creates the ops event bus.
-     * Override to customize.
-     */
-    protected createOpsEventBus(): IEventBus;
     /**
      * Creates the single-table DynamoDB data store.
      * Override to customize.

package/lib/index.d.ts

@@ -1178,9 +1178,10 @@ declare class OpenHiAuthService extends OpenHiService {
 interface OpenHiGlobalServiceProps extends OpenHiServiceProps {
 }
 /**
- * Global Infrastructure stack: owns global DNS and certificates.
- * Resources (root zone, optional child zone, wildcard cert) are created
- * in protected methods; subclasses may override to customize.
+ * Global Infrastructure stack: owns global DNS, certificates, and the
+ * cross-region EventBridge buses (data, ops). Resources (root zone, optional
+ * child zone, wildcard cert, data/ops buses) are created in protected methods;
+ * subclasses may override to customize.
  */
 declare class OpenHiGlobalService extends OpenHiService {
     static readonly SERVICE_TYPE = "global";
@@ -1199,12 +1200,30 @@ declare class OpenHiGlobalService extends OpenHiService {
         zoneName: string;
         serviceType?: OpenHiServiceType;
     }): IHostedZone;
+    /**
+     * Returns the data event bus by name (deterministic per branch). Use from other stacks to obtain an IEventBus reference.
+     */
+    static dataEventBusFromConstruct(scope: Construct): IEventBus;
+    /**
+     * Returns the ops event bus by name (deterministic per branch). Use from other stacks to obtain an IEventBus reference.
+     */
+    static opsEventBusFromConstruct(scope: Construct): IEventBus;
     get serviceType(): string;
     /** Override so this.props is typed with this service's options. */
     props: OpenHiGlobalServiceProps;
     readonly rootHostedZone: IHostedZone;
     readonly childHostedZone?: IHostedZone;
     readonly rootWildcardCertificate: ICertificate;
+    /**
+     * Event bus for data-related events (ingestion, transformation, storage).
+     * Other stacks obtain it via {@link OpenHiGlobalService.dataEventBusFromConstruct}.
+     */
+    readonly dataEventBus: IEventBus;
+    /**
+     * Event bus for operational events (monitoring, alerting, system health).
+     * Other stacks obtain it via {@link OpenHiGlobalService.opsEventBusFromConstruct}.
+     */
+    readonly opsEventBus: IEventBus;
     constructor(ohEnv: OpenHiEnvironment, props?: OpenHiGlobalServiceProps);
     /**
      * Validates that config required for the Global stack is present.
@@ -1228,6 +1247,16 @@ declare class OpenHiGlobalService extends OpenHiService {
      * Override to customize certificate creation.
      */
     protected createRootWildcardCertificate(): ICertificate;
+    /**
+     * Creates the data event bus.
+     * Override to customize.
+     */
+    protected createDataEventBus(): IEventBus;
+    /**
+     * Creates the ops event bus.
+     * Override to customize.
+     */
+    protected createOpsEventBus(): IEventBus;
 }
 
 /**
@@ -1314,21 +1343,14 @@ declare class OpenHiRestApiService extends OpenHiService {
 interface OpenHiDataServiceProps extends OpenHiServiceProps {
 }
 /**
- * Data storage service stack: centralizes DynamoDB, S3, EventBridge event buses,
- * and other persistence resources for OpenHI. Creates the single-table data store
- * and the data/ops event buses in protected methods;
- * subclasses may override to customize.
+ * Data storage service stack: centralizes DynamoDB, S3, and other persistence
+ * resources for OpenHI. Creates the single-table data store in a protected
+ * method; subclasses may override to customize. EventBridge event buses
+ * (data, ops) are owned by {@link OpenHiGlobalService} so they deploy ahead of
+ * regional services.
  */
 declare class OpenHiDataService extends OpenHiService {
     static readonly SERVICE_TYPE = "data";
-    /**
-     * Returns the data event bus by name (deterministic per branch). Use from other stacks to obtain an IEventBus reference.
-     */
-    static dataEventBusFromConstruct(scope: Construct): IEventBus;
-    /**
-     * Returns the ops event bus by name (deterministic per branch). Use from other stacks to obtain an IEventBus reference.
-     */
-    static opsEventBusFromConstruct(scope: Construct): IEventBus;
     /**
      * Returns the data store table by name. Use from other stacks (e.g. REST API Lambda) to obtain an ITable reference.
      */
@@ -1336,16 +1358,6 @@ declare class OpenHiDataService extends OpenHiService {
     get serviceType(): string;
     /** Override so this.props is typed with this service's options. */
     props: OpenHiDataServiceProps;
-    /**
-     * Event bus for data-related events (ingestion, transformation, storage).
-     * Other stacks obtain it via {@link OpenHiDataService.dataEventBusFromConstruct}.
-     */
-    readonly dataEventBus: IEventBus;
-    /**
-     * Event bus for operational events (monitoring, alerting, system health).
-     * Other stacks obtain it via {@link OpenHiDataService.opsEventBusFromConstruct}.
-     */
-    readonly opsEventBus: IEventBus;
     /**
      * The single-table DynamoDB data store. Use {@link OpenHiDataService.dynamoDbDataStoreFromConstruct}
      * from other stacks to obtain an ITable reference by name.
@@ -1368,16 +1380,6 @@ declare class OpenHiDataService extends OpenHiService {
      */
     readonly dataStorePostgresReplica: DataStorePostgresReplica;
     constructor(ohEnv: OpenHiEnvironment, props?: OpenHiDataServiceProps);
-    /**
-     * Creates the data event bus.
-     * Override to customize.
-     */
-    protected createDataEventBus(): IEventBus;
-    /**
-     * Creates the ops event bus.
-     * Override to customize.
-     */
-    protected createOpsEventBus(): IEventBus;
     /**
      * Creates the single-table DynamoDB data store.
      * Override to customize.

package/lib/index.js

@@ -1117,10 +1117,10 @@ var DataEventBus = class _DataEventBus extends import_aws_events.EventBus {
    ****************************************************************************/
   static getEventBusName(scope) {
     const stack = OpenHiService.of(scope);
-    return `data${stack.branchHash}`;
+    return `datav1${stack.branchHash}`;
   }
   constructor(scope, props) {
-    super(scope, "data-event-bus", {
+    super(scope, "data-event-bus-v1", {
       ...props,
       eventBusName: _DataEventBus.getEventBusName(scope)
     });
@@ -1139,10 +1139,10 @@ var OpsEventBus = class _OpsEventBus extends import_aws_events2.EventBus {
    ****************************************************************************/
   static getEventBusName(scope) {
     const stack = OpenHiService.of(scope);
-    return `ops${stack.branchHash}`;
+    return `opsv1${stack.branchHash}`;
   }
   constructor(scope, props) {
-    super(scope, "ops-event-bus", {
+    super(scope, "ops-event-bus-v1", {
       ...props,
       eventBusName: _OpsEventBus.getEventBusName(scope)
     });
@@ -1404,9 +1404,47 @@ var import_core2 = require("aws-cdk-lib/core");
 
 // src/services/open-hi-data-service.ts
 var import_aws_dynamodb2 = require("aws-cdk-lib/aws-dynamodb");
-var import_aws_events3 = require("aws-cdk-lib/aws-events");
 var kinesis = __toESM(require("aws-cdk-lib/aws-kinesis"));
-var _OpenHiDataService = class _OpenHiDataService extends OpenHiService {
+
+// src/services/open-hi-global-service.ts
+var import_aws_certificatemanager2 = require("aws-cdk-lib/aws-certificatemanager");
+var import_aws_events3 = require("aws-cdk-lib/aws-events");
+var import_aws_route532 = require("aws-cdk-lib/aws-route53");
+var import_aws_ssm3 = require("aws-cdk-lib/aws-ssm");
+var _OpenHiGlobalService = class _OpenHiGlobalService extends OpenHiService {
+  /**
+   * Returns an IHostedZone from the given attributes (no SSM). Use when the zone is imported from config.
+   */
+  static rootHostedZoneFromConstruct(scope, props) {
+    return import_aws_route532.HostedZone.fromHostedZoneAttributes(scope, "root-zone", props);
+  }
+  /**
+   * Returns an ICertificate by looking up the Global stack's wildcard cert ARN from SSM.
+   */
+  static rootWildcardCertificateFromConstruct(scope) {
+    const certificateArn = import_aws_ssm3.StringParameter.valueForStringParameter(
+      scope,
+      RootWildcardCertificate.ssmParameterName()
+    );
+    return import_aws_certificatemanager2.Certificate.fromCertificateArn(
+      scope,
+      "wildcard-certificate",
+      certificateArn
+    );
+  }
+  /**
+   * Returns an IHostedZone by looking up the child hosted zone ID from SSM. Defaults to GLOBAL service type.
+   */
+  static childHostedZoneFromConstruct(scope, props) {
+    const hostedZoneId = DiscoverableStringParameter.valueForLookupName(scope, {
+      ssmParamName: ChildHostedZone.SSM_PARAM_NAME,
+      serviceType: props.serviceType ?? _OpenHiGlobalService.SERVICE_TYPE
+    });
+    return import_aws_route532.HostedZone.fromHostedZoneAttributes(scope, "child-zone", {
+      hostedZoneId,
+      zoneName: props.zoneName
+    });
+  }
   /**
    * Returns the data event bus by name (deterministic per branch). Use from other stacks to obtain an IEventBus reference.
    */
@@ -1427,6 +1465,88 @@ var _OpenHiDataService = class _OpenHiDataService extends OpenHiService {
       OpsEventBus.getEventBusName(scope)
     );
   }
+  get serviceType() {
+    return _OpenHiGlobalService.SERVICE_TYPE;
+  }
+  constructor(ohEnv, props = {}) {
+    super(ohEnv, _OpenHiGlobalService.SERVICE_TYPE, props);
+    this.props = props;
+    this.validateConfig(props);
+    this.rootHostedZone = this.createRootHostedZone();
+    this.childHostedZone = this.createChildHostedZone();
+    this.rootWildcardCertificate = this.createRootWildcardCertificate();
+    this.dataEventBus = this.createDataEventBus();
+    this.opsEventBus = this.createOpsEventBus();
+  }
+  /**
+   * Validates that config required for the Global stack is present.
+   */
+  validateConfig(props) {
+    const { config } = props;
+    if (!config) {
+      throw new Error("Config is required");
+    }
+    if (!config.zoneName) {
+      throw new Error("Zone name is required to import the root zone");
+    }
+    if (!config.hostedZoneId) {
+      throw new Error("Hosted zone ID is required to import the root zone");
+    }
+  }
+  /**
+   * Creates the root hosted zone (imported via attributes from config).
+   * Override to customize or create the zone.
+   */
+  createRootHostedZone() {
+    return _OpenHiGlobalService.rootHostedZoneFromConstruct(this, {
+      zoneName: this.config.zoneName,
+      hostedZoneId: this.config.hostedZoneId
+    });
+  }
+  /**
+   * Creates the optional child hosted zone (e.g. branch subdomain).
+   * Override to create a child zone when config provides childHostedZoneAttributes.
+   * If you create a ChildHostedZone, also create a DiscoverableStringParameter
+   * with ChildHostedZone.SSM_PARAM_NAME and the zone's hostedZoneId.
+   */
+  createChildHostedZone() {
+    return void 0;
+  }
+  /**
+   * Creates the root wildcard certificate. On main branch, creates a new cert
+   * with DNS validation; otherwise imports from SSM.
+   * Override to customize certificate creation.
+   */
+  createRootWildcardCertificate() {
+    if (this.branchName === "main") {
+      return new RootWildcardCertificate(this, {
+        domainName: `*.${this.rootHostedZone.zoneName}`,
+        subjectAlternativeNames: [this.rootHostedZone.zoneName],
+        validation: import_aws_certificatemanager2.CertificateValidation.fromDns(this.rootHostedZone)
+      });
+    }
+    return _OpenHiGlobalService.rootWildcardCertificateFromConstruct(this);
+  }
+  /**
+   * Creates the data event bus.
+   * Override to customize.
+   */
+  createDataEventBus() {
+    return new DataEventBus(this);
+  }
+  /**
+   * Creates the ops event bus.
+   * Override to customize.
+   */
+  createOpsEventBus() {
+    return new OpsEventBus(this);
+  }
+};
+_OpenHiGlobalService.SERVICE_TYPE = "global";
+var OpenHiGlobalService = _OpenHiGlobalService;
+
+// src/services/open-hi-data-service.ts
+var _OpenHiDataService = class _OpenHiDataService extends OpenHiService {
   /**
    * Returns the data store table by name. Use from other stacks (e.g. REST API Lambda) to obtain an ITable reference.
    */
@@ -1439,8 +1559,6 @@ var _OpenHiDataService = class _OpenHiDataService extends OpenHiService {
   constructor(ohEnv, props = {}) {
     super(ohEnv, _OpenHiDataService.SERVICE_TYPE, props);
     this.props = props;
-    this.dataEventBus = this.createDataEventBus();
-    this.opsEventBus = this.createOpsEventBus();
     this.dataStoreChangeStream = new kinesis.Stream(
       this,
       "data-store-change-stream",
@@ -1461,7 +1579,7 @@ var _OpenHiDataService = class _OpenHiDataService extends OpenHiService {
         kinesisStream: this.dataStoreChangeStream,
         removalPolicy: this.removalPolicy,
         stackHash: this.stackHash,
-        dataEventBus: this.dataEventBus
+        dataEventBus: OpenHiGlobalService.dataEventBusFromConstruct(this)
       }
     );
     this.dataStorePostgresReplica = new DataStorePostgresReplica(
@@ -1475,20 +1593,6 @@ var _OpenHiDataService = class _OpenHiDataService extends OpenHiService {
       }
     );
   }
-  /**
-   * Creates the data event bus.
-   * Override to customize.
-   */
-  createDataEventBus() {
-    return new DataEventBus(this);
-  }
-  /**
-   * Creates the ops event bus.
-   * Override to customize.
-   */
-  createOpsEventBus() {
-    return new OpsEventBus(this);
-  }
   /**
    * Creates the single-table DynamoDB data store.
    * Override to customize.
@@ -1816,108 +1920,6 @@ var _OpenHiAuthService = class _OpenHiAuthService extends OpenHiService {
 _OpenHiAuthService.SERVICE_TYPE = "auth";
 var OpenHiAuthService = _OpenHiAuthService;
 
-// src/services/open-hi-global-service.ts
-var import_aws_certificatemanager2 = require("aws-cdk-lib/aws-certificatemanager");
-var import_aws_route532 = require("aws-cdk-lib/aws-route53");
-var import_aws_ssm3 = require("aws-cdk-lib/aws-ssm");
-var _OpenHiGlobalService = class _OpenHiGlobalService extends OpenHiService {
-  /**
-   * Returns an IHostedZone from the given attributes (no SSM). Use when the zone is imported from config.
-   */
-  static rootHostedZoneFromConstruct(scope, props) {
-    return import_aws_route532.HostedZone.fromHostedZoneAttributes(scope, "root-zone", props);
-  }
-  /**
-   * Returns an ICertificate by looking up the Global stack's wildcard cert ARN from SSM.
-   */
-  static rootWildcardCertificateFromConstruct(scope) {
-    const certificateArn = import_aws_ssm3.StringParameter.valueForStringParameter(
-      scope,
-      RootWildcardCertificate.ssmParameterName()
-    );
-    return import_aws_certificatemanager2.Certificate.fromCertificateArn(
-      scope,
-      "wildcard-certificate",
-      certificateArn
-    );
-  }
-  /**
-   * Returns an IHostedZone by looking up the child hosted zone ID from SSM. Defaults to GLOBAL service type.
-   */
-  static childHostedZoneFromConstruct(scope, props) {
-    const hostedZoneId = DiscoverableStringParameter.valueForLookupName(scope, {
-      ssmParamName: ChildHostedZone.SSM_PARAM_NAME,
-      serviceType: props.serviceType ?? _OpenHiGlobalService.SERVICE_TYPE
-    });
-    return import_aws_route532.HostedZone.fromHostedZoneAttributes(scope, "child-zone", {
-      hostedZoneId,
-      zoneName: props.zoneName
-    });
-  }
-  get serviceType() {
-    return _OpenHiGlobalService.SERVICE_TYPE;
-  }
-  constructor(ohEnv, props = {}) {
-    super(ohEnv, _OpenHiGlobalService.SERVICE_TYPE, props);
-    this.props = props;
-    this.validateConfig(props);
-    this.rootHostedZone = this.createRootHostedZone();
-    this.childHostedZone = this.createChildHostedZone();
-    this.rootWildcardCertificate = this.createRootWildcardCertificate();
-  }
-  /**
-   * Validates that config required for the Global stack is present.
-   */
-  validateConfig(props) {
-    const { config } = props;
-    if (!config) {
-      throw new Error("Config is required");
-    }
-    if (!config.zoneName) {
-      throw new Error("Zone name is required to import the root zone");
-    }
-    if (!config.hostedZoneId) {
-      throw new Error("Hosted zone ID is required to import the root zone");
-    }
-  }
-  /**
-   * Creates the root hosted zone (imported via attributes from config).
-   * Override to customize or create the zone.
-   */
-  createRootHostedZone() {
-    return _OpenHiGlobalService.rootHostedZoneFromConstruct(this, {
-      zoneName: this.config.zoneName,
-      hostedZoneId: this.config.hostedZoneId
-    });
-  }
-  /**
-   * Creates the optional child hosted zone (e.g. branch subdomain).
-   * Override to create a child zone when config provides childHostedZoneAttributes.
-   * If you create a ChildHostedZone, also create a DiscoverableStringParameter
-   * with ChildHostedZone.SSM_PARAM_NAME and the zone's hostedZoneId.
-   */
-  createChildHostedZone() {
-    return void 0;
-  }
-  /**
-   * Creates the root wildcard certificate. On main branch, creates a new cert
-   * with DNS validation; otherwise imports from SSM.
-   * Override to customize certificate creation.
-   */
-  createRootWildcardCertificate() {
-    if (this.branchName === "main") {
-      return new RootWildcardCertificate(this, {
-        domainName: `*.${this.rootHostedZone.zoneName}`,
-        subjectAlternativeNames: [this.rootHostedZone.zoneName],
-        validation: import_aws_certificatemanager2.CertificateValidation.fromDns(this.rootHostedZone)
-      });
-    }
-    return _OpenHiGlobalService.rootWildcardCertificateFromConstruct(this);
-  }
-};
-_OpenHiGlobalService.SERVICE_TYPE = "global";
-var OpenHiGlobalService = _OpenHiGlobalService;
-
 // src/services/open-hi-rest-api-service.ts
 var import_config5 = __toESM(require_lib());
 var import_aws_apigatewayv22 = require("aws-cdk-lib/aws-apigatewayv2");