npm - @sylvesterllc/aws-constructs - Versions diffs - 1.1.62 → 1.1.63 - Mend

@sylvesterllc/aws-constructs 1.1.62 → 1.1.63

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (25) hide show

package/.github/workflows/publish.yml +9 -15
package/__tests__/SpaCFRoute53.test.ts +80 -0
package/bun.lock +1154 -0
package/dist/constructs/SpaCFRoute53.d.ts +12 -0
package/dist/constructs/SpaCFRoute53.js +103 -0
package/dist/constructs/index.d.ts +1 -0
package/dist/constructs/index.js +2 -1
package/dist/helpers/ulid.d.ts +1 -0
package/dist/helpers/ulid.js +17 -0
package/dist/index.d.ts +2 -2
package/dist/index.js +1 -1
package/dist/interfaces/SpaProps.d.ts +7 -0
package/dist/interfaces/SpaProps.js +3 -0
package/dist/interfaces/lambda/index.d.ts +1 -1
package/dist/interfaces/lambda/index.js +1 -1
package/docs/SpaCFRoute53-usage.md +81 -0
package/docs/spa-cf-construct-plan.md +111 -0
package/package.json +7 -3
package/readme.md +33 -0
package/src/constructs/SpaCFRoute53.ts +151 -0
package/src/constructs/index.ts +1 -0
package/src/helpers/ulid.ts +13 -0
package/src/index.ts +2 -2
package/src/interfaces/SpaProps.ts +7 -0
package/src/interfaces/lambda/index.ts +1 -1

package/.github/workflows/publish.yml CHANGED Viewed

@@ -16,38 +16,32 @@ jobs:
       id-token: write # for provenance (optional)
     steps:
       - uses: actions/checkout@v4
-      - uses: pnpm/action-setup@v3
+      - name: Setup Bun
+        uses: oven-sh/setup-bun@v1
         with:
-          version: 9
+          bun-version: latest
       - name: Setup Node
         uses: actions/setup-node@v4
         with:
-          node-version: "22.x"
-          cache: "pnpm"
+          node-version: "24.x"
+          # Note: actions/setup-node does not support bun caching
       - name: Configure .npmrc for npm registry
         run: |
           cat > ~/.npmrc << EOF
           //registry.npmjs.org/:_authToken=${{ secrets.NPM_REGISTRY_TOKEN }}
           registry=https://registry.npmjs.org/
           EOF
-      - name: Install dependencies
-        run: |
-          if [ -f pnpm-lock.yaml ]; then
-            echo "Found pnpm-lock.yaml; using --frozen-lockfile"
-            pnpm install --frozen-lockfile
-          else
-            echo "No pnpm-lock.yaml present; performing regular install"
-            pnpm install
-          fi
+      - name: Install dependencies (bun)
+        run: bun install
       - name: Verify npm auth & scope
         run: |
           npm whoami || { echo 'Not authenticated'; exit 1; }
           npm ping
           echo "Publishing package version $(jq -r '.version' package.json)"
       - name: Run tests
-        run: pnpm test -- --passWithNoTests
+        run: bun run test -- --passWithNoTests
       - name: Build
-        run: pnpm build
+        run: bun run build
       - name: Guard against duplicate version
         run: |
           V=$(jq -r '.version' package.json)

package/__tests__/SpaCFRoute53.test.ts ADDED Viewed

@@ -0,0 +1,80 @@
+import { App, Stack } from "aws-cdk-lib";
+import { SpaCFRoute53 } from "../src/constructs/SpaCFRoute53";
+import { SpaProps } from "../src/interfaces/SpaProps";
+import { Template } from "aws-cdk-lib/assertions";
+describe("SpaCFRoute53", () => {
+  const props: SpaProps = {
+    siteName: "testsite",
+    bucketName: "testsite-bucket-unique",
+    cloudfrontName: "testsite-cf",
+    domainName: "example.com",
+    fqdn: "spa.example.com",
+  };
+  it("provisions a private, versioned, encrypted S3 bucket with access logging", () => {
+    const app = new App();
+    const stack = new Stack(app, "TestStack");
+    new SpaCFRoute53(stack, "SpaCFRoute53", props);
+    const template = Template.fromStack(stack);
+    template.hasResourceProperties("AWS::S3::Bucket", {
+      BucketName: props.bucketName,
+      VersioningConfiguration: { Status: "Enabled" },
+      BucketEncryption: {
+        ServerSideEncryptionConfiguration: [
+          { ServerSideEncryptionByDefault: { SSEAlgorithm: "AES256" } },
+        ],
+      },
+      PublicAccessBlockConfiguration: {
+        BlockPublicAcls: true,
+        BlockPublicPolicy: true,
+        IgnorePublicAcls: true,
+        RestrictPublicBuckets: true,
+      },
+    });
+  });
+  it("provisions a logs bucket with 14-day retention", () => {
+    const app = new App();
+    const stack = new Stack(app, "TestStack");
+    new SpaCFRoute53(stack, "SpaCFRoute53", props);
+    const template = Template.fromStack(stack);
+    template.hasResourceProperties("AWS::S3::Bucket", {
+      LifecycleConfiguration: {
+        Rules: [{ Status: "Enabled", ExpirationInDays: 14 }],
+      },
+    });
+  });
+  it("provisions a CloudFront distribution with TLS 1.3, GET/HEAD only, and SPA error routing", () => {
+    const app = new App();
+    const stack = new Stack(app, "TestStack");
+    new SpaCFRoute53(stack, "SpaCFRoute53", props);
+    const template = Template.fromStack(stack);
+    template.hasResourceProperties("AWS::CloudFront::Distribution", {
+      DistributionConfig: {
+        Aliases: [props.fqdn],
+        DefaultRootObject: "index.html",
+        ViewerCertificate: {
+          MinimumProtocolVersion: "TLSv1.3_2021",
+        },
+        DefaultCacheBehavior: {
+          AllowedMethods: ["GET", "HEAD"],
+          ViewerProtocolPolicy: "redirect-to-https",
+        },
+        CustomErrorResponses: [
+          {
+            ErrorCode: 403,
+            ResponseCode: 200,
+            ResponsePagePath: "/index.html",
+          },
+          {
+            ErrorCode: 404,
+            ResponseCode: 200,
+            ResponsePagePath: "/index.html",
+          },
+        ],
+      },
+    });
+  });
+});