@resistdesign/voltra 3.0.0-alpha.17 → 3.0.0-alpha.18

package/iac/packs/auth/user-management.d.ts

@@ -1,7 +1,7 @@
 /**
  * Configuration for adding Cognito user management resources.
  */
-export type AddUserManagementConfig = {
+type AddUserManagementConfigBase = {
     /**
      * Base id for Cognito resources.
      */
@@ -14,18 +14,6 @@ export type AddUserManagementConfig = {
      * IAM role name for unauthenticated users.
      */
     unauthRoleName: string;
-    /**
-     * Base domain name for the user pool.
-     */
-    domainName: any;
-    /**
-     * Hosted zone id for DNS records.
-     */
-    hostedZoneId: any;
-    /**
-     * SSL certificate ARN for the user pool domain.
-     */
-    sslCertificateArn: any;
     /**
      * OAuth callback URLs.
      */
@@ -47,6 +35,40 @@ export type AddUserManagementConfig = {
      */
     apiStageName?: any;
 };
+type AddUserManagementConfigWithDomain = AddUserManagementConfigBase & {
+    /**
+     * Enable a custom Cognito user pool domain and associated Route53 records.
+     *
+     * Defaults to `true`.
+     */
+    enableUserPoolDomain?: true;
+    /**
+     * Base domain name for the user pool.
+     */
+    domainName: any;
+    /**
+     * Hosted zone id for DNS records.
+     */
+    hostedZoneId: any;
+    /**
+     * SSL certificate ARN for the user pool domain.
+     */
+    sslCertificateArn: any;
+};
+type AddUserManagementConfigWithoutDomain = AddUserManagementConfigBase & {
+    /**
+     * Disable custom Cognito user pool domain resources.
+     */
+    enableUserPoolDomain: false;
+    domainName?: never;
+    hostedZoneId?: never;
+    sslCertificateArn?: never;
+    baseDomainRecordAliasTargetDNSName?: never;
+};
+/**
+ * Configuration for {@link addUserManagement}.
+ */
+export type AddUserManagementConfig = AddUserManagementConfigWithDomain | AddUserManagementConfigWithoutDomain;
 /**
  * Add Cognito user management resources to a template.
  *
@@ -55,3 +77,4 @@ export type AddUserManagementConfig = {
  * @group Resource Packs
  */
 export declare const addUserManagement: import("../..").ResourcePackApplier<AddUserManagementConfig>;
+export {};

package/iac/packs/auth.d.ts

@@ -1,7 +1,7 @@
 /**
  * Configuration for the auth pack.
  */
-export type AddAuthConfig = {
+type AddAuthConfigBase = {
     /**
      * Cognito user pool resource id.
      */
@@ -14,22 +14,6 @@ export type AddAuthConfig = {
      * IAM role name for unauthenticated users.
      */
     unauthRoleName: string;
-    /**
-     * Parameter name for Route53 hosted zone id.
-     */
-    hostedZoneIdParameterName: string;
-    /**
-     * Parameter name for base domain.
-     */
-    domainNameParameterName: string;
-    /**
-     * SSL certificate resource id for the user pool domain.
-     */
-    sslCertificateId: string;
-    /**
-     * CloudFront distribution id for the main CDN.
-     */
-    mainCDNCloudFrontId: string;
     /**
      * API Gateway REST API id for the backend.
      */
@@ -55,14 +39,48 @@ export type AddAuthConfig = {
      */
     logoutUrls: any[];
 };
+type AddAuthConfigWithUserPoolDomain = AddAuthConfigBase & {
+    /**
+     * Enable a custom Cognito user pool domain and associated Route53 records.
+     *
+     * Defaults to `true`.
+     */
+    enableUserPoolDomain?: true;
+    /**
+     * Parameter name for Route53 hosted zone id.
+     */
+    hostedZoneIdParameterName: string;
+    /**
+     * Parameter name for base domain.
+     */
+    domainNameParameterName: string;
+    /**
+     * SSL certificate resource id for the user pool domain.
+     */
+    sslCertificateId: string;
+    /**
+     * CloudFront distribution id for the main CDN.
+     */
+    mainCDNCloudFrontId: string;
+};
+type AddAuthConfigWithoutUserPoolDomain = AddAuthConfigBase & {
+    /**
+     * Disable custom Cognito user pool domain resources.
+     */
+    enableUserPoolDomain: false;
+    hostedZoneIdParameterName?: never;
+    domainNameParameterName?: never;
+    sslCertificateId?: never;
+    mainCDNCloudFrontId?: never;
+};
 /**
- * Add a user management system.
- *
- * @param config - Auth pack configuration.
- * */
+ * Configuration for {@link addAuth}.
+ */
+export type AddAuthConfig = AddAuthConfigWithUserPoolDomain | AddAuthConfigWithoutUserPoolDomain;
 /**
  * Add auth resources including user management and an admin group.
  *
  * @group Resource Packs
  */
 export declare const addAuth: import("..").ResourcePackApplier<AddAuthConfig>;
+export {};

package/iac/packs/index.js

@@ -170,19 +170,16 @@ var createResourcePack = (creator) => (params, template) => {
 
 // src/iac/packs/auth/user-management.ts
 var addUserManagement = createResourcePack(
-  ({
-    id,
-    authRoleName,
-    unauthRoleName,
-    domainName,
-    hostedZoneId,
-    sslCertificateArn,
-    callbackUrls,
-    logoutUrls,
-    baseDomainRecordAliasTargetDNSName,
-    apiGatewayRESTAPIId,
-    apiStageName
-  }) => {
+  (config) => {
+    const {
+      id,
+      authRoleName,
+      unauthRoleName,
+      callbackUrls,
+      logoutUrls,
+      apiGatewayRESTAPIId,
+      apiStageName
+    } = config;
     const apiRoleConfig = apiGatewayRESTAPIId && apiStageName ? {
       [`${id}IdentityPoolRoles`]: {
         Type: "AWS::Cognito::IdentityPoolRoleAttachment",
@@ -317,6 +314,63 @@ var addUserManagement = createResourcePack(
         }
       }
     } : {};
+    const userPoolDomainConfig = config.enableUserPoolDomain === false ? {} : {
+      [`${id}BaseDomainRecord`]: !!config.baseDomainRecordAliasTargetDNSName ? {
+        Type: "AWS::Route53::RecordSet",
+        DeletionPolicy: "Delete",
+        Properties: {
+          HostedZoneId: config.hostedZoneId,
+          Type: "A",
+          Name: config.domainName,
+          AliasTarget: {
+            HostedZoneId: "Z2FDTNDATAQYW2",
+            DNSName: config.baseDomainRecordAliasTargetDNSName
+          }
+        }
+      } : void 0,
+      [`${id}DomainRecord`]: {
+        Type: "AWS::Route53::RecordSet",
+        DeletionPolicy: "Delete",
+        Properties: {
+          HostedZoneId: config.hostedZoneId,
+          Type: "A",
+          Name: {
+            "Fn::Sub": [
+              "auth.${BaseDomainName}",
+              {
+                BaseDomainName: config.domainName
+              }
+            ]
+          },
+          AliasTarget: {
+            HostedZoneId: "Z2FDTNDATAQYW2",
+            DNSName: {
+              "Fn::GetAtt": [`${id}Domain`, "CloudFrontDistribution"]
+            }
+          }
+        }
+      },
+      [`${id}Domain`]: {
+        Type: "AWS::Cognito::UserPoolDomain",
+        DependsOn: !!config.baseDomainRecordAliasTargetDNSName ? `${id}BaseDomainRecord` : void 0,
+        Properties: {
+          Domain: {
+            "Fn::Sub": [
+              "auth.${BaseDomainName}",
+              {
+                BaseDomainName: config.domainName
+              }
+            ]
+          },
+          UserPoolId: {
+            Ref: id
+          },
+          CustomDomainConfig: {
+            CertificateArn: config.sslCertificateArn
+          }
+        }
+      }
+    };
     return {
       Resources: {
         [id]: {
@@ -370,61 +424,6 @@ var addUserManagement = createResourcePack(
             }
           }
         },
-        [`${id}BaseDomainRecord`]: !!baseDomainRecordAliasTargetDNSName ? {
-          Type: "AWS::Route53::RecordSet",
-          DeletionPolicy: "Delete",
-          Properties: {
-            HostedZoneId: hostedZoneId,
-            Type: "A",
-            Name: domainName,
-            AliasTarget: {
-              HostedZoneId: "Z2FDTNDATAQYW2",
-              DNSName: baseDomainRecordAliasTargetDNSName
-            }
-          }
-        } : void 0,
-        [`${id}DomainRecord`]: {
-          Type: "AWS::Route53::RecordSet",
-          DeletionPolicy: "Delete",
-          Properties: {
-            HostedZoneId: hostedZoneId,
-            Type: "A",
-            Name: {
-              "Fn::Sub": [
-                "auth.${BaseDomainName}",
-                {
-                  BaseDomainName: domainName
-                }
-              ]
-            },
-            AliasTarget: {
-              HostedZoneId: "Z2FDTNDATAQYW2",
-              DNSName: {
-                "Fn::GetAtt": [`${id}Domain`, "CloudFrontDistribution"]
-              }
-            }
-          }
-        },
-        [`${id}Domain`]: {
-          Type: "AWS::Cognito::UserPoolDomain",
-          DependsOn: !!baseDomainRecordAliasTargetDNSName ? `${id}BaseDomainRecord` : void 0,
-          Properties: {
-            Domain: {
-              "Fn::Sub": [
-                "auth.${BaseDomainName}",
-                {
-                  BaseDomainName: domainName
-                }
-              ]
-            },
-            UserPoolId: {
-              Ref: id
-            },
-            CustomDomainConfig: {
-              CertificateArn: sslCertificateArn
-            }
-          }
-        },
         [`${id}Client`]: {
           Type: "AWS::Cognito::UserPoolClient",
           Properties: {
@@ -470,6 +469,7 @@ var addUserManagement = createResourcePack(
             ]
           }
         },
+        ...userPoolDomainConfig,
         ...apiRoleConfig
       }
     };
@@ -563,43 +563,45 @@ var SimpleCFT = class {
 };
 
 // src/iac/packs/auth.ts
-var addAuth = createResourcePack(
-  ({
+var addAuth = createResourcePack((config) => {
+  const {
     userManagementId,
     authRoleName,
     unauthRoleName,
-    hostedZoneIdParameterName,
-    domainNameParameterName,
-    sslCertificateId,
     callbackUrls,
     logoutUrls,
-    mainCDNCloudFrontId,
     apiCloudFunctionGatewayId,
     apiStageName,
     adminGroupId,
     userManagementAdminGroupName
-  }) => new SimpleCFT().applyPack(addUserManagement, {
+  } = config;
+  return new SimpleCFT().applyPack(addUserManagement, {
     id: userManagementId,
     authRoleName,
     unauthRoleName,
-    domainName: {
-      Ref: domainNameParameterName
-    },
-    hostedZoneId: {
-      Ref: hostedZoneIdParameterName
-    },
-    sslCertificateArn: {
-      Ref: sslCertificateId
-    },
     callbackUrls,
     logoutUrls,
-    baseDomainRecordAliasTargetDNSName: {
-      "Fn::GetAtt": [mainCDNCloudFrontId, "DomainName"]
-    },
     apiGatewayRESTAPIId: {
       Ref: apiCloudFunctionGatewayId
     },
-    apiStageName
+    apiStageName,
+    ...config.enableUserPoolDomain === false ? {
+      enableUserPoolDomain: false
+    } : {
+      enableUserPoolDomain: true,
+      domainName: {
+        Ref: config.domainNameParameterName
+      },
+      hostedZoneId: {
+        Ref: config.hostedZoneIdParameterName
+      },
+      sslCertificateArn: {
+        Ref: config.sslCertificateId
+      },
+      baseDomainRecordAliasTargetDNSName: {
+        "Fn::GetAtt": [config.mainCDNCloudFrontId, "DomainName"]
+      }
+    }
   }).patch({
     Resources: {
       [adminGroupId]: {
@@ -613,8 +615,8 @@ var addAuth = createResourcePack(
         }
       }
     }
-  }).template
-);
+  }).template;
+});
 
 // src/iac/packs/build.ts
 var DEFAULT_BUILD_PIPELINE_REPO_PROVIDER = "GitHub";

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@resistdesign/voltra",
-  "version": "3.0.0-alpha.17",
+  "version": "3.0.0-alpha.18",
   "description": "With our powers combined!",
   "homepage": "https://voltra.app",
   "repository": "git@github.com:resistdesign/voltra.git",