npm - @webiny/project-aws - Versions diffs - 0.0.0-unstable.61c048f412 - Mend

@webiny/project-aws 0.0.0-unstable.61c048f412

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (547) hide show

package/LICENSE +21 -0
package/README.md +11 -0
package/_templates/appTemplates/admin/src/App.scss +2 -0
package/_templates/appTemplates/admin/src/App.tsx +13 -0
package/_templates/appTemplates/admin/src/Extensions.tsx +7 -0
package/_templates/appTemplates/admin/src/index.tsx +11 -0
package/_templates/appTemplates/admin/tsconfig.json +7 -0
package/_templates/appTemplates/admin/webiny.application.ts +3 -0
package/_templates/appTemplates/admin/webiny.config.ts +3 -0
package/_templates/appTemplates/api/graphql/package.json +31 -0
package/_templates/appTemplates/api/graphql/src/extensions.ts +9 -0
package/_templates/appTemplates/api/graphql/src/index.ts +80 -0
package/_templates/appTemplates/api/graphql/src/security.ts +43 -0
package/_templates/appTemplates/api/graphql/tsconfig.json +7 -0
package/_templates/appTemplates/api/graphql/webiny.config.ts +8 -0
package/_templates/appTemplates/api/migration/src/index.ts +23 -0
package/_templates/appTemplates/api/migration/tsconfig.json +7 -0
package/_templates/appTemplates/api/migration/webiny.config.ts +8 -0
package/_templates/appTemplates/api/webiny.application.ts +3 -0
package/_templates/appTemplates/blueGreen/webiny.application.ts +3 -0
package/_templates/appTemplates/core/webiny.application.ts +3 -0
package/_templates/appTemplates/syncSystem/webiny.application.ts +3 -0
package/_templates/extensions/OpenSearch/api/graphql/src/index.ts +84 -0
package/_templates/extensions/OpenSearch/api/migration/src/index.ts +33 -0
package/_templates/extensions/OpenSearch/coreDdbToEsHandler/dynamoToElastic/src/index.ts +15 -0
package/_templates/extensions/OpenSearch/coreDdbToEsHandler/dynamoToElastic/tsconfig.json +7 -0
package/_templates/extensions/OpenSearch/coreDdbToEsHandler/dynamoToElastic/webiny.config.ts +8 -0
package/abstractions/ApiGqlClient.d.ts +23 -0
package/abstractions/ApiGqlClient.js +4 -0
package/abstractions/ApiGqlClient.js.map +1 -0
package/abstractions/InvokeLambdaFunction.d.ts +18 -0
package/abstractions/InvokeLambdaFunction.js +4 -0
package/abstractions/InvokeLambdaFunction.js.map +1 -0
package/abstractions/index.d.ts +5 -0
package/abstractions/index.js +7 -0
package/abstractions/index.js.map +1 -0
package/abstractions/services/AdminStackOutputService.d.ts +13 -0
package/abstractions/services/AdminStackOutputService.js +4 -0
package/abstractions/services/AdminStackOutputService.js.map +1 -0
package/abstractions/services/ApiStackOutputService.d.ts +30 -0
package/abstractions/services/ApiStackOutputService.js +4 -0
package/abstractions/services/ApiStackOutputService.js.map +1 -0
package/abstractions/services/CoreStackOutputService.d.ts +16 -0
package/abstractions/services/CoreStackOutputService.js +4 -0
package/abstractions/services/CoreStackOutputService.js.map +1 -0
package/admin.d.ts +22 -0
package/admin.js +7 -0
package/admin.js.map +1 -0
package/api.d.ts +22 -0
package/api.js +7 -0
package/api.js.map +1 -0
package/apps/createAdminApp.d.ts +13 -0
package/apps/createAdminApp.js +15 -0
package/apps/createAdminApp.js.map +1 -0
package/apps/createAdminAppConfig.d.ts +2 -0
package/apps/createAdminAppConfig.js +21 -0
package/apps/createAdminAppConfig.js.map +1 -0
package/apps/createApiApp.d.ts +65 -0
package/apps/createApiApp.js +25 -0
package/apps/createApiApp.js.map +1 -0
package/apps/createBlueGreenApp.d.ts +24 -0
package/apps/createBlueGreenApp.js +20 -0
package/apps/createBlueGreenApp.js.map +1 -0
package/apps/createCoreApp.d.ts +36 -0
package/apps/createCoreApp.js +16 -0
package/apps/createCoreApp.js.map +1 -0
package/apps/createReactAppConfig.d.ts +53 -0
package/apps/createReactAppConfig.js +79 -0
package/apps/createReactAppConfig.js.map +1 -0
package/apps/createSyncSystemApp.d.ts +21 -0
package/apps/createSyncSystemApp.js +11 -0
package/apps/createSyncSystemApp.js.map +1 -0
package/apps/index.d.ts +7 -0
package/apps/index.js +9 -0
package/apps/index.js.map +1 -0
package/cli.d.ts +9 -0
package/cli.js +6 -0
package/cli.js.map +1 -0
package/exports/extensions.d.ts +7 -0
package/exports/extensions.js +9 -0
package/exports/extensions.js.map +1 -0
package/exports/infra/admin.d.ts +1 -0
package/exports/infra/admin.js +3 -0
package/exports/infra/admin.js.map +1 -0
package/exports/infra/api.d.ts +1 -0
package/exports/infra/api.js +3 -0
package/exports/infra/api.js.map +1 -0
package/exports/infra/core.d.ts +1 -0
package/exports/infra/core.js +3 -0
package/exports/infra/core.js.map +1 -0
package/extensions/AwsDefaultRegion.d.ts +5 -0
package/extensions/AwsDefaultRegion.js +10 -0
package/extensions/AwsDefaultRegion.js.map +1 -0
package/extensions/OpenSearch/EnsureOsServiceRoleBeforeCoreDeploy.d.ts +10 -0
package/extensions/OpenSearch/EnsureOsServiceRoleBeforeCoreDeploy.js +40 -0
package/extensions/OpenSearch/EnsureOsServiceRoleBeforeCoreDeploy.js.map +1 -0
package/extensions/OpenSearch/EnsureOsWasDeployed.d.ts +11 -0
package/extensions/OpenSearch/EnsureOsWasDeployed.js +34 -0
package/extensions/OpenSearch/EnsureOsWasDeployed.js.map +1 -0
package/extensions/OpenSearch/InjectDdbEsLambdaFnHandler.d.ts +12 -0
package/extensions/OpenSearch/InjectDdbEsLambdaFnHandler.js +31 -0
package/extensions/OpenSearch/InjectDdbEsLambdaFnHandler.js.map +1 -0
package/extensions/OpenSearch/ReplaceApiLambdaFnHandlers.d.ts +12 -0
package/extensions/OpenSearch/ReplaceApiLambdaFnHandlers.js +32 -0
package/extensions/OpenSearch/ReplaceApiLambdaFnHandlers.js.map +1 -0
package/extensions/OpenSearch.d.ts +17 -0
package/extensions/OpenSearch.js +36 -0
package/extensions/OpenSearch.js.map +1 -0
package/extensions/ProjectAws/AdminStackOutputService.d.ts +1 -0
package/extensions/ProjectAws/AdminStackOutputService.js +3 -0
package/extensions/ProjectAws/AdminStackOutputService.js.map +1 -0
package/extensions/ProjectAws/ApiStackOutputService.d.ts +1 -0
package/extensions/ProjectAws/ApiStackOutputService.js +3 -0
package/extensions/ProjectAws/ApiStackOutputService.js.map +1 -0
package/extensions/ProjectAws/AutoInstall/AutoInstallAfterApiDeploy.d.ts +17 -0
package/extensions/ProjectAws/AutoInstall/AutoInstallAfterApiDeploy.js +108 -0
package/extensions/ProjectAws/AutoInstall/AutoInstallAfterApiDeploy.js.map +1 -0
package/extensions/ProjectAws/AutoInstall.d.ts +33 -0
package/extensions/ProjectAws/AutoInstall.js +19 -0
package/extensions/ProjectAws/AutoInstall.js.map +1 -0
package/extensions/ProjectAws/BlueGreenDeployments/EnsureVariantBeforeDeploy.d.ts +10 -0
package/extensions/ProjectAws/BlueGreenDeployments/EnsureVariantBeforeDeploy.js +27 -0
package/extensions/ProjectAws/BlueGreenDeployments/EnsureVariantBeforeDeploy.js.map +1 -0
package/extensions/ProjectAws/BlueGreenDeployments/PrintDeploymentInfoAfterDeploy.d.ts +20 -0
package/extensions/ProjectAws/BlueGreenDeployments/PrintDeploymentInfoAfterDeploy.js +54 -0
package/extensions/ProjectAws/BlueGreenDeployments/PrintDeploymentInfoAfterDeploy.js.map +1 -0
package/extensions/ProjectAws/BlueGreenDeployments/SetPrimaryVariantCliCommand.d.ts +18 -0
package/extensions/ProjectAws/BlueGreenDeployments/SetPrimaryVariantCliCommand.js +60 -0
package/extensions/ProjectAws/BlueGreenDeployments/SetPrimaryVariantCliCommand.js.map +1 -0
package/extensions/ProjectAws/BuildAppWorkspace.d.ts +12 -0
package/extensions/ProjectAws/BuildAppWorkspace.js +66 -0
package/extensions/ProjectAws/BuildAppWorkspace.js.map +1 -0
package/extensions/ProjectAws/CoreStackOutputService.d.ts +1 -0
package/extensions/ProjectAws/CoreStackOutputService.js +3 -0
package/extensions/ProjectAws/CoreStackOutputService.js.map +1 -0
package/extensions/ProjectAws/ExecuteDataMigrations.d.ts +16 -0
package/extensions/ProjectAws/ExecuteDataMigrations.js +69 -0
package/extensions/ProjectAws/ExecuteDataMigrations.js.map +1 -0
package/extensions/ProjectAws/SetAdminEnvVars/SetAdminEnvVars.d.ts +13 -0
package/extensions/ProjectAws/SetAdminEnvVars/SetAdminEnvVars.js +43 -0
package/extensions/ProjectAws/SetAdminEnvVars/SetAdminEnvVars.js.map +1 -0
package/extensions/ProjectAws/SetAdminEnvVars/SetAdminEnvVarsBeforeBuild.d.ts +13 -0
package/extensions/ProjectAws/SetAdminEnvVars/SetAdminEnvVarsBeforeBuild.js +24 -0
package/extensions/ProjectAws/SetAdminEnvVars/SetAdminEnvVarsBeforeBuild.js.map +1 -0
package/extensions/ProjectAws/SetAdminEnvVars/SetAdminEnvVarsBeforeWatch.d.ts +13 -0
package/extensions/ProjectAws/SetAdminEnvVars/SetAdminEnvVarsBeforeWatch.js +24 -0
package/extensions/ProjectAws/SetAdminEnvVars/SetAdminEnvVarsBeforeWatch.js.map +1 -0
package/extensions/ProjectAws/SetDatabaseSetupOutput.d.ts +10 -0
package/extensions/ProjectAws/SetDatabaseSetupOutput.js +29 -0
package/extensions/ProjectAws/SetDatabaseSetupOutput.js.map +1 -0
package/extensions/ProjectAws/UploadAdminAppToS3.d.ts +13 -0
package/extensions/ProjectAws/UploadAdminAppToS3.js +69 -0
package/extensions/ProjectAws/UploadAdminAppToS3.js.map +1 -0
package/extensions/ProjectAws/definitions.d.ts +3 -0
package/extensions/ProjectAws/definitions.js +11 -0
package/extensions/ProjectAws/definitions.js.map +1 -0
package/extensions/ProjectAws.d.ts +2 -0
package/extensions/ProjectAws.js +49 -0
package/extensions/ProjectAws.js.map +1 -0
package/extensions/index.d.ts +4 -0
package/extensions/index.js +6 -0
package/extensions/index.js.map +1 -0
package/features/ApiGqlClient.d.ts +21 -0
package/features/ApiGqlClient.js +59 -0
package/features/ApiGqlClient.js.map +1 -0
package/features/InvokeLambdaFunction.d.ts +10 -0
package/features/InvokeLambdaFunction.js +38 -0
package/features/InvokeLambdaFunction.js.map +1 -0
package/features/index.d.ts +2 -0
package/features/index.js +4 -0
package/features/index.js.map +1 -0
package/index.d.ts +7 -0
package/index.js +9 -0
package/index.js.map +1 -0
package/infra.d.ts +399 -0
package/infra.js +49 -0
package/infra.js.map +1 -0
package/package.json +63 -0
package/project.d.ts +48 -0
package/project.js +9 -0
package/project.js.map +1 -0
package/pulumi/apps/admin/createAdminPulumiApp.d.ts +10 -0
package/pulumi/apps/admin/createAdminPulumiApp.js +52 -0
package/pulumi/apps/admin/createAdminPulumiApp.js.map +1 -0
package/pulumi/apps/admin/index.d.ts +1 -0
package/pulumi/apps/admin/index.js +3 -0
package/pulumi/apps/admin/index.js.map +1 -0
package/pulumi/apps/api/ApiBackgroundTask.d.ts +12 -0
package/pulumi/apps/api/ApiBackgroundTask.js +148 -0
package/pulumi/apps/api/ApiBackgroundTask.js.map +1 -0
package/pulumi/apps/api/ApiCloudfront.d.ts +3 -0
package/pulumi/apps/api/ApiCloudfront.js +136 -0
package/pulumi/apps/api/ApiCloudfront.js.map +1 -0
package/pulumi/apps/api/ApiFileManager.d.ts +11 -0
package/pulumi/apps/api/ApiFileManager.js +39 -0
package/pulumi/apps/api/ApiFileManager.js.map +1 -0
package/pulumi/apps/api/ApiGateway.d.ts +18 -0
package/pulumi/apps/api/ApiGateway.js +80 -0
package/pulumi/apps/api/ApiGateway.js.map +1 -0
package/pulumi/apps/api/ApiGraphql.d.ts +22 -0
package/pulumi/apps/api/ApiGraphql.js +164 -0
package/pulumi/apps/api/ApiGraphql.js.map +1 -0
package/pulumi/apps/api/ApiMigration.d.ts +5 -0
package/pulumi/apps/api/ApiMigration.js +83 -0
package/pulumi/apps/api/ApiMigration.js.map +1 -0
package/pulumi/apps/api/ApiOutput.d.ts +23 -0
package/pulumi/apps/api/ApiOutput.js +36 -0
package/pulumi/apps/api/ApiOutput.js.map +1 -0
package/pulumi/apps/api/ApiScheduler.d.ts +8 -0
package/pulumi/apps/api/ApiScheduler.js +100 -0
package/pulumi/apps/api/ApiScheduler.js.map +1 -0
package/pulumi/apps/api/ApiWebsocket.d.ts +14 -0
package/pulumi/apps/api/ApiWebsocket.js +138 -0
package/pulumi/apps/api/ApiWebsocket.js.map +1 -0
package/pulumi/apps/api/backgroundTask/definition.d.ts +7 -0
package/pulumi/apps/api/backgroundTask/definition.js +149 -0
package/pulumi/apps/api/backgroundTask/definition.js.map +1 -0
package/pulumi/apps/api/backgroundTask/policy.d.ts +8 -0
package/pulumi/apps/api/backgroundTask/policy.js +26 -0
package/pulumi/apps/api/backgroundTask/policy.js.map +1 -0
package/pulumi/apps/api/backgroundTask/role.d.ts +9 -0
package/pulumi/apps/api/backgroundTask/role.js +32 -0
package/pulumi/apps/api/backgroundTask/role.js.map +1 -0
package/pulumi/apps/api/backgroundTask/types.d.ts +91 -0
package/pulumi/apps/api/backgroundTask/types.js +14 -0
package/pulumi/apps/api/backgroundTask/types.js.map +1 -0
package/pulumi/apps/api/createApiPulumiApp.d.ts +57 -0
package/pulumi/apps/api/createApiPulumiApp.js +282 -0
package/pulumi/apps/api/createApiPulumiApp.js.map +1 -0
package/pulumi/apps/api/handleGuardDutyEvents.d.ts +2 -0
package/pulumi/apps/api/handleGuardDutyEvents.js +55 -0
package/pulumi/apps/api/handleGuardDutyEvents.js.map +1 -0
package/pulumi/apps/api/index.d.ts +9 -0
package/pulumi/apps/api/index.js +11 -0
package/pulumi/apps/api/index.js.map +1 -0
package/pulumi/apps/awsUtils.d.ts +5 -0
package/pulumi/apps/awsUtils.js +34 -0
package/pulumi/apps/awsUtils.js.map +1 -0
package/pulumi/apps/blueGreen/BlueGreenRouterApiGateway.d.ts +11 -0
package/pulumi/apps/blueGreen/BlueGreenRouterApiGateway.js +44 -0
package/pulumi/apps/blueGreen/BlueGreenRouterApiGateway.js.map +1 -0
package/pulumi/apps/blueGreen/BlueGreenRouterCloudFront.d.ts +17 -0
package/pulumi/apps/blueGreen/BlueGreenRouterCloudFront.js +100 -0
package/pulumi/apps/blueGreen/BlueGreenRouterCloudFront.js.map +1 -0
package/pulumi/apps/blueGreen/BlueGreenRouterCloudFrontStore.d.ts +10 -0
package/pulumi/apps/blueGreen/BlueGreenRouterCloudFrontStore.js +20 -0
package/pulumi/apps/blueGreen/BlueGreenRouterCloudFrontStore.js.map +1 -0
package/pulumi/apps/blueGreen/cloudfront/createCloudFrontDefaultCacheBehaviorPolicies.d.ts +7 -0
package/pulumi/apps/blueGreen/cloudfront/createCloudFrontDefaultCacheBehaviorPolicies.js +15 -0
package/pulumi/apps/blueGreen/cloudfront/createCloudFrontDefaultCacheBehaviorPolicies.js.map +1 -0
package/pulumi/apps/blueGreen/cloudfront/createCloudFrontFunctionDomainMap.d.ts +14 -0
package/pulumi/apps/blueGreen/cloudfront/createCloudFrontFunctionDomainMap.js +23 -0
package/pulumi/apps/blueGreen/cloudfront/createCloudFrontFunctionDomainMap.js.map +1 -0
package/pulumi/apps/blueGreen/cloudfront/createOriginId.d.ts +11 -0
package/pulumi/apps/blueGreen/cloudfront/createOriginId.js +10 -0
package/pulumi/apps/blueGreen/cloudfront/createOriginId.js.map +1 -0
package/pulumi/apps/blueGreen/constants.d.ts +3 -0
package/pulumi/apps/blueGreen/constants.js +5 -0
package/pulumi/apps/blueGreen/constants.js.map +1 -0
package/pulumi/apps/blueGreen/createBlueGreenPulumiApp.d.ts +15 -0
package/pulumi/apps/blueGreen/createBlueGreenPulumiApp.js +122 -0
package/pulumi/apps/blueGreen/createBlueGreenPulumiApp.js.map +1 -0
package/pulumi/apps/blueGreen/domains/attachDomainsToOutput.d.ts +9 -0
package/pulumi/apps/blueGreen/domains/attachDomainsToOutput.js +30 -0
package/pulumi/apps/blueGreen/domains/attachDomainsToOutput.js.map +1 -0
package/pulumi/apps/blueGreen/domains/convertApplicationDomains.d.ts +6 -0
package/pulumi/apps/blueGreen/domains/convertApplicationDomains.js +23 -0
package/pulumi/apps/blueGreen/domains/convertApplicationDomains.js.map +1 -0
package/pulumi/apps/blueGreen/domains/getApplicationDomains.d.ts +18 -0
package/pulumi/apps/blueGreen/domains/getApplicationDomains.js +73 -0
package/pulumi/apps/blueGreen/domains/getApplicationDomains.js.map +1 -0
package/pulumi/apps/blueGreen/domains/resolveDomains.d.ts +6 -0
package/pulumi/apps/blueGreen/domains/resolveDomains.js +41 -0
package/pulumi/apps/blueGreen/domains/resolveDomains.js.map +1 -0
package/pulumi/apps/blueGreen/functions/buildHandlerFunction.d.ts +15 -0
package/pulumi/apps/blueGreen/functions/buildHandlerFunction.js +18 -0
package/pulumi/apps/blueGreen/functions/buildHandlerFunction.js.map +1 -0
package/pulumi/apps/blueGreen/functions/handler.d.ts +1 -0
package/pulumi/apps/blueGreen/functions/handler.js +60 -0
package/pulumi/apps/blueGreen/functions/handler.js.map +1 -0
package/pulumi/apps/blueGreen/types.d.ts +77 -0
package/pulumi/apps/blueGreen/types.js +3 -0
package/pulumi/apps/blueGreen/types.js.map +1 -0
package/pulumi/apps/blueGreen/validation/validateDeployments.d.ts +2 -0
package/pulumi/apps/blueGreen/validation/validateDeployments.js +33 -0
package/pulumi/apps/blueGreen/validation/validateDeployments.js.map +1 -0
package/pulumi/apps/common/CoreOutput.d.ts +38 -0
package/pulumi/apps/common/CoreOutput.js +46 -0
package/pulumi/apps/common/CoreOutput.js.map +1 -0
package/pulumi/apps/common/VpcConfig.d.ts +8 -0
package/pulumi/apps/common/VpcConfig.js +25 -0
package/pulumi/apps/common/VpcConfig.js.map +1 -0
package/pulumi/apps/common/index.d.ts +2 -0
package/pulumi/apps/common/index.js +4 -0
package/pulumi/apps/common/index.js.map +1 -0
package/pulumi/apps/core/CoreAuditLogsDynamo.d.ts +5 -0
package/pulumi/apps/core/CoreAuditLogsDynamo.js +138 -0
package/pulumi/apps/core/CoreAuditLogsDynamo.js.map +1 -0
package/pulumi/apps/core/CoreCognito.d.ts +10 -0
package/pulumi/apps/core/CoreCognito.js +110 -0
package/pulumi/apps/core/CoreCognito.js.map +1 -0
package/pulumi/apps/core/CoreDynamo.d.ts +5 -0
package/pulumi/apps/core/CoreDynamo.js +61 -0
package/pulumi/apps/core/CoreDynamo.js.map +1 -0
package/pulumi/apps/core/CoreEventBus.d.ts +1 -0
package/pulumi/apps/core/CoreEventBus.js +13 -0
package/pulumi/apps/core/CoreEventBus.js.map +1 -0
package/pulumi/apps/core/CoreFileManager.d.ts +8 -0
package/pulumi/apps/core/CoreFileManager.js +44 -0
package/pulumi/apps/core/CoreFileManager.js.map +1 -0
package/pulumi/apps/core/CoreOpenSearch.d.ts +16 -0
package/pulumi/apps/core/CoreOpenSearch.js +299 -0
package/pulumi/apps/core/CoreOpenSearch.js.map +1 -0
package/pulumi/apps/core/CoreVpc.d.ts +13 -0
package/pulumi/apps/core/CoreVpc.js +160 -0
package/pulumi/apps/core/CoreVpc.js.map +1 -0
package/pulumi/apps/core/LogDynamo.d.ts +5 -0
package/pulumi/apps/core/LogDynamo.js +94 -0
package/pulumi/apps/core/LogDynamo.js.map +1 -0
package/pulumi/apps/core/WatchCommand.d.ts +7 -0
package/pulumi/apps/core/WatchCommand.js +105 -0
package/pulumi/apps/core/WatchCommand.js.map +1 -0
package/pulumi/apps/core/cognitoIdentityProviders/amazon.d.ts +9 -0
package/pulumi/apps/core/cognitoIdentityProviders/amazon.js +24 -0
package/pulumi/apps/core/cognitoIdentityProviders/amazon.js.map +1 -0
package/pulumi/apps/core/cognitoIdentityProviders/apple.d.ts +4 -0
package/pulumi/apps/core/cognitoIdentityProviders/apple.js +19 -0
package/pulumi/apps/core/cognitoIdentityProviders/apple.js.map +1 -0
package/pulumi/apps/core/cognitoIdentityProviders/configure.d.ts +28 -0
package/pulumi/apps/core/cognitoIdentityProviders/configure.js +57 -0
package/pulumi/apps/core/cognitoIdentityProviders/configure.js.map +1 -0
package/pulumi/apps/core/cognitoIdentityProviders/facebook.d.ts +4 -0
package/pulumi/apps/core/cognitoIdentityProviders/facebook.js +19 -0
package/pulumi/apps/core/cognitoIdentityProviders/facebook.js.map +1 -0
package/pulumi/apps/core/cognitoIdentityProviders/getIdpConfig.d.ts +3 -0
package/pulumi/apps/core/cognitoIdentityProviders/getIdpConfig.js +17 -0
package/pulumi/apps/core/cognitoIdentityProviders/getIdpConfig.js.map +1 -0
package/pulumi/apps/core/cognitoIdentityProviders/google.d.ts +4 -0
package/pulumi/apps/core/cognitoIdentityProviders/google.js +19 -0
package/pulumi/apps/core/cognitoIdentityProviders/google.js.map +1 -0
package/pulumi/apps/core/cognitoIdentityProviders/index.d.ts +1 -0
package/pulumi/apps/core/cognitoIdentityProviders/index.js +3 -0
package/pulumi/apps/core/cognitoIdentityProviders/index.js.map +1 -0
package/pulumi/apps/core/cognitoIdentityProviders/oidc.d.ts +4 -0
package/pulumi/apps/core/cognitoIdentityProviders/oidc.js +20 -0
package/pulumi/apps/core/cognitoIdentityProviders/oidc.js.map +1 -0
package/pulumi/apps/core/configureS3BucketMalwareProtection.d.ts +2 -0
package/pulumi/apps/core/configureS3BucketMalwareProtection.js +195 -0
package/pulumi/apps/core/configureS3BucketMalwareProtection.js.map +1 -0
package/pulumi/apps/core/createCorePulumiApp.d.ts +32 -0
package/pulumi/apps/core/createCorePulumiApp.js +296 -0
package/pulumi/apps/core/createCorePulumiApp.js.map +1 -0
package/pulumi/apps/core/index.d.ts +8 -0
package/pulumi/apps/core/index.js +10 -0
package/pulumi/apps/core/index.js.map +1 -0
package/pulumi/apps/core/webinyWatchCommand/handler.d.ts +28 -0
package/pulumi/apps/core/webinyWatchCommand/handler.js +37 -0
package/pulumi/apps/core/webinyWatchCommand/handler.js.map +1 -0
package/pulumi/apps/createAppBucket.d.ts +13 -0
package/pulumi/apps/createAppBucket.js +112 -0
package/pulumi/apps/createAppBucket.js.map +1 -0
package/pulumi/apps/customDomain.d.ts +9 -0
package/pulumi/apps/customDomain.js +9 -0
package/pulumi/apps/customDomain.js.map +1 -0
package/pulumi/apps/extensions/getAwsTagsFromExtension.d.ts +2 -0
package/pulumi/apps/extensions/getAwsTagsFromExtension.js +10 -0
package/pulumi/apps/extensions/getAwsTagsFromExtension.js.map +1 -0
package/pulumi/apps/extensions/getBgDeploymentsConfigFromExtension.d.ts +23 -0
package/pulumi/apps/extensions/getBgDeploymentsConfigFromExtension.js +10 -0
package/pulumi/apps/extensions/getBgDeploymentsConfigFromExtension.js.map +1 -0
package/pulumi/apps/extensions/getOsConfigFromExtension.d.ts +7 -0
package/pulumi/apps/extensions/getOsConfigFromExtension.js +33 -0
package/pulumi/apps/extensions/getOsConfigFromExtension.js.map +1 -0
package/pulumi/apps/extensions/getVpcConfigFromExtension.d.ts +15 -0
package/pulumi/apps/extensions/getVpcConfigFromExtension.js +29 -0
package/pulumi/apps/extensions/getVpcConfigFromExtension.js.map +1 -0
package/pulumi/apps/index.d.ts +6 -0
package/pulumi/apps/index.js +8 -0
package/pulumi/apps/index.js.map +1 -0
package/pulumi/apps/lambdaUtils.d.ts +11 -0
package/pulumi/apps/lambdaUtils.js +70 -0
package/pulumi/apps/lambdaUtils.js.map +1 -0
package/pulumi/apps/react/createReactPulumiApp.d.ts +30 -0
package/pulumi/apps/react/createReactPulumiApp.js +150 -0
package/pulumi/apps/react/createReactPulumiApp.js.map +1 -0
package/pulumi/apps/react/index.d.ts +1 -0
package/pulumi/apps/react/index.js +3 -0
package/pulumi/apps/react/index.js.map +1 -0
package/pulumi/apps/syncSystem/SyncSystemDynamo.d.ts +5 -0
package/pulumi/apps/syncSystem/SyncSystemDynamo.js +56 -0
package/pulumi/apps/syncSystem/SyncSystemDynamo.js.map +1 -0
package/pulumi/apps/syncSystem/SyncSystemDynamoDb.d.ts +3 -0
package/pulumi/apps/syncSystem/SyncSystemDynamoDb.js +52 -0
package/pulumi/apps/syncSystem/SyncSystemDynamoDb.js.map +1 -0
package/pulumi/apps/syncSystem/SyncSystemEventBus.d.ts +6 -0
package/pulumi/apps/syncSystem/SyncSystemEventBus.js +77 -0
package/pulumi/apps/syncSystem/SyncSystemEventBus.js.map +1 -0
package/pulumi/apps/syncSystem/SyncSystemLambda.d.ts +11 -0
package/pulumi/apps/syncSystem/SyncSystemLambda.js +99 -0
package/pulumi/apps/syncSystem/SyncSystemLambda.js.map +1 -0
package/pulumi/apps/syncSystem/SyncSystemOutput.d.ts +3 -0
package/pulumi/apps/syncSystem/SyncSystemOutput.js +18 -0
package/pulumi/apps/syncSystem/SyncSystemOutput.js.map +1 -0
package/pulumi/apps/syncSystem/SyncSystemResolverLambda.d.ts +8 -0
package/pulumi/apps/syncSystem/SyncSystemResolverLambda.js +73 -0
package/pulumi/apps/syncSystem/SyncSystemResolverLambda.js.map +1 -0
package/pulumi/apps/syncSystem/SyncSystemSQS.d.ts +3 -0
package/pulumi/apps/syncSystem/SyncSystemSQS.js +54 -0
package/pulumi/apps/syncSystem/SyncSystemSQS.js.map +1 -0
package/pulumi/apps/syncSystem/SyncSystemWorkerLambda.d.ts +7 -0
package/pulumi/apps/syncSystem/SyncSystemWorkerLambda.js +52 -0
package/pulumi/apps/syncSystem/SyncSystemWorkerLambda.js.map +1 -0
package/pulumi/apps/syncSystem/addTableItems.d.ts +8 -0
package/pulumi/apps/syncSystem/addTableItems.js +51 -0
package/pulumi/apps/syncSystem/addTableItems.js.map +1 -0
package/pulumi/apps/syncSystem/api/addServiceManifest.d.ts +8 -0
package/pulumi/apps/syncSystem/api/addServiceManifest.js +18 -0
package/pulumi/apps/syncSystem/api/addServiceManifest.js.map +1 -0
package/pulumi/apps/syncSystem/api/attachCognitoPermissions.d.ts +14 -0
package/pulumi/apps/syncSystem/api/attachCognitoPermissions.js +59 -0
package/pulumi/apps/syncSystem/api/attachCognitoPermissions.js.map +1 -0
package/pulumi/apps/syncSystem/api/attachDynamoDbPermissions.d.ts +13 -0
package/pulumi/apps/syncSystem/api/attachDynamoDbPermissions.js +44 -0
package/pulumi/apps/syncSystem/api/attachDynamoDbPermissions.js.map +1 -0
package/pulumi/apps/syncSystem/api/attachEventBusPermissions.d.ts +17 -0
package/pulumi/apps/syncSystem/api/attachEventBusPermissions.js +48 -0
package/pulumi/apps/syncSystem/api/attachEventBusPermissions.js.map +1 -0
package/pulumi/apps/syncSystem/api/attachS3Permissions.d.ts +14 -0
package/pulumi/apps/syncSystem/api/attachS3Permissions.js +51 -0
package/pulumi/apps/syncSystem/api/attachS3Permissions.js.map +1 -0
package/pulumi/apps/syncSystem/api/index.d.ts +8 -0
package/pulumi/apps/syncSystem/api/index.js +55 -0
package/pulumi/apps/syncSystem/api/index.js.map +1 -0
package/pulumi/apps/syncSystem/constants.d.ts +1 -0
package/pulumi/apps/syncSystem/constants.js +3 -0
package/pulumi/apps/syncSystem/constants.js.map +1 -0
package/pulumi/apps/syncSystem/createSyncResourceName.d.ts +4 -0
package/pulumi/apps/syncSystem/createSyncResourceName.js +10 -0
package/pulumi/apps/syncSystem/createSyncResourceName.js.map +1 -0
package/pulumi/apps/syncSystem/createSyncSystemPulumiApp.d.ts +26 -0
package/pulumi/apps/syncSystem/createSyncSystemPulumiApp.js +181 -0
package/pulumi/apps/syncSystem/createSyncSystemPulumiApp.js.map +1 -0
package/pulumi/apps/syncSystem/customApp.d.ts +6 -0
package/pulumi/apps/syncSystem/customApp.js +19 -0
package/pulumi/apps/syncSystem/customApp.js.map +1 -0
package/pulumi/apps/syncSystem/getSyncSystemOutput.d.ts +3 -0
package/pulumi/apps/syncSystem/getSyncSystemOutput.js +10 -0
package/pulumi/apps/syncSystem/getSyncSystemOutput.js.map +1 -0
package/pulumi/apps/syncSystem/lambda/createSyncSystemResolverLambdaPolicy.d.ts +7 -0
package/pulumi/apps/syncSystem/lambda/createSyncSystemResolverLambdaPolicy.js +48 -0
package/pulumi/apps/syncSystem/lambda/createSyncSystemResolverLambdaPolicy.js.map +1 -0
package/pulumi/apps/syncSystem/types.d.ts +56 -0
package/pulumi/apps/syncSystem/types.js +3 -0
package/pulumi/apps/syncSystem/types.js.map +1 -0
package/pulumi/constants.d.ts +1 -0
package/pulumi/constants.js +4 -0
package/pulumi/constants.js.map +1 -0
package/pulumi/env/awsRegion.d.ts +1 -0
package/pulumi/env/awsRegion.js +6 -0
package/pulumi/env/awsRegion.js.map +1 -0
package/pulumi/env/base.d.ts +15 -0
package/pulumi/env/base.js +29 -0
package/pulumi/env/base.js.map +1 -0
package/pulumi/env/env.d.ts +1 -0
package/pulumi/env/env.js +6 -0
package/pulumi/env/env.js.map +1 -0
package/pulumi/env/projectName.d.ts +1 -0
package/pulumi/env/projectName.js +6 -0
package/pulumi/env/projectName.js.map +1 -0
package/pulumi/env/variant.d.ts +1 -0
package/pulumi/env/variant.js +7 -0
package/pulumi/env/variant.js.map +1 -0
package/pulumi/extensions/AdminCustomDomains.d.ts +14 -0
package/pulumi/extensions/AdminCustomDomains.js +16 -0
package/pulumi/extensions/AdminCustomDomains.js.map +1 -0
package/pulumi/extensions/AwsTags.d.ts +8 -0
package/pulumi/extensions/AwsTags.js +15 -0
package/pulumi/extensions/AwsTags.js.map +1 -0
package/pulumi/extensions/BlueGreenDeployments.d.ts +134 -0
package/pulumi/extensions/BlueGreenDeployments.js +34 -0
package/pulumi/extensions/BlueGreenDeployments.js.map +1 -0
package/pulumi/extensions/OpenSearch.d.ts +17 -0
package/pulumi/extensions/OpenSearch.js +17 -0
package/pulumi/extensions/OpenSearch.js.map +1 -0
package/pulumi/extensions/Vpc.d.ts +71 -0
package/pulumi/extensions/Vpc.js +25 -0
package/pulumi/extensions/Vpc.js.map +1 -0
package/pulumi/extensions/index.d.ts +220 -0
package/pulumi/extensions/index.js +13 -0
package/pulumi/extensions/index.js.map +1 -0
package/pulumi/index.d.ts +3 -0
package/pulumi/index.js +5 -0
package/pulumi/index.js.map +1 -0
package/pulumi/types.d.ts +44 -0
package/pulumi/types.js +3 -0
package/pulumi/types.js.map +1 -0
package/pulumi/utils/addDomainsUrlsOutputs.d.ts +18 -0
package/pulumi/utils/addDomainsUrlsOutputs.js +40 -0
package/pulumi/utils/addDomainsUrlsOutputs.js.map +1 -0
package/pulumi/utils/addServiceManifestTableItem.d.ts +12 -0
package/pulumi/utils/addServiceManifestTableItem.js +28 -0
package/pulumi/utils/addServiceManifestTableItem.js.map +1 -0
package/pulumi/utils/crawlDirectory.d.ts +1 -0
package/pulumi/utils/crawlDirectory.js +19 -0
package/pulumi/utils/crawlDirectory.js.map +1 -0
package/pulumi/utils/createAssetArchive.d.ts +2 -0
package/pulumi/utils/createAssetArchive.js +8 -0
package/pulumi/utils/createAssetArchive.js.map +1 -0
package/pulumi/utils/dynamodb.d.ts +14 -0
package/pulumi/utils/dynamodb.js +29 -0
package/pulumi/utils/dynamodb.js.map +1 -0
package/pulumi/utils/getPresignedPost.d.ts +11 -0
package/pulumi/utils/getPresignedPost.js +34 -0
package/pulumi/utils/getPresignedPost.js.map +1 -0
package/pulumi/utils/index.d.ts +5 -0
package/pulumi/utils/index.js +7 -0
package/pulumi/utils/index.js.map +1 -0
package/pulumi/utils/lambdaEnvVariables.d.ts +20 -0
package/pulumi/utils/lambdaEnvVariables.js +62 -0
package/pulumi/utils/lambdaEnvVariables.js.map +1 -0
package/pulumi/utils/tagResources.d.ts +5 -0
package/pulumi/utils/tagResources.js +33 -0
package/pulumi/utils/tagResources.js.map +1 -0
package/pulumi/utils/uploadFolderToS3.d.ts +26 -0
package/pulumi/utils/uploadFolderToS3.js +147 -0
package/pulumi/utils/uploadFolderToS3.js.map +1 -0
package/pulumi/utils/withServiceManifest.d.ts +14 -0
package/pulumi/utils/withServiceManifest.js +45 -0
package/pulumi/utils/withServiceManifest.js.map +1 -0
package/security.d.ts +356 -0
package/security.js +53 -0
package/security.js.map +1 -0
package/services/AdminStackOutputService.d.ts +10 -0
package/services/AdminStackOutputService.js +16 -0
package/services/AdminStackOutputService.js.map +1 -0
package/services/ApiStackOutputService.d.ts +10 -0
package/services/ApiStackOutputService.js +16 -0
package/services/ApiStackOutputService.js.map +1 -0
package/services/CoreStackOutputService.d.ts +10 -0
package/services/CoreStackOutputService.js +16 -0
package/services/CoreStackOutputService.js.map +1 -0
package/utils/getTemplatesFolderPath.d.ts +1 -0
package/utils/getTemplatesFolderPath.js +16 -0
package/utils/getTemplatesFolderPath.js.map +1 -0
package/utils/index.d.ts +1 -0
package/utils/index.js +3 -0
package/utils/index.js.map +1 -0

package/pulumi/apps/api/ApiGraphql.js ADDED Viewed

@@ -0,0 +1,164 @@
+import path from "path";
+import * as pulumi from "@pulumi/pulumi";
+import * as aws from "@pulumi/aws";
+import toKebabCase from "lodash/kebabCase.js";
+import { createAppModule } from "@webiny/pulumi";
+import { createLambdaRole, getCommonLambdaEnvVariables } from "../lambdaUtils.js";
+import { CoreOutput, VpcConfig } from "../index.js";
+import { getAwsAccountId, getAwsRegion } from "../awsUtils.js";
+import { LAMBDA_RUNTIME } from "../../constants.js";
+const EMPTY_TRASH_BIN_EVENT_RULE_NAME = `empty-trash-bin-event-rule`;
+const EMPTY_TRASH_BIN_EVENT_PERMISSION_NAME = `empty-trash-bin-event-target-permission`;
+const EMPTY_TRASH_BIN_EVENT_RULE_TARGET = `empty-trash-bin-event-rule-target`;
+export const ApiGraphql = createAppModule({
+  name: "ApiGraphql",
+  config(app, params) {
+    const policy = createGraphqlLambdaPolicy(app);
+    const role = createLambdaRole(app, {
+      name: "api-lambda-role",
+      policy: policy.output
+    });
+    const graphql = app.addResource(aws.lambda.Function, {
+      name: "graphql",
+      config: {
+        description: "Webiny's GraphQL APIs",
+        runtime: LAMBDA_RUNTIME,
+        handler: "handler.handler",
+        role: role.output.arn,
+        timeout: 30,
+        memorySize: 1024,
+        code: new pulumi.asset.AssetArchive({
+          ".": new pulumi.asset.FileArchive(path.join(app.paths.workspace, "graphql/build"))
+        }),
+        environment: {
+          variables: getCommonLambdaEnvVariables().apply(value => ({
+            ...value,
+            ...params.env,
+            AWS_NODEJS_CONNECTION_REUSE_ENABLED: "1"
+          }))
+        },
+        vpcConfig: app.getModule(VpcConfig).functionVpcConfig,
+        loggingConfig: {
+          logFormat: "JSON"
+        }
+      }
+    });
+    // Create event rule.
+    const eventRule = app.addResource(aws.cloudwatch.EventRule, {
+      name: EMPTY_TRASH_BIN_EVENT_RULE_NAME,
+      config: {
+        description: "Enable us to empty the trash-bin ever day",
+        scheduleExpression: "cron(0 3 * * ? *)"
+      }
+    });
+    // Add required permission to the target lambda.
+    app.addResource(aws.lambda.Permission, {
+      name: EMPTY_TRASH_BIN_EVENT_PERMISSION_NAME,
+      config: {
+        action: "lambda:InvokeFunction",
+        function: graphql.output.arn,
+        principal: "events.amazonaws.com",
+        statementId: "allow-rule-invoke-" + EMPTY_TRASH_BIN_EVENT_RULE_NAME
+      }
+    });
+    // Target the main graphql lambda.
+    app.addResource(aws.cloudwatch.EventTarget, {
+      name: EMPTY_TRASH_BIN_EVENT_RULE_TARGET,
+      config: {
+        rule: eventRule.output.name,
+        arn: graphql.output.arn,
+        input: JSON.stringify({
+          source: "webiny.events",
+          "detail-type": "WebinyEmptyTrashBin"
+        })
+      }
+    });
+    return {
+      role,
+      policy,
+      functions: {
+        graphql
+      },
+      addRoute: routeParams => {
+        const apiGateway = app.resources.apiGateway;
+        if (!apiGateway) {
+          console.log("Could not add route because there is no apiGateway in the resources.");
+          return;
+        }
+        const kebabName = toKebabCase(routeParams.name);
+        if (kebabName !== routeParams.name) {
+          console.log(`Route name is not allowed: "${routeParams.name}".`);
+          return;
+        }
+        return apiGateway.addRoute(routeParams.name, {
+          path: routeParams.path,
+          method: routeParams.method,
+          function: graphql.output.arn
+        });
+      }
+    };
+  }
+});
+function createGraphqlLambdaPolicy(app) {
+  const coreOutput = app.getModule(CoreOutput);
+  const awsAccountId = getAwsAccountId(app);
+  const awsRegion = getAwsRegion(app);
+  return app.addResource(aws.iam.Policy, {
+    name: "ApiGraphqlLambdaPolicy",
+    config: {
+      description: "This policy enables access to Dynamodb, S3, Lambda and Cognito IDP",
+      // Core is pulumi.Output, so we need to run apply() to resolve policy based on it
+      policy: pulumi.all([coreOutput]).apply(([core]) => {
+        const policy = {
+          Version: "2012-10-17",
+          Statement: [{
+            Sid: "PermissionForDynamodb",
+            Effect: "Allow",
+            Action: ["dynamodb:BatchGetItem", "dynamodb:BatchWriteItem", "dynamodb:ConditionCheckItem", "dynamodb:CreateBackup", "dynamodb:CreateTable", "dynamodb:CreateTableReplica", "dynamodb:DeleteBackup", "dynamodb:DeleteItem", "dynamodb:DeleteTable", "dynamodb:DeleteTableReplica", "dynamodb:DescribeBackup", "dynamodb:DescribeContinuousBackups", "dynamodb:DescribeContributorInsights", "dynamodb:DescribeExport", "dynamodb:DescribeKinesisStreamingDestination", "dynamodb:DescribeLimits", "dynamodb:DescribeReservedCapacity", "dynamodb:DescribeReservedCapacityOfferings", "dynamodb:DescribeStream", "dynamodb:DescribeTable", "dynamodb:DescribeTableReplicaAutoScaling", "dynamodb:DescribeTimeToLive", "dynamodb:DisableKinesisStreamingDestination", "dynamodb:EnableKinesisStreamingDestination", "dynamodb:ExportTableToPointInTime", "dynamodb:GetItem", "dynamodb:GetRecords", "dynamodb:GetShardIterator", "dynamodb:ListBackups", "dynamodb:ListContributorInsights", "dynamodb:ListExports", "dynamodb:ListStreams", "dynamodb:ListTables", "dynamodb:ListTagsOfResource", "dynamodb:PartiQLDelete", "dynamodb:PartiQLInsert", "dynamodb:PartiQLSelect", "dynamodb:PartiQLUpdate", "dynamodb:PurchaseReservedCapacityOfferings", "dynamodb:PutItem", "dynamodb:Query", "dynamodb:RestoreTableFromBackup", "dynamodb:RestoreTableToPointInTime", "dynamodb:Scan", "dynamodb:UpdateContinuousBackups", "dynamodb:UpdateContributorInsights", "dynamodb:UpdateItem", "dynamodb:UpdateTable", "dynamodb:UpdateTableReplicaAutoScaling", "dynamodb:UpdateTimeToLive"],
+            Resource: [`${core.primaryDynamodbTableArn}`, `${core.primaryDynamodbTableArn}/*`, `${core.logDynamodbTableArn}`, `${core.logDynamodbTableArn}/*`, `${core.auditLogsDynamodbTableArn}`, `${core.auditLogsDynamodbTableArn}/*`,
+            // Attach permissions for elastic search dynamo as well (if ES is enabled).
+            ...(core.opensearchDynamodbTableArn ? [`${core.opensearchDynamodbTableArn}`, `${core.opensearchDynamodbTableArn}/*`] : [])]
+          }, {
+            Sid: "PermissionForS3",
+            Effect: "Allow",
+            Action: ["s3:ListBucket", "s3:GetObjectAcl", "s3:DeleteObject", "s3:PutObjectAcl", "s3:PutObject", "s3:GetObject"],
+            Resource: [pulumi.interpolate`arn:aws:s3:::${core.fileManagerBucketId}`, pulumi.interpolate`arn:aws:s3:::${core.fileManagerBucketId}/*`]
+          }, {
+            Sid: "PermissionForLambda",
+            Effect: "Allow",
+            Action: ["lambda:InvokeFunction"],
+            Resource: pulumi.interpolate`arn:aws:lambda:${awsRegion}:${awsAccountId}:function:*`
+          }, {
+            Sid: "PermissionForCognitoIdp",
+            Effect: "Allow",
+            Action: "cognito-idp:*",
+            Resource: `${core.cognitoUserPoolArn}`
+          }, {
+            Sid: "PermissionForEventBus",
+            Effect: "Allow",
+            Action: "events:PutEvents",
+            Resource: core.eventBusArn
+          }, {
+            Sid: "PermissionForCloudfront",
+            Effect: "Allow",
+            Action: "cloudfront:CreateInvalidation",
+            Resource: pulumi.interpolate`arn:aws:cloudfront::${awsAccountId}:distribution/*`
+          },
+          // Attach permissions for elastic search domain as well (if ES is enabled).
+          ...(core.opensearchDomainArn ? [{
+            Sid: "PermissionForOS",
+            Effect: "Allow",
+            Action: "es:*",
+            Resource: [`${core.opensearchDomainArn}`, `${core.opensearchDomainArn}/*`]
+          }] : [])]
+        };
+        return policy;
+      })
+    }
+  });
+}
+//# sourceMappingURL=ApiGraphql.js.map

package/pulumi/apps/api/ApiGraphql.js.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"names":["path","pulumi","aws","toKebabCase","createAppModule","createLambdaRole","getCommonLambdaEnvVariables","CoreOutput","VpcConfig","getAwsAccountId","getAwsRegion","LAMBDA_RUNTIME","EMPTY_TRASH_BIN_EVENT_RULE_NAME","EMPTY_TRASH_BIN_EVENT_PERMISSION_NAME","EMPTY_TRASH_BIN_EVENT_RULE_TARGET","ApiGraphql","name","config","app","params","policy","createGraphqlLambdaPolicy","role","output","graphql","addResource","lambda","Function","description","runtime","handler","arn","timeout","memorySize","code","asset","AssetArchive","FileArchive","join","paths","workspace","environment","variables","apply","value","env","AWS_NODEJS_CONNECTION_REUSE_ENABLED","vpcConfig","getModule","functionVpcConfig","loggingConfig","logFormat","eventRule","cloudwatch","EventRule","scheduleExpression","Permission","action","function","principal","statementId","EventTarget","rule","input","JSON","stringify","source","functions","addRoute","routeParams","apiGateway","resources","console","log","kebabName","method","coreOutput","awsAccountId","awsRegion","iam","Policy","all","core","Version","Statement","Sid","Effect","Action","Resource","primaryDynamodbTableArn","logDynamodbTableArn","auditLogsDynamodbTableArn","opensearchDynamodbTableArn","interpolate","fileManagerBucketId","cognitoUserPoolArn","eventBusArn","opensearchDomainArn"],"sources":["ApiGraphql.ts"],"sourcesContent":["import path from \"path\";\nimport * as pulumi from \"@pulumi/pulumi\";\nimport * as aws from \"@pulumi/aws\";\nimport toKebabCase from \"lodash/kebabCase.js\";\nimport type { PulumiApp, PulumiAppModule } from \"@webiny/pulumi\";\nimport { createAppModule } from \"@webiny/pulumi\";\nimport { createLambdaRole, getCommonLambdaEnvVariables } from \"../lambdaUtils.js\";\nimport { CoreOutput, VpcConfig } from \"~/pulumi/apps/index.js\";\nimport { getAwsAccountId, getAwsRegion } from \"../awsUtils.js\";\nimport { LAMBDA_RUNTIME } from \"~/pulumi/constants.js\";\n\ninterface GraphqlParams {\n env: Record<string, any>;\n}\n\nexport interface AddRouteParams {\n /**\n * Must be in kebab case (a-z and -)\n */\n name: string;\n path: `/${string}`;\n method: \"DELETE\" | \"GET\" | \"HEAD\" | \"PATCH\" | \"POST\" | \"PUT\" | \"OPTIONS\" | \"ANY\";\n}\n\nconst EMPTY_TRASH_BIN_EVENT_RULE_NAME = `empty-trash-bin-event-rule`;\nconst EMPTY_TRASH_BIN_EVENT_PERMISSION_NAME = `empty-trash-bin-event-target-permission`;\nconst EMPTY_TRASH_BIN_EVENT_RULE_TARGET = `empty-trash-bin-event-rule-target`;\n\nexport type ApiGraphql = PulumiAppModule<typeof ApiGraphql>;\n\nexport const ApiGraphql = createAppModule({\n name: \"ApiGraphql\",\n config(app: PulumiApp, params: GraphqlParams) {\n const policy = createGraphqlLambdaPolicy(app);\n const role = createLambdaRole(app, {\n name: \"api-lambda-role\",\n policy: policy.output\n });\n\n const graphql = app.addResource(aws.lambda.Function, {\n name: \"graphql\",\n config: {\n description: \"Webiny's GraphQL APIs\",\n runtime: LAMBDA_RUNTIME,\n handler: \"handler.handler\",\n role: role.output.arn,\n timeout: 30,\n memorySize: 1024,\n code: new pulumi.asset.AssetArchive({\n \".\": new pulumi.asset.FileArchive(\n path.join(app.paths.workspace, \"graphql/build\")\n )\n }),\n environment: {\n variables: getCommonLambdaEnvVariables().apply(value => ({\n ...value,\n ...params.env,\n AWS_NODEJS_CONNECTION_REUSE_ENABLED: \"1\"\n }))\n },\n vpcConfig: app.getModule(VpcConfig).functionVpcConfig,\n loggingConfig: {\n logFormat: \"JSON\"\n }\n }\n });\n\n // Create event rule.\n const eventRule = app.addResource(aws.cloudwatch.EventRule, {\n name: EMPTY_TRASH_BIN_EVENT_RULE_NAME,\n config: {\n description: \"Enable us to empty the trash-bin ever day\",\n scheduleExpression: \"cron(0 3 * * ? *)\"\n }\n });\n\n // Add required permission to the target lambda.\n app.addResource(aws.lambda.Permission, {\n name: EMPTY_TRASH_BIN_EVENT_PERMISSION_NAME,\n config: {\n action: \"lambda:InvokeFunction\",\n function: graphql.output.arn,\n principal: \"events.amazonaws.com\",\n statementId: \"allow-rule-invoke-\" + EMPTY_TRASH_BIN_EVENT_RULE_NAME\n }\n });\n\n // Target the main graphql lambda.\n app.addResource(aws.cloudwatch.EventTarget, {\n name: EMPTY_TRASH_BIN_EVENT_RULE_TARGET,\n config: {\n rule: eventRule.output.name,\n arn: graphql.output.arn,\n input: JSON.stringify({\n source: \"webiny.events\",\n \"detail-type\": \"WebinyEmptyTrashBin\"\n })\n }\n });\n\n return {\n role,\n policy,\n functions: {\n graphql\n },\n addRoute: (routeParams: AddRouteParams) => {\n const apiGateway: any = app.resources.apiGateway;\n if (!apiGateway) {\n console.log(\n \"Could not add route because there is no apiGateway in the resources.\"\n );\n return;\n }\n const kebabName = toKebabCase(routeParams.name);\n if (kebabName !== routeParams.name) {\n console.log(`Route name is not allowed: \"${routeParams.name}\".`);\n return;\n }\n return apiGateway.addRoute(routeParams.name, {\n path: routeParams.path,\n method: routeParams.method,\n function: graphql.output.arn\n });\n }\n };\n }\n});\n\nfunction createGraphqlLambdaPolicy(app: PulumiApp) {\n const coreOutput = app.getModule(CoreOutput);\n const awsAccountId = getAwsAccountId(app);\n const awsRegion = getAwsRegion(app);\n\n return app.addResource(aws.iam.Policy, {\n name: \"ApiGraphqlLambdaPolicy\",\n config: {\n description: \"This policy enables access to Dynamodb, S3, Lambda and Cognito IDP\",\n // Core is pulumi.Output, so we need to run apply() to resolve policy based on it\n policy: pulumi.all([coreOutput]).apply(([core]) => {\n const policy: aws.iam.PolicyDocument = {\n Version: \"2012-10-17\",\n Statement: [\n {\n Sid: \"PermissionForDynamodb\",\n Effect: \"Allow\",\n Action: [\n \"dynamodb:BatchGetItem\",\n \"dynamodb:BatchWriteItem\",\n \"dynamodb:ConditionCheckItem\",\n \"dynamodb:CreateBackup\",\n \"dynamodb:CreateTable\",\n \"dynamodb:CreateTableReplica\",\n \"dynamodb:DeleteBackup\",\n \"dynamodb:DeleteItem\",\n \"dynamodb:DeleteTable\",\n \"dynamodb:DeleteTableReplica\",\n \"dynamodb:DescribeBackup\",\n \"dynamodb:DescribeContinuousBackups\",\n \"dynamodb:DescribeContributorInsights\",\n \"dynamodb:DescribeExport\",\n \"dynamodb:DescribeKinesisStreamingDestination\",\n \"dynamodb:DescribeLimits\",\n \"dynamodb:DescribeReservedCapacity\",\n \"dynamodb:DescribeReservedCapacityOfferings\",\n \"dynamodb:DescribeStream\",\n \"dynamodb:DescribeTable\",\n \"dynamodb:DescribeTableReplicaAutoScaling\",\n \"dynamodb:DescribeTimeToLive\",\n \"dynamodb:DisableKinesisStreamingDestination\",\n \"dynamodb:EnableKinesisStreamingDestination\",\n \"dynamodb:ExportTableToPointInTime\",\n \"dynamodb:GetItem\",\n \"dynamodb:GetRecords\",\n \"dynamodb:GetShardIterator\",\n \"dynamodb:ListBackups\",\n \"dynamodb:ListContributorInsights\",\n \"dynamodb:ListExports\",\n \"dynamodb:ListStreams\",\n \"dynamodb:ListTables\",\n \"dynamodb:ListTagsOfResource\",\n \"dynamodb:PartiQLDelete\",\n \"dynamodb:PartiQLInsert\",\n \"dynamodb:PartiQLSelect\",\n \"dynamodb:PartiQLUpdate\",\n \"dynamodb:PurchaseReservedCapacityOfferings\",\n \"dynamodb:PutItem\",\n \"dynamodb:Query\",\n \"dynamodb:RestoreTableFromBackup\",\n \"dynamodb:RestoreTableToPointInTime\",\n \"dynamodb:Scan\",\n \"dynamodb:UpdateContinuousBackups\",\n \"dynamodb:UpdateContributorInsights\",\n \"dynamodb:UpdateItem\",\n \"dynamodb:UpdateTable\",\n \"dynamodb:UpdateTableReplicaAutoScaling\",\n \"dynamodb:UpdateTimeToLive\"\n ],\n Resource: [\n `${core.primaryDynamodbTableArn}`,\n `${core.primaryDynamodbTableArn}/*`,\n `${core.logDynamodbTableArn}`,\n `${core.logDynamodbTableArn}/*`,\n `${core.auditLogsDynamodbTableArn}`,\n `${core.auditLogsDynamodbTableArn}/*`,\n // Attach permissions for elastic search dynamo as well (if ES is enabled).\n ...(core.opensearchDynamodbTableArn\n ? [\n `${core.opensearchDynamodbTableArn}`,\n `${core.opensearchDynamodbTableArn}/*`\n ]\n : [])\n ]\n },\n {\n Sid: \"PermissionForS3\",\n Effect: \"Allow\",\n Action: [\n \"s3:ListBucket\",\n \"s3:GetObjectAcl\",\n \"s3:DeleteObject\",\n \"s3:PutObjectAcl\",\n \"s3:PutObject\",\n \"s3:GetObject\"\n ],\n Resource: [\n pulumi.interpolate`arn:aws:s3:::${core.fileManagerBucketId}`,\n pulumi.interpolate`arn:aws:s3:::${core.fileManagerBucketId}/*`\n ]\n },\n {\n Sid: \"PermissionForLambda\",\n Effect: \"Allow\",\n Action: [\"lambda:InvokeFunction\"],\n Resource: pulumi.interpolate`arn:aws:lambda:${awsRegion}:${awsAccountId}:function:*`\n },\n {\n Sid: \"PermissionForCognitoIdp\",\n Effect: \"Allow\",\n Action: \"cognito-idp:*\",\n Resource: `${core.cognitoUserPoolArn}`\n },\n {\n Sid: \"PermissionForEventBus\",\n Effect: \"Allow\",\n Action: \"events:PutEvents\",\n Resource: core.eventBusArn\n },\n {\n Sid: \"PermissionForCloudfront\",\n Effect: \"Allow\",\n Action: \"cloudfront:CreateInvalidation\",\n Resource: pulumi.interpolate`arn:aws:cloudfront::${awsAccountId}:distribution/*`\n },\n // Attach permissions for elastic search domain as well (if ES is enabled).\n ...(core.opensearchDomainArn\n ? [\n {\n Sid: \"PermissionForOS\",\n Effect: \"Allow\" as const,\n Action: \"es:*\",\n Resource: [\n `${core.opensearchDomainArn}`,\n `${core.opensearchDomainArn}/*`\n ]\n }\n ]\n : [])\n ]\n };\n\n return policy;\n })\n }\n });\n}\n"],"mappings":"AAAA,OAAOA,IAAI,MAAM,MAAM;AACvB,OAAO,KAAKC,MAAM,MAAM,gBAAgB;AACxC,OAAO,KAAKC,GAAG,MAAM,aAAa;AAClC,OAAOC,WAAW,MAAM,qBAAqB;AAE7C,SAASC,eAAe,QAAQ,gBAAgB;AAChD,SAASC,gBAAgB,EAAEC,2BAA2B;AACtD,SAASC,UAAU,EAAEC,SAAS;AAC9B,SAASC,eAAe,EAAEC,YAAY;AACtC,SAASC,cAAc;AAevB,MAAMC,+BAA+B,GAAG,4BAA4B;AACpE,MAAMC,qCAAqC,GAAG,yCAAyC;AACvF,MAAMC,iCAAiC,GAAG,mCAAmC;AAI7E,OAAO,MAAMC,UAAU,GAAGX,eAAe,CAAC;EACtCY,IAAI,EAAE,YAAY;EAClBC,MAAMA,CAACC,GAAc,EAAEC,MAAqB,EAAE;IAC1C,MAAMC,MAAM,GAAGC,yBAAyB,CAACH,GAAG,CAAC;IAC7C,MAAMI,IAAI,GAAGjB,gBAAgB,CAACa,GAAG,EAAE;MAC/BF,IAAI,EAAE,iBAAiB;MACvBI,MAAM,EAAEA,MAAM,CAACG;IACnB,CAAC,CAAC;IAEF,MAAMC,OAAO,GAAGN,GAAG,CAACO,WAAW,CAACvB,GAAG,CAACwB,MAAM,CAACC,QAAQ,EAAE;MACjDX,IAAI,EAAE,SAAS;MACfC,MAAM,EAAE;QACJW,WAAW,EAAE,uBAAuB;QACpCC,OAAO,EAAElB,cAAc;QACvBmB,OAAO,EAAE,iBAAiB;QAC1BR,IAAI,EAAEA,IAAI,CAACC,MAAM,CAACQ,GAAG;QACrBC,OAAO,EAAE,EAAE;QACXC,UAAU,EAAE,IAAI;QAChBC,IAAI,EAAE,IAAIjC,MAAM,CAACkC,KAAK,CAACC,YAAY,CAAC;UAChC,GAAG,EAAE,IAAInC,MAAM,CAACkC,KAAK,CAACE,WAAW,CAC7BrC,IAAI,CAACsC,IAAI,CAACpB,GAAG,CAACqB,KAAK,CAACC,SAAS,EAAE,eAAe,CAClD;QACJ,CAAC,CAAC;QACFC,WAAW,EAAE;UACTC,SAAS,EAAEpC,2BAA2B,CAAC,CAAC,CAACqC,KAAK,CAACC,KAAK,KAAK;YACrD,GAAGA,KAAK;YACR,GAAGzB,MAAM,CAAC0B,GAAG;YACbC,mCAAmC,EAAE;UACzC,CAAC,CAAC;QACN,CAAC;QACDC,SAAS,EAAE7B,GAAG,CAAC8B,SAAS,CAACxC,SAAS,CAAC,CAACyC,iBAAiB;QACrDC,aAAa,EAAE;UACXC,SAAS,EAAE;QACf;MACJ;IACJ,CAAC,CAAC;;IAEF;IACA,MAAMC,SAAS,GAAGlC,GAAG,CAACO,WAAW,CAACvB,GAAG,CAACmD,UAAU,CAACC,SAAS,EAAE;MACxDtC,IAAI,EAAEJ,+BAA+B;MACrCK,MAAM,EAAE;QACJW,WAAW,EAAE,2CAA2C;QACxD2B,kBAAkB,EAAE;MACxB;IACJ,CAAC,CAAC;;IAEF;IACArC,GAAG,CAACO,WAAW,CAACvB,GAAG,CAACwB,MAAM,CAAC8B,UAAU,EAAE;MACnCxC,IAAI,EAAEH,qCAAqC;MAC3CI,MAAM,EAAE;QACJwC,MAAM,EAAE,uBAAuB;QAC/BC,QAAQ,EAAElC,OAAO,CAACD,MAAM,CAACQ,GAAG;QAC5B4B,SAAS,EAAE,sBAAsB;QACjCC,WAAW,EAAE,oBAAoB,GAAGhD;MACxC;IACJ,CAAC,CAAC;;IAEF;IACAM,GAAG,CAACO,WAAW,CAACvB,GAAG,CAACmD,UAAU,CAACQ,WAAW,EAAE;MACxC7C,IAAI,EAAEF,iCAAiC;MACvCG,MAAM,EAAE;QACJ6C,IAAI,EAAEV,SAAS,CAAC7B,MAAM,CAACP,IAAI;QAC3Be,GAAG,EAAEP,OAAO,CAACD,MAAM,CAACQ,GAAG;QACvBgC,KAAK,EAAEC,IAAI,CAACC,SAAS,CAAC;UAClBC,MAAM,EAAE,eAAe;UACvB,aAAa,EAAE;QACnB,CAAC;MACL;IACJ,CAAC,CAAC;IAEF,OAAO;MACH5C,IAAI;MACJF,MAAM;MACN+C,SAAS,EAAE;QACP3C;MACJ,CAAC;MACD4C,QAAQ,EAAGC,WAA2B,IAAK;QACvC,MAAMC,UAAe,GAAGpD,GAAG,CAACqD,SAAS,CAACD,UAAU;QAChD,IAAI,CAACA,UAAU,EAAE;UACbE,OAAO,CAACC,GAAG,CACP,sEACJ,CAAC;UACD;QACJ;QACA,MAAMC,SAAS,GAAGvE,WAAW,CAACkE,WAAW,CAACrD,IAAI,CAAC;QAC/C,IAAI0D,SAAS,KAAKL,WAAW,CAACrD,IAAI,EAAE;UAChCwD,OAAO,CAACC,GAAG,CAAC,+BAA+BJ,WAAW,CAACrD,IAAI,IAAI,CAAC;UAChE;QACJ;QACA,OAAOsD,UAAU,CAACF,QAAQ,CAACC,WAAW,CAACrD,IAAI,EAAE;UACzChB,IAAI,EAAEqE,WAAW,CAACrE,IAAI;UACtB2E,MAAM,EAAEN,WAAW,CAACM,MAAM;UAC1BjB,QAAQ,EAAElC,OAAO,CAACD,MAAM,CAACQ;QAC7B,CAAC,CAAC;MACN;IACJ,CAAC;EACL;AACJ,CAAC,CAAC;AAEF,SAASV,yBAAyBA,CAACH,GAAc,EAAE;EAC/C,MAAM0D,UAAU,GAAG1D,GAAG,CAAC8B,SAAS,CAACzC,UAAU,CAAC;EAC5C,MAAMsE,YAAY,GAAGpE,eAAe,CAACS,GAAG,CAAC;EACzC,MAAM4D,SAAS,GAAGpE,YAAY,CAACQ,GAAG,CAAC;EAEnC,OAAOA,GAAG,CAACO,WAAW,CAACvB,GAAG,CAAC6E,GAAG,CAACC,MAAM,EAAE;IACnChE,IAAI,EAAE,wBAAwB;IAC9BC,MAAM,EAAE;MACJW,WAAW,EAAE,oEAAoE;MACjF;MACAR,MAAM,EAAEnB,MAAM,CAACgF,GAAG,CAAC,CAACL,UAAU,CAAC,CAAC,CAACjC,KAAK,CAAC,CAAC,CAACuC,IAAI,CAAC,KAAK;QAC/C,MAAM9D,MAA8B,GAAG;UACnC+D,OAAO,EAAE,YAAY;UACrBC,SAAS,EAAE,CACP;YACIC,GAAG,EAAE,uBAAuB;YAC5BC,MAAM,EAAE,OAAO;YACfC,MAAM,EAAE,CACJ,uBAAuB,EACvB,yBAAyB,EACzB,6BAA6B,EAC7B,uBAAuB,EACvB,sBAAsB,EACtB,6BAA6B,EAC7B,uBAAuB,EACvB,qBAAqB,EACrB,sBAAsB,EACtB,6BAA6B,EAC7B,yBAAyB,EACzB,oCAAoC,EACpC,sCAAsC,EACtC,yBAAyB,EACzB,8CAA8C,EAC9C,yBAAyB,EACzB,mCAAmC,EACnC,4CAA4C,EAC5C,yBAAyB,EACzB,wBAAwB,EACxB,0CAA0C,EAC1C,6BAA6B,EAC7B,6CAA6C,EAC7C,4CAA4C,EAC5C,mCAAmC,EACnC,kBAAkB,EAClB,qBAAqB,EACrB,2BAA2B,EAC3B,sBAAsB,EACtB,kCAAkC,EAClC,sBAAsB,EACtB,sBAAsB,EACtB,qBAAqB,EACrB,6BAA6B,EAC7B,wBAAwB,EACxB,wBAAwB,EACxB,wBAAwB,EACxB,wBAAwB,EACxB,4CAA4C,EAC5C,kBAAkB,EAClB,gBAAgB,EAChB,iCAAiC,EACjC,oCAAoC,EACpC,eAAe,EACf,kCAAkC,EAClC,oCAAoC,EACpC,qBAAqB,EACrB,sBAAsB,EACtB,wCAAwC,EACxC,2BAA2B,CAC9B;YACDC,QAAQ,EAAE,CACN,GAAGN,IAAI,CAACO,uBAAuB,EAAE,EACjC,GAAGP,IAAI,CAACO,uBAAuB,IAAI,EACnC,GAAGP,IAAI,CAACQ,mBAAmB,EAAE,EAC7B,GAAGR,IAAI,CAACQ,mBAAmB,IAAI,EAC/B,GAAGR,IAAI,CAACS,yBAAyB,EAAE,EACnC,GAAGT,IAAI,CAACS,yBAAyB,IAAI;YACrC;YACA,IAAIT,IAAI,CAACU,0BAA0B,GAC7B,CACI,GAAGV,IAAI,CAACU,0BAA0B,EAAE,EACpC,GAAGV,IAAI,CAACU,0BAA0B,IAAI,CACzC,GACD,EAAE,CAAC;UAEjB,CAAC,EACD;YACIP,GAAG,EAAE,iBAAiB;YACtBC,MAAM,EAAE,OAAO;YACfC,MAAM,EAAE,CACJ,eAAe,EACf,iBAAiB,EACjB,iBAAiB,EACjB,iBAAiB,EACjB,cAAc,EACd,cAAc,CACjB;YACDC,QAAQ,EAAE,CACNvF,MAAM,CAAC4F,WAAW,gBAAgBX,IAAI,CAACY,mBAAmB,EAAE,EAC5D7F,MAAM,CAAC4F,WAAW,gBAAgBX,IAAI,CAACY,mBAAmB,IAAI;UAEtE,CAAC,EACD;YACIT,GAAG,EAAE,qBAAqB;YAC1BC,MAAM,EAAE,OAAO;YACfC,MAAM,EAAE,CAAC,uBAAuB,CAAC;YACjCC,QAAQ,EAAEvF,MAAM,CAAC4F,WAAW,kBAAkBf,SAAS,IAAID,YAAY;UAC3E,CAAC,EACD;YACIQ,GAAG,EAAE,yBAAyB;YAC9BC,MAAM,EAAE,OAAO;YACfC,MAAM,EAAE,eAAe;YACvBC,QAAQ,EAAE,GAAGN,IAAI,CAACa,kBAAkB;UACxC,CAAC,EACD;YACIV,GAAG,EAAE,uBAAuB;YAC5BC,MAAM,EAAE,OAAO;YACfC,MAAM,EAAE,kBAAkB;YAC1BC,QAAQ,EAAEN,IAAI,CAACc;UACnB,CAAC,EACD;YACIX,GAAG,EAAE,yBAAyB;YAC9BC,MAAM,EAAE,OAAO;YACfC,MAAM,EAAE,+BAA+B;YACvCC,QAAQ,EAAEvF,MAAM,CAAC4F,WAAW,uBAAuBhB,YAAY;UACnE,CAAC;UACD;UACA,IAAIK,IAAI,CAACe,mBAAmB,GACtB,CACI;YACIZ,GAAG,EAAE,iBAAiB;YACtBC,MAAM,EAAE,OAAgB;YACxBC,MAAM,EAAE,MAAM;YACdC,QAAQ,EAAE,CACN,GAAGN,IAAI,CAACe,mBAAmB,EAAE,EAC7B,GAAGf,IAAI,CAACe,mBAAmB,IAAI;UAEvC,CAAC,CACJ,GACD,EAAE,CAAC;QAEjB,CAAC;QAED,OAAO7E,MAAM;MACjB,CAAC;IACL;EACJ,CAAC,CAAC;AACN","ignoreList":[]}

package/pulumi/apps/api/ApiMigration.d.ts ADDED Viewed

@@ -0,0 +1,5 @@
+import type { PulumiAppModule } from "@webiny/pulumi";
+export type ApiMigration = PulumiAppModule<typeof ApiMigration>;
+export declare const ApiMigration: import("@webiny/pulumi").PulumiAppModuleDefinition<{
+    function: import("@webiny/pulumi").PulumiAppResource<typeof import("@pulumi/aws/lambda/function.js").Function>;
+}, void>;

package/pulumi/apps/api/ApiMigration.js ADDED Viewed

@@ -0,0 +1,83 @@
+import path from "path";
+import * as pulumi from "@pulumi/pulumi";
+import * as aws from "@pulumi/aws";
+import { createAppModule } from "@webiny/pulumi";
+import { createLambdaRole, getCommonLambdaEnvVariables } from "../lambdaUtils.js";
+import { CoreOutput, VpcConfig } from "../common/index.js";
+import { ApiBackgroundTask, ApiGraphql } from "../index.js";
+import { LAMBDA_RUNTIME } from "../../constants.js";
+import { getEnvVariableAwsRegion } from "../../env/awsRegion.js";
+export const ApiMigration = createAppModule({
+  name: "ApiMigration",
+  config(app) {
+    const core = app.getModule(CoreOutput);
+    const graphql = app.getModule(ApiGraphql);
+    const backgroundTask = app.getModule(ApiBackgroundTask);
+    const role = createLambdaRole(app, {
+      name: "migration-lambda-role",
+      policy: graphql.policy.output
+    });
+    const migration = app.addResource(aws.lambda.Function, {
+      name: "data-migration",
+      config: {
+        handler: "handler.handler",
+        timeout: 900,
+        runtime: LAMBDA_RUNTIME,
+        memorySize: 3008,
+        role: role.output.arn,
+        description: "Performs data migrations.",
+        code: new pulumi.asset.AssetArchive({
+          ".": new pulumi.asset.FileArchive(path.join(app.paths.workspace, "migration/build"))
+        }),
+        environment: {
+          variables: getCommonLambdaEnvVariables().apply(value => ({
+            ...value,
+            COGNITO_REGION: getEnvVariableAwsRegion(),
+            COGNITO_USER_POOL_ID: core.cognitoUserPoolId,
+            DB_TABLE: core.primaryDynamodbTableName,
+            DB_TABLE_LOG: core.logDynamodbTableName,
+            DB_TABLE_AUDIT_LOGS: core.auditLogsDynamodbTableName,
+            DB_TABLE_OPENSEARCH: core.opensearchDynamodbTableName,
+            OPENSEARCH_ENDPOINT: core.opensearchDomainEndpoint,
+            OPENSEARCH_INDEX_PREFIX: process.env.OPENSEARCH_INDEX_PREFIX,
+            OPENSEARCH_SHARED_INDEXES: process.env.OPENSEARCH_SHARED_INDEXES,
+            S3_BUCKET: core.fileManagerBucketId
+          }))
+        },
+        vpcConfig: app.getModule(VpcConfig).functionVpcConfig,
+        loggingConfig: {
+          logFormat: "JSON"
+        }
+      }
+    });
+    // Add IAM policy to allow states:StartExecution for the background task Step Function
+    const stepFunctionPolicy = app.addResource(aws.iam.Policy, {
+      name: "migration-lambda-step-function-policy",
+      config: {
+        policy: {
+          Version: "2012-10-17",
+          Statement: [{
+            Effect: "Allow",
+            Action: ["states:StartExecution"],
+            Resource: [pulumi.interpolate`${backgroundTask.stepFunction.output.arn}`, pulumi.interpolate`${backgroundTask.stepFunction.output.arn}/*`]
+          }]
+        }
+      }
+    });
+    // Attach policy to the Lambda role
+    app.addResource(aws.iam.RolePolicyAttachment, {
+      name: "migration-lambda-attach-step-function-policy",
+      config: {
+        role: role.output.name,
+        policyArn: stepFunctionPolicy.output.arn
+      }
+    });
+    return {
+      function: migration
+    };
+  }
+});
+//# sourceMappingURL=ApiMigration.js.map

package/pulumi/apps/api/ApiMigration.js.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"names":["path","pulumi","aws","createAppModule","createLambdaRole","getCommonLambdaEnvVariables","CoreOutput","VpcConfig","ApiBackgroundTask","ApiGraphql","LAMBDA_RUNTIME","getEnvVariableAwsRegion","ApiMigration","name","config","app","core","getModule","graphql","backgroundTask","role","policy","output","migration","addResource","lambda","Function","handler","timeout","runtime","memorySize","arn","description","code","asset","AssetArchive","FileArchive","join","paths","workspace","environment","variables","apply","value","COGNITO_REGION","COGNITO_USER_POOL_ID","cognitoUserPoolId","DB_TABLE","primaryDynamodbTableName","DB_TABLE_LOG","logDynamodbTableName","DB_TABLE_AUDIT_LOGS","auditLogsDynamodbTableName","DB_TABLE_OPENSEARCH","opensearchDynamodbTableName","OPENSEARCH_ENDPOINT","opensearchDomainEndpoint","OPENSEARCH_INDEX_PREFIX","process","env","OPENSEARCH_SHARED_INDEXES","S3_BUCKET","fileManagerBucketId","vpcConfig","functionVpcConfig","loggingConfig","logFormat","stepFunctionPolicy","iam","Policy","Version","Statement","Effect","Action","Resource","interpolate","stepFunction","RolePolicyAttachment","policyArn","function"],"sources":["ApiMigration.ts"],"sourcesContent":["import path from \"path\";\nimport * as pulumi from \"@pulumi/pulumi\";\nimport * as aws from \"@pulumi/aws\";\nimport type { PulumiApp, PulumiAppModule } from \"@webiny/pulumi\";\nimport { createAppModule } from \"@webiny/pulumi\";\nimport { createLambdaRole, getCommonLambdaEnvVariables } from \"../lambdaUtils.js\";\nimport { CoreOutput, VpcConfig } from \"../common/index.js\";\nimport { ApiBackgroundTask, ApiGraphql } from \"~/pulumi/apps/index.js\";\nimport { LAMBDA_RUNTIME } from \"~/pulumi/constants.js\";\nimport { getEnvVariableAwsRegion } from \"~/pulumi/env/awsRegion.js\";\n\nexport type ApiMigration = PulumiAppModule<typeof ApiMigration>;\n\nexport const ApiMigration = createAppModule({\n name: \"ApiMigration\",\n config(app: PulumiApp) {\n const core = app.getModule(CoreOutput);\n const graphql = app.getModule(ApiGraphql);\n const backgroundTask = app.getModule(ApiBackgroundTask);\n\n const role = createLambdaRole(app, {\n name: \"migration-lambda-role\",\n policy: graphql.policy.output\n });\n\n const migration = app.addResource(aws.lambda.Function, {\n name: \"data-migration\",\n config: {\n handler: \"handler.handler\",\n timeout: 900,\n runtime: LAMBDA_RUNTIME,\n memorySize: 3008,\n role: role.output.arn,\n description: \"Performs data migrations.\",\n code: new pulumi.asset.AssetArchive({\n \".\": new pulumi.asset.FileArchive(\n path.join(app.paths.workspace, \"migration/build\")\n )\n }),\n environment: {\n variables: getCommonLambdaEnvVariables().apply(value => ({\n ...value,\n COGNITO_REGION: getEnvVariableAwsRegion(),\n COGNITO_USER_POOL_ID: core.cognitoUserPoolId,\n DB_TABLE: core.primaryDynamodbTableName,\n DB_TABLE_LOG: core.logDynamodbTableName,\n DB_TABLE_AUDIT_LOGS: core.auditLogsDynamodbTableName,\n DB_TABLE_OPENSEARCH: core.opensearchDynamodbTableName,\n OPENSEARCH_ENDPOINT: core.opensearchDomainEndpoint,\n OPENSEARCH_INDEX_PREFIX: process.env.OPENSEARCH_INDEX_PREFIX,\n OPENSEARCH_SHARED_INDEXES: process.env.OPENSEARCH_SHARED_INDEXES,\n S3_BUCKET: core.fileManagerBucketId\n })) as Record<string, any>\n },\n vpcConfig: app.getModule(VpcConfig).functionVpcConfig,\n loggingConfig: {\n logFormat: \"JSON\"\n }\n }\n });\n\n // Add IAM policy to allow states:StartExecution for the background task Step Function\n const stepFunctionPolicy = app.addResource(aws.iam.Policy, {\n name: \"migration-lambda-step-function-policy\",\n config: {\n policy: {\n Version: \"2012-10-17\",\n Statement: [\n {\n Effect: \"Allow\",\n Action: [\"states:StartExecution\"],\n Resource: [\n pulumi.interpolate`${backgroundTask.stepFunction.output.arn}`,\n pulumi.interpolate`${backgroundTask.stepFunction.output.arn}/*`\n ]\n }\n ]\n }\n }\n });\n\n // Attach policy to the Lambda role\n app.addResource(aws.iam.RolePolicyAttachment, {\n name: \"migration-lambda-attach-step-function-policy\",\n config: {\n role: role.output.name,\n policyArn: stepFunctionPolicy.output.arn\n }\n });\n\n return {\n function: migration\n };\n }\n});\n"],"mappings":"AAAA,OAAOA,IAAI,MAAM,MAAM;AACvB,OAAO,KAAKC,MAAM,MAAM,gBAAgB;AACxC,OAAO,KAAKC,GAAG,MAAM,aAAa;AAElC,SAASC,eAAe,QAAQ,gBAAgB;AAChD,SAASC,gBAAgB,EAAEC,2BAA2B;AACtD,SAASC,UAAU,EAAEC,SAAS;AAC9B,SAASC,iBAAiB,EAAEC,UAAU;AACtC,SAASC,cAAc;AACvB,SAASC,uBAAuB;AAIhC,OAAO,MAAMC,YAAY,GAAGT,eAAe,CAAC;EACxCU,IAAI,EAAE,cAAc;EACpBC,MAAMA,CAACC,GAAc,EAAE;IACnB,MAAMC,IAAI,GAAGD,GAAG,CAACE,SAAS,CAACX,UAAU,CAAC;IACtC,MAAMY,OAAO,GAAGH,GAAG,CAACE,SAAS,CAACR,UAAU,CAAC;IACzC,MAAMU,cAAc,GAAGJ,GAAG,CAACE,SAAS,CAACT,iBAAiB,CAAC;IAEvD,MAAMY,IAAI,GAAGhB,gBAAgB,CAACW,GAAG,EAAE;MAC/BF,IAAI,EAAE,uBAAuB;MAC7BQ,MAAM,EAAEH,OAAO,CAACG,MAAM,CAACC;IAC3B,CAAC,CAAC;IAEF,MAAMC,SAAS,GAAGR,GAAG,CAACS,WAAW,CAACtB,GAAG,CAACuB,MAAM,CAACC,QAAQ,EAAE;MACnDb,IAAI,EAAE,gBAAgB;MACtBC,MAAM,EAAE;QACJa,OAAO,EAAE,iBAAiB;QAC1BC,OAAO,EAAE,GAAG;QACZC,OAAO,EAAEnB,cAAc;QACvBoB,UAAU,EAAE,IAAI;QAChBV,IAAI,EAAEA,IAAI,CAACE,MAAM,CAACS,GAAG;QACrBC,WAAW,EAAE,2BAA2B;QACxCC,IAAI,EAAE,IAAIhC,MAAM,CAACiC,KAAK,CAACC,YAAY,CAAC;UAChC,GAAG,EAAE,IAAIlC,MAAM,CAACiC,KAAK,CAACE,WAAW,CAC7BpC,IAAI,CAACqC,IAAI,CAACtB,GAAG,CAACuB,KAAK,CAACC,SAAS,EAAE,iBAAiB,CACpD;QACJ,CAAC,CAAC;QACFC,WAAW,EAAE;UACTC,SAAS,EAAEpC,2BAA2B,CAAC,CAAC,CAACqC,KAAK,CAACC,KAAK,KAAK;YACrD,GAAGA,KAAK;YACRC,cAAc,EAAEjC,uBAAuB,CAAC,CAAC;YACzCkC,oBAAoB,EAAE7B,IAAI,CAAC8B,iBAAiB;YAC5CC,QAAQ,EAAE/B,IAAI,CAACgC,wBAAwB;YACvCC,YAAY,EAAEjC,IAAI,CAACkC,oBAAoB;YACvCC,mBAAmB,EAAEnC,IAAI,CAACoC,0BAA0B;YACpDC,mBAAmB,EAAErC,IAAI,CAACsC,2BAA2B;YACrDC,mBAAmB,EAAEvC,IAAI,CAACwC,wBAAwB;YAClDC,uBAAuB,EAAEC,OAAO,CAACC,GAAG,CAACF,uBAAuB;YAC5DG,yBAAyB,EAAEF,OAAO,CAACC,GAAG,CAACC,yBAAyB;YAChEC,SAAS,EAAE7C,IAAI,CAAC8C;UACpB,CAAC,CAAC;QACN,CAAC;QACDC,SAAS,EAAEhD,GAAG,CAACE,SAAS,CAACV,SAAS,CAAC,CAACyD,iBAAiB;QACrDC,aAAa,EAAE;UACXC,SAAS,EAAE;QACf;MACJ;IACJ,CAAC,CAAC;;IAEF;IACA,MAAMC,kBAAkB,GAAGpD,GAAG,CAACS,WAAW,CAACtB,GAAG,CAACkE,GAAG,CAACC,MAAM,EAAE;MACvDxD,IAAI,EAAE,uCAAuC;MAC7CC,MAAM,EAAE;QACJO,MAAM,EAAE;UACJiD,OAAO,EAAE,YAAY;UACrBC,SAAS,EAAE,CACP;YACIC,MAAM,EAAE,OAAO;YACfC,MAAM,EAAE,CAAC,uBAAuB,CAAC;YACjCC,QAAQ,EAAE,CACNzE,MAAM,CAAC0E,WAAW,GAAGxD,cAAc,CAACyD,YAAY,CAACtD,MAAM,CAACS,GAAG,EAAE,EAC7D9B,MAAM,CAAC0E,WAAW,GAAGxD,cAAc,CAACyD,YAAY,CAACtD,MAAM,CAACS,GAAG,IAAI;UAEvE,CAAC;QAET;MACJ;IACJ,CAAC,CAAC;;IAEF;IACAhB,GAAG,CAACS,WAAW,CAACtB,GAAG,CAACkE,GAAG,CAACS,oBAAoB,EAAE;MAC1ChE,IAAI,EAAE,8CAA8C;MACpDC,MAAM,EAAE;QACJM,IAAI,EAAEA,IAAI,CAACE,MAAM,CAACT,IAAI;QACtBiE,SAAS,EAAEX,kBAAkB,CAAC7C,MAAM,CAACS;MACzC;IACJ,CAAC,CAAC;IAEF,OAAO;MACHgD,QAAQ,EAAExD;IACd,CAAC;EACL;AACJ,CAAC,CAAC","ignoreList":[]}

package/pulumi/apps/api/ApiOutput.d.ts ADDED Viewed

@@ -0,0 +1,23 @@
+import type { PulumiAppModule } from "@webiny/pulumi";
+export type ApiOutput = PulumiAppModule<typeof ApiOutput>;
+export declare const ApiOutput: import("@webiny/pulumi").PulumiAppModuleDefinition<import("@pulumi/pulumi").Output<import("@pulumi/pulumi").UnwrappedObject<{
+    apiDomain: string;
+    apiUrl: string;
+    graphqlLambdaRole: string;
+    graphqlLambdaRoleName: string;
+    cognitoAppClientId: string;
+    cognitoUserPoolId: string;
+    cognitoUserPoolPasswordPolicy: string;
+    dynamoDbTable: string;
+    region: string;
+    websocketApiId: string | number | boolean | string[] | number[] | undefined;
+    websocketApiUrl: string;
+    migrationLambdaArn: string;
+    graphqlLambdaName: string | number | boolean | string[] | number[] | undefined;
+    backgroundTaskLambdaArn: string | number | boolean | string[] | number[] | undefined;
+    backgroundTaskStepFunctionArn: string | number | boolean | string[] | number[] | undefined;
+    fileManagerManageLambdaArn: string;
+    fileManagerManageLambdaRole: string;
+    fileManagerManageLambdaRoleName: string;
+    fileManagerDownloadLambdaArn: string | number | boolean | string[] | number[] | undefined;
+}>>, void>;

package/pulumi/apps/api/ApiOutput.js ADDED Viewed

@@ -0,0 +1,36 @@
+import { createAppModule } from "@webiny/pulumi";
+import { getStackOutput } from "@webiny/project";
+export const ApiOutput = createAppModule({
+  name: "ApiOutput",
+  config(app) {
+    return app.addHandler(async () => {
+      const output = await getStackOutput("api");
+      if (!output) {
+        throw new Error("API application is not deployed.");
+      }
+      return {
+        apiDomain: output["apiDomain"],
+        apiUrl: output["apiUrl"],
+        graphqlLambdaRole: output["graphqlLambdaRole"],
+        graphqlLambdaRoleName: output["graphqlLambdaRoleName"],
+        cognitoAppClientId: output["cognitoAppClientId"],
+        cognitoUserPoolId: output["cognitoUserPoolId"],
+        cognitoUserPoolPasswordPolicy: output["cognitoUserPoolPasswordPolicy"],
+        dynamoDbTable: output["dynamoDbTable"],
+        region: output["region"],
+        websocketApiId: output["websocketApiId"],
+        websocketApiUrl: output["websocketApiUrl"],
+        migrationLambdaArn: output["migrationLambdaArn"],
+        graphqlLambdaName: output["graphqlLambdaName"],
+        backgroundTaskLambdaArn: output["backgroundTaskLambdaArn"],
+        backgroundTaskStepFunctionArn: output["backgroundTaskStepFunctionArn"],
+        fileManagerManageLambdaArn: output["fileManagerManageLambdaArn"],
+        fileManagerManageLambdaRole: output["fileManagerManageLambdaRole"],
+        fileManagerManageLambdaRoleName: output["fileManagerManageLambdaRoleName"],
+        fileManagerDownloadLambdaArn: output["fileManagerDownloadLambdaArn"]
+      };
+    });
+  }
+});
+//# sourceMappingURL=ApiOutput.js.map

package/pulumi/apps/api/ApiOutput.js.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"names":["createAppModule","getStackOutput","ApiOutput","name","config","app","addHandler","output","Error","apiDomain","apiUrl","graphqlLambdaRole","graphqlLambdaRoleName","cognitoAppClientId","cognitoUserPoolId","cognitoUserPoolPasswordPolicy","dynamoDbTable","region","websocketApiId","websocketApiUrl","migrationLambdaArn","graphqlLambdaName","backgroundTaskLambdaArn","backgroundTaskStepFunctionArn","fileManagerManageLambdaArn","fileManagerManageLambdaRole","fileManagerManageLambdaRoleName","fileManagerDownloadLambdaArn"],"sources":["ApiOutput.ts"],"sourcesContent":["import type { PulumiAppModule } from \"@webiny/pulumi\";\nimport { createAppModule } from \"@webiny/pulumi\";\nimport { getStackOutput } from \"@webiny/project\";\nimport { type IDefaultStackOutput } from \"~/pulumi/types.js\";\n\nexport type ApiOutput = PulumiAppModule<typeof ApiOutput>;\n\nexport const ApiOutput = createAppModule({\n name: \"ApiOutput\",\n config(app) {\n return app.addHandler(async () => {\n const output = await getStackOutput<IDefaultStackOutput>(\"api\");\n\n if (!output) {\n throw new Error(\"API application is not deployed.\");\n }\n\n return {\n apiDomain: output[\"apiDomain\"],\n apiUrl: output[\"apiUrl\"],\n graphqlLambdaRole: output[\"graphqlLambdaRole\"],\n graphqlLambdaRoleName: output[\"graphqlLambdaRoleName\"],\n cognitoAppClientId: output[\"cognitoAppClientId\"],\n cognitoUserPoolId: output[\"cognitoUserPoolId\"],\n cognitoUserPoolPasswordPolicy: output[\"cognitoUserPoolPasswordPolicy\"],\n dynamoDbTable: output[\"dynamoDbTable\"],\n region: output[\"region\"],\n websocketApiId: output[\"websocketApiId\"],\n websocketApiUrl: output[\"websocketApiUrl\"],\n migrationLambdaArn: output[\"migrationLambdaArn\"],\n graphqlLambdaName: output[\"graphqlLambdaName\"],\n backgroundTaskLambdaArn: output[\"backgroundTaskLambdaArn\"],\n backgroundTaskStepFunctionArn: output[\"backgroundTaskStepFunctionArn\"],\n fileManagerManageLambdaArn: output[\"fileManagerManageLambdaArn\"],\n fileManagerManageLambdaRole: output[\"fileManagerManageLambdaRole\"],\n fileManagerManageLambdaRoleName: output[\"fileManagerManageLambdaRoleName\"],\n fileManagerDownloadLambdaArn: output[\"fileManagerDownloadLambdaArn\"]\n };\n });\n }\n});\n"],"mappings":"AACA,SAASA,eAAe,QAAQ,gBAAgB;AAChD,SAASC,cAAc,QAAQ,iBAAiB;AAKhD,OAAO,MAAMC,SAAS,GAAGF,eAAe,CAAC;EACrCG,IAAI,EAAE,WAAW;EACjBC,MAAMA,CAACC,GAAG,EAAE;IACR,OAAOA,GAAG,CAACC,UAAU,CAAC,YAAY;MAC9B,MAAMC,MAAM,GAAG,MAAMN,cAAc,CAAsB,KAAK,CAAC;MAE/D,IAAI,CAACM,MAAM,EAAE;QACT,MAAM,IAAIC,KAAK,CAAC,kCAAkC,CAAC;MACvD;MAEA,OAAO;QACHC,SAAS,EAAEF,MAAM,CAAC,WAAW,CAAC;QAC9BG,MAAM,EAAEH,MAAM,CAAC,QAAQ,CAAC;QACxBI,iBAAiB,EAAEJ,MAAM,CAAC,mBAAmB,CAAC;QAC9CK,qBAAqB,EAAEL,MAAM,CAAC,uBAAuB,CAAC;QACtDM,kBAAkB,EAAEN,MAAM,CAAC,oBAAoB,CAAC;QAChDO,iBAAiB,EAAEP,MAAM,CAAC,mBAAmB,CAAC;QAC9CQ,6BAA6B,EAAER,MAAM,CAAC,+BAA+B,CAAC;QACtES,aAAa,EAAET,MAAM,CAAC,eAAe,CAAC;QACtCU,MAAM,EAAEV,MAAM,CAAC,QAAQ,CAAC;QACxBW,cAAc,EAAEX,MAAM,CAAC,gBAAgB,CAAC;QACxCY,eAAe,EAAEZ,MAAM,CAAC,iBAAiB,CAAC;QAC1Ca,kBAAkB,EAAEb,MAAM,CAAC,oBAAoB,CAAC;QAChDc,iBAAiB,EAAEd,MAAM,CAAC,mBAAmB,CAAC;QAC9Ce,uBAAuB,EAAEf,MAAM,CAAC,yBAAyB,CAAC;QAC1DgB,6BAA6B,EAAEhB,MAAM,CAAC,+BAA+B,CAAC;QACtEiB,0BAA0B,EAAEjB,MAAM,CAAC,4BAA4B,CAAC;QAChEkB,2BAA2B,EAAElB,MAAM,CAAC,6BAA6B,CAAC;QAClEmB,+BAA+B,EAAEnB,MAAM,CAAC,iCAAiC,CAAC;QAC1EoB,4BAA4B,EAAEpB,MAAM,CAAC,8BAA8B;MACvE,CAAC;IACL,CAAC,CAAC;EACN;AACJ,CAAC,CAAC","ignoreList":[]}

package/pulumi/apps/api/ApiScheduler.d.ts ADDED Viewed

@@ -0,0 +1,8 @@
+import type { PulumiAppModule } from "@webiny/pulumi";
+export type ApiScheduler = PulumiAppModule<typeof ApiScheduler>;
+export declare const ApiSchedulerBaseName = "scheduler-resolver";
+export declare const ApiScheduler: import("@webiny/pulumi").PulumiAppModuleDefinition<{
+    invokeRole: import("@webiny/pulumi").PulumiAppResource<typeof import("@pulumi/aws/iam/role").Role>;
+    invokePolicy: import("@webiny/pulumi").PulumiAppResource<typeof import("@pulumi/aws/iam/rolePolicy").RolePolicy>;
+    policyAttachment: import("@webiny/pulumi").PulumiAppResource<typeof import("@pulumi/aws/iam/rolePolicyAttachment").RolePolicyAttachment>;
+}, void>;

package/pulumi/apps/api/ApiScheduler.js ADDED Viewed

@@ -0,0 +1,100 @@
+import * as aws from "@pulumi/aws";
+import * as pulumi from "@pulumi/pulumi";
+import { createAppModule } from "@webiny/pulumi";
+import { ApiGraphql } from "../index.js";
+import { getAwsAccountId, getAwsRegion } from "../awsUtils.js";
+import kebabCase from "lodash/kebabCase.js";
+export const ApiSchedulerBaseName = "scheduler-resolver";
+const createResourceName = name => {
+  return `${ApiSchedulerBaseName}-${kebabCase(name)}`;
+};
+export const ApiScheduler = createAppModule({
+  name: "ApiScheduler",
+  config(app) {
+    const awsRegion = getAwsRegion(app);
+    const awsAccountId = getAwsAccountId(app);
+    const graphql = app.getModule(ApiGraphql);
+    // const baseConfig = graphql.functions.graphql.config.clone();
+    /*
+    const schedulerResolverLambda = app.addResource(aws.lambda.Function, {
+        name: createResourceName("lambda"),
+        config: {
+            ...baseConfig,
+            layers: graphql.functions.graphql.output.layers.apply(arns => {
+                return Array.from(new Set([...(arns || []), getLayerArn("sharp")]));
+            }),
+            description: "Performs scheduled operations on Headless CMS entries.",
+            loggingConfig: {
+                logFormat: "JSON"
+            }
+        }
+    });
+    */
+    const schedulerResolverInvokeRole = app.addResource(aws.iam.Role, {
+      name: createResourceName("invokeRole"),
+      config: {
+        assumeRolePolicy: JSON.stringify({
+          Version: "2012-10-17",
+          Statement: [{
+            Effect: "Allow",
+            Principal: {
+              Service: "scheduler.amazonaws.com"
+            },
+            Action: "sts:AssumeRole"
+          }]
+        })
+      }
+    });
+    const schedulerResolverInvokeLambdaPolicy = app.addResource(aws.iam.RolePolicy, {
+      name: createResourceName("invokeLambdaPolicy"),
+      config: {
+        role: schedulerResolverInvokeRole.output.id,
+        policy: graphql.functions.graphql.output.arn.apply(resolverArn => {
+          return JSON.stringify({
+            Version: "2012-10-17",
+            Statement: [{
+              Effect: "Allow",
+              Action: ["lambda:InvokeFunction"],
+              Resource: resolverArn
+            }]
+          });
+        })
+      }
+    });
+    const schedulerControlPolicy = app.addResource(aws.iam.Policy, {
+      name: createResourceName("controlPolicy"),
+      config: {
+        description: "Allow GraphQL Lambda to manage EventBridge Scheduler",
+        policy: pulumi.all([schedulerResolverInvokeRole.output.arn, awsRegion, awsAccountId]).apply(([invokeRoleArn, region, accountId]) => {
+          return JSON.stringify({
+            Version: "2012-10-17",
+            Statement: [{
+              Effect: "Allow",
+              Action: ["scheduler:CreateSchedule", "scheduler:UpdateSchedule", "scheduler:DeleteSchedule", "scheduler:GetSchedule", "scheduler:ListSchedules"],
+              Resource: [`arn:aws:scheduler:${region}:${accountId}:schedule/default/*`]
+            }, {
+              Effect: "Allow",
+              Action: "iam:PassRole",
+              Resource: [invokeRoleArn, `${invokeRoleArn}/*`]
+            }]
+          });
+        })
+      }
+    });
+    const schedulerResolverPolicyAttachment = app.addResource(aws.iam.RolePolicyAttachment, {
+      name: createResourceName("graphqlSchedulerPolicyAttachment"),
+      config: {
+        role: graphql.role.output.name,
+        policyArn: schedulerControlPolicy.output.arn
+      }
+    });
+    return {
+      invokeRole: schedulerResolverInvokeRole,
+      invokePolicy: schedulerResolverInvokeLambdaPolicy,
+      policyAttachment: schedulerResolverPolicyAttachment
+    };
+  }
+});
+//# sourceMappingURL=ApiScheduler.js.map

package/pulumi/apps/api/ApiScheduler.js.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"names":["aws","pulumi","createAppModule","ApiGraphql","getAwsAccountId","getAwsRegion","kebabCase","ApiSchedulerBaseName","createResourceName","name","ApiScheduler","config","app","awsRegion","awsAccountId","graphql","getModule","schedulerResolverInvokeRole","addResource","iam","Role","assumeRolePolicy","JSON","stringify","Version","Statement","Effect","Principal","Service","Action","schedulerResolverInvokeLambdaPolicy","RolePolicy","role","output","id","policy","functions","arn","apply","resolverArn","Resource","schedulerControlPolicy","Policy","description","all","invokeRoleArn","region","accountId","schedulerResolverPolicyAttachment","RolePolicyAttachment","policyArn","invokeRole","invokePolicy","policyAttachment"],"sources":["ApiScheduler.ts"],"sourcesContent":["import * as aws from \"@pulumi/aws\";\nimport * as pulumi from \"@pulumi/pulumi\";\nimport type { PulumiApp, PulumiAppModule } from \"@webiny/pulumi\";\nimport { createAppModule } from \"@webiny/pulumi\";\nimport { ApiGraphql } from \"~/pulumi/apps/index.js\";\nimport { getAwsAccountId, getAwsRegion } from \"~/pulumi/apps/awsUtils.js\";\nimport kebabCase from \"lodash/kebabCase.js\";\n\nexport type ApiScheduler = PulumiAppModule<typeof ApiScheduler>;\n\nexport const ApiSchedulerBaseName = \"scheduler-resolver\";\n\nconst createResourceName = (name: string): string => {\n return `${ApiSchedulerBaseName}-${kebabCase(name)}`;\n};\n\nexport const ApiScheduler = createAppModule({\n name: \"ApiScheduler\",\n config(app: PulumiApp) {\n const awsRegion = getAwsRegion(app);\n const awsAccountId = getAwsAccountId(app);\n const graphql = app.getModule(ApiGraphql);\n // const baseConfig = graphql.functions.graphql.config.clone();\n /*\n const schedulerResolverLambda = app.addResource(aws.lambda.Function, {\n name: createResourceName(\"lambda\"),\n config: {\n ...baseConfig,\n layers: graphql.functions.graphql.output.layers.apply(arns => {\n return Array.from(new Set([...(arns || []), getLayerArn(\"sharp\")]));\n }),\n description: \"Performs scheduled operations on Headless CMS entries.\",\n loggingConfig: {\n logFormat: \"JSON\"\n }\n }\n });\n */\n\n const schedulerResolverInvokeRole = app.addResource(aws.iam.Role, {\n name: createResourceName(\"invokeRole\"),\n config: {\n assumeRolePolicy: JSON.stringify({\n Version: \"2012-10-17\",\n Statement: [\n {\n Effect: \"Allow\",\n Principal: {\n Service: \"scheduler.amazonaws.com\"\n },\n Action: \"sts:AssumeRole\"\n }\n ]\n })\n }\n });\n\n const schedulerResolverInvokeLambdaPolicy = app.addResource(aws.iam.RolePolicy, {\n name: createResourceName(\"invokeLambdaPolicy\"),\n config: {\n role: schedulerResolverInvokeRole.output.id,\n policy: graphql.functions.graphql.output.arn.apply(resolverArn => {\n return JSON.stringify({\n Version: \"2012-10-17\",\n Statement: [\n {\n Effect: \"Allow\",\n Action: [\"lambda:InvokeFunction\"],\n Resource: resolverArn\n }\n ]\n });\n })\n }\n });\n\n const schedulerControlPolicy = app.addResource(aws.iam.Policy, {\n name: createResourceName(\"controlPolicy\"),\n config: {\n description: \"Allow GraphQL Lambda to manage EventBridge Scheduler\",\n policy: pulumi\n .all([schedulerResolverInvokeRole.output.arn, awsRegion, awsAccountId])\n .apply(([invokeRoleArn, region, accountId]) => {\n return JSON.stringify({\n Version: \"2012-10-17\",\n Statement: [\n {\n Effect: \"Allow\",\n Action: [\n \"scheduler:CreateSchedule\",\n \"scheduler:UpdateSchedule\",\n \"scheduler:DeleteSchedule\",\n \"scheduler:GetSchedule\",\n \"scheduler:ListSchedules\"\n ],\n Resource: [\n `arn:aws:scheduler:${region}:${accountId}:schedule/default/*`\n ]\n },\n {\n Effect: \"Allow\",\n Action: \"iam:PassRole\",\n Resource: [invokeRoleArn, `${invokeRoleArn}/*`]\n }\n ]\n });\n })\n }\n });\n\n const schedulerResolverPolicyAttachment = app.addResource(aws.iam.RolePolicyAttachment, {\n name: createResourceName(\"graphqlSchedulerPolicyAttachment\"),\n config: {\n role: graphql.role.output.name,\n policyArn: schedulerControlPolicy.output.arn\n }\n });\n\n return {\n invokeRole: schedulerResolverInvokeRole,\n invokePolicy: schedulerResolverInvokeLambdaPolicy,\n policyAttachment: schedulerResolverPolicyAttachment\n };\n }\n});\n"],"mappings":"AAAA,OAAO,KAAKA,GAAG,MAAM,aAAa;AAClC,OAAO,KAAKC,MAAM,MAAM,gBAAgB;AAExC,SAASC,eAAe,QAAQ,gBAAgB;AAChD,SAASC,UAAU;AACnB,SAASC,eAAe,EAAEC,YAAY;AACtC,OAAOC,SAAS,MAAM,qBAAqB;AAI3C,OAAO,MAAMC,oBAAoB,GAAG,oBAAoB;AAExD,MAAMC,kBAAkB,GAAIC,IAAY,IAAa;EACjD,OAAO,GAAGF,oBAAoB,IAAID,SAAS,CAACG,IAAI,CAAC,EAAE;AACvD,CAAC;AAED,OAAO,MAAMC,YAAY,GAAGR,eAAe,CAAC;EACxCO,IAAI,EAAE,cAAc;EACpBE,MAAMA,CAACC,GAAc,EAAE;IACnB,MAAMC,SAAS,GAAGR,YAAY,CAACO,GAAG,CAAC;IACnC,MAAME,YAAY,GAAGV,eAAe,CAACQ,GAAG,CAAC;IACzC,MAAMG,OAAO,GAAGH,GAAG,CAACI,SAAS,CAACb,UAAU,CAAC;IACzC;IACA;AACR;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;;IAEQ,MAAMc,2BAA2B,GAAGL,GAAG,CAACM,WAAW,CAAClB,GAAG,CAACmB,GAAG,CAACC,IAAI,EAAE;MAC9DX,IAAI,EAAED,kBAAkB,CAAC,YAAY,CAAC;MACtCG,MAAM,EAAE;QACJU,gBAAgB,EAAEC,IAAI,CAACC,SAAS,CAAC;UAC7BC,OAAO,EAAE,YAAY;UACrBC,SAAS,EAAE,CACP;YACIC,MAAM,EAAE,OAAO;YACfC,SAAS,EAAE;cACPC,OAAO,EAAE;YACb,CAAC;YACDC,MAAM,EAAE;UACZ,CAAC;QAET,CAAC;MACL;IACJ,CAAC,CAAC;IAEF,MAAMC,mCAAmC,GAAGlB,GAAG,CAACM,WAAW,CAAClB,GAAG,CAACmB,GAAG,CAACY,UAAU,EAAE;MAC5EtB,IAAI,EAAED,kBAAkB,CAAC,oBAAoB,CAAC;MAC9CG,MAAM,EAAE;QACJqB,IAAI,EAAEf,2BAA2B,CAACgB,MAAM,CAACC,EAAE;QAC3CC,MAAM,EAAEpB,OAAO,CAACqB,SAAS,CAACrB,OAAO,CAACkB,MAAM,CAACI,GAAG,CAACC,KAAK,CAACC,WAAW,IAAI;UAC9D,OAAOjB,IAAI,CAACC,SAAS,CAAC;YAClBC,OAAO,EAAE,YAAY;YACrBC,SAAS,EAAE,CACP;cACIC,MAAM,EAAE,OAAO;cACfG,MAAM,EAAE,CAAC,uBAAuB,CAAC;cACjCW,QAAQ,EAAED;YACd,CAAC;UAET,CAAC,CAAC;QACN,CAAC;MACL;IACJ,CAAC,CAAC;IAEF,MAAME,sBAAsB,GAAG7B,GAAG,CAACM,WAAW,CAAClB,GAAG,CAACmB,GAAG,CAACuB,MAAM,EAAE;MAC3DjC,IAAI,EAAED,kBAAkB,CAAC,eAAe,CAAC;MACzCG,MAAM,EAAE;QACJgC,WAAW,EAAE,sDAAsD;QACnER,MAAM,EAAElC,MAAM,CACT2C,GAAG,CAAC,CAAC3B,2BAA2B,CAACgB,MAAM,CAACI,GAAG,EAAExB,SAAS,EAAEC,YAAY,CAAC,CAAC,CACtEwB,KAAK,CAAC,CAAC,CAACO,aAAa,EAAEC,MAAM,EAAEC,SAAS,CAAC,KAAK;UAC3C,OAAOzB,IAAI,CAACC,SAAS,CAAC;YAClBC,OAAO,EAAE,YAAY;YACrBC,SAAS,EAAE,CACP;cACIC,MAAM,EAAE,OAAO;cACfG,MAAM,EAAE,CACJ,0BAA0B,EAC1B,0BAA0B,EAC1B,0BAA0B,EAC1B,uBAAuB,EACvB,yBAAyB,CAC5B;cACDW,QAAQ,EAAE,CACN,qBAAqBM,MAAM,IAAIC,SAAS,qBAAqB;YAErE,CAAC,EACD;cACIrB,MAAM,EAAE,OAAO;cACfG,MAAM,EAAE,cAAc;cACtBW,QAAQ,EAAE,CAACK,aAAa,EAAE,GAAGA,aAAa,IAAI;YAClD,CAAC;UAET,CAAC,CAAC;QACN,CAAC;MACT;IACJ,CAAC,CAAC;IAEF,MAAMG,iCAAiC,GAAGpC,GAAG,CAACM,WAAW,CAAClB,GAAG,CAACmB,GAAG,CAAC8B,oBAAoB,EAAE;MACpFxC,IAAI,EAAED,kBAAkB,CAAC,kCAAkC,CAAC;MAC5DG,MAAM,EAAE;QACJqB,IAAI,EAAEjB,OAAO,CAACiB,IAAI,CAACC,MAAM,CAACxB,IAAI;QAC9ByC,SAAS,EAAET,sBAAsB,CAACR,MAAM,CAACI;MAC7C;IACJ,CAAC,CAAC;IAEF,OAAO;MACHc,UAAU,EAAElC,2BAA2B;MACvCmC,YAAY,EAAEtB,mCAAmC;MACjDuB,gBAAgB,EAAEL;IACtB,CAAC;EACL;AACJ,CAAC,CAAC","ignoreList":[]}

package/pulumi/apps/api/ApiWebsocket.d.ts ADDED Viewed

@@ -0,0 +1,14 @@
+import * as pulumi from "@pulumi/pulumi";
+import type { PulumiAppModule } from "@webiny/pulumi";
+export type ApiWebsocket = PulumiAppModule<typeof ApiWebsocket>;
+export declare const ApiWebsocket: import("@webiny/pulumi").PulumiAppModuleDefinition<{
+    websocketApi: import("@webiny/pulumi").PulumiAppResource<typeof import("@pulumi/aws/apigatewayv2/api").Api>;
+    websocketApiStage: import("@webiny/pulumi").PulumiAppResource<typeof import("@pulumi/aws/apigatewayv2/stage").Stage>;
+    websocketApiConnectRoute: import("@webiny/pulumi").PulumiAppResource<typeof import("@pulumi/aws/apigatewayv2/route").Route>;
+    websocketApiDisconnectRoute: import("@webiny/pulumi").PulumiAppResource<typeof import("@pulumi/aws/apigatewayv2/route").Route>;
+    websocketApiDefaultRoute: import("@webiny/pulumi").PulumiAppResource<typeof import("@pulumi/aws/apigatewayv2/route").Route>;
+    websocketLambdaPermission: import("@webiny/pulumi").PulumiAppResource<typeof import("@pulumi/aws/lambda/permission").Permission>;
+    lambdaWebsocketPolicy: import("@webiny/pulumi").PulumiAppResource<typeof import("@pulumi/aws/iam/policy").Policy>;
+    lambdaWebsocketRolePolicyAttachment: import("@webiny/pulumi").PulumiAppResource<typeof import("@pulumi/aws/iam/rolePolicyAttachment").RolePolicyAttachment>;
+    websocketApiUrl: pulumi.Output<string>;
+}, void>;