@webiny/project-aws 6.3.0-beta.4 → 6.4.0-beta.0
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- package/_templates/appTemplates/admin/src/index.tsx +0 -3
- package/abstractions/ApiGqlClient.js +2 -1
- package/abstractions/ApiGqlClient.js.map +1 -1
- package/abstractions/InvokeLambdaFunction.js +2 -1
- package/abstractions/InvokeLambdaFunction.js.map +1 -1
- package/abstractions/features/pulumi/AdminPulumi.js +2 -1
- package/abstractions/features/pulumi/AdminPulumi.js.map +1 -1
- package/abstractions/features/pulumi/ApiPulumi.js +2 -1
- package/abstractions/features/pulumi/ApiPulumi.js.map +1 -1
- package/abstractions/features/pulumi/CorePulumi.js +2 -1
- package/abstractions/features/pulumi/CorePulumi.js.map +1 -1
- package/abstractions/features/pulumi/index.js +0 -2
- package/abstractions/index.js +0 -2
- package/abstractions/services/AdminStackOutputService.js +2 -1
- package/abstractions/services/AdminStackOutputService.js.map +1 -1
- package/abstractions/services/ApiStackOutputService.js +2 -1
- package/abstractions/services/ApiStackOutputService.js.map +1 -1
- package/abstractions/services/CoreStackOutputService.js +2 -1
- package/abstractions/services/CoreStackOutputService.js.map +1 -1
- package/admin.js +5 -4
- package/admin.js.map +1 -1
- package/api.js +13 -12
- package/api.js.map +1 -1
- package/apps/createAdminApp.js +11 -12
- package/apps/createAdminApp.js.map +1 -1
- package/apps/createAdminAppConfig.js +12 -18
- package/apps/createAdminAppConfig.js.map +1 -1
- package/apps/createApiApp.js +17 -22
- package/apps/createApiApp.js.map +1 -1
- package/apps/createBlueGreenApp.js +13 -16
- package/apps/createBlueGreenApp.js.map +1 -1
- package/apps/createCoreApp.js +12 -13
- package/apps/createCoreApp.js.map +1 -1
- package/apps/createReactAppConfig.d.ts +0 -7
- package/apps/createReactAppConfig.js +56 -69
- package/apps/createReactAppConfig.js.map +1 -1
- package/apps/createSyncSystemApp.js +8 -7
- package/apps/createSyncSystemApp.js.map +1 -1
- package/apps/index.js +0 -2
- package/cli.js +3 -2
- package/cli.js.map +1 -1
- package/exports/extensions.js +0 -2
- package/exports/infra/admin.js +0 -2
- package/exports/infra/api.js +0 -2
- package/exports/infra/core.js +0 -2
- package/exports/infra.js +1 -3
- package/extensions/ApiLambdaFunction.js +45 -56
- package/extensions/ApiLambdaFunction.js.map +1 -1
- package/extensions/ApiRoute.js +90 -104
- package/extensions/ApiRoute.js.map +1 -1
- package/extensions/AwsDefaultRegion.js +17 -16
- package/extensions/AwsDefaultRegion.js.map +1 -1
- package/extensions/Cms/ModelFieldCompression.js +16 -15
- package/extensions/Cms/ModelFieldCompression.js.map +1 -1
- package/extensions/Encryption.js +30 -29
- package/extensions/Encryption.js.map +1 -1
- package/extensions/Mailer/Smtp.js +15 -14
- package/extensions/Mailer/Smtp.js.map +1 -1
- package/extensions/Mailer/Smtp.test.js +117 -131
- package/extensions/Mailer/Smtp.test.js.map +1 -1
- package/extensions/Mailer/SmtpParamsSchema.js +11 -14
- package/extensions/Mailer/SmtpParamsSchema.js.map +1 -1
- package/extensions/OpenSearch/EnsureOsServiceRoleBeforeCoreDeploy.js +25 -30
- package/extensions/OpenSearch/EnsureOsServiceRoleBeforeCoreDeploy.js.map +1 -1
- package/extensions/OpenSearch/EnsureOsWasDeployed.js +14 -24
- package/extensions/OpenSearch/EnsureOsWasDeployed.js.map +1 -1
- package/extensions/OpenSearch/InjectDdbEsLambdaFnHandler.js +25 -21
- package/extensions/OpenSearch/InjectDdbEsLambdaFnHandler.js.map +1 -1
- package/extensions/OpenSearch/ReplaceApiLambdaFnHandlers.js +26 -22
- package/extensions/OpenSearch/ReplaceApiLambdaFnHandlers.js.map +1 -1
- package/extensions/OpenSearch.js +30 -31
- package/extensions/OpenSearch.js.map +1 -1
- package/extensions/ProjectAws/AdminStackOutputService.js +0 -2
- package/extensions/ProjectAws/ApiStackOutputService.js +0 -2
- package/extensions/ProjectAws/AutoInstall/AutoInstallAfterApiDeploy.js +65 -74
- package/extensions/ProjectAws/AutoInstall/AutoInstallAfterApiDeploy.js.map +1 -1
- package/extensions/ProjectAws/AutoInstall.js +15 -14
- package/extensions/ProjectAws/AutoInstall.js.map +1 -1
- package/extensions/ProjectAws/BlueGreenDeployments/EnsureVariantBeforeDeploy.js +15 -19
- package/extensions/ProjectAws/BlueGreenDeployments/EnsureVariantBeforeDeploy.js.map +1 -1
- package/extensions/ProjectAws/BlueGreenDeployments/PrintDeploymentInfoAfterDeploy.js +56 -45
- package/extensions/ProjectAws/BlueGreenDeployments/PrintDeploymentInfoAfterDeploy.js.map +1 -1
- package/extensions/ProjectAws/BlueGreenDeployments/SetPrimaryVariantCliCommand.js +57 -55
- package/extensions/ProjectAws/BlueGreenDeployments/SetPrimaryVariantCliCommand.js.map +1 -1
- package/extensions/ProjectAws/BuildAppWorkspace.js +49 -54
- package/extensions/ProjectAws/BuildAppWorkspace.js.map +1 -1
- package/extensions/ProjectAws/CoreStackOutputService.js +0 -2
- package/extensions/ProjectAws/EnsureAwsCredentialsBeforeDeploy.js +26 -30
- package/extensions/ProjectAws/EnsureAwsCredentialsBeforeDeploy.js.map +1 -1
- package/extensions/ProjectAws/SetAdminEnvVars/SetAdminEnvVars.js +25 -38
- package/extensions/ProjectAws/SetAdminEnvVars/SetAdminEnvVars.js.map +1 -1
- package/extensions/ProjectAws/SetAdminEnvVars/SetAdminEnvVarsBeforeBuild.js +22 -17
- package/extensions/ProjectAws/SetAdminEnvVars/SetAdminEnvVarsBeforeBuild.js.map +1 -1
- package/extensions/ProjectAws/SetAdminEnvVars/SetAdminEnvVarsBeforeWatch.js +22 -17
- package/extensions/ProjectAws/SetAdminEnvVars/SetAdminEnvVarsBeforeWatch.js.map +1 -1
- package/extensions/ProjectAws/SetDatabaseSetupOutput.js +20 -21
- package/extensions/ProjectAws/SetDatabaseSetupOutput.js.map +1 -1
- package/extensions/ProjectAws/UploadAdminAppToS3.js +53 -58
- package/extensions/ProjectAws/UploadAdminAppToS3.js.map +1 -1
- package/extensions/ProjectAws/definitions.js +13 -6
- package/extensions/ProjectAws/definitions.js.map +1 -1
- package/extensions/ProjectAws.js +44 -45
- package/extensions/ProjectAws.js.map +1 -1
- package/extensions/RegisterRoutesPulumi.js +24 -29
- package/extensions/RegisterRoutesPulumi.js.map +1 -1
- package/extensions/definitions.js +10 -3
- package/extensions/definitions.js.map +1 -1
- package/extensions/index.js +0 -2
- package/features/ApiGqlClient.js +46 -51
- package/features/ApiGqlClient.js.map +1 -1
- package/features/InvokeLambdaFunction.js +30 -32
- package/features/InvokeLambdaFunction.js.map +1 -1
- package/features/index.js +0 -2
- package/index.js +0 -2
- package/infra.js +57 -59
- package/infra.js.map +1 -1
- package/package.json +14 -14
- package/project.js +7 -6
- package/project.js.map +1 -1
- package/pulumi/apps/admin/createAdminPulumiApp.js +36 -44
- package/pulumi/apps/admin/createAdminPulumiApp.js.map +1 -1
- package/pulumi/apps/admin/index.js +0 -2
- package/pulumi/apps/api/ApiBackgroundTask.js +153 -137
- package/pulumi/apps/api/ApiBackgroundTask.js.map +1 -1
- package/pulumi/apps/api/ApiCloudfront.js +188 -130
- package/pulumi/apps/api/ApiCloudfront.js.map +1 -1
- package/pulumi/apps/api/ApiFileManager.js +34 -33
- package/pulumi/apps/api/ApiFileManager.js.map +1 -1
- package/pulumi/apps/api/ApiGateway.js +67 -74
- package/pulumi/apps/api/ApiGateway.js.map +1 -1
- package/pulumi/apps/api/ApiGraphql.js +223 -152
- package/pulumi/apps/api/ApiGraphql.js.map +1 -1
- package/pulumi/apps/api/ApiOutput.js +29 -30
- package/pulumi/apps/api/ApiOutput.js.map +1 -1
- package/pulumi/apps/api/ApiScheduler.js +94 -92
- package/pulumi/apps/api/ApiScheduler.js.map +1 -1
- package/pulumi/apps/api/ApiWebsocket.js +141 -133
- package/pulumi/apps/api/ApiWebsocket.js.map +1 -1
- package/pulumi/apps/api/backgroundTask/definition.js +122 -144
- package/pulumi/apps/api/backgroundTask/definition.js.map +1 -1
- package/pulumi/apps/api/backgroundTask/policy.js +37 -23
- package/pulumi/apps/api/backgroundTask/policy.js.map +1 -1
- package/pulumi/apps/api/backgroundTask/role.js +29 -29
- package/pulumi/apps/api/backgroundTask/role.js.map +1 -1
- package/pulumi/apps/api/backgroundTask/types.js +9 -11
- package/pulumi/apps/api/backgroundTask/types.js.map +1 -1
- package/pulumi/apps/api/createApiPulumiApp.js +206 -274
- package/pulumi/apps/api/createApiPulumiApp.js.map +1 -1
- package/pulumi/apps/api/handleGuardDutyEvents.js +54 -51
- package/pulumi/apps/api/handleGuardDutyEvents.js.map +1 -1
- package/pulumi/apps/api/index.js +0 -2
- package/pulumi/apps/awsUtils.js +21 -24
- package/pulumi/apps/awsUtils.js.map +1 -1
- package/pulumi/apps/blueGreen/BlueGreenRouterApiGateway.js +37 -40
- package/pulumi/apps/blueGreen/BlueGreenRouterApiGateway.js.map +1 -1
- package/pulumi/apps/blueGreen/BlueGreenRouterCloudFront.js +83 -91
- package/pulumi/apps/blueGreen/BlueGreenRouterCloudFront.js.map +1 -1
- package/pulumi/apps/blueGreen/BlueGreenRouterCloudFrontStore.js +17 -16
- package/pulumi/apps/blueGreen/BlueGreenRouterCloudFrontStore.js.map +1 -1
- package/pulumi/apps/blueGreen/cloudfront/createCloudFrontDefaultCacheBehaviorPolicies.js +13 -12
- package/pulumi/apps/blueGreen/cloudfront/createCloudFrontDefaultCacheBehaviorPolicies.js.map +1 -1
- package/pulumi/apps/blueGreen/cloudfront/createCloudFrontFunctionDomainMap.js +9 -14
- package/pulumi/apps/blueGreen/cloudfront/createCloudFrontFunctionDomainMap.js.map +1 -1
- package/pulumi/apps/blueGreen/cloudfront/createOriginId.js +5 -7
- package/pulumi/apps/blueGreen/cloudfront/createOriginId.js.map +1 -1
- package/pulumi/apps/blueGreen/constants.js +15 -3
- package/pulumi/apps/blueGreen/constants.js.map +1 -1
- package/pulumi/apps/blueGreen/createBlueGreenPulumiApp.js +77 -103
- package/pulumi/apps/blueGreen/createBlueGreenPulumiApp.js.map +1 -1
- package/pulumi/apps/blueGreen/domains/attachDomainsToOutput.js +20 -26
- package/pulumi/apps/blueGreen/domains/attachDomainsToOutput.js.map +1 -1
- package/pulumi/apps/blueGreen/domains/convertApplicationDomains.js +17 -20
- package/pulumi/apps/blueGreen/domains/convertApplicationDomains.js.map +1 -1
- package/pulumi/apps/blueGreen/domains/getApplicationDomains.js +51 -61
- package/pulumi/apps/blueGreen/domains/getApplicationDomains.js.map +1 -1
- package/pulumi/apps/blueGreen/domains/resolveDomains.js +24 -38
- package/pulumi/apps/blueGreen/domains/resolveDomains.js.map +1 -1
- package/pulumi/apps/blueGreen/functions/buildHandlerFunction.js +7 -14
- package/pulumi/apps/blueGreen/functions/buildHandlerFunction.js.map +1 -1
- package/pulumi/apps/blueGreen/functions/handler.js +1 -57
- package/pulumi/apps/blueGreen/functions/handler.js.map +1 -1
- package/pulumi/apps/blueGreen/types.js +0 -3
- package/pulumi/apps/blueGreen/validation/validateDeployments.js +19 -24
- package/pulumi/apps/blueGreen/validation/validateDeployments.js.map +1 -1
- package/pulumi/apps/common/CoreOutput.js +34 -37
- package/pulumi/apps/common/CoreOutput.js.map +1 -1
- package/pulumi/apps/common/VpcConfig.js +20 -20
- package/pulumi/apps/common/VpcConfig.js.map +1 -1
- package/pulumi/apps/common/index.js +0 -2
- package/pulumi/apps/core/CoreAuditLogsDynamo.js +245 -182
- package/pulumi/apps/core/CoreAuditLogsDynamo.js.map +1 -1
- package/pulumi/apps/core/CoreCognito.js +117 -106
- package/pulumi/apps/core/CoreCognito.js.map +1 -1
- package/pulumi/apps/core/CoreDynamo.js +91 -70
- package/pulumi/apps/core/CoreDynamo.js.map +1 -1
- package/pulumi/apps/core/CoreEventBus.js +10 -9
- package/pulumi/apps/core/CoreEventBus.js.map +1 -1
- package/pulumi/apps/core/CoreFileManager.js +76 -68
- package/pulumi/apps/core/CoreFileManager.js.map +1 -1
- package/pulumi/apps/core/CoreOpenSearch.js +281 -305
- package/pulumi/apps/core/CoreOpenSearch.js.map +1 -1
- package/pulumi/apps/core/CoreVpc.js +155 -156
- package/pulumi/apps/core/CoreVpc.js.map +1 -1
- package/pulumi/apps/core/WatchCommand.js +94 -96
- package/pulumi/apps/core/WatchCommand.js.map +1 -1
- package/pulumi/apps/core/cognitoIdentityProviders/amazon.js +16 -22
- package/pulumi/apps/core/cognitoIdentityProviders/amazon.js.map +1 -1
- package/pulumi/apps/core/cognitoIdentityProviders/apple.js +16 -17
- package/pulumi/apps/core/cognitoIdentityProviders/apple.js.map +1 -1
- package/pulumi/apps/core/cognitoIdentityProviders/configure.js +44 -50
- package/pulumi/apps/core/cognitoIdentityProviders/configure.js.map +1 -1
- package/pulumi/apps/core/cognitoIdentityProviders/facebook.js +16 -17
- package/pulumi/apps/core/cognitoIdentityProviders/facebook.js.map +1 -1
- package/pulumi/apps/core/cognitoIdentityProviders/getIdpConfig.js +7 -8
- package/pulumi/apps/core/cognitoIdentityProviders/getIdpConfig.js.map +1 -1
- package/pulumi/apps/core/cognitoIdentityProviders/google.js +16 -17
- package/pulumi/apps/core/cognitoIdentityProviders/google.js.map +1 -1
- package/pulumi/apps/core/cognitoIdentityProviders/index.js +0 -2
- package/pulumi/apps/core/cognitoIdentityProviders/oidc.js +17 -18
- package/pulumi/apps/core/cognitoIdentityProviders/oidc.js.map +1 -1
- package/pulumi/apps/core/configureS3BucketMalwareProtection.js +251 -188
- package/pulumi/apps/core/configureS3BucketMalwareProtection.js.map +1 -1
- package/pulumi/apps/core/createCorePulumiApp.js +212 -280
- package/pulumi/apps/core/createCorePulumiApp.js.map +1 -1
- package/pulumi/apps/core/index.js +0 -2
- package/pulumi/apps/core/webinyWatchCommand/handler.js +45 -32
- package/pulumi/apps/core/webinyWatchCommand/handler.js.map +1 -1
- package/pulumi/apps/createAppBucket.js +157 -146
- package/pulumi/apps/createAppBucket.js.map +1 -1
- package/pulumi/apps/customDomain.js +7 -6
- package/pulumi/apps/customDomain.js.map +1 -1
- package/pulumi/apps/extensions/getAwsTagsFromExtension.js +8 -7
- package/pulumi/apps/extensions/getAwsTagsFromExtension.js.map +1 -1
- package/pulumi/apps/extensions/getBgDeploymentsConfigFromExtension.js +6 -7
- package/pulumi/apps/extensions/getBgDeploymentsConfigFromExtension.js.map +1 -1
- package/pulumi/apps/extensions/getOsConfigFromExtension.js +17 -41
- package/pulumi/apps/extensions/getOsConfigFromExtension.js.map +1 -1
- package/pulumi/apps/extensions/getVpcConfigFromExtension.js +13 -25
- package/pulumi/apps/extensions/getVpcConfigFromExtension.js.map +1 -1
- package/pulumi/apps/index.js +0 -3
- package/pulumi/apps/lambdaUtils.js +57 -61
- package/pulumi/apps/lambdaUtils.js.map +1 -1
- package/pulumi/apps/react/createReactPulumiApp.js +108 -129
- package/pulumi/apps/react/createReactPulumiApp.js.map +1 -1
- package/pulumi/apps/react/index.js +0 -2
- package/pulumi/apps/syncSystem/SyncSystemDynamo.js +77 -62
- package/pulumi/apps/syncSystem/SyncSystemDynamo.js.map +1 -1
- package/pulumi/apps/syncSystem/SyncSystemDynamoDb.js +74 -57
- package/pulumi/apps/syncSystem/SyncSystemDynamoDb.js.map +1 -1
- package/pulumi/apps/syncSystem/SyncSystemEventBus.js +77 -71
- package/pulumi/apps/syncSystem/SyncSystemEventBus.js.map +1 -1
- package/pulumi/apps/syncSystem/SyncSystemLambda.js +154 -86
- package/pulumi/apps/syncSystem/SyncSystemLambda.js.map +1 -1
- package/pulumi/apps/syncSystem/SyncSystemOutput.js +14 -13
- package/pulumi/apps/syncSystem/SyncSystemOutput.js.map +1 -1
- package/pulumi/apps/syncSystem/SyncSystemResolverLambda.js +56 -60
- package/pulumi/apps/syncSystem/SyncSystemResolverLambda.js.map +1 -1
- package/pulumi/apps/syncSystem/SyncSystemSQS.js +25 -49
- package/pulumi/apps/syncSystem/SyncSystemSQS.js.map +1 -1
- package/pulumi/apps/syncSystem/SyncSystemWorkerLambda.js +44 -43
- package/pulumi/apps/syncSystem/SyncSystemWorkerLambda.js.map +1 -1
- package/pulumi/apps/syncSystem/addTableItems.js +35 -45
- package/pulumi/apps/syncSystem/addTableItems.js.map +1 -1
- package/pulumi/apps/syncSystem/api/addServiceManifest.js +12 -14
- package/pulumi/apps/syncSystem/api/addServiceManifest.js.map +1 -1
- package/pulumi/apps/syncSystem/api/attachCognitoPermissions.js +49 -55
- package/pulumi/apps/syncSystem/api/attachCognitoPermissions.js.map +1 -1
- package/pulumi/apps/syncSystem/api/attachDynamoDbPermissions.js +88 -40
- package/pulumi/apps/syncSystem/api/attachDynamoDbPermissions.js.map +1 -1
- package/pulumi/apps/syncSystem/api/attachEventBusPermissions.js +37 -43
- package/pulumi/apps/syncSystem/api/attachEventBusPermissions.js.map +1 -1
- package/pulumi/apps/syncSystem/api/attachS3Permissions.js +51 -47
- package/pulumi/apps/syncSystem/api/attachS3Permissions.js.map +1 -1
- package/pulumi/apps/syncSystem/api/index.js +28 -46
- package/pulumi/apps/syncSystem/api/index.js.map +1 -1
- package/pulumi/apps/syncSystem/constants.js +2 -1
- package/pulumi/apps/syncSystem/constants.js.map +1 -1
- package/pulumi/apps/syncSystem/createSyncResourceName.js +2 -7
- package/pulumi/apps/syncSystem/createSyncResourceName.js.map +1 -1
- package/pulumi/apps/syncSystem/createSyncSystemPulumiApp.js +101 -166
- package/pulumi/apps/syncSystem/createSyncSystemPulumiApp.js.map +1 -1
- package/pulumi/apps/syncSystem/customApp.js +12 -16
- package/pulumi/apps/syncSystem/customApp.js.map +1 -1
- package/pulumi/apps/syncSystem/getSyncSystemOutput.js +5 -6
- package/pulumi/apps/syncSystem/getSyncSystemOutput.js.map +1 -1
- package/pulumi/apps/syncSystem/lambda/createSyncSystemResolverLambdaPolicy.js +108 -42
- package/pulumi/apps/syncSystem/lambda/createSyncSystemResolverLambdaPolicy.js.map +1 -1
- package/pulumi/apps/syncSystem/types.js +0 -3
- package/pulumi/constants.js +2 -1
- package/pulumi/constants.js.map +1 -1
- package/pulumi/env/awsRegion.js +3 -2
- package/pulumi/env/awsRegion.js.map +1 -1
- package/pulumi/env/base.js +11 -27
- package/pulumi/env/base.js.map +1 -1
- package/pulumi/env/env.js +3 -2
- package/pulumi/env/env.js.map +1 -1
- package/pulumi/env/projectName.js +3 -2
- package/pulumi/env/projectName.js.map +1 -1
- package/pulumi/env/variant.js +4 -3
- package/pulumi/env/variant.js.map +1 -1
- package/pulumi/extensions/AdminCustomDomains.js +15 -11
- package/pulumi/extensions/AdminCustomDomains.js.map +1 -1
- package/pulumi/extensions/AdminPulumi.js +16 -19
- package/pulumi/extensions/AdminPulumi.js.map +1 -1
- package/pulumi/extensions/ApiCustomDomains.js +15 -11
- package/pulumi/extensions/ApiCustomDomains.js.map +1 -1
- package/pulumi/extensions/ApiPulumi.js +16 -19
- package/pulumi/extensions/ApiPulumi.js.map +1 -1
- package/pulumi/extensions/AwsTags.js +11 -10
- package/pulumi/extensions/AwsTags.js.map +1 -1
- package/pulumi/extensions/BlueGreenDeployments.js +29 -26
- package/pulumi/extensions/BlueGreenDeployments.js.map +1 -1
- package/pulumi/extensions/CorePulumi.js +16 -19
- package/pulumi/extensions/CorePulumi.js.map +1 -1
- package/pulumi/extensions/OpenSearch.js +16 -15
- package/pulumi/extensions/OpenSearch.js.map +1 -1
- package/pulumi/extensions/Vpc.js +21 -20
- package/pulumi/extensions/Vpc.js.map +1 -1
- package/pulumi/extensions/index.js +12 -10
- package/pulumi/extensions/index.js.map +1 -1
- package/pulumi/features/AdminPulumi/AdminPulumi.js +18 -14
- package/pulumi/features/AdminPulumi/AdminPulumi.js.map +1 -1
- package/pulumi/features/AdminPulumi/index.js +0 -2
- package/pulumi/features/ApiPulumi/ApiPulumi.js +18 -14
- package/pulumi/features/ApiPulumi/ApiPulumi.js.map +1 -1
- package/pulumi/features/ApiPulumi/index.js +0 -2
- package/pulumi/features/CorePulumi/CorePulumi.js +18 -14
- package/pulumi/features/CorePulumi/CorePulumi.js.map +1 -1
- package/pulumi/features/CorePulumi/index.js +0 -2
- package/pulumi/features/index.js +0 -2
- package/pulumi/index.js +0 -2
- package/pulumi/types.js +0 -3
- package/pulumi/utils/addDomainsUrlsOutputs.js +20 -37
- package/pulumi/utils/addDomainsUrlsOutputs.js.map +1 -1
- package/pulumi/utils/addServiceManifestTableItem.js +12 -15
- package/pulumi/utils/addServiceManifestTableItem.js.map +1 -1
- package/pulumi/utils/crawlDirectory.js +10 -15
- package/pulumi/utils/crawlDirectory.js.map +1 -1
- package/pulumi/utils/createAssetArchive.js +5 -6
- package/pulumi/utils/createAssetArchive.js.map +1 -1
- package/pulumi/utils/dynamodb.js +26 -27
- package/pulumi/utils/dynamodb.js.map +1 -1
- package/pulumi/utils/getPresignedPost.js +27 -30
- package/pulumi/utils/getPresignedPost.js.map +1 -1
- package/pulumi/utils/index.js +1 -3
- package/pulumi/utils/lambdaEnvVariables.js +42 -54
- package/pulumi/utils/lambdaEnvVariables.js.map +1 -1
- package/pulumi/utils/tagResources.js +248 -28
- package/pulumi/utils/tagResources.js.map +1 -1
- package/pulumi/utils/uploadFolderToS3.js +101 -131
- package/pulumi/utils/uploadFolderToS3.js.map +1 -1
- package/pulumi/utils/withServiceManifest.js +28 -37
- package/pulumi/utils/withServiceManifest.js.map +1 -1
- package/services/AdminStackOutputService.js +14 -11
- package/services/AdminStackOutputService.js.map +1 -1
- package/services/ApiStackOutputService.js +14 -11
- package/services/ApiStackOutputService.js.map +1 -1
- package/services/CoreStackOutputService.js +14 -11
- package/services/CoreStackOutputService.js.map +1 -1
- package/utils/getTemplatesFolderPath.js +8 -10
- package/utils/getTemplatesFolderPath.js.map +1 -1
- package/utils/index.js +0 -2
- package/abstractions/features/pulumi/index.js.map +0 -1
- package/abstractions/index.js.map +0 -1
- package/apps/index.js.map +0 -1
- package/exports/extensions.js.map +0 -1
- package/exports/infra/admin.js.map +0 -1
- package/exports/infra/api.js.map +0 -1
- package/exports/infra/core.js.map +0 -1
- package/exports/infra.js.map +0 -1
- package/extensions/ProjectAws/AdminStackOutputService.js.map +0 -1
- package/extensions/ProjectAws/ApiStackOutputService.js.map +0 -1
- package/extensions/ProjectAws/CoreStackOutputService.js.map +0 -1
- package/extensions/index.js.map +0 -1
- package/features/index.js.map +0 -1
- package/index.js.map +0 -1
- package/pulumi/apps/admin/index.js.map +0 -1
- package/pulumi/apps/api/index.js.map +0 -1
- package/pulumi/apps/blueGreen/types.js.map +0 -1
- package/pulumi/apps/common/index.js.map +0 -1
- package/pulumi/apps/core/cognitoIdentityProviders/index.js.map +0 -1
- package/pulumi/apps/core/index.js.map +0 -1
- package/pulumi/apps/index.js.map +0 -1
- package/pulumi/apps/react/index.js.map +0 -1
- package/pulumi/apps/syncSystem/types.js.map +0 -1
- package/pulumi/features/AdminPulumi/index.js.map +0 -1
- package/pulumi/features/ApiPulumi/index.js.map +0 -1
- package/pulumi/features/CorePulumi/index.js.map +0 -1
- package/pulumi/features/index.js.map +0 -1
- package/pulumi/index.js.map +0 -1
- package/pulumi/types.js.map +0 -1
- package/pulumi/utils/index.js.map +0 -1
- package/utils/index.js.map +0 -1
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"
|
|
1
|
+
{"version":3,"file":"pulumi/apps/api/ApiGateway.js","sources":["../../../../src/pulumi/apps/api/ApiGateway.ts"],"sourcesContent":["import * as aws from \"@pulumi/aws\";\nimport type * as pulumi from \"@pulumi/pulumi\";\nimport type { PulumiApp, PulumiAppModule } from \"@webiny/pulumi\";\nimport { createAppModule } from \"@webiny/pulumi\";\n\nexport interface ApiRouteParams {\n path: pulumi.Input<string>;\n method: pulumi.Input<string>;\n function: pulumi.Input<string>;\n}\n\nexport type ApiGateway = PulumiAppModule<typeof ApiGateway>;\n\nexport const ApiGateway = createAppModule({\n name: \"ApiGateway\",\n config(app: PulumiApp, routesConfig: Record<string, ApiRouteParams>) {\n const api = app.addResource(aws.apigatewayv2.Api, {\n name: \"api-gateway\",\n config: {\n protocolType: \"HTTP\",\n description: \"Main API gateway\"\n }\n });\n\n const stage = app.addResource(aws.apigatewayv2.Stage, {\n name: \"default\",\n config: {\n apiId: api.output.id,\n autoDeploy: true,\n defaultRouteSettings: {\n // Only enable when debugging. Note that by default, API Gateway does not\n // have the required permissions to write logs to CloudWatch logs. More:\n // https://coady.tech/aws-cloudwatch-logs-arn/\n // loggingLevel: \"INFO\",\n throttlingBurstLimit: 5000,\n throttlingRateLimit: 10000\n }\n }\n });\n\n const routes: Record<string, ReturnType<typeof createRoute>> = {};\n\n for (const name of Object.keys(routesConfig)) {\n addRoute(name, routesConfig[name]);\n }\n\n return {\n api,\n stage,\n routes,\n addRoute\n };\n\n function addRoute(name: string, params: ApiRouteParams) {\n if (routes[name]) {\n return;\n }\n const route = createRoute(app, api.output, name, params);\n routes[name] = route;\n }\n }\n});\n\nfunction createRoute(\n app: PulumiApp,\n api: pulumi.Output<aws.apigatewayv2.Api>,\n name: string,\n params: ApiRouteParams\n) {\n const integration = app.addResource(aws.apigatewayv2.Integration, {\n name: name,\n config: {\n description: \"GraphQL API Integration\",\n apiId: api.id,\n integrationType: \"AWS_PROXY\",\n integrationMethod: params.method,\n integrationUri: params.function,\n passthroughBehavior: \"WHEN_NO_MATCH\"\n }\n });\n\n const route = app.addResource(aws.apigatewayv2.Route, {\n name: name,\n config: {\n apiId: api.id,\n routeKey: `${params.method} ${params.path}`,\n target: integration.output.id.apply(value => `integrations/${value}`)\n }\n });\n\n const permission = app.addResource(aws.lambda.Permission, {\n name: `allow-${name}`,\n config: {\n action: \"lambda:InvokeFunction\",\n function: params.function,\n principal: \"apigateway.amazonaws.com\",\n sourceArn: api.executionArn.apply(arn => `${arn}/*/*${params.path}`)\n }\n });\n\n return {\n integration,\n route,\n permission\n };\n}\n"],"names":["ApiGateway","createAppModule","app","routesConfig","api","aws","stage","routes","name","Object","addRoute","params","route","createRoute","integration","value","permission","arn"],"mappings":";;AAaO,MAAMA,aAAaC,gBAAgB;IACtC,MAAM;IACN,QAAOC,GAAc,EAAEC,YAA4C;QAC/D,MAAMC,MAAMF,IAAI,WAAW,CAACG,uCAAAA,YAAAA,CAAAA,GAAoB,EAAE;YAC9C,MAAM;YACN,QAAQ;gBACJ,cAAc;gBACd,aAAa;YACjB;QACJ;QAEA,MAAMC,QAAQJ,IAAI,WAAW,CAACG,uCAAAA,YAAAA,CAAAA,KAAsB,EAAE;YAClD,MAAM;YACN,QAAQ;gBACJ,OAAOD,IAAI,MAAM,CAAC,EAAE;gBACpB,YAAY;gBACZ,sBAAsB;oBAKlB,sBAAsB;oBACtB,qBAAqB;gBACzB;YACJ;QACJ;QAEA,MAAMG,SAAyD,CAAC;QAEhE,KAAK,MAAMC,QAAQC,OAAO,IAAI,CAACN,cAC3BO,SAASF,MAAML,YAAY,CAACK,KAAK;QAGrC,OAAO;YACHJ;YACAE;YACAC;YACAG;QACJ;QAEA,SAASA,SAASF,IAAY,EAAEG,MAAsB;YAClD,IAAIJ,MAAM,CAACC,KAAK,EACZ;YAEJ,MAAMI,QAAQC,YAAYX,KAAKE,IAAI,MAAM,EAAEI,MAAMG;YACjDJ,MAAM,CAACC,KAAK,GAAGI;QACnB;IACJ;AACJ;AAEA,SAASC,YACLX,GAAc,EACdE,GAAwC,EACxCI,IAAY,EACZG,MAAsB;IAEtB,MAAMG,cAAcZ,IAAI,WAAW,CAACG,uCAAAA,YAAAA,CAAAA,WAA4B,EAAE;QAC9D,MAAMG;QACN,QAAQ;YACJ,aAAa;YACb,OAAOJ,IAAI,EAAE;YACb,iBAAiB;YACjB,mBAAmBO,OAAO,MAAM;YAChC,gBAAgBA,OAAO,QAAQ;YAC/B,qBAAqB;QACzB;IACJ;IAEA,MAAMC,QAAQV,IAAI,WAAW,CAACG,uCAAAA,YAAAA,CAAAA,KAAsB,EAAE;QAClD,MAAMG;QACN,QAAQ;YACJ,OAAOJ,IAAI,EAAE;YACb,UAAU,GAAGO,OAAO,MAAM,CAAC,CAAC,EAAEA,OAAO,IAAI,EAAE;YAC3C,QAAQG,YAAY,MAAM,CAAC,EAAE,CAAC,KAAK,CAACC,CAAAA,QAAS,CAAC,aAAa,EAAEA,OAAO;QACxE;IACJ;IAEA,MAAMC,aAAad,IAAI,WAAW,CAACG,uCAAAA,MAAAA,CAAAA,UAAqB,EAAE;QACtD,MAAM,CAAC,MAAM,EAAEG,MAAM;QACrB,QAAQ;YACJ,QAAQ;YACR,UAAUG,OAAO,QAAQ;YACzB,WAAW;YACX,WAAWP,IAAI,YAAY,CAAC,KAAK,CAACa,CAAAA,MAAO,GAAGA,IAAI,IAAI,EAAEN,OAAO,IAAI,EAAE;QACvE;IACJ;IAEA,OAAO;QACHG;QACAF;QACAI;IACJ;AACJ"}
|
|
@@ -1,164 +1,235 @@
|
|
|
1
1
|
import path from "path";
|
|
2
|
-
import
|
|
3
|
-
import * as aws from "@pulumi/aws";
|
|
4
|
-
import toKebabCase from "lodash/kebabCase.js";
|
|
2
|
+
import kebabCase from "lodash/kebabCase.js";
|
|
5
3
|
import { createAppModule } from "@webiny/pulumi";
|
|
6
4
|
import { createLambdaRole, getCommonLambdaEnvVariables } from "../lambdaUtils.js";
|
|
7
5
|
import { CoreOutput, VpcConfig } from "../index.js";
|
|
8
6
|
import { getAwsAccountId, getAwsRegion } from "../awsUtils.js";
|
|
9
7
|
import { LAMBDA_RUNTIME } from "../../constants.js";
|
|
10
|
-
|
|
11
|
-
|
|
12
|
-
const
|
|
13
|
-
|
|
14
|
-
|
|
15
|
-
|
|
16
|
-
|
|
17
|
-
|
|
18
|
-
|
|
19
|
-
|
|
20
|
-
|
|
21
|
-
|
|
22
|
-
name: "graphql",
|
|
23
|
-
config: {
|
|
24
|
-
description: "Webiny's GraphQL APIs",
|
|
25
|
-
runtime: LAMBDA_RUNTIME,
|
|
26
|
-
handler: "handler.handler",
|
|
27
|
-
role: role.output.arn,
|
|
28
|
-
timeout: 30,
|
|
29
|
-
memorySize: 1024,
|
|
30
|
-
code: new pulumi.asset.AssetArchive({
|
|
31
|
-
".": new pulumi.asset.FileArchive(path.join(app.paths.workspace, "graphql/build"))
|
|
32
|
-
}),
|
|
33
|
-
environment: {
|
|
34
|
-
variables: getCommonLambdaEnvVariables().apply(value => ({
|
|
35
|
-
...value,
|
|
36
|
-
...params.env,
|
|
37
|
-
AWS_NODEJS_CONNECTION_REUSE_ENABLED: "1"
|
|
38
|
-
}))
|
|
39
|
-
},
|
|
40
|
-
vpcConfig: app.getModule(VpcConfig).functionVpcConfig,
|
|
41
|
-
loggingConfig: {
|
|
42
|
-
logFormat: "JSON"
|
|
43
|
-
}
|
|
44
|
-
}
|
|
45
|
-
});
|
|
46
|
-
|
|
47
|
-
// Create event rule.
|
|
48
|
-
const eventRule = app.addResource(aws.cloudwatch.EventRule, {
|
|
49
|
-
name: EMPTY_TRASH_BIN_EVENT_RULE_NAME,
|
|
50
|
-
config: {
|
|
51
|
-
description: "Enable us to empty the trash-bin ever day",
|
|
52
|
-
scheduleExpression: "cron(0 3 * * ? *)"
|
|
53
|
-
}
|
|
54
|
-
});
|
|
55
|
-
|
|
56
|
-
// Add required permission to the target lambda.
|
|
57
|
-
app.addResource(aws.lambda.Permission, {
|
|
58
|
-
name: EMPTY_TRASH_BIN_EVENT_PERMISSION_NAME,
|
|
59
|
-
config: {
|
|
60
|
-
action: "lambda:InvokeFunction",
|
|
61
|
-
function: graphql.output.arn,
|
|
62
|
-
principal: "events.amazonaws.com",
|
|
63
|
-
statementId: "allow-rule-invoke-" + EMPTY_TRASH_BIN_EVENT_RULE_NAME
|
|
64
|
-
}
|
|
65
|
-
});
|
|
66
|
-
|
|
67
|
-
// Target the main graphql lambda.
|
|
68
|
-
app.addResource(aws.cloudwatch.EventTarget, {
|
|
69
|
-
name: EMPTY_TRASH_BIN_EVENT_RULE_TARGET,
|
|
70
|
-
config: {
|
|
71
|
-
rule: eventRule.output.name,
|
|
72
|
-
arn: graphql.output.arn,
|
|
73
|
-
input: JSON.stringify({
|
|
74
|
-
source: "webiny.events",
|
|
75
|
-
"detail-type": "WebinyEmptyTrashBin"
|
|
76
|
-
})
|
|
77
|
-
}
|
|
78
|
-
});
|
|
79
|
-
return {
|
|
80
|
-
role,
|
|
81
|
-
policy,
|
|
82
|
-
functions: {
|
|
83
|
-
graphql
|
|
84
|
-
},
|
|
85
|
-
addRoute: routeParams => {
|
|
86
|
-
const apiGateway = app.resources.apiGateway;
|
|
87
|
-
if (!apiGateway) {
|
|
88
|
-
console.log("Could not add route because there is no apiGateway in the resources.");
|
|
89
|
-
return;
|
|
90
|
-
}
|
|
91
|
-
const kebabName = toKebabCase(routeParams.name);
|
|
92
|
-
if (kebabName !== routeParams.name) {
|
|
93
|
-
console.log(`Route name is not allowed: "${routeParams.name}".`);
|
|
94
|
-
return;
|
|
95
|
-
}
|
|
96
|
-
return apiGateway.addRoute(routeParams.name, {
|
|
97
|
-
path: routeParams.path,
|
|
98
|
-
method: routeParams.method,
|
|
99
|
-
function: graphql.output.arn
|
|
8
|
+
import * as __rspack_external__pulumi_pulumi_d0276039 from "@pulumi/pulumi";
|
|
9
|
+
import * as __rspack_external__pulumi_aws_e7af83c1 from "@pulumi/aws";
|
|
10
|
+
const EMPTY_TRASH_BIN_EVENT_RULE_NAME = "empty-trash-bin-event-rule";
|
|
11
|
+
const EMPTY_TRASH_BIN_EVENT_PERMISSION_NAME = "empty-trash-bin-event-target-permission";
|
|
12
|
+
const EMPTY_TRASH_BIN_EVENT_RULE_TARGET = "empty-trash-bin-event-rule-target";
|
|
13
|
+
const ApiGraphql = createAppModule({
|
|
14
|
+
name: "ApiGraphql",
|
|
15
|
+
config (app, params) {
|
|
16
|
+
const policy = createGraphqlLambdaPolicy(app);
|
|
17
|
+
const role = createLambdaRole(app, {
|
|
18
|
+
name: "api-lambda-role",
|
|
19
|
+
policy: policy.output
|
|
100
20
|
});
|
|
101
|
-
|
|
102
|
-
|
|
103
|
-
|
|
104
|
-
|
|
105
|
-
|
|
106
|
-
|
|
107
|
-
|
|
108
|
-
|
|
109
|
-
|
|
110
|
-
|
|
111
|
-
|
|
112
|
-
|
|
113
|
-
|
|
114
|
-
|
|
115
|
-
|
|
116
|
-
|
|
117
|
-
|
|
118
|
-
|
|
119
|
-
|
|
120
|
-
|
|
121
|
-
|
|
122
|
-
|
|
123
|
-
|
|
124
|
-
|
|
125
|
-
|
|
126
|
-
|
|
127
|
-
|
|
128
|
-
|
|
129
|
-
|
|
130
|
-
|
|
131
|
-
|
|
132
|
-
|
|
133
|
-
|
|
134
|
-
|
|
135
|
-
|
|
136
|
-
|
|
137
|
-
|
|
138
|
-
|
|
139
|
-
|
|
140
|
-
|
|
141
|
-
|
|
142
|
-
|
|
143
|
-
|
|
144
|
-
|
|
145
|
-
|
|
146
|
-
|
|
147
|
-
|
|
148
|
-
|
|
149
|
-
|
|
150
|
-
|
|
151
|
-
|
|
152
|
-
|
|
153
|
-
|
|
154
|
-
|
|
155
|
-
|
|
156
|
-
|
|
21
|
+
const graphql = app.addResource(__rspack_external__pulumi_aws_e7af83c1.lambda.Function, {
|
|
22
|
+
name: "graphql",
|
|
23
|
+
config: {
|
|
24
|
+
description: "Webiny's GraphQL APIs",
|
|
25
|
+
runtime: LAMBDA_RUNTIME,
|
|
26
|
+
handler: "handler.handler",
|
|
27
|
+
role: role.output.arn,
|
|
28
|
+
timeout: 30,
|
|
29
|
+
memorySize: 1024,
|
|
30
|
+
code: new __rspack_external__pulumi_pulumi_d0276039.asset.AssetArchive({
|
|
31
|
+
".": new __rspack_external__pulumi_pulumi_d0276039.asset.FileArchive(path.join(app.paths.workspace, "graphql/build"))
|
|
32
|
+
}),
|
|
33
|
+
environment: {
|
|
34
|
+
variables: getCommonLambdaEnvVariables().apply((value)=>({
|
|
35
|
+
...value,
|
|
36
|
+
...params.env,
|
|
37
|
+
AWS_NODEJS_CONNECTION_REUSE_ENABLED: "1"
|
|
38
|
+
}))
|
|
39
|
+
},
|
|
40
|
+
vpcConfig: app.getModule(VpcConfig).functionVpcConfig,
|
|
41
|
+
loggingConfig: {
|
|
42
|
+
logFormat: "JSON"
|
|
43
|
+
}
|
|
44
|
+
}
|
|
45
|
+
});
|
|
46
|
+
const eventRule = app.addResource(__rspack_external__pulumi_aws_e7af83c1.cloudwatch.EventRule, {
|
|
47
|
+
name: EMPTY_TRASH_BIN_EVENT_RULE_NAME,
|
|
48
|
+
config: {
|
|
49
|
+
description: "Enable us to empty the trash-bin ever day",
|
|
50
|
+
scheduleExpression: "cron(0 3 * * ? *)"
|
|
51
|
+
}
|
|
52
|
+
});
|
|
53
|
+
app.addResource(__rspack_external__pulumi_aws_e7af83c1.lambda.Permission, {
|
|
54
|
+
name: EMPTY_TRASH_BIN_EVENT_PERMISSION_NAME,
|
|
55
|
+
config: {
|
|
56
|
+
action: "lambda:InvokeFunction",
|
|
57
|
+
function: graphql.output.arn,
|
|
58
|
+
principal: "events.amazonaws.com",
|
|
59
|
+
statementId: "allow-rule-invoke-" + EMPTY_TRASH_BIN_EVENT_RULE_NAME
|
|
60
|
+
}
|
|
61
|
+
});
|
|
62
|
+
app.addResource(__rspack_external__pulumi_aws_e7af83c1.cloudwatch.EventTarget, {
|
|
63
|
+
name: EMPTY_TRASH_BIN_EVENT_RULE_TARGET,
|
|
64
|
+
config: {
|
|
65
|
+
rule: eventRule.output.name,
|
|
66
|
+
arn: graphql.output.arn,
|
|
67
|
+
input: JSON.stringify({
|
|
68
|
+
source: "webiny.events",
|
|
69
|
+
"detail-type": "WebinyEmptyTrashBin"
|
|
70
|
+
})
|
|
71
|
+
}
|
|
72
|
+
});
|
|
73
|
+
return {
|
|
74
|
+
role,
|
|
75
|
+
policy,
|
|
76
|
+
functions: {
|
|
77
|
+
graphql
|
|
78
|
+
},
|
|
79
|
+
addRoute: (routeParams)=>{
|
|
80
|
+
const apiGateway = app.resources.apiGateway;
|
|
81
|
+
if (!apiGateway) return void console.log("Could not add route because there is no apiGateway in the resources.");
|
|
82
|
+
const kebabName = kebabCase(routeParams.name);
|
|
83
|
+
if (kebabName !== routeParams.name) return void console.log(`Route name is not allowed: "${routeParams.name}".`);
|
|
84
|
+
return apiGateway.addRoute(routeParams.name, {
|
|
85
|
+
path: routeParams.path,
|
|
86
|
+
method: routeParams.method,
|
|
87
|
+
function: graphql.output.arn
|
|
88
|
+
});
|
|
89
|
+
}
|
|
157
90
|
};
|
|
158
|
-
return policy;
|
|
159
|
-
})
|
|
160
91
|
}
|
|
161
|
-
|
|
92
|
+
});
|
|
93
|
+
function createGraphqlLambdaPolicy(app) {
|
|
94
|
+
const coreOutput = app.getModule(CoreOutput);
|
|
95
|
+
const awsAccountId = getAwsAccountId(app);
|
|
96
|
+
const awsRegion = getAwsRegion(app);
|
|
97
|
+
return app.addResource(__rspack_external__pulumi_aws_e7af83c1.iam.Policy, {
|
|
98
|
+
name: "ApiGraphqlLambdaPolicy",
|
|
99
|
+
config: {
|
|
100
|
+
description: "This policy enables access to Dynamodb, S3, Lambda and Cognito IDP",
|
|
101
|
+
policy: __rspack_external__pulumi_pulumi_d0276039.all([
|
|
102
|
+
coreOutput
|
|
103
|
+
]).apply(([core])=>{
|
|
104
|
+
const policy = {
|
|
105
|
+
Version: "2012-10-17",
|
|
106
|
+
Statement: [
|
|
107
|
+
{
|
|
108
|
+
Sid: "PermissionForDynamodb",
|
|
109
|
+
Effect: "Allow",
|
|
110
|
+
Action: [
|
|
111
|
+
"dynamodb:BatchGetItem",
|
|
112
|
+
"dynamodb:BatchWriteItem",
|
|
113
|
+
"dynamodb:ConditionCheckItem",
|
|
114
|
+
"dynamodb:CreateBackup",
|
|
115
|
+
"dynamodb:CreateTable",
|
|
116
|
+
"dynamodb:CreateTableReplica",
|
|
117
|
+
"dynamodb:DeleteBackup",
|
|
118
|
+
"dynamodb:DeleteItem",
|
|
119
|
+
"dynamodb:DeleteTable",
|
|
120
|
+
"dynamodb:DeleteTableReplica",
|
|
121
|
+
"dynamodb:DescribeBackup",
|
|
122
|
+
"dynamodb:DescribeContinuousBackups",
|
|
123
|
+
"dynamodb:DescribeContributorInsights",
|
|
124
|
+
"dynamodb:DescribeExport",
|
|
125
|
+
"dynamodb:DescribeKinesisStreamingDestination",
|
|
126
|
+
"dynamodb:DescribeLimits",
|
|
127
|
+
"dynamodb:DescribeReservedCapacity",
|
|
128
|
+
"dynamodb:DescribeReservedCapacityOfferings",
|
|
129
|
+
"dynamodb:DescribeStream",
|
|
130
|
+
"dynamodb:DescribeTable",
|
|
131
|
+
"dynamodb:DescribeTableReplicaAutoScaling",
|
|
132
|
+
"dynamodb:DescribeTimeToLive",
|
|
133
|
+
"dynamodb:DisableKinesisStreamingDestination",
|
|
134
|
+
"dynamodb:EnableKinesisStreamingDestination",
|
|
135
|
+
"dynamodb:ExportTableToPointInTime",
|
|
136
|
+
"dynamodb:GetItem",
|
|
137
|
+
"dynamodb:GetRecords",
|
|
138
|
+
"dynamodb:GetShardIterator",
|
|
139
|
+
"dynamodb:ListBackups",
|
|
140
|
+
"dynamodb:ListContributorInsights",
|
|
141
|
+
"dynamodb:ListExports",
|
|
142
|
+
"dynamodb:ListStreams",
|
|
143
|
+
"dynamodb:ListTables",
|
|
144
|
+
"dynamodb:ListTagsOfResource",
|
|
145
|
+
"dynamodb:PartiQLDelete",
|
|
146
|
+
"dynamodb:PartiQLInsert",
|
|
147
|
+
"dynamodb:PartiQLSelect",
|
|
148
|
+
"dynamodb:PartiQLUpdate",
|
|
149
|
+
"dynamodb:PurchaseReservedCapacityOfferings",
|
|
150
|
+
"dynamodb:PutItem",
|
|
151
|
+
"dynamodb:Query",
|
|
152
|
+
"dynamodb:RestoreTableFromBackup",
|
|
153
|
+
"dynamodb:RestoreTableToPointInTime",
|
|
154
|
+
"dynamodb:Scan",
|
|
155
|
+
"dynamodb:UpdateContinuousBackups",
|
|
156
|
+
"dynamodb:UpdateContributorInsights",
|
|
157
|
+
"dynamodb:UpdateItem",
|
|
158
|
+
"dynamodb:UpdateTable",
|
|
159
|
+
"dynamodb:UpdateTableReplicaAutoScaling",
|
|
160
|
+
"dynamodb:UpdateTimeToLive"
|
|
161
|
+
],
|
|
162
|
+
Resource: [
|
|
163
|
+
`${core.primaryDynamodbTableArn}`,
|
|
164
|
+
`${core.primaryDynamodbTableArn}/*`,
|
|
165
|
+
`${core.auditLogsDynamodbTableArn}`,
|
|
166
|
+
`${core.auditLogsDynamodbTableArn}/*`,
|
|
167
|
+
...core.opensearchDynamodbTableArn ? [
|
|
168
|
+
`${core.opensearchDynamodbTableArn}`,
|
|
169
|
+
`${core.opensearchDynamodbTableArn}/*`
|
|
170
|
+
] : []
|
|
171
|
+
]
|
|
172
|
+
},
|
|
173
|
+
{
|
|
174
|
+
Sid: "PermissionForS3",
|
|
175
|
+
Effect: "Allow",
|
|
176
|
+
Action: [
|
|
177
|
+
"s3:ListBucket",
|
|
178
|
+
"s3:GetObjectAcl",
|
|
179
|
+
"s3:DeleteObject",
|
|
180
|
+
"s3:PutObjectAcl",
|
|
181
|
+
"s3:PutObject",
|
|
182
|
+
"s3:GetObject"
|
|
183
|
+
],
|
|
184
|
+
Resource: [
|
|
185
|
+
__rspack_external__pulumi_pulumi_d0276039.interpolate`arn:aws:s3:::${core.fileManagerBucketId}`,
|
|
186
|
+
__rspack_external__pulumi_pulumi_d0276039.interpolate`arn:aws:s3:::${core.fileManagerBucketId}/*`
|
|
187
|
+
]
|
|
188
|
+
},
|
|
189
|
+
{
|
|
190
|
+
Sid: "PermissionForLambda",
|
|
191
|
+
Effect: "Allow",
|
|
192
|
+
Action: [
|
|
193
|
+
"lambda:InvokeFunction"
|
|
194
|
+
],
|
|
195
|
+
Resource: __rspack_external__pulumi_pulumi_d0276039.interpolate`arn:aws:lambda:${awsRegion}:${awsAccountId}:function:*`
|
|
196
|
+
},
|
|
197
|
+
{
|
|
198
|
+
Sid: "PermissionForCognitoIdp",
|
|
199
|
+
Effect: "Allow",
|
|
200
|
+
Action: "cognito-idp:*",
|
|
201
|
+
Resource: `${core.cognitoUserPoolArn}`
|
|
202
|
+
},
|
|
203
|
+
{
|
|
204
|
+
Sid: "PermissionForEventBus",
|
|
205
|
+
Effect: "Allow",
|
|
206
|
+
Action: "events:PutEvents",
|
|
207
|
+
Resource: core.eventBusArn
|
|
208
|
+
},
|
|
209
|
+
{
|
|
210
|
+
Sid: "PermissionForCloudfront",
|
|
211
|
+
Effect: "Allow",
|
|
212
|
+
Action: "cloudfront:CreateInvalidation",
|
|
213
|
+
Resource: __rspack_external__pulumi_pulumi_d0276039.interpolate`arn:aws:cloudfront::${awsAccountId}:distribution/*`
|
|
214
|
+
},
|
|
215
|
+
...core.opensearchDomainArn ? [
|
|
216
|
+
{
|
|
217
|
+
Sid: "PermissionForOS",
|
|
218
|
+
Effect: "Allow",
|
|
219
|
+
Action: "es:*",
|
|
220
|
+
Resource: [
|
|
221
|
+
`${core.opensearchDomainArn}`,
|
|
222
|
+
`${core.opensearchDomainArn}/*`
|
|
223
|
+
]
|
|
224
|
+
}
|
|
225
|
+
] : []
|
|
226
|
+
]
|
|
227
|
+
};
|
|
228
|
+
return policy;
|
|
229
|
+
})
|
|
230
|
+
}
|
|
231
|
+
});
|
|
162
232
|
}
|
|
233
|
+
export { ApiGraphql };
|
|
163
234
|
|
|
164
235
|
//# sourceMappingURL=ApiGraphql.js.map
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"names":["path","pulumi","aws","toKebabCase","createAppModule","createLambdaRole","getCommonLambdaEnvVariables","CoreOutput","VpcConfig","getAwsAccountId","getAwsRegion","LAMBDA_RUNTIME","EMPTY_TRASH_BIN_EVENT_RULE_NAME","EMPTY_TRASH_BIN_EVENT_PERMISSION_NAME","EMPTY_TRASH_BIN_EVENT_RULE_TARGET","ApiGraphql","name","config","app","params","policy","createGraphqlLambdaPolicy","role","output","graphql","addResource","lambda","Function","description","runtime","handler","arn","timeout","memorySize","code","asset","AssetArchive","FileArchive","join","paths","workspace","environment","variables","apply","value","env","AWS_NODEJS_CONNECTION_REUSE_ENABLED","vpcConfig","getModule","functionVpcConfig","loggingConfig","logFormat","eventRule","cloudwatch","EventRule","scheduleExpression","Permission","action","function","principal","statementId","EventTarget","rule","input","JSON","stringify","source","functions","addRoute","routeParams","apiGateway","resources","console","log","kebabName","method","coreOutput","awsAccountId","awsRegion","iam","Policy","all","core","Version","Statement","Sid","Effect","Action","Resource","primaryDynamodbTableArn","auditLogsDynamodbTableArn","opensearchDynamodbTableArn","interpolate","fileManagerBucketId","cognitoUserPoolArn","eventBusArn","opensearchDomainArn"],"sources":["ApiGraphql.ts"],"sourcesContent":["import path from \"path\";\nimport * as pulumi from \"@pulumi/pulumi\";\nimport * as aws from \"@pulumi/aws\";\nimport toKebabCase from \"lodash/kebabCase.js\";\nimport type { PulumiApp, PulumiAppModule } from \"@webiny/pulumi\";\nimport { createAppModule } from \"@webiny/pulumi\";\nimport { createLambdaRole, getCommonLambdaEnvVariables } from \"../lambdaUtils.js\";\nimport { CoreOutput, VpcConfig } from \"~/pulumi/apps/index.js\";\nimport { getAwsAccountId, getAwsRegion } from \"../awsUtils.js\";\nimport { LAMBDA_RUNTIME } from \"~/pulumi/constants.js\";\n\ninterface GraphqlParams {\n env: Record<string, any>;\n}\n\nexport interface AddRouteParams {\n /**\n * Must be in kebab case (a-z and -)\n */\n name: string;\n path: `/${string}`;\n method: \"DELETE\" | \"GET\" | \"HEAD\" | \"PATCH\" | \"POST\" | \"PUT\" | \"OPTIONS\" | \"ANY\";\n}\n\nconst EMPTY_TRASH_BIN_EVENT_RULE_NAME = `empty-trash-bin-event-rule`;\nconst EMPTY_TRASH_BIN_EVENT_PERMISSION_NAME = `empty-trash-bin-event-target-permission`;\nconst EMPTY_TRASH_BIN_EVENT_RULE_TARGET = `empty-trash-bin-event-rule-target`;\n\nexport type ApiGraphql = PulumiAppModule<typeof ApiGraphql>;\n\nexport const ApiGraphql = createAppModule({\n name: \"ApiGraphql\",\n config(app: PulumiApp, params: GraphqlParams) {\n const policy = createGraphqlLambdaPolicy(app);\n const role = createLambdaRole(app, {\n name: \"api-lambda-role\",\n policy: policy.output\n });\n\n const graphql = app.addResource(aws.lambda.Function, {\n name: \"graphql\",\n config: {\n description: \"Webiny's GraphQL APIs\",\n runtime: LAMBDA_RUNTIME,\n handler: \"handler.handler\",\n role: role.output.arn,\n timeout: 30,\n memorySize: 1024,\n code: new pulumi.asset.AssetArchive({\n \".\": new pulumi.asset.FileArchive(\n path.join(app.paths.workspace, \"graphql/build\")\n )\n }),\n environment: {\n variables: getCommonLambdaEnvVariables().apply(value => ({\n ...value,\n ...params.env,\n AWS_NODEJS_CONNECTION_REUSE_ENABLED: \"1\"\n }))\n },\n vpcConfig: app.getModule(VpcConfig).functionVpcConfig,\n loggingConfig: {\n logFormat: \"JSON\"\n }\n }\n });\n\n // Create event rule.\n const eventRule = app.addResource(aws.cloudwatch.EventRule, {\n name: EMPTY_TRASH_BIN_EVENT_RULE_NAME,\n config: {\n description: \"Enable us to empty the trash-bin ever day\",\n scheduleExpression: \"cron(0 3 * * ? *)\"\n }\n });\n\n // Add required permission to the target lambda.\n app.addResource(aws.lambda.Permission, {\n name: EMPTY_TRASH_BIN_EVENT_PERMISSION_NAME,\n config: {\n action: \"lambda:InvokeFunction\",\n function: graphql.output.arn,\n principal: \"events.amazonaws.com\",\n statementId: \"allow-rule-invoke-\" + EMPTY_TRASH_BIN_EVENT_RULE_NAME\n }\n });\n\n // Target the main graphql lambda.\n app.addResource(aws.cloudwatch.EventTarget, {\n name: EMPTY_TRASH_BIN_EVENT_RULE_TARGET,\n config: {\n rule: eventRule.output.name,\n arn: graphql.output.arn,\n input: JSON.stringify({\n source: \"webiny.events\",\n \"detail-type\": \"WebinyEmptyTrashBin\"\n })\n }\n });\n\n return {\n role,\n policy,\n functions: {\n graphql\n },\n addRoute: (routeParams: AddRouteParams) => {\n const apiGateway: any = app.resources.apiGateway;\n if (!apiGateway) {\n console.log(\n \"Could not add route because there is no apiGateway in the resources.\"\n );\n return;\n }\n const kebabName = toKebabCase(routeParams.name);\n if (kebabName !== routeParams.name) {\n console.log(`Route name is not allowed: \"${routeParams.name}\".`);\n return;\n }\n return apiGateway.addRoute(routeParams.name, {\n path: routeParams.path,\n method: routeParams.method,\n function: graphql.output.arn\n });\n }\n };\n }\n});\n\nfunction createGraphqlLambdaPolicy(app: PulumiApp) {\n const coreOutput = app.getModule(CoreOutput);\n const awsAccountId = getAwsAccountId(app);\n const awsRegion = getAwsRegion(app);\n\n return app.addResource(aws.iam.Policy, {\n name: \"ApiGraphqlLambdaPolicy\",\n config: {\n description: \"This policy enables access to Dynamodb, S3, Lambda and Cognito IDP\",\n // Core is pulumi.Output, so we need to run apply() to resolve policy based on it\n policy: pulumi.all([coreOutput]).apply(([core]) => {\n const policy: aws.iam.PolicyDocument = {\n Version: \"2012-10-17\",\n Statement: [\n {\n Sid: \"PermissionForDynamodb\",\n Effect: \"Allow\",\n Action: [\n \"dynamodb:BatchGetItem\",\n \"dynamodb:BatchWriteItem\",\n \"dynamodb:ConditionCheckItem\",\n \"dynamodb:CreateBackup\",\n \"dynamodb:CreateTable\",\n \"dynamodb:CreateTableReplica\",\n \"dynamodb:DeleteBackup\",\n \"dynamodb:DeleteItem\",\n \"dynamodb:DeleteTable\",\n \"dynamodb:DeleteTableReplica\",\n \"dynamodb:DescribeBackup\",\n \"dynamodb:DescribeContinuousBackups\",\n \"dynamodb:DescribeContributorInsights\",\n \"dynamodb:DescribeExport\",\n \"dynamodb:DescribeKinesisStreamingDestination\",\n \"dynamodb:DescribeLimits\",\n \"dynamodb:DescribeReservedCapacity\",\n \"dynamodb:DescribeReservedCapacityOfferings\",\n \"dynamodb:DescribeStream\",\n \"dynamodb:DescribeTable\",\n \"dynamodb:DescribeTableReplicaAutoScaling\",\n \"dynamodb:DescribeTimeToLive\",\n \"dynamodb:DisableKinesisStreamingDestination\",\n \"dynamodb:EnableKinesisStreamingDestination\",\n \"dynamodb:ExportTableToPointInTime\",\n \"dynamodb:GetItem\",\n \"dynamodb:GetRecords\",\n \"dynamodb:GetShardIterator\",\n \"dynamodb:ListBackups\",\n \"dynamodb:ListContributorInsights\",\n \"dynamodb:ListExports\",\n \"dynamodb:ListStreams\",\n \"dynamodb:ListTables\",\n \"dynamodb:ListTagsOfResource\",\n \"dynamodb:PartiQLDelete\",\n \"dynamodb:PartiQLInsert\",\n \"dynamodb:PartiQLSelect\",\n \"dynamodb:PartiQLUpdate\",\n \"dynamodb:PurchaseReservedCapacityOfferings\",\n \"dynamodb:PutItem\",\n \"dynamodb:Query\",\n \"dynamodb:RestoreTableFromBackup\",\n \"dynamodb:RestoreTableToPointInTime\",\n \"dynamodb:Scan\",\n \"dynamodb:UpdateContinuousBackups\",\n \"dynamodb:UpdateContributorInsights\",\n \"dynamodb:UpdateItem\",\n \"dynamodb:UpdateTable\",\n \"dynamodb:UpdateTableReplicaAutoScaling\",\n \"dynamodb:UpdateTimeToLive\"\n ],\n Resource: [\n `${core.primaryDynamodbTableArn}`,\n `${core.primaryDynamodbTableArn}/*`,\n `${core.auditLogsDynamodbTableArn}`,\n `${core.auditLogsDynamodbTableArn}/*`,\n // Attach permissions for elastic search dynamo as well (if ES is enabled).\n ...(core.opensearchDynamodbTableArn\n ? [\n `${core.opensearchDynamodbTableArn}`,\n `${core.opensearchDynamodbTableArn}/*`\n ]\n : [])\n ]\n },\n {\n Sid: \"PermissionForS3\",\n Effect: \"Allow\",\n Action: [\n \"s3:ListBucket\",\n \"s3:GetObjectAcl\",\n \"s3:DeleteObject\",\n \"s3:PutObjectAcl\",\n \"s3:PutObject\",\n \"s3:GetObject\"\n ],\n Resource: [\n pulumi.interpolate`arn:aws:s3:::${core.fileManagerBucketId}`,\n pulumi.interpolate`arn:aws:s3:::${core.fileManagerBucketId}/*`\n ]\n },\n {\n Sid: \"PermissionForLambda\",\n Effect: \"Allow\",\n Action: [\"lambda:InvokeFunction\"],\n Resource: pulumi.interpolate`arn:aws:lambda:${awsRegion}:${awsAccountId}:function:*`\n },\n {\n Sid: \"PermissionForCognitoIdp\",\n Effect: \"Allow\",\n Action: \"cognito-idp:*\",\n Resource: `${core.cognitoUserPoolArn}`\n },\n {\n Sid: \"PermissionForEventBus\",\n Effect: \"Allow\",\n Action: \"events:PutEvents\",\n Resource: core.eventBusArn\n },\n {\n Sid: \"PermissionForCloudfront\",\n Effect: \"Allow\",\n Action: \"cloudfront:CreateInvalidation\",\n Resource: pulumi.interpolate`arn:aws:cloudfront::${awsAccountId}:distribution/*`\n },\n // Attach permissions for elastic search domain as well (if ES is enabled).\n ...(core.opensearchDomainArn\n ? [\n {\n Sid: \"PermissionForOS\",\n Effect: \"Allow\" as const,\n Action: \"es:*\",\n Resource: [\n `${core.opensearchDomainArn}`,\n `${core.opensearchDomainArn}/*`\n ]\n }\n ]\n : [])\n ]\n };\n\n return policy;\n })\n }\n });\n}\n"],"mappings":"AAAA,OAAOA,IAAI,MAAM,MAAM;AACvB,OAAO,KAAKC,MAAM,MAAM,gBAAgB;AACxC,OAAO,KAAKC,GAAG,MAAM,aAAa;AAClC,OAAOC,WAAW,MAAM,qBAAqB;AAE7C,SAASC,eAAe,QAAQ,gBAAgB;AAChD,SAASC,gBAAgB,EAAEC,2BAA2B;AACtD,SAASC,UAAU,EAAEC,SAAS;AAC9B,SAASC,eAAe,EAAEC,YAAY;AACtC,SAASC,cAAc;AAevB,MAAMC,+BAA+B,GAAG,4BAA4B;AACpE,MAAMC,qCAAqC,GAAG,yCAAyC;AACvF,MAAMC,iCAAiC,GAAG,mCAAmC;AAI7E,OAAO,MAAMC,UAAU,GAAGX,eAAe,CAAC;EACtCY,IAAI,EAAE,YAAY;EAClBC,MAAMA,CAACC,GAAc,EAAEC,MAAqB,EAAE;IAC1C,MAAMC,MAAM,GAAGC,yBAAyB,CAACH,GAAG,CAAC;IAC7C,MAAMI,IAAI,GAAGjB,gBAAgB,CAACa,GAAG,EAAE;MAC/BF,IAAI,EAAE,iBAAiB;MACvBI,MAAM,EAAEA,MAAM,CAACG;IACnB,CAAC,CAAC;IAEF,MAAMC,OAAO,GAAGN,GAAG,CAACO,WAAW,CAACvB,GAAG,CAACwB,MAAM,CAACC,QAAQ,EAAE;MACjDX,IAAI,EAAE,SAAS;MACfC,MAAM,EAAE;QACJW,WAAW,EAAE,uBAAuB;QACpCC,OAAO,EAAElB,cAAc;QACvBmB,OAAO,EAAE,iBAAiB;QAC1BR,IAAI,EAAEA,IAAI,CAACC,MAAM,CAACQ,GAAG;QACrBC,OAAO,EAAE,EAAE;QACXC,UAAU,EAAE,IAAI;QAChBC,IAAI,EAAE,IAAIjC,MAAM,CAACkC,KAAK,CAACC,YAAY,CAAC;UAChC,GAAG,EAAE,IAAInC,MAAM,CAACkC,KAAK,CAACE,WAAW,CAC7BrC,IAAI,CAACsC,IAAI,CAACpB,GAAG,CAACqB,KAAK,CAACC,SAAS,EAAE,eAAe,CAClD;QACJ,CAAC,CAAC;QACFC,WAAW,EAAE;UACTC,SAAS,EAAEpC,2BAA2B,CAAC,CAAC,CAACqC,KAAK,CAACC,KAAK,KAAK;YACrD,GAAGA,KAAK;YACR,GAAGzB,MAAM,CAAC0B,GAAG;YACbC,mCAAmC,EAAE;UACzC,CAAC,CAAC;QACN,CAAC;QACDC,SAAS,EAAE7B,GAAG,CAAC8B,SAAS,CAACxC,SAAS,CAAC,CAACyC,iBAAiB;QACrDC,aAAa,EAAE;UACXC,SAAS,EAAE;QACf;MACJ;IACJ,CAAC,CAAC;;IAEF;IACA,MAAMC,SAAS,GAAGlC,GAAG,CAACO,WAAW,CAACvB,GAAG,CAACmD,UAAU,CAACC,SAAS,EAAE;MACxDtC,IAAI,EAAEJ,+BAA+B;MACrCK,MAAM,EAAE;QACJW,WAAW,EAAE,2CAA2C;QACxD2B,kBAAkB,EAAE;MACxB;IACJ,CAAC,CAAC;;IAEF;IACArC,GAAG,CAACO,WAAW,CAACvB,GAAG,CAACwB,MAAM,CAAC8B,UAAU,EAAE;MACnCxC,IAAI,EAAEH,qCAAqC;MAC3CI,MAAM,EAAE;QACJwC,MAAM,EAAE,uBAAuB;QAC/BC,QAAQ,EAAElC,OAAO,CAACD,MAAM,CAACQ,GAAG;QAC5B4B,SAAS,EAAE,sBAAsB;QACjCC,WAAW,EAAE,oBAAoB,GAAGhD;MACxC;IACJ,CAAC,CAAC;;IAEF;IACAM,GAAG,CAACO,WAAW,CAACvB,GAAG,CAACmD,UAAU,CAACQ,WAAW,EAAE;MACxC7C,IAAI,EAAEF,iCAAiC;MACvCG,MAAM,EAAE;QACJ6C,IAAI,EAAEV,SAAS,CAAC7B,MAAM,CAACP,IAAI;QAC3Be,GAAG,EAAEP,OAAO,CAACD,MAAM,CAACQ,GAAG;QACvBgC,KAAK,EAAEC,IAAI,CAACC,SAAS,CAAC;UAClBC,MAAM,EAAE,eAAe;UACvB,aAAa,EAAE;QACnB,CAAC;MACL;IACJ,CAAC,CAAC;IAEF,OAAO;MACH5C,IAAI;MACJF,MAAM;MACN+C,SAAS,EAAE;QACP3C;MACJ,CAAC;MACD4C,QAAQ,EAAGC,WAA2B,IAAK;QACvC,MAAMC,UAAe,GAAGpD,GAAG,CAACqD,SAAS,CAACD,UAAU;QAChD,IAAI,CAACA,UAAU,EAAE;UACbE,OAAO,CAACC,GAAG,CACP,sEACJ,CAAC;UACD;QACJ;QACA,MAAMC,SAAS,GAAGvE,WAAW,CAACkE,WAAW,CAACrD,IAAI,CAAC;QAC/C,IAAI0D,SAAS,KAAKL,WAAW,CAACrD,IAAI,EAAE;UAChCwD,OAAO,CAACC,GAAG,CAAC,+BAA+BJ,WAAW,CAACrD,IAAI,IAAI,CAAC;UAChE;QACJ;QACA,OAAOsD,UAAU,CAACF,QAAQ,CAACC,WAAW,CAACrD,IAAI,EAAE;UACzChB,IAAI,EAAEqE,WAAW,CAACrE,IAAI;UACtB2E,MAAM,EAAEN,WAAW,CAACM,MAAM;UAC1BjB,QAAQ,EAAElC,OAAO,CAACD,MAAM,CAACQ;QAC7B,CAAC,CAAC;MACN;IACJ,CAAC;EACL;AACJ,CAAC,CAAC;AAEF,SAASV,yBAAyBA,CAACH,GAAc,EAAE;EAC/C,MAAM0D,UAAU,GAAG1D,GAAG,CAAC8B,SAAS,CAACzC,UAAU,CAAC;EAC5C,MAAMsE,YAAY,GAAGpE,eAAe,CAACS,GAAG,CAAC;EACzC,MAAM4D,SAAS,GAAGpE,YAAY,CAACQ,GAAG,CAAC;EAEnC,OAAOA,GAAG,CAACO,WAAW,CAACvB,GAAG,CAAC6E,GAAG,CAACC,MAAM,EAAE;IACnChE,IAAI,EAAE,wBAAwB;IAC9BC,MAAM,EAAE;MACJW,WAAW,EAAE,oEAAoE;MACjF;MACAR,MAAM,EAAEnB,MAAM,CAACgF,GAAG,CAAC,CAACL,UAAU,CAAC,CAAC,CAACjC,KAAK,CAAC,CAAC,CAACuC,IAAI,CAAC,KAAK;QAC/C,MAAM9D,MAA8B,GAAG;UACnC+D,OAAO,EAAE,YAAY;UACrBC,SAAS,EAAE,CACP;YACIC,GAAG,EAAE,uBAAuB;YAC5BC,MAAM,EAAE,OAAO;YACfC,MAAM,EAAE,CACJ,uBAAuB,EACvB,yBAAyB,EACzB,6BAA6B,EAC7B,uBAAuB,EACvB,sBAAsB,EACtB,6BAA6B,EAC7B,uBAAuB,EACvB,qBAAqB,EACrB,sBAAsB,EACtB,6BAA6B,EAC7B,yBAAyB,EACzB,oCAAoC,EACpC,sCAAsC,EACtC,yBAAyB,EACzB,8CAA8C,EAC9C,yBAAyB,EACzB,mCAAmC,EACnC,4CAA4C,EAC5C,yBAAyB,EACzB,wBAAwB,EACxB,0CAA0C,EAC1C,6BAA6B,EAC7B,6CAA6C,EAC7C,4CAA4C,EAC5C,mCAAmC,EACnC,kBAAkB,EAClB,qBAAqB,EACrB,2BAA2B,EAC3B,sBAAsB,EACtB,kCAAkC,EAClC,sBAAsB,EACtB,sBAAsB,EACtB,qBAAqB,EACrB,6BAA6B,EAC7B,wBAAwB,EACxB,wBAAwB,EACxB,wBAAwB,EACxB,wBAAwB,EACxB,4CAA4C,EAC5C,kBAAkB,EAClB,gBAAgB,EAChB,iCAAiC,EACjC,oCAAoC,EACpC,eAAe,EACf,kCAAkC,EAClC,oCAAoC,EACpC,qBAAqB,EACrB,sBAAsB,EACtB,wCAAwC,EACxC,2BAA2B,CAC9B;YACDC,QAAQ,EAAE,CACN,GAAGN,IAAI,CAACO,uBAAuB,EAAE,EACjC,GAAGP,IAAI,CAACO,uBAAuB,IAAI,EACnC,GAAGP,IAAI,CAACQ,yBAAyB,EAAE,EACnC,GAAGR,IAAI,CAACQ,yBAAyB,IAAI;YACrC;YACA,IAAIR,IAAI,CAACS,0BAA0B,GAC7B,CACI,GAAGT,IAAI,CAACS,0BAA0B,EAAE,EACpC,GAAGT,IAAI,CAACS,0BAA0B,IAAI,CACzC,GACD,EAAE,CAAC;UAEjB,CAAC,EACD;YACIN,GAAG,EAAE,iBAAiB;YACtBC,MAAM,EAAE,OAAO;YACfC,MAAM,EAAE,CACJ,eAAe,EACf,iBAAiB,EACjB,iBAAiB,EACjB,iBAAiB,EACjB,cAAc,EACd,cAAc,CACjB;YACDC,QAAQ,EAAE,CACNvF,MAAM,CAAC2F,WAAW,gBAAgBV,IAAI,CAACW,mBAAmB,EAAE,EAC5D5F,MAAM,CAAC2F,WAAW,gBAAgBV,IAAI,CAACW,mBAAmB,IAAI;UAEtE,CAAC,EACD;YACIR,GAAG,EAAE,qBAAqB;YAC1BC,MAAM,EAAE,OAAO;YACfC,MAAM,EAAE,CAAC,uBAAuB,CAAC;YACjCC,QAAQ,EAAEvF,MAAM,CAAC2F,WAAW,kBAAkBd,SAAS,IAAID,YAAY;UAC3E,CAAC,EACD;YACIQ,GAAG,EAAE,yBAAyB;YAC9BC,MAAM,EAAE,OAAO;YACfC,MAAM,EAAE,eAAe;YACvBC,QAAQ,EAAE,GAAGN,IAAI,CAACY,kBAAkB;UACxC,CAAC,EACD;YACIT,GAAG,EAAE,uBAAuB;YAC5BC,MAAM,EAAE,OAAO;YACfC,MAAM,EAAE,kBAAkB;YAC1BC,QAAQ,EAAEN,IAAI,CAACa;UACnB,CAAC,EACD;YACIV,GAAG,EAAE,yBAAyB;YAC9BC,MAAM,EAAE,OAAO;YACfC,MAAM,EAAE,+BAA+B;YACvCC,QAAQ,EAAEvF,MAAM,CAAC2F,WAAW,uBAAuBf,YAAY;UACnE,CAAC;UACD;UACA,IAAIK,IAAI,CAACc,mBAAmB,GACtB,CACI;YACIX,GAAG,EAAE,iBAAiB;YACtBC,MAAM,EAAE,OAAgB;YACxBC,MAAM,EAAE,MAAM;YACdC,QAAQ,EAAE,CACN,GAAGN,IAAI,CAACc,mBAAmB,EAAE,EAC7B,GAAGd,IAAI,CAACc,mBAAmB,IAAI;UAEvC,CAAC,CACJ,GACD,EAAE,CAAC;QAEjB,CAAC;QAED,OAAO5E,MAAM;MACjB,CAAC;IACL;EACJ,CAAC,CAAC;AACN","ignoreList":[]}
|
|
1
|
+
{"version":3,"file":"pulumi/apps/api/ApiGraphql.js","sources":["../../../../src/pulumi/apps/api/ApiGraphql.ts"],"sourcesContent":["import path from \"path\";\nimport * as pulumi from \"@pulumi/pulumi\";\nimport * as aws from \"@pulumi/aws\";\nimport toKebabCase from \"lodash/kebabCase.js\";\nimport type { PulumiApp, PulumiAppModule } from \"@webiny/pulumi\";\nimport { createAppModule } from \"@webiny/pulumi\";\nimport { createLambdaRole, getCommonLambdaEnvVariables } from \"../lambdaUtils.js\";\nimport { CoreOutput, VpcConfig } from \"~/pulumi/apps/index.js\";\nimport { getAwsAccountId, getAwsRegion } from \"../awsUtils.js\";\nimport { LAMBDA_RUNTIME } from \"~/pulumi/constants.js\";\n\ninterface GraphqlParams {\n env: Record<string, any>;\n}\n\nexport interface AddRouteParams {\n /**\n * Must be in kebab case (a-z and -)\n */\n name: string;\n path: `/${string}`;\n method: \"DELETE\" | \"GET\" | \"HEAD\" | \"PATCH\" | \"POST\" | \"PUT\" | \"OPTIONS\" | \"ANY\";\n}\n\nconst EMPTY_TRASH_BIN_EVENT_RULE_NAME = `empty-trash-bin-event-rule`;\nconst EMPTY_TRASH_BIN_EVENT_PERMISSION_NAME = `empty-trash-bin-event-target-permission`;\nconst EMPTY_TRASH_BIN_EVENT_RULE_TARGET = `empty-trash-bin-event-rule-target`;\n\nexport type ApiGraphql = PulumiAppModule<typeof ApiGraphql>;\n\nexport const ApiGraphql = createAppModule({\n name: \"ApiGraphql\",\n config(app: PulumiApp, params: GraphqlParams) {\n const policy = createGraphqlLambdaPolicy(app);\n const role = createLambdaRole(app, {\n name: \"api-lambda-role\",\n policy: policy.output\n });\n\n const graphql = app.addResource(aws.lambda.Function, {\n name: \"graphql\",\n config: {\n description: \"Webiny's GraphQL APIs\",\n runtime: LAMBDA_RUNTIME,\n handler: \"handler.handler\",\n role: role.output.arn,\n timeout: 30,\n memorySize: 1024,\n code: new pulumi.asset.AssetArchive({\n \".\": new pulumi.asset.FileArchive(\n path.join(app.paths.workspace, \"graphql/build\")\n )\n }),\n environment: {\n variables: getCommonLambdaEnvVariables().apply(value => ({\n ...value,\n ...params.env,\n AWS_NODEJS_CONNECTION_REUSE_ENABLED: \"1\"\n }))\n },\n vpcConfig: app.getModule(VpcConfig).functionVpcConfig,\n loggingConfig: {\n logFormat: \"JSON\"\n }\n }\n });\n\n // Create event rule.\n const eventRule = app.addResource(aws.cloudwatch.EventRule, {\n name: EMPTY_TRASH_BIN_EVENT_RULE_NAME,\n config: {\n description: \"Enable us to empty the trash-bin ever day\",\n scheduleExpression: \"cron(0 3 * * ? *)\"\n }\n });\n\n // Add required permission to the target lambda.\n app.addResource(aws.lambda.Permission, {\n name: EMPTY_TRASH_BIN_EVENT_PERMISSION_NAME,\n config: {\n action: \"lambda:InvokeFunction\",\n function: graphql.output.arn,\n principal: \"events.amazonaws.com\",\n statementId: \"allow-rule-invoke-\" + EMPTY_TRASH_BIN_EVENT_RULE_NAME\n }\n });\n\n // Target the main graphql lambda.\n app.addResource(aws.cloudwatch.EventTarget, {\n name: EMPTY_TRASH_BIN_EVENT_RULE_TARGET,\n config: {\n rule: eventRule.output.name,\n arn: graphql.output.arn,\n input: JSON.stringify({\n source: \"webiny.events\",\n \"detail-type\": \"WebinyEmptyTrashBin\"\n })\n }\n });\n\n return {\n role,\n policy,\n functions: {\n graphql\n },\n addRoute: (routeParams: AddRouteParams) => {\n const apiGateway: any = app.resources.apiGateway;\n if (!apiGateway) {\n console.log(\n \"Could not add route because there is no apiGateway in the resources.\"\n );\n return;\n }\n const kebabName = toKebabCase(routeParams.name);\n if (kebabName !== routeParams.name) {\n console.log(`Route name is not allowed: \"${routeParams.name}\".`);\n return;\n }\n return apiGateway.addRoute(routeParams.name, {\n path: routeParams.path,\n method: routeParams.method,\n function: graphql.output.arn\n });\n }\n };\n }\n});\n\nfunction createGraphqlLambdaPolicy(app: PulumiApp) {\n const coreOutput = app.getModule(CoreOutput);\n const awsAccountId = getAwsAccountId(app);\n const awsRegion = getAwsRegion(app);\n\n return app.addResource(aws.iam.Policy, {\n name: \"ApiGraphqlLambdaPolicy\",\n config: {\n description: \"This policy enables access to Dynamodb, S3, Lambda and Cognito IDP\",\n // Core is pulumi.Output, so we need to run apply() to resolve policy based on it\n policy: pulumi.all([coreOutput]).apply(([core]) => {\n const policy: aws.iam.PolicyDocument = {\n Version: \"2012-10-17\",\n Statement: [\n {\n Sid: \"PermissionForDynamodb\",\n Effect: \"Allow\",\n Action: [\n \"dynamodb:BatchGetItem\",\n \"dynamodb:BatchWriteItem\",\n \"dynamodb:ConditionCheckItem\",\n \"dynamodb:CreateBackup\",\n \"dynamodb:CreateTable\",\n \"dynamodb:CreateTableReplica\",\n \"dynamodb:DeleteBackup\",\n \"dynamodb:DeleteItem\",\n \"dynamodb:DeleteTable\",\n \"dynamodb:DeleteTableReplica\",\n \"dynamodb:DescribeBackup\",\n \"dynamodb:DescribeContinuousBackups\",\n \"dynamodb:DescribeContributorInsights\",\n \"dynamodb:DescribeExport\",\n \"dynamodb:DescribeKinesisStreamingDestination\",\n \"dynamodb:DescribeLimits\",\n \"dynamodb:DescribeReservedCapacity\",\n \"dynamodb:DescribeReservedCapacityOfferings\",\n \"dynamodb:DescribeStream\",\n \"dynamodb:DescribeTable\",\n \"dynamodb:DescribeTableReplicaAutoScaling\",\n \"dynamodb:DescribeTimeToLive\",\n \"dynamodb:DisableKinesisStreamingDestination\",\n \"dynamodb:EnableKinesisStreamingDestination\",\n \"dynamodb:ExportTableToPointInTime\",\n \"dynamodb:GetItem\",\n \"dynamodb:GetRecords\",\n \"dynamodb:GetShardIterator\",\n \"dynamodb:ListBackups\",\n \"dynamodb:ListContributorInsights\",\n \"dynamodb:ListExports\",\n \"dynamodb:ListStreams\",\n \"dynamodb:ListTables\",\n \"dynamodb:ListTagsOfResource\",\n \"dynamodb:PartiQLDelete\",\n \"dynamodb:PartiQLInsert\",\n \"dynamodb:PartiQLSelect\",\n \"dynamodb:PartiQLUpdate\",\n \"dynamodb:PurchaseReservedCapacityOfferings\",\n \"dynamodb:PutItem\",\n \"dynamodb:Query\",\n \"dynamodb:RestoreTableFromBackup\",\n \"dynamodb:RestoreTableToPointInTime\",\n \"dynamodb:Scan\",\n \"dynamodb:UpdateContinuousBackups\",\n \"dynamodb:UpdateContributorInsights\",\n \"dynamodb:UpdateItem\",\n \"dynamodb:UpdateTable\",\n \"dynamodb:UpdateTableReplicaAutoScaling\",\n \"dynamodb:UpdateTimeToLive\"\n ],\n Resource: [\n `${core.primaryDynamodbTableArn}`,\n `${core.primaryDynamodbTableArn}/*`,\n `${core.auditLogsDynamodbTableArn}`,\n `${core.auditLogsDynamodbTableArn}/*`,\n // Attach permissions for elastic search dynamo as well (if ES is enabled).\n ...(core.opensearchDynamodbTableArn\n ? [\n `${core.opensearchDynamodbTableArn}`,\n `${core.opensearchDynamodbTableArn}/*`\n ]\n : [])\n ]\n },\n {\n Sid: \"PermissionForS3\",\n Effect: \"Allow\",\n Action: [\n \"s3:ListBucket\",\n \"s3:GetObjectAcl\",\n \"s3:DeleteObject\",\n \"s3:PutObjectAcl\",\n \"s3:PutObject\",\n \"s3:GetObject\"\n ],\n Resource: [\n pulumi.interpolate`arn:aws:s3:::${core.fileManagerBucketId}`,\n pulumi.interpolate`arn:aws:s3:::${core.fileManagerBucketId}/*`\n ]\n },\n {\n Sid: \"PermissionForLambda\",\n Effect: \"Allow\",\n Action: [\"lambda:InvokeFunction\"],\n Resource: pulumi.interpolate`arn:aws:lambda:${awsRegion}:${awsAccountId}:function:*`\n },\n {\n Sid: \"PermissionForCognitoIdp\",\n Effect: \"Allow\",\n Action: \"cognito-idp:*\",\n Resource: `${core.cognitoUserPoolArn}`\n },\n {\n Sid: \"PermissionForEventBus\",\n Effect: \"Allow\",\n Action: \"events:PutEvents\",\n Resource: core.eventBusArn\n },\n {\n Sid: \"PermissionForCloudfront\",\n Effect: \"Allow\",\n Action: \"cloudfront:CreateInvalidation\",\n Resource: pulumi.interpolate`arn:aws:cloudfront::${awsAccountId}:distribution/*`\n },\n // Attach permissions for elastic search domain as well (if ES is enabled).\n ...(core.opensearchDomainArn\n ? [\n {\n Sid: \"PermissionForOS\",\n Effect: \"Allow\" as const,\n Action: \"es:*\",\n Resource: [\n `${core.opensearchDomainArn}`,\n `${core.opensearchDomainArn}/*`\n ]\n }\n ]\n : [])\n ]\n };\n\n return policy;\n })\n }\n });\n}\n"],"names":["EMPTY_TRASH_BIN_EVENT_RULE_NAME","EMPTY_TRASH_BIN_EVENT_PERMISSION_NAME","EMPTY_TRASH_BIN_EVENT_RULE_TARGET","ApiGraphql","createAppModule","app","params","policy","createGraphqlLambdaPolicy","role","createLambdaRole","graphql","aws","LAMBDA_RUNTIME","pulumi","path","getCommonLambdaEnvVariables","value","VpcConfig","eventRule","JSON","routeParams","apiGateway","console","kebabName","toKebabCase","coreOutput","CoreOutput","awsAccountId","getAwsAccountId","awsRegion","getAwsRegion","core"],"mappings":";;;;;;;;;AAwBA,MAAMA,kCAAkC;AACxC,MAAMC,wCAAwC;AAC9C,MAAMC,oCAAoC;AAInC,MAAMC,aAAaC,gBAAgB;IACtC,MAAM;IACN,QAAOC,GAAc,EAAEC,MAAqB;QACxC,MAAMC,SAASC,0BAA0BH;QACzC,MAAMI,OAAOC,iBAAiBL,KAAK;YAC/B,MAAM;YACN,QAAQE,OAAO,MAAM;QACzB;QAEA,MAAMI,UAAUN,IAAI,WAAW,CAACO,uCAAAA,MAAAA,CAAAA,QAAmB,EAAE;YACjD,MAAM;YACN,QAAQ;gBACJ,aAAa;gBACb,SAASC;gBACT,SAAS;gBACT,MAAMJ,KAAK,MAAM,CAAC,GAAG;gBACrB,SAAS;gBACT,YAAY;gBACZ,MAAM,IAAIK,0CAAAA,KAAAA,CAAAA,YAAyB,CAAC;oBAChC,KAAK,IAAIA,0CAAAA,KAAAA,CAAAA,WAAwB,CAC7BC,KAAK,IAAI,CAACV,IAAI,KAAK,CAAC,SAAS,EAAE;gBAEvC;gBACA,aAAa;oBACT,WAAWW,8BAA8B,KAAK,CAACC,CAAAA,QAAU;4BACrD,GAAGA,KAAK;4BACR,GAAGX,OAAO,GAAG;4BACb,qCAAqC;wBACzC;gBACJ;gBACA,WAAWD,IAAI,SAAS,CAACa,WAAW,iBAAiB;gBACrD,eAAe;oBACX,WAAW;gBACf;YACJ;QACJ;QAGA,MAAMC,YAAYd,IAAI,WAAW,CAACO,uCAAAA,UAAAA,CAAAA,SAAwB,EAAE;YACxD,MAAMZ;YACN,QAAQ;gBACJ,aAAa;gBACb,oBAAoB;YACxB;QACJ;QAGAK,IAAI,WAAW,CAACO,uCAAAA,MAAAA,CAAAA,UAAqB,EAAE;YACnC,MAAMX;YACN,QAAQ;gBACJ,QAAQ;gBACR,UAAUU,QAAQ,MAAM,CAAC,GAAG;gBAC5B,WAAW;gBACX,aAAa,uBAAuBX;YACxC;QACJ;QAGAK,IAAI,WAAW,CAACO,uCAAAA,UAAAA,CAAAA,WAA0B,EAAE;YACxC,MAAMV;YACN,QAAQ;gBACJ,MAAMiB,UAAU,MAAM,CAAC,IAAI;gBAC3B,KAAKR,QAAQ,MAAM,CAAC,GAAG;gBACvB,OAAOS,KAAK,SAAS,CAAC;oBAClB,QAAQ;oBACR,eAAe;gBACnB;YACJ;QACJ;QAEA,OAAO;YACHX;YACAF;YACA,WAAW;gBACPI;YACJ;YACA,UAAU,CAACU;gBACP,MAAMC,aAAkBjB,IAAI,SAAS,CAAC,UAAU;gBAChD,IAAI,CAACiB,YAAY,YACbC,QAAQ,GAAG,CACP;gBAIR,MAAMC,YAAYC,UAAYJ,YAAY,IAAI;gBAC9C,IAAIG,cAAcH,YAAY,IAAI,EAAE,YAChCE,QAAQ,GAAG,CAAC,CAAC,4BAA4B,EAAEF,YAAY,IAAI,CAAC,EAAE,CAAC;gBAGnE,OAAOC,WAAW,QAAQ,CAACD,YAAY,IAAI,EAAE;oBACzC,MAAMA,YAAY,IAAI;oBACtB,QAAQA,YAAY,MAAM;oBAC1B,UAAUV,QAAQ,MAAM,CAAC,GAAG;gBAChC;YACJ;QACJ;IACJ;AACJ;AAEA,SAASH,0BAA0BH,GAAc;IAC7C,MAAMqB,aAAarB,IAAI,SAAS,CAACsB;IACjC,MAAMC,eAAeC,gBAAgBxB;IACrC,MAAMyB,YAAYC,aAAa1B;IAE/B,OAAOA,IAAI,WAAW,CAACO,uCAAAA,GAAAA,CAAAA,MAAc,EAAE;QACnC,MAAM;QACN,QAAQ;YACJ,aAAa;YAEb,QAAQE,0CAAAA,GAAU,CAAC;gBAACY;aAAW,EAAE,KAAK,CAAC,CAAC,CAACM,KAAK;gBAC1C,MAAMzB,SAAiC;oBACnC,SAAS;oBACT,WAAW;wBACP;4BACI,KAAK;4BACL,QAAQ;4BACR,QAAQ;gCACJ;gCACA;gCACA;gCACA;gCACA;gCACA;gCACA;gCACA;gCACA;gCACA;gCACA;gCACA;gCACA;gCACA;gCACA;gCACA;gCACA;gCACA;gCACA;gCACA;gCACA;gCACA;gCACA;gCACA;gCACA;gCACA;gCACA;gCACA;gCACA;gCACA;gCACA;gCACA;gCACA;gCACA;gCACA;gCACA;gCACA;gCACA;gCACA;gCACA;gCACA;gCACA;gCACA;gCACA;gCACA;gCACA;gCACA;gCACA;gCACA;gCACA;6BACH;4BACD,UAAU;gCACN,GAAGyB,KAAK,uBAAuB,EAAE;gCACjC,GAAGA,KAAK,uBAAuB,CAAC,EAAE,CAAC;gCACnC,GAAGA,KAAK,yBAAyB,EAAE;gCACnC,GAAGA,KAAK,yBAAyB,CAAC,EAAE,CAAC;mCAEjCA,KAAK,0BAA0B,GAC7B;oCACI,GAAGA,KAAK,0BAA0B,EAAE;oCACpC,GAAGA,KAAK,0BAA0B,CAAC,EAAE,CAAC;iCACzC,GACD,EAAE;6BACX;wBACL;wBACA;4BACI,KAAK;4BACL,QAAQ;4BACR,QAAQ;gCACJ;gCACA;gCACA;gCACA;gCACA;gCACA;6BACH;4BACD,UAAU;gCACNlB,0CAAAA,WAAkB,CAAC,aAAa,EAAEkB,KAAK,mBAAmB,CAAC,CAAC;gCAC5DlB,0CAAAA,WAAkB,CAAC,aAAa,EAAEkB,KAAK,mBAAmB,CAAC,EAAE,CAAC;6BACjE;wBACL;wBACA;4BACI,KAAK;4BACL,QAAQ;4BACR,QAAQ;gCAAC;6BAAwB;4BACjC,UAAUlB,0CAAAA,WAAkB,CAAC,eAAe,EAAEgB,UAAU,CAAC,EAAEF,aAAa,WAAW,CAAC;wBACxF;wBACA;4BACI,KAAK;4BACL,QAAQ;4BACR,QAAQ;4BACR,UAAU,GAAGI,KAAK,kBAAkB,EAAE;wBAC1C;wBACA;4BACI,KAAK;4BACL,QAAQ;4BACR,QAAQ;4BACR,UAAUA,KAAK,WAAW;wBAC9B;wBACA;4BACI,KAAK;4BACL,QAAQ;4BACR,QAAQ;4BACR,UAAUlB,0CAAAA,WAAkB,CAAC,oBAAoB,EAAEc,aAAa,eAAe,CAAC;wBACpF;2BAEII,KAAK,mBAAmB,GACtB;4BACI;gCACI,KAAK;gCACL,QAAQ;gCACR,QAAQ;gCACR,UAAU;oCACN,GAAGA,KAAK,mBAAmB,EAAE;oCAC7B,GAAGA,KAAK,mBAAmB,CAAC,EAAE,CAAC;iCAClC;4BACL;yBACH,GACD,EAAE;qBACX;gBACL;gBAEA,OAAOzB;YACX;QACJ;IACJ;AACJ"}
|
|
@@ -1,35 +1,34 @@
|
|
|
1
1
|
import { createAppModule } from "@webiny/pulumi";
|
|
2
2
|
import { getStackOutput } from "@webiny/project";
|
|
3
|
-
|
|
4
|
-
|
|
5
|
-
|
|
6
|
-
|
|
7
|
-
|
|
8
|
-
|
|
9
|
-
|
|
10
|
-
|
|
11
|
-
|
|
12
|
-
|
|
13
|
-
|
|
14
|
-
|
|
15
|
-
|
|
16
|
-
|
|
17
|
-
|
|
18
|
-
|
|
19
|
-
|
|
20
|
-
|
|
21
|
-
|
|
22
|
-
|
|
23
|
-
|
|
24
|
-
|
|
25
|
-
|
|
26
|
-
|
|
27
|
-
|
|
28
|
-
|
|
29
|
-
|
|
30
|
-
|
|
31
|
-
});
|
|
32
|
-
}
|
|
3
|
+
const ApiOutput = createAppModule({
|
|
4
|
+
name: "ApiOutput",
|
|
5
|
+
config (app) {
|
|
6
|
+
return app.addHandler(async ()=>{
|
|
7
|
+
const output = await getStackOutput("api");
|
|
8
|
+
if (!output) throw new Error("API application is not deployed.");
|
|
9
|
+
return {
|
|
10
|
+
apiDomain: output["apiDomain"],
|
|
11
|
+
apiUrl: output["apiUrl"],
|
|
12
|
+
graphqlLambdaRole: output["graphqlLambdaRole"],
|
|
13
|
+
graphqlLambdaRoleName: output["graphqlLambdaRoleName"],
|
|
14
|
+
cognitoAppClientId: output["cognitoAppClientId"],
|
|
15
|
+
cognitoUserPoolId: output["cognitoUserPoolId"],
|
|
16
|
+
cognitoUserPoolPasswordPolicy: output["cognitoUserPoolPasswordPolicy"],
|
|
17
|
+
dynamoDbTable: output["dynamoDbTable"],
|
|
18
|
+
region: output["region"],
|
|
19
|
+
websocketApiId: output["websocketApiId"],
|
|
20
|
+
websocketApiUrl: output["websocketApiUrl"],
|
|
21
|
+
graphqlLambdaName: output["graphqlLambdaName"],
|
|
22
|
+
backgroundTaskLambdaArn: output["backgroundTaskLambdaArn"],
|
|
23
|
+
backgroundTaskStepFunctionArn: output["backgroundTaskStepFunctionArn"],
|
|
24
|
+
fileManagerManageLambdaArn: output["fileManagerManageLambdaArn"],
|
|
25
|
+
fileManagerManageLambdaRole: output["fileManagerManageLambdaRole"],
|
|
26
|
+
fileManagerManageLambdaRoleName: output["fileManagerManageLambdaRoleName"],
|
|
27
|
+
fileManagerDownloadLambdaArn: output["fileManagerDownloadLambdaArn"]
|
|
28
|
+
};
|
|
29
|
+
});
|
|
30
|
+
}
|
|
33
31
|
});
|
|
32
|
+
export { ApiOutput };
|
|
34
33
|
|
|
35
34
|
//# sourceMappingURL=ApiOutput.js.map
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"
|
|
1
|
+
{"version":3,"file":"pulumi/apps/api/ApiOutput.js","sources":["../../../../src/pulumi/apps/api/ApiOutput.ts"],"sourcesContent":["import type { PulumiAppModule } from \"@webiny/pulumi\";\nimport { createAppModule } from \"@webiny/pulumi\";\nimport { getStackOutput } from \"@webiny/project\";\nimport { type IDefaultStackOutput } from \"~/pulumi/types.js\";\n\nexport type ApiOutput = PulumiAppModule<typeof ApiOutput>;\n\nexport const ApiOutput = createAppModule({\n name: \"ApiOutput\",\n config(app) {\n return app.addHandler(async () => {\n const output = await getStackOutput<IDefaultStackOutput>(\"api\");\n\n if (!output) {\n throw new Error(\"API application is not deployed.\");\n }\n\n return {\n apiDomain: output[\"apiDomain\"],\n apiUrl: output[\"apiUrl\"],\n graphqlLambdaRole: output[\"graphqlLambdaRole\"],\n graphqlLambdaRoleName: output[\"graphqlLambdaRoleName\"],\n cognitoAppClientId: output[\"cognitoAppClientId\"],\n cognitoUserPoolId: output[\"cognitoUserPoolId\"],\n cognitoUserPoolPasswordPolicy: output[\"cognitoUserPoolPasswordPolicy\"],\n dynamoDbTable: output[\"dynamoDbTable\"],\n region: output[\"region\"],\n websocketApiId: output[\"websocketApiId\"],\n websocketApiUrl: output[\"websocketApiUrl\"],\n graphqlLambdaName: output[\"graphqlLambdaName\"],\n backgroundTaskLambdaArn: output[\"backgroundTaskLambdaArn\"],\n backgroundTaskStepFunctionArn: output[\"backgroundTaskStepFunctionArn\"],\n fileManagerManageLambdaArn: output[\"fileManagerManageLambdaArn\"],\n fileManagerManageLambdaRole: output[\"fileManagerManageLambdaRole\"],\n fileManagerManageLambdaRoleName: output[\"fileManagerManageLambdaRoleName\"],\n fileManagerDownloadLambdaArn: output[\"fileManagerDownloadLambdaArn\"]\n };\n });\n }\n});\n"],"names":["ApiOutput","createAppModule","app","output","getStackOutput","Error"],"mappings":";;AAOO,MAAMA,YAAYC,gBAAgB;IACrC,MAAM;IACN,QAAOC,GAAG;QACN,OAAOA,IAAI,UAAU,CAAC;YAClB,MAAMC,SAAS,MAAMC,eAAoC;YAEzD,IAAI,CAACD,QACD,MAAM,IAAIE,MAAM;YAGpB,OAAO;gBACH,WAAWF,MAAM,CAAC,YAAY;gBAC9B,QAAQA,MAAM,CAAC,SAAS;gBACxB,mBAAmBA,MAAM,CAAC,oBAAoB;gBAC9C,uBAAuBA,MAAM,CAAC,wBAAwB;gBACtD,oBAAoBA,MAAM,CAAC,qBAAqB;gBAChD,mBAAmBA,MAAM,CAAC,oBAAoB;gBAC9C,+BAA+BA,MAAM,CAAC,gCAAgC;gBACtE,eAAeA,MAAM,CAAC,gBAAgB;gBACtC,QAAQA,MAAM,CAAC,SAAS;gBACxB,gBAAgBA,MAAM,CAAC,iBAAiB;gBACxC,iBAAiBA,MAAM,CAAC,kBAAkB;gBAC1C,mBAAmBA,MAAM,CAAC,oBAAoB;gBAC9C,yBAAyBA,MAAM,CAAC,0BAA0B;gBAC1D,+BAA+BA,MAAM,CAAC,gCAAgC;gBACtE,4BAA4BA,MAAM,CAAC,6BAA6B;gBAChE,6BAA6BA,MAAM,CAAC,8BAA8B;gBAClE,iCAAiCA,MAAM,CAAC,kCAAkC;gBAC1E,8BAA8BA,MAAM,CAAC,+BAA+B;YACxE;QACJ;IACJ;AACJ"}
|