@webiny/project-aws 6.3.0 → 6.4.0-beta.1
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- package/_templates/appTemplates/admin/src/index.tsx +0 -3
- package/abstractions/ApiGqlClient.js +2 -1
- package/abstractions/ApiGqlClient.js.map +1 -1
- package/abstractions/InvokeLambdaFunction.js +2 -1
- package/abstractions/InvokeLambdaFunction.js.map +1 -1
- package/abstractions/features/pulumi/AdminPulumi.js +2 -1
- package/abstractions/features/pulumi/AdminPulumi.js.map +1 -1
- package/abstractions/features/pulumi/ApiPulumi.js +2 -1
- package/abstractions/features/pulumi/ApiPulumi.js.map +1 -1
- package/abstractions/features/pulumi/CorePulumi.js +2 -1
- package/abstractions/features/pulumi/CorePulumi.js.map +1 -1
- package/abstractions/features/pulumi/index.js +0 -2
- package/abstractions/index.js +0 -2
- package/abstractions/services/AdminStackOutputService.js +2 -1
- package/abstractions/services/AdminStackOutputService.js.map +1 -1
- package/abstractions/services/ApiStackOutputService.js +2 -1
- package/abstractions/services/ApiStackOutputService.js.map +1 -1
- package/abstractions/services/CoreStackOutputService.js +2 -1
- package/abstractions/services/CoreStackOutputService.js.map +1 -1
- package/admin.js +5 -4
- package/admin.js.map +1 -1
- package/api.js +13 -12
- package/api.js.map +1 -1
- package/apps/createAdminApp.js +11 -12
- package/apps/createAdminApp.js.map +1 -1
- package/apps/createAdminAppConfig.js +12 -18
- package/apps/createAdminAppConfig.js.map +1 -1
- package/apps/createApiApp.js +17 -22
- package/apps/createApiApp.js.map +1 -1
- package/apps/createBlueGreenApp.js +13 -16
- package/apps/createBlueGreenApp.js.map +1 -1
- package/apps/createCoreApp.js +12 -13
- package/apps/createCoreApp.js.map +1 -1
- package/apps/createReactAppConfig.d.ts +0 -7
- package/apps/createReactAppConfig.js +56 -69
- package/apps/createReactAppConfig.js.map +1 -1
- package/apps/createSyncSystemApp.js +8 -7
- package/apps/createSyncSystemApp.js.map +1 -1
- package/apps/index.js +0 -2
- package/cli.js +3 -2
- package/cli.js.map +1 -1
- package/exports/extensions.js +0 -2
- package/exports/infra/admin.js +0 -2
- package/exports/infra/api.js +0 -2
- package/exports/infra/core.js +0 -2
- package/exports/infra.js +1 -3
- package/extensions/ApiLambdaFunction.js +45 -56
- package/extensions/ApiLambdaFunction.js.map +1 -1
- package/extensions/ApiRoute.js +90 -104
- package/extensions/ApiRoute.js.map +1 -1
- package/extensions/AwsDefaultRegion.js +17 -16
- package/extensions/AwsDefaultRegion.js.map +1 -1
- package/extensions/Cms/ModelFieldCompression.js +16 -15
- package/extensions/Cms/ModelFieldCompression.js.map +1 -1
- package/extensions/Encryption.js +30 -29
- package/extensions/Encryption.js.map +1 -1
- package/extensions/Mailer/Smtp.js +15 -14
- package/extensions/Mailer/Smtp.js.map +1 -1
- package/extensions/Mailer/Smtp.test.js +117 -131
- package/extensions/Mailer/Smtp.test.js.map +1 -1
- package/extensions/Mailer/SmtpParamsSchema.js +11 -14
- package/extensions/Mailer/SmtpParamsSchema.js.map +1 -1
- package/extensions/OpenSearch/EnsureOsServiceRoleBeforeCoreDeploy.js +25 -30
- package/extensions/OpenSearch/EnsureOsServiceRoleBeforeCoreDeploy.js.map +1 -1
- package/extensions/OpenSearch/EnsureOsWasDeployed.js +14 -24
- package/extensions/OpenSearch/EnsureOsWasDeployed.js.map +1 -1
- package/extensions/OpenSearch/InjectDdbEsLambdaFnHandler.js +25 -21
- package/extensions/OpenSearch/InjectDdbEsLambdaFnHandler.js.map +1 -1
- package/extensions/OpenSearch/ReplaceApiLambdaFnHandlers.js +26 -22
- package/extensions/OpenSearch/ReplaceApiLambdaFnHandlers.js.map +1 -1
- package/extensions/OpenSearch.js +30 -31
- package/extensions/OpenSearch.js.map +1 -1
- package/extensions/ProjectAws/AdminStackOutputService.js +0 -2
- package/extensions/ProjectAws/ApiStackOutputService.js +0 -2
- package/extensions/ProjectAws/AutoInstall/AutoInstallAfterApiDeploy.js +65 -74
- package/extensions/ProjectAws/AutoInstall/AutoInstallAfterApiDeploy.js.map +1 -1
- package/extensions/ProjectAws/AutoInstall.js +15 -14
- package/extensions/ProjectAws/AutoInstall.js.map +1 -1
- package/extensions/ProjectAws/BlueGreenDeployments/EnsureVariantBeforeDeploy.js +15 -19
- package/extensions/ProjectAws/BlueGreenDeployments/EnsureVariantBeforeDeploy.js.map +1 -1
- package/extensions/ProjectAws/BlueGreenDeployments/PrintDeploymentInfoAfterDeploy.js +56 -45
- package/extensions/ProjectAws/BlueGreenDeployments/PrintDeploymentInfoAfterDeploy.js.map +1 -1
- package/extensions/ProjectAws/BlueGreenDeployments/SetPrimaryVariantCliCommand.js +57 -55
- package/extensions/ProjectAws/BlueGreenDeployments/SetPrimaryVariantCliCommand.js.map +1 -1
- package/extensions/ProjectAws/BuildAppWorkspace.js +49 -54
- package/extensions/ProjectAws/BuildAppWorkspace.js.map +1 -1
- package/extensions/ProjectAws/CoreStackOutputService.js +0 -2
- package/extensions/ProjectAws/EnsureAwsCredentialsBeforeDeploy.js +26 -30
- package/extensions/ProjectAws/EnsureAwsCredentialsBeforeDeploy.js.map +1 -1
- package/extensions/ProjectAws/SetAdminEnvVars/SetAdminEnvVars.js +25 -38
- package/extensions/ProjectAws/SetAdminEnvVars/SetAdminEnvVars.js.map +1 -1
- package/extensions/ProjectAws/SetAdminEnvVars/SetAdminEnvVarsBeforeBuild.js +22 -17
- package/extensions/ProjectAws/SetAdminEnvVars/SetAdminEnvVarsBeforeBuild.js.map +1 -1
- package/extensions/ProjectAws/SetAdminEnvVars/SetAdminEnvVarsBeforeWatch.js +22 -17
- package/extensions/ProjectAws/SetAdminEnvVars/SetAdminEnvVarsBeforeWatch.js.map +1 -1
- package/extensions/ProjectAws/SetDatabaseSetupOutput.js +20 -21
- package/extensions/ProjectAws/SetDatabaseSetupOutput.js.map +1 -1
- package/extensions/ProjectAws/UploadAdminAppToS3.js +53 -58
- package/extensions/ProjectAws/UploadAdminAppToS3.js.map +1 -1
- package/extensions/ProjectAws/definitions.js +13 -6
- package/extensions/ProjectAws/definitions.js.map +1 -1
- package/extensions/ProjectAws.js +44 -45
- package/extensions/ProjectAws.js.map +1 -1
- package/extensions/RegisterRoutesPulumi.js +24 -29
- package/extensions/RegisterRoutesPulumi.js.map +1 -1
- package/extensions/definitions.js +10 -3
- package/extensions/definitions.js.map +1 -1
- package/extensions/index.js +0 -2
- package/features/ApiGqlClient.js +46 -51
- package/features/ApiGqlClient.js.map +1 -1
- package/features/InvokeLambdaFunction.js +30 -32
- package/features/InvokeLambdaFunction.js.map +1 -1
- package/features/index.js +0 -2
- package/index.js +0 -2
- package/infra.js +57 -59
- package/infra.js.map +1 -1
- package/package.json +16 -16
- package/project.js +7 -6
- package/project.js.map +1 -1
- package/pulumi/apps/admin/createAdminPulumiApp.js +36 -44
- package/pulumi/apps/admin/createAdminPulumiApp.js.map +1 -1
- package/pulumi/apps/admin/index.js +0 -2
- package/pulumi/apps/api/ApiBackgroundTask.js +153 -137
- package/pulumi/apps/api/ApiBackgroundTask.js.map +1 -1
- package/pulumi/apps/api/ApiCloudfront.js +188 -130
- package/pulumi/apps/api/ApiCloudfront.js.map +1 -1
- package/pulumi/apps/api/ApiFileManager.js +34 -33
- package/pulumi/apps/api/ApiFileManager.js.map +1 -1
- package/pulumi/apps/api/ApiGateway.js +67 -74
- package/pulumi/apps/api/ApiGateway.js.map +1 -1
- package/pulumi/apps/api/ApiGraphql.js +223 -152
- package/pulumi/apps/api/ApiGraphql.js.map +1 -1
- package/pulumi/apps/api/ApiOutput.js +29 -30
- package/pulumi/apps/api/ApiOutput.js.map +1 -1
- package/pulumi/apps/api/ApiScheduler.js +94 -92
- package/pulumi/apps/api/ApiScheduler.js.map +1 -1
- package/pulumi/apps/api/ApiWebsocket.js +141 -133
- package/pulumi/apps/api/ApiWebsocket.js.map +1 -1
- package/pulumi/apps/api/backgroundTask/definition.js +122 -144
- package/pulumi/apps/api/backgroundTask/definition.js.map +1 -1
- package/pulumi/apps/api/backgroundTask/policy.js +37 -23
- package/pulumi/apps/api/backgroundTask/policy.js.map +1 -1
- package/pulumi/apps/api/backgroundTask/role.js +29 -29
- package/pulumi/apps/api/backgroundTask/role.js.map +1 -1
- package/pulumi/apps/api/backgroundTask/types.js +9 -11
- package/pulumi/apps/api/backgroundTask/types.js.map +1 -1
- package/pulumi/apps/api/createApiPulumiApp.js +206 -274
- package/pulumi/apps/api/createApiPulumiApp.js.map +1 -1
- package/pulumi/apps/api/handleGuardDutyEvents.js +54 -51
- package/pulumi/apps/api/handleGuardDutyEvents.js.map +1 -1
- package/pulumi/apps/api/index.js +0 -2
- package/pulumi/apps/awsUtils.js +21 -24
- package/pulumi/apps/awsUtils.js.map +1 -1
- package/pulumi/apps/blueGreen/BlueGreenRouterApiGateway.js +37 -40
- package/pulumi/apps/blueGreen/BlueGreenRouterApiGateway.js.map +1 -1
- package/pulumi/apps/blueGreen/BlueGreenRouterCloudFront.js +83 -91
- package/pulumi/apps/blueGreen/BlueGreenRouterCloudFront.js.map +1 -1
- package/pulumi/apps/blueGreen/BlueGreenRouterCloudFrontStore.js +17 -16
- package/pulumi/apps/blueGreen/BlueGreenRouterCloudFrontStore.js.map +1 -1
- package/pulumi/apps/blueGreen/cloudfront/createCloudFrontDefaultCacheBehaviorPolicies.js +13 -12
- package/pulumi/apps/blueGreen/cloudfront/createCloudFrontDefaultCacheBehaviorPolicies.js.map +1 -1
- package/pulumi/apps/blueGreen/cloudfront/createCloudFrontFunctionDomainMap.js +9 -14
- package/pulumi/apps/blueGreen/cloudfront/createCloudFrontFunctionDomainMap.js.map +1 -1
- package/pulumi/apps/blueGreen/cloudfront/createOriginId.js +5 -7
- package/pulumi/apps/blueGreen/cloudfront/createOriginId.js.map +1 -1
- package/pulumi/apps/blueGreen/constants.js +15 -3
- package/pulumi/apps/blueGreen/constants.js.map +1 -1
- package/pulumi/apps/blueGreen/createBlueGreenPulumiApp.js +77 -103
- package/pulumi/apps/blueGreen/createBlueGreenPulumiApp.js.map +1 -1
- package/pulumi/apps/blueGreen/domains/attachDomainsToOutput.js +20 -26
- package/pulumi/apps/blueGreen/domains/attachDomainsToOutput.js.map +1 -1
- package/pulumi/apps/blueGreen/domains/convertApplicationDomains.js +17 -20
- package/pulumi/apps/blueGreen/domains/convertApplicationDomains.js.map +1 -1
- package/pulumi/apps/blueGreen/domains/getApplicationDomains.js +51 -61
- package/pulumi/apps/blueGreen/domains/getApplicationDomains.js.map +1 -1
- package/pulumi/apps/blueGreen/domains/resolveDomains.js +24 -38
- package/pulumi/apps/blueGreen/domains/resolveDomains.js.map +1 -1
- package/pulumi/apps/blueGreen/functions/buildHandlerFunction.js +7 -14
- package/pulumi/apps/blueGreen/functions/buildHandlerFunction.js.map +1 -1
- package/pulumi/apps/blueGreen/functions/handler.js +1 -57
- package/pulumi/apps/blueGreen/functions/handler.js.map +1 -1
- package/pulumi/apps/blueGreen/types.js +0 -3
- package/pulumi/apps/blueGreen/validation/validateDeployments.js +19 -24
- package/pulumi/apps/blueGreen/validation/validateDeployments.js.map +1 -1
- package/pulumi/apps/common/CoreOutput.js +34 -37
- package/pulumi/apps/common/CoreOutput.js.map +1 -1
- package/pulumi/apps/common/VpcConfig.js +20 -20
- package/pulumi/apps/common/VpcConfig.js.map +1 -1
- package/pulumi/apps/common/index.js +0 -2
- package/pulumi/apps/core/CoreAuditLogsDynamo.js +245 -182
- package/pulumi/apps/core/CoreAuditLogsDynamo.js.map +1 -1
- package/pulumi/apps/core/CoreCognito.js +117 -106
- package/pulumi/apps/core/CoreCognito.js.map +1 -1
- package/pulumi/apps/core/CoreDynamo.js +91 -70
- package/pulumi/apps/core/CoreDynamo.js.map +1 -1
- package/pulumi/apps/core/CoreEventBus.js +10 -9
- package/pulumi/apps/core/CoreEventBus.js.map +1 -1
- package/pulumi/apps/core/CoreFileManager.js +76 -68
- package/pulumi/apps/core/CoreFileManager.js.map +1 -1
- package/pulumi/apps/core/CoreOpenSearch.js +281 -305
- package/pulumi/apps/core/CoreOpenSearch.js.map +1 -1
- package/pulumi/apps/core/CoreVpc.js +155 -156
- package/pulumi/apps/core/CoreVpc.js.map +1 -1
- package/pulumi/apps/core/WatchCommand.js +94 -96
- package/pulumi/apps/core/WatchCommand.js.map +1 -1
- package/pulumi/apps/core/cognitoIdentityProviders/amazon.js +16 -22
- package/pulumi/apps/core/cognitoIdentityProviders/amazon.js.map +1 -1
- package/pulumi/apps/core/cognitoIdentityProviders/apple.js +16 -17
- package/pulumi/apps/core/cognitoIdentityProviders/apple.js.map +1 -1
- package/pulumi/apps/core/cognitoIdentityProviders/configure.js +44 -50
- package/pulumi/apps/core/cognitoIdentityProviders/configure.js.map +1 -1
- package/pulumi/apps/core/cognitoIdentityProviders/facebook.js +16 -17
- package/pulumi/apps/core/cognitoIdentityProviders/facebook.js.map +1 -1
- package/pulumi/apps/core/cognitoIdentityProviders/getIdpConfig.js +7 -8
- package/pulumi/apps/core/cognitoIdentityProviders/getIdpConfig.js.map +1 -1
- package/pulumi/apps/core/cognitoIdentityProviders/google.js +16 -17
- package/pulumi/apps/core/cognitoIdentityProviders/google.js.map +1 -1
- package/pulumi/apps/core/cognitoIdentityProviders/index.js +0 -2
- package/pulumi/apps/core/cognitoIdentityProviders/oidc.js +17 -18
- package/pulumi/apps/core/cognitoIdentityProviders/oidc.js.map +1 -1
- package/pulumi/apps/core/configureS3BucketMalwareProtection.js +251 -188
- package/pulumi/apps/core/configureS3BucketMalwareProtection.js.map +1 -1
- package/pulumi/apps/core/createCorePulumiApp.js +212 -280
- package/pulumi/apps/core/createCorePulumiApp.js.map +1 -1
- package/pulumi/apps/core/index.js +0 -2
- package/pulumi/apps/core/webinyWatchCommand/handler.js +45 -32
- package/pulumi/apps/core/webinyWatchCommand/handler.js.map +1 -1
- package/pulumi/apps/createAppBucket.js +157 -146
- package/pulumi/apps/createAppBucket.js.map +1 -1
- package/pulumi/apps/customDomain.js +7 -6
- package/pulumi/apps/customDomain.js.map +1 -1
- package/pulumi/apps/extensions/getAwsTagsFromExtension.js +8 -7
- package/pulumi/apps/extensions/getAwsTagsFromExtension.js.map +1 -1
- package/pulumi/apps/extensions/getBgDeploymentsConfigFromExtension.js +6 -7
- package/pulumi/apps/extensions/getBgDeploymentsConfigFromExtension.js.map +1 -1
- package/pulumi/apps/extensions/getOsConfigFromExtension.js +17 -41
- package/pulumi/apps/extensions/getOsConfigFromExtension.js.map +1 -1
- package/pulumi/apps/extensions/getVpcConfigFromExtension.js +13 -25
- package/pulumi/apps/extensions/getVpcConfigFromExtension.js.map +1 -1
- package/pulumi/apps/index.js +0 -3
- package/pulumi/apps/lambdaUtils.js +57 -61
- package/pulumi/apps/lambdaUtils.js.map +1 -1
- package/pulumi/apps/react/createReactPulumiApp.js +108 -129
- package/pulumi/apps/react/createReactPulumiApp.js.map +1 -1
- package/pulumi/apps/react/index.js +0 -2
- package/pulumi/apps/syncSystem/SyncSystemDynamo.js +77 -62
- package/pulumi/apps/syncSystem/SyncSystemDynamo.js.map +1 -1
- package/pulumi/apps/syncSystem/SyncSystemDynamoDb.js +74 -57
- package/pulumi/apps/syncSystem/SyncSystemDynamoDb.js.map +1 -1
- package/pulumi/apps/syncSystem/SyncSystemEventBus.js +77 -71
- package/pulumi/apps/syncSystem/SyncSystemEventBus.js.map +1 -1
- package/pulumi/apps/syncSystem/SyncSystemLambda.js +154 -86
- package/pulumi/apps/syncSystem/SyncSystemLambda.js.map +1 -1
- package/pulumi/apps/syncSystem/SyncSystemOutput.js +14 -13
- package/pulumi/apps/syncSystem/SyncSystemOutput.js.map +1 -1
- package/pulumi/apps/syncSystem/SyncSystemResolverLambda.js +56 -60
- package/pulumi/apps/syncSystem/SyncSystemResolverLambda.js.map +1 -1
- package/pulumi/apps/syncSystem/SyncSystemSQS.js +25 -49
- package/pulumi/apps/syncSystem/SyncSystemSQS.js.map +1 -1
- package/pulumi/apps/syncSystem/SyncSystemWorkerLambda.js +44 -43
- package/pulumi/apps/syncSystem/SyncSystemWorkerLambda.js.map +1 -1
- package/pulumi/apps/syncSystem/addTableItems.js +35 -45
- package/pulumi/apps/syncSystem/addTableItems.js.map +1 -1
- package/pulumi/apps/syncSystem/api/addServiceManifest.js +12 -14
- package/pulumi/apps/syncSystem/api/addServiceManifest.js.map +1 -1
- package/pulumi/apps/syncSystem/api/attachCognitoPermissions.js +49 -55
- package/pulumi/apps/syncSystem/api/attachCognitoPermissions.js.map +1 -1
- package/pulumi/apps/syncSystem/api/attachDynamoDbPermissions.js +88 -40
- package/pulumi/apps/syncSystem/api/attachDynamoDbPermissions.js.map +1 -1
- package/pulumi/apps/syncSystem/api/attachEventBusPermissions.js +37 -43
- package/pulumi/apps/syncSystem/api/attachEventBusPermissions.js.map +1 -1
- package/pulumi/apps/syncSystem/api/attachS3Permissions.js +51 -47
- package/pulumi/apps/syncSystem/api/attachS3Permissions.js.map +1 -1
- package/pulumi/apps/syncSystem/api/index.js +28 -46
- package/pulumi/apps/syncSystem/api/index.js.map +1 -1
- package/pulumi/apps/syncSystem/constants.js +2 -1
- package/pulumi/apps/syncSystem/constants.js.map +1 -1
- package/pulumi/apps/syncSystem/createSyncResourceName.js +2 -7
- package/pulumi/apps/syncSystem/createSyncResourceName.js.map +1 -1
- package/pulumi/apps/syncSystem/createSyncSystemPulumiApp.js +101 -166
- package/pulumi/apps/syncSystem/createSyncSystemPulumiApp.js.map +1 -1
- package/pulumi/apps/syncSystem/customApp.js +12 -16
- package/pulumi/apps/syncSystem/customApp.js.map +1 -1
- package/pulumi/apps/syncSystem/getSyncSystemOutput.js +5 -6
- package/pulumi/apps/syncSystem/getSyncSystemOutput.js.map +1 -1
- package/pulumi/apps/syncSystem/lambda/createSyncSystemResolverLambdaPolicy.js +108 -42
- package/pulumi/apps/syncSystem/lambda/createSyncSystemResolverLambdaPolicy.js.map +1 -1
- package/pulumi/apps/syncSystem/types.js +0 -3
- package/pulumi/constants.js +2 -1
- package/pulumi/constants.js.map +1 -1
- package/pulumi/env/awsRegion.js +3 -2
- package/pulumi/env/awsRegion.js.map +1 -1
- package/pulumi/env/base.js +11 -27
- package/pulumi/env/base.js.map +1 -1
- package/pulumi/env/env.js +3 -2
- package/pulumi/env/env.js.map +1 -1
- package/pulumi/env/projectName.js +3 -2
- package/pulumi/env/projectName.js.map +1 -1
- package/pulumi/env/variant.js +4 -3
- package/pulumi/env/variant.js.map +1 -1
- package/pulumi/extensions/AdminCustomDomains.js +15 -11
- package/pulumi/extensions/AdminCustomDomains.js.map +1 -1
- package/pulumi/extensions/AdminPulumi.js +16 -19
- package/pulumi/extensions/AdminPulumi.js.map +1 -1
- package/pulumi/extensions/ApiCustomDomains.js +15 -11
- package/pulumi/extensions/ApiCustomDomains.js.map +1 -1
- package/pulumi/extensions/ApiPulumi.js +16 -19
- package/pulumi/extensions/ApiPulumi.js.map +1 -1
- package/pulumi/extensions/AwsTags.js +11 -10
- package/pulumi/extensions/AwsTags.js.map +1 -1
- package/pulumi/extensions/BlueGreenDeployments.js +29 -26
- package/pulumi/extensions/BlueGreenDeployments.js.map +1 -1
- package/pulumi/extensions/CorePulumi.js +16 -19
- package/pulumi/extensions/CorePulumi.js.map +1 -1
- package/pulumi/extensions/OpenSearch.js +16 -15
- package/pulumi/extensions/OpenSearch.js.map +1 -1
- package/pulumi/extensions/Vpc.js +21 -20
- package/pulumi/extensions/Vpc.js.map +1 -1
- package/pulumi/extensions/index.js +12 -10
- package/pulumi/extensions/index.js.map +1 -1
- package/pulumi/features/AdminPulumi/AdminPulumi.js +18 -14
- package/pulumi/features/AdminPulumi/AdminPulumi.js.map +1 -1
- package/pulumi/features/AdminPulumi/index.js +0 -2
- package/pulumi/features/ApiPulumi/ApiPulumi.js +18 -14
- package/pulumi/features/ApiPulumi/ApiPulumi.js.map +1 -1
- package/pulumi/features/ApiPulumi/index.js +0 -2
- package/pulumi/features/CorePulumi/CorePulumi.js +18 -14
- package/pulumi/features/CorePulumi/CorePulumi.js.map +1 -1
- package/pulumi/features/CorePulumi/index.js +0 -2
- package/pulumi/features/index.js +0 -2
- package/pulumi/index.js +0 -2
- package/pulumi/types.js +0 -3
- package/pulumi/utils/addDomainsUrlsOutputs.js +20 -37
- package/pulumi/utils/addDomainsUrlsOutputs.js.map +1 -1
- package/pulumi/utils/addServiceManifestTableItem.js +12 -15
- package/pulumi/utils/addServiceManifestTableItem.js.map +1 -1
- package/pulumi/utils/crawlDirectory.js +10 -15
- package/pulumi/utils/crawlDirectory.js.map +1 -1
- package/pulumi/utils/createAssetArchive.js +5 -6
- package/pulumi/utils/createAssetArchive.js.map +1 -1
- package/pulumi/utils/dynamodb.js +26 -27
- package/pulumi/utils/dynamodb.js.map +1 -1
- package/pulumi/utils/getPresignedPost.js +27 -30
- package/pulumi/utils/getPresignedPost.js.map +1 -1
- package/pulumi/utils/index.js +1 -3
- package/pulumi/utils/lambdaEnvVariables.js +42 -54
- package/pulumi/utils/lambdaEnvVariables.js.map +1 -1
- package/pulumi/utils/tagResources.js +248 -28
- package/pulumi/utils/tagResources.js.map +1 -1
- package/pulumi/utils/uploadFolderToS3.js +101 -131
- package/pulumi/utils/uploadFolderToS3.js.map +1 -1
- package/pulumi/utils/withServiceManifest.js +28 -37
- package/pulumi/utils/withServiceManifest.js.map +1 -1
- package/services/AdminStackOutputService.js +14 -11
- package/services/AdminStackOutputService.js.map +1 -1
- package/services/ApiStackOutputService.js +14 -11
- package/services/ApiStackOutputService.js.map +1 -1
- package/services/CoreStackOutputService.js +14 -11
- package/services/CoreStackOutputService.js.map +1 -1
- package/utils/getTemplatesFolderPath.js +8 -10
- package/utils/getTemplatesFolderPath.js.map +1 -1
- package/utils/index.js +0 -2
- package/abstractions/features/pulumi/index.js.map +0 -1
- package/abstractions/index.js.map +0 -1
- package/apps/index.js.map +0 -1
- package/exports/extensions.js.map +0 -1
- package/exports/infra/admin.js.map +0 -1
- package/exports/infra/api.js.map +0 -1
- package/exports/infra/core.js.map +0 -1
- package/exports/infra.js.map +0 -1
- package/extensions/ProjectAws/AdminStackOutputService.js.map +0 -1
- package/extensions/ProjectAws/ApiStackOutputService.js.map +0 -1
- package/extensions/ProjectAws/CoreStackOutputService.js.map +0 -1
- package/extensions/index.js.map +0 -1
- package/features/index.js.map +0 -1
- package/index.js.map +0 -1
- package/pulumi/apps/admin/index.js.map +0 -1
- package/pulumi/apps/api/index.js.map +0 -1
- package/pulumi/apps/blueGreen/types.js.map +0 -1
- package/pulumi/apps/common/index.js.map +0 -1
- package/pulumi/apps/core/cognitoIdentityProviders/index.js.map +0 -1
- package/pulumi/apps/core/index.js.map +0 -1
- package/pulumi/apps/index.js.map +0 -1
- package/pulumi/apps/react/index.js.map +0 -1
- package/pulumi/apps/syncSystem/types.js.map +0 -1
- package/pulumi/features/AdminPulumi/index.js.map +0 -1
- package/pulumi/features/ApiPulumi/index.js.map +0 -1
- package/pulumi/features/CorePulumi/index.js.map +0 -1
- package/pulumi/features/index.js.map +0 -1
- package/pulumi/index.js.map +0 -1
- package/pulumi/types.js.map +0 -1
- package/pulumi/utils/index.js.map +0 -1
- package/utils/index.js.map +0 -1
|
@@ -1,37 +1,50 @@
|
|
|
1
|
-
exports.handler = async event
|
|
2
|
-
|
|
3
|
-
|
|
4
|
-
|
|
1
|
+
exports.handler = async (event)=>{
|
|
2
|
+
const urlParams = new URLSearchParams(event.protocolData.http.queryString);
|
|
3
|
+
const WEBINY_WATCH_COMMAND_TOPIC = process.env.WEBINY_WATCH_COMMAND_TOPIC;
|
|
4
|
+
if (urlParams.get("x-webiny-watch-command-topic") !== WEBINY_WATCH_COMMAND_TOPIC) return {
|
|
5
|
+
isAuthenticated: false
|
|
6
|
+
};
|
|
5
7
|
return {
|
|
6
|
-
|
|
8
|
+
isAuthenticated: true,
|
|
9
|
+
principalId: "Unauthenticated",
|
|
10
|
+
policyDocuments: [
|
|
11
|
+
{
|
|
12
|
+
Version: "2012-10-17",
|
|
13
|
+
Statement: [
|
|
14
|
+
{
|
|
15
|
+
Effect: "Allow",
|
|
16
|
+
Action: "iot:Connect",
|
|
17
|
+
Resource: "arn:aws:iot:*:*:client/*"
|
|
18
|
+
},
|
|
19
|
+
{
|
|
20
|
+
Effect: "Allow",
|
|
21
|
+
Action: "iot:Subscribe",
|
|
22
|
+
Resource: [
|
|
23
|
+
`arn:aws:iot:*:*:topicfilter/${WEBINY_WATCH_COMMAND_TOPIC}`
|
|
24
|
+
]
|
|
25
|
+
},
|
|
26
|
+
{
|
|
27
|
+
Effect: "Allow",
|
|
28
|
+
Action: "iot:Publish",
|
|
29
|
+
Resource: [
|
|
30
|
+
`arn:aws:iot:*:*:topic/${WEBINY_WATCH_COMMAND_TOPIC}`
|
|
31
|
+
]
|
|
32
|
+
},
|
|
33
|
+
{
|
|
34
|
+
Effect: "Allow",
|
|
35
|
+
Action: [
|
|
36
|
+
"iot:Receive"
|
|
37
|
+
],
|
|
38
|
+
Resource: [
|
|
39
|
+
`arn:aws:iot:*:*:topic/${WEBINY_WATCH_COMMAND_TOPIC}`
|
|
40
|
+
]
|
|
41
|
+
}
|
|
42
|
+
]
|
|
43
|
+
}
|
|
44
|
+
],
|
|
45
|
+
disconnectAfterInSeconds: 3600,
|
|
46
|
+
refreshAfterInSeconds: 300
|
|
7
47
|
};
|
|
8
|
-
}
|
|
9
|
-
return {
|
|
10
|
-
isAuthenticated: true,
|
|
11
|
-
principalId: "Unauthenticated",
|
|
12
|
-
policyDocuments: [{
|
|
13
|
-
Version: "2012-10-17",
|
|
14
|
-
Statement: [{
|
|
15
|
-
Effect: "Allow",
|
|
16
|
-
Action: "iot:Connect",
|
|
17
|
-
Resource: "arn:aws:iot:*:*:client/*"
|
|
18
|
-
}, {
|
|
19
|
-
Effect: "Allow",
|
|
20
|
-
Action: "iot:Subscribe",
|
|
21
|
-
Resource: [`arn:aws:iot:*:*:topicfilter/${WEBINY_WATCH_COMMAND_TOPIC}`]
|
|
22
|
-
}, {
|
|
23
|
-
Effect: "Allow",
|
|
24
|
-
Action: "iot:Publish",
|
|
25
|
-
Resource: [`arn:aws:iot:*:*:topic/${WEBINY_WATCH_COMMAND_TOPIC}`]
|
|
26
|
-
}, {
|
|
27
|
-
Effect: "Allow",
|
|
28
|
-
Action: ["iot:Receive"],
|
|
29
|
-
Resource: [`arn:aws:iot:*:*:topic/${WEBINY_WATCH_COMMAND_TOPIC}`]
|
|
30
|
-
}]
|
|
31
|
-
}],
|
|
32
|
-
disconnectAfterInSeconds: 3600,
|
|
33
|
-
refreshAfterInSeconds: 300
|
|
34
|
-
};
|
|
35
48
|
};
|
|
36
49
|
|
|
37
50
|
//# sourceMappingURL=handler.js.map
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"
|
|
1
|
+
{"version":3,"file":"pulumi/apps/core/webinyWatchCommand/handler.js","sources":["../../../../../src/pulumi/apps/core/webinyWatchCommand/handler.js"],"sourcesContent":["exports.handler = async event => {\n const urlParams = new URLSearchParams(event.protocolData.http.queryString);\n\n const WEBINY_WATCH_COMMAND_TOPIC = process.env.WEBINY_WATCH_COMMAND_TOPIC;\n if (urlParams.get(\"x-webiny-watch-command-topic\") !== WEBINY_WATCH_COMMAND_TOPIC) {\n return {\n isAuthenticated: false\n };\n }\n\n return {\n isAuthenticated: true,\n principalId: \"Unauthenticated\",\n policyDocuments: [\n {\n Version: \"2012-10-17\",\n Statement: [\n {\n Effect: \"Allow\",\n Action: \"iot:Connect\",\n Resource: \"arn:aws:iot:*:*:client/*\"\n },\n {\n Effect: \"Allow\",\n Action: \"iot:Subscribe\",\n Resource: [`arn:aws:iot:*:*:topicfilter/${WEBINY_WATCH_COMMAND_TOPIC}`]\n },\n {\n Effect: \"Allow\",\n Action: \"iot:Publish\",\n Resource: [`arn:aws:iot:*:*:topic/${WEBINY_WATCH_COMMAND_TOPIC}`]\n },\n {\n Effect: \"Allow\",\n Action: [\"iot:Receive\"],\n Resource: [`arn:aws:iot:*:*:topic/${WEBINY_WATCH_COMMAND_TOPIC}`]\n }\n ]\n }\n ],\n disconnectAfterInSeconds: 3600,\n refreshAfterInSeconds: 300\n };\n};\n"],"names":["exports","event","urlParams","URLSearchParams","WEBINY_WATCH_COMMAND_TOPIC","process"],"mappings":"AAAAA,QAAQ,OAAO,GAAG,OAAMC;IACpB,MAAMC,YAAY,IAAIC,gBAAgBF,MAAM,YAAY,CAAC,IAAI,CAAC,WAAW;IAEzE,MAAMG,6BAA6BC,QAAQ,GAAG,CAAC,0BAA0B;IACzE,IAAIH,UAAU,GAAG,CAAC,oCAAoCE,4BAClD,OAAO;QACH,iBAAiB;IACrB;IAGJ,OAAO;QACH,iBAAiB;QACjB,aAAa;QACb,iBAAiB;YACb;gBACI,SAAS;gBACT,WAAW;oBACP;wBACI,QAAQ;wBACR,QAAQ;wBACR,UAAU;oBACd;oBACA;wBACI,QAAQ;wBACR,QAAQ;wBACR,UAAU;4BAAC,CAAC,4BAA4B,EAAEA,4BAA4B;yBAAC;oBAC3E;oBACA;wBACI,QAAQ;wBACR,QAAQ;wBACR,UAAU;4BAAC,CAAC,sBAAsB,EAAEA,4BAA4B;yBAAC;oBACrE;oBACA;wBACI,QAAQ;wBACR,QAAQ;4BAAC;yBAAc;wBACvB,UAAU;4BAAC,CAAC,sBAAsB,EAAEA,4BAA4B;yBAAC;oBACrE;iBACH;YACL;SACH;QACD,0BAA0B;QAC1B,uBAAuB;IAC3B;AACJ"}
|
|
@@ -1,152 +1,163 @@
|
|
|
1
|
-
import * as aws from "@pulumi/aws";
|
|
2
1
|
import { ApiOutput } from "./api/index.js";
|
|
3
2
|
import { getEnvVariableAwsRegion } from "../env/awsRegion.js";
|
|
4
|
-
|
|
5
|
-
|
|
6
|
-
|
|
7
|
-
|
|
8
|
-
|
|
9
|
-
|
|
10
|
-
|
|
11
|
-
|
|
12
|
-
|
|
13
|
-
|
|
14
|
-
|
|
15
|
-
|
|
16
|
-
|
|
17
|
-
|
|
18
|
-
|
|
19
|
-
|
|
20
|
-
|
|
21
|
-
|
|
22
|
-
|
|
23
|
-
|
|
24
|
-
|
|
25
|
-
|
|
26
|
-
|
|
27
|
-
|
|
28
|
-
|
|
29
|
-
|
|
30
|
-
|
|
31
|
-
|
|
32
|
-
|
|
33
|
-
|
|
34
|
-
|
|
35
|
-
|
|
36
|
-
|
|
37
|
-
|
|
38
|
-
|
|
39
|
-
|
|
40
|
-
|
|
41
|
-
|
|
42
|
-
|
|
43
|
-
|
|
44
|
-
|
|
45
|
-
|
|
46
|
-
|
|
47
|
-
|
|
48
|
-
|
|
49
|
-
|
|
3
|
+
import * as __rspack_external__pulumi_aws_e7af83c1 from "@pulumi/aws";
|
|
4
|
+
function createPublicAppBucket(app, name) {
|
|
5
|
+
const bucket = app.addResource(__rspack_external__pulumi_aws_e7af83c1.s3.Bucket, {
|
|
6
|
+
name: name,
|
|
7
|
+
config: {
|
|
8
|
+
forceDestroy: true,
|
|
9
|
+
website: {
|
|
10
|
+
indexDocument: "index.html",
|
|
11
|
+
errorDocument: "_NOT_FOUND_PAGE_/index.html"
|
|
12
|
+
}
|
|
13
|
+
}
|
|
14
|
+
});
|
|
15
|
+
const bucketOwnershipControls = app.addResource(__rspack_external__pulumi_aws_e7af83c1.s3.BucketOwnershipControls, {
|
|
16
|
+
name: `${name}-ownership-controls`,
|
|
17
|
+
config: {
|
|
18
|
+
bucket: bucket.output.id,
|
|
19
|
+
rule: {
|
|
20
|
+
objectOwnership: "BucketOwnerPreferred"
|
|
21
|
+
}
|
|
22
|
+
}
|
|
23
|
+
});
|
|
24
|
+
const bucketAcl = app.addResource(__rspack_external__pulumi_aws_e7af83c1.s3.BucketAcl, {
|
|
25
|
+
name: `${name}-acl`,
|
|
26
|
+
config: {
|
|
27
|
+
bucket: bucket.output.id,
|
|
28
|
+
acl: __rspack_external__pulumi_aws_e7af83c1.s3.CannedAcl.PublicRead
|
|
29
|
+
},
|
|
30
|
+
opts: {
|
|
31
|
+
dependsOn: [
|
|
32
|
+
bucketOwnershipControls.output
|
|
33
|
+
]
|
|
34
|
+
}
|
|
35
|
+
});
|
|
36
|
+
const origin = {
|
|
37
|
+
originId: bucket.output.arn,
|
|
38
|
+
domainName: bucket.output.websiteEndpoint,
|
|
39
|
+
customOriginConfig: {
|
|
40
|
+
originProtocolPolicy: "http-only",
|
|
41
|
+
httpPort: 80,
|
|
42
|
+
httpsPort: 443,
|
|
43
|
+
originSslProtocols: [
|
|
44
|
+
"TLSv1.2"
|
|
45
|
+
]
|
|
46
|
+
}
|
|
47
|
+
};
|
|
48
|
+
return {
|
|
49
|
+
bucket,
|
|
50
|
+
bucketAcl,
|
|
51
|
+
bucketOwnershipControls,
|
|
52
|
+
origin
|
|
53
|
+
};
|
|
50
54
|
}
|
|
51
|
-
|
|
52
|
-
|
|
53
|
-
|
|
54
|
-
|
|
55
|
-
|
|
56
|
-
|
|
57
|
-
|
|
58
|
-
|
|
59
|
-
|
|
60
|
-
|
|
61
|
-
|
|
62
|
-
|
|
63
|
-
|
|
64
|
-
|
|
65
|
-
|
|
66
|
-
|
|
67
|
-
|
|
68
|
-
|
|
69
|
-
|
|
70
|
-
|
|
71
|
-
|
|
72
|
-
|
|
73
|
-
|
|
74
|
-
|
|
75
|
-
|
|
76
|
-
|
|
77
|
-
|
|
78
|
-
|
|
79
|
-
}
|
|
80
|
-
|
|
81
|
-
|
|
82
|
-
|
|
83
|
-
|
|
84
|
-
|
|
85
|
-
|
|
86
|
-
|
|
87
|
-
|
|
88
|
-
|
|
89
|
-
|
|
90
|
-
|
|
91
|
-
|
|
92
|
-
|
|
93
|
-
|
|
94
|
-
|
|
95
|
-
|
|
96
|
-
|
|
97
|
-
|
|
98
|
-
|
|
99
|
-
|
|
100
|
-
|
|
101
|
-
|
|
102
|
-
|
|
103
|
-
|
|
104
|
-
|
|
105
|
-
|
|
106
|
-
|
|
107
|
-
|
|
108
|
-
|
|
109
|
-
|
|
110
|
-
|
|
111
|
-
|
|
112
|
-
|
|
113
|
-
|
|
114
|
-
|
|
115
|
-
|
|
116
|
-
|
|
117
|
-
|
|
118
|
-
|
|
119
|
-
|
|
120
|
-
|
|
121
|
-
|
|
122
|
-
|
|
123
|
-
|
|
124
|
-
|
|
125
|
-
|
|
126
|
-
|
|
127
|
-
|
|
128
|
-
|
|
129
|
-
|
|
130
|
-
|
|
131
|
-
|
|
132
|
-
|
|
133
|
-
|
|
134
|
-
|
|
135
|
-
|
|
136
|
-
|
|
137
|
-
|
|
138
|
-
|
|
139
|
-
|
|
140
|
-
|
|
141
|
-
|
|
142
|
-
|
|
143
|
-
|
|
144
|
-
|
|
145
|
-
|
|
146
|
-
|
|
147
|
-
|
|
148
|
-
|
|
149
|
-
|
|
55
|
+
function createPrivateAppBucket(app, name) {
|
|
56
|
+
const api = app.getModule(ApiOutput);
|
|
57
|
+
const bucket = app.addResource(__rspack_external__pulumi_aws_e7af83c1.s3.Bucket, {
|
|
58
|
+
name: name,
|
|
59
|
+
config: {
|
|
60
|
+
forceDestroy: true
|
|
61
|
+
}
|
|
62
|
+
});
|
|
63
|
+
const bucketOwnershipControls = app.addResource(__rspack_external__pulumi_aws_e7af83c1.s3.BucketOwnershipControls, {
|
|
64
|
+
name: `${name}-ownership-controls`,
|
|
65
|
+
config: {
|
|
66
|
+
bucket: bucket.output.id,
|
|
67
|
+
rule: {
|
|
68
|
+
objectOwnership: "BucketOwnerPreferred"
|
|
69
|
+
}
|
|
70
|
+
}
|
|
71
|
+
});
|
|
72
|
+
const bucketAcl = app.addResource(__rspack_external__pulumi_aws_e7af83c1.s3.BucketAcl, {
|
|
73
|
+
name: `${name}-acl`,
|
|
74
|
+
config: {
|
|
75
|
+
bucket: bucket.output.id,
|
|
76
|
+
acl: __rspack_external__pulumi_aws_e7af83c1.s3.CannedAcl.Private
|
|
77
|
+
},
|
|
78
|
+
opts: {
|
|
79
|
+
dependsOn: [
|
|
80
|
+
bucketOwnershipControls.output
|
|
81
|
+
]
|
|
82
|
+
}
|
|
83
|
+
});
|
|
84
|
+
const originIdentity = app.addResource(__rspack_external__pulumi_aws_e7af83c1.cloudfront.OriginAccessIdentity, {
|
|
85
|
+
name: `${name}-origin-identity`,
|
|
86
|
+
config: {}
|
|
87
|
+
});
|
|
88
|
+
const origin = {
|
|
89
|
+
originId: bucket.output.arn,
|
|
90
|
+
domainName: bucket.output.bucket.apply((name)=>`${name}.s3.${getEnvVariableAwsRegion()}.amazonaws.com`),
|
|
91
|
+
s3OriginConfig: {
|
|
92
|
+
originAccessIdentity: originIdentity.output.cloudfrontAccessIdentityPath
|
|
93
|
+
}
|
|
94
|
+
};
|
|
95
|
+
const bucketPublicAccessBlock = app.addResource(__rspack_external__pulumi_aws_e7af83c1.s3.BucketPublicAccessBlock, {
|
|
96
|
+
name: `${name}-bucket-block-access`,
|
|
97
|
+
config: {
|
|
98
|
+
bucket: bucket.output.id,
|
|
99
|
+
blockPublicAcls: true,
|
|
100
|
+
blockPublicPolicy: true,
|
|
101
|
+
ignorePublicAcls: true,
|
|
102
|
+
restrictPublicBuckets: true
|
|
103
|
+
}
|
|
104
|
+
});
|
|
105
|
+
const bucketPolicy = app.addResource(__rspack_external__pulumi_aws_e7af83c1.s3.BucketPolicy, {
|
|
106
|
+
name: `${name}-bucket-policy`,
|
|
107
|
+
config: {
|
|
108
|
+
bucket: bucket.output.bucket,
|
|
109
|
+
policy: {
|
|
110
|
+
Version: "2012-10-17",
|
|
111
|
+
Statement: bucket.output.arn.apply((arn)=>{
|
|
112
|
+
const statements = [
|
|
113
|
+
{
|
|
114
|
+
Effect: "Allow",
|
|
115
|
+
Principal: {
|
|
116
|
+
AWS: originIdentity.output.iamArn
|
|
117
|
+
},
|
|
118
|
+
Action: [
|
|
119
|
+
"s3:ListBucket",
|
|
120
|
+
"s3:GetObject"
|
|
121
|
+
],
|
|
122
|
+
Resource: [
|
|
123
|
+
`${arn}`,
|
|
124
|
+
`${arn}/*`
|
|
125
|
+
]
|
|
126
|
+
},
|
|
127
|
+
{
|
|
128
|
+
Effect: "Allow",
|
|
129
|
+
Principal: {
|
|
130
|
+
AWS: api.graphqlLambdaRole
|
|
131
|
+
},
|
|
132
|
+
Action: [
|
|
133
|
+
"s3:GetObjectAcl",
|
|
134
|
+
"s3:DeleteObject",
|
|
135
|
+
"s3:PutObjectAcl",
|
|
136
|
+
"s3:PutObject",
|
|
137
|
+
"s3:GetObject",
|
|
138
|
+
"s3:ListBucket"
|
|
139
|
+
],
|
|
140
|
+
Resource: [
|
|
141
|
+
`${arn}`,
|
|
142
|
+
`${arn}/*`
|
|
143
|
+
]
|
|
144
|
+
}
|
|
145
|
+
];
|
|
146
|
+
return statements;
|
|
147
|
+
})
|
|
148
|
+
}
|
|
149
|
+
}
|
|
150
|
+
});
|
|
151
|
+
return {
|
|
152
|
+
bucket,
|
|
153
|
+
bucketOwnershipControls,
|
|
154
|
+
bucketAcl,
|
|
155
|
+
originIdentity,
|
|
156
|
+
origin,
|
|
157
|
+
bucketPublicAccessBlock,
|
|
158
|
+
bucketPolicy
|
|
159
|
+
};
|
|
150
160
|
}
|
|
161
|
+
export { createPrivateAppBucket, createPublicAppBucket };
|
|
151
162
|
|
|
152
163
|
//# sourceMappingURL=createAppBucket.js.map
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"names":["aws","ApiOutput","getEnvVariableAwsRegion","createPublicAppBucket","app","name","bucket","addResource","s3","Bucket","config","forceDestroy","website","indexDocument","errorDocument","bucketOwnershipControls","BucketOwnershipControls","output","id","rule","objectOwnership","bucketAcl","BucketAcl","acl","CannedAcl","PublicRead","opts","dependsOn","origin","originId","arn","domainName","websiteEndpoint","customOriginConfig","originProtocolPolicy","httpPort","httpsPort","originSslProtocols","createPrivateAppBucket","api","getModule","Private","originIdentity","cloudfront","OriginAccessIdentity","apply","s3OriginConfig","originAccessIdentity","cloudfrontAccessIdentityPath","bucketPublicAccessBlock","BucketPublicAccessBlock","blockPublicAcls","blockPublicPolicy","ignorePublicAcls","restrictPublicBuckets","bucketPolicy","BucketPolicy","policy","Version","Statement","statements","Effect","Principal","AWS","iamArn","Action","Resource","graphqlLambdaRole"],"sources":["createAppBucket.ts"],"sourcesContent":["import * as aws from \"@pulumi/aws\";\nimport { type PulumiApp } from \"@webiny/pulumi\";\nimport { ApiOutput } from \"~/pulumi/apps/api/index.js\";\nimport { getEnvVariableAwsRegion } from \"~/pulumi/env/awsRegion.js\";\n\nexport function createPublicAppBucket(app: PulumiApp, name: string) {\n const bucket = app.addResource(aws.s3.Bucket, {\n name: name,\n config: {\n forceDestroy: true,\n website: {\n indexDocument: \"index.html\",\n errorDocument: \"_NOT_FOUND_PAGE_/index.html\"\n }\n }\n });\n\n const bucketOwnershipControls = app.addResource(aws.s3.BucketOwnershipControls, {\n name: `${name}-ownership-controls`,\n config: {\n bucket: bucket.output.id,\n rule: {\n objectOwnership: \"BucketOwnerPreferred\"\n }\n }\n });\n\n const bucketAcl = app.addResource(aws.s3.BucketAcl, {\n name: `${name}-acl`,\n config: {\n bucket: bucket.output.id,\n acl: aws.s3.CannedAcl.PublicRead\n },\n opts: {\n dependsOn: [bucketOwnershipControls.output]\n }\n });\n\n const origin: aws.types.input.cloudfront.DistributionOrigin = {\n originId: bucket.output.arn,\n domainName: bucket.output.websiteEndpoint,\n customOriginConfig: {\n originProtocolPolicy: \"http-only\",\n httpPort: 80,\n httpsPort: 443,\n originSslProtocols: [\"TLSv1.2\"]\n }\n };\n\n return {\n bucket,\n bucketAcl,\n bucketOwnershipControls,\n origin\n };\n}\n\n// Forces S3 buckets to be available only through a cloudfront distribution.\n// Requires `ApiOutput` module to be loaded.\nexport function createPrivateAppBucket(app: PulumiApp, name: string) {\n const api = app.getModule(ApiOutput);\n\n const bucket = app.addResource(aws.s3.Bucket, {\n name: name,\n config: {\n forceDestroy: true\n }\n });\n\n const bucketOwnershipControls = app.addResource(aws.s3.BucketOwnershipControls, {\n name: `${name}-ownership-controls`,\n config: {\n bucket: bucket.output.id,\n rule: {\n objectOwnership: \"BucketOwnerPreferred\"\n }\n }\n });\n\n const bucketAcl = app.addResource(aws.s3.BucketAcl, {\n name: `${name}-acl`,\n config: {\n bucket: bucket.output.id,\n acl: aws.s3.CannedAcl.Private\n },\n opts: {\n dependsOn: [bucketOwnershipControls.output]\n }\n });\n\n // Origin Identity is a kind of AWS user that represents Cloudfront distribution\n // We can add IAM policies to it later, to allow accessing private S3 bucket\n const originIdentity = app.addResource(aws.cloudfront.OriginAccessIdentity, {\n name: `${name}-origin-identity`,\n config: {}\n });\n\n const origin: aws.types.input.cloudfront.DistributionOrigin = {\n originId: bucket.output.arn,\n domainName: bucket.output.bucket.apply(\n // We need to create a regional domain name. Otherwise, we'll run into the following issue:\n // https://aws.amazon.com/premiumsupport/knowledge-center/s3-http-307-response/\n name => `${name}.s3.${getEnvVariableAwsRegion()}.amazonaws.com`\n ),\n s3OriginConfig: {\n originAccessIdentity: originIdentity.output.cloudfrontAccessIdentityPath\n }\n };\n\n // block any public access\n const bucketPublicAccessBlock = app.addResource(aws.s3.BucketPublicAccessBlock, {\n name: `${name}-bucket-block-access`,\n config: {\n bucket: bucket.output.id,\n blockPublicAcls: true,\n blockPublicPolicy: true,\n ignorePublicAcls: true,\n restrictPublicBuckets: true\n }\n });\n\n // Create an IAM policy to allow access to S3 bucket from cloudfront\n const bucketPolicy = app.addResource(aws.s3.BucketPolicy, {\n name: `${name}-bucket-policy`,\n config: {\n bucket: bucket.output.bucket,\n policy: {\n Version: \"2012-10-17\",\n Statement: bucket.output.arn.apply(arn => {\n const statements: aws.iam.PolicyStatement[] = [\n {\n Effect: \"Allow\",\n Principal: { AWS: originIdentity.output.iamArn },\n // we need GetObject to retrieve objects from S3\n // and ListBucket allows to properly handle non-existing files (404)\n Action: [\"s3:ListBucket\", \"s3:GetObject\"],\n Resource: [`${arn}`, `${arn}/*`]\n },\n {\n Effect: \"Allow\",\n Principal: {\n AWS: api.graphqlLambdaRole\n },\n Action: [\n \"s3:GetObjectAcl\",\n \"s3:DeleteObject\",\n \"s3:PutObjectAcl\",\n \"s3:PutObject\",\n \"s3:GetObject\",\n \"s3:ListBucket\"\n ],\n Resource: [`${arn}`, `${arn}/*`]\n }\n ];\n\n return statements;\n })\n }\n }\n });\n\n return {\n bucket,\n bucketOwnershipControls,\n bucketAcl,\n originIdentity,\n origin,\n bucketPublicAccessBlock,\n bucketPolicy\n };\n}\n"],"mappings":"AAAA,OAAO,KAAKA,GAAG,MAAM,aAAa;AAElC,SAASC,SAAS;AAClB,SAASC,uBAAuB;AAEhC,OAAO,SAASC,qBAAqBA,CAACC,GAAc,EAAEC,IAAY,EAAE;EAChE,MAAMC,MAAM,GAAGF,GAAG,CAACG,WAAW,CAACP,GAAG,CAACQ,EAAE,CAACC,MAAM,EAAE;IAC1CJ,IAAI,EAAEA,IAAI;IACVK,MAAM,EAAE;MACJC,YAAY,EAAE,IAAI;MAClBC,OAAO,EAAE;QACLC,aAAa,EAAE,YAAY;QAC3BC,aAAa,EAAE;MACnB;IACJ;EACJ,CAAC,CAAC;EAEF,MAAMC,uBAAuB,GAAGX,GAAG,CAACG,WAAW,CAACP,GAAG,CAACQ,EAAE,CAACQ,uBAAuB,EAAE;IAC5EX,IAAI,EAAE,GAAGA,IAAI,qBAAqB;IAClCK,MAAM,EAAE;MACJJ,MAAM,EAAEA,MAAM,CAACW,MAAM,CAACC,EAAE;MACxBC,IAAI,EAAE;QACFC,eAAe,EAAE;MACrB;IACJ;EACJ,CAAC,CAAC;EAEF,MAAMC,SAAS,GAAGjB,GAAG,CAACG,WAAW,CAACP,GAAG,CAACQ,EAAE,CAACc,SAAS,EAAE;IAChDjB,IAAI,EAAE,GAAGA,IAAI,MAAM;IACnBK,MAAM,EAAE;MACJJ,MAAM,EAAEA,MAAM,CAACW,MAAM,CAACC,EAAE;MACxBK,GAAG,EAAEvB,GAAG,CAACQ,EAAE,CAACgB,SAAS,CAACC;IAC1B,CAAC;IACDC,IAAI,EAAE;MACFC,SAAS,EAAE,CAACZ,uBAAuB,CAACE,MAAM;IAC9C;EACJ,CAAC,CAAC;EAEF,MAAMW,MAAqD,GAAG;IAC1DC,QAAQ,EAAEvB,MAAM,CAACW,MAAM,CAACa,GAAG;IAC3BC,UAAU,EAAEzB,MAAM,CAACW,MAAM,CAACe,eAAe;IACzCC,kBAAkB,EAAE;MAChBC,oBAAoB,EAAE,WAAW;MACjCC,QAAQ,EAAE,EAAE;MACZC,SAAS,EAAE,GAAG;MACdC,kBAAkB,EAAE,CAAC,SAAS;IAClC;EACJ,CAAC;EAED,OAAO;IACH/B,MAAM;IACNe,SAAS;IACTN,uBAAuB;IACvBa;EACJ,CAAC;AACL;;AAEA;AACA;AACA,OAAO,SAASU,sBAAsBA,CAAClC,GAAc,EAAEC,IAAY,EAAE;EACjE,MAAMkC,GAAG,GAAGnC,GAAG,CAACoC,SAAS,CAACvC,SAAS,CAAC;EAEpC,MAAMK,MAAM,GAAGF,GAAG,CAACG,WAAW,CAACP,GAAG,CAACQ,EAAE,CAACC,MAAM,EAAE;IAC1CJ,IAAI,EAAEA,IAAI;IACVK,MAAM,EAAE;MACJC,YAAY,EAAE;IAClB;EACJ,CAAC,CAAC;EAEF,MAAMI,uBAAuB,GAAGX,GAAG,CAACG,WAAW,CAACP,GAAG,CAACQ,EAAE,CAACQ,uBAAuB,EAAE;IAC5EX,IAAI,EAAE,GAAGA,IAAI,qBAAqB;IAClCK,MAAM,EAAE;MACJJ,MAAM,EAAEA,MAAM,CAACW,MAAM,CAACC,EAAE;MACxBC,IAAI,EAAE;QACFC,eAAe,EAAE;MACrB;IACJ;EACJ,CAAC,CAAC;EAEF,MAAMC,SAAS,GAAGjB,GAAG,CAACG,WAAW,CAACP,GAAG,CAACQ,EAAE,CAACc,SAAS,EAAE;IAChDjB,IAAI,EAAE,GAAGA,IAAI,MAAM;IACnBK,MAAM,EAAE;MACJJ,MAAM,EAAEA,MAAM,CAACW,MAAM,CAACC,EAAE;MACxBK,GAAG,EAAEvB,GAAG,CAACQ,EAAE,CAACgB,SAAS,CAACiB;IAC1B,CAAC;IACDf,IAAI,EAAE;MACFC,SAAS,EAAE,CAACZ,uBAAuB,CAACE,MAAM;IAC9C;EACJ,CAAC,CAAC;;EAEF;EACA;EACA,MAAMyB,cAAc,GAAGtC,GAAG,CAACG,WAAW,CAACP,GAAG,CAAC2C,UAAU,CAACC,oBAAoB,EAAE;IACxEvC,IAAI,EAAE,GAAGA,IAAI,kBAAkB;IAC/BK,MAAM,EAAE,CAAC;EACb,CAAC,CAAC;EAEF,MAAMkB,MAAqD,GAAG;IAC1DC,QAAQ,EAAEvB,MAAM,CAACW,MAAM,CAACa,GAAG;IAC3BC,UAAU,EAAEzB,MAAM,CAACW,MAAM,CAACX,MAAM,CAACuC,KAAK;IAClC;IACA;IACAxC,IAAI,IAAI,GAAGA,IAAI,OAAOH,uBAAuB,CAAC,CAAC,gBACnD,CAAC;IACD4C,cAAc,EAAE;MACZC,oBAAoB,EAAEL,cAAc,CAACzB,MAAM,CAAC+B;IAChD;EACJ,CAAC;;EAED;EACA,MAAMC,uBAAuB,GAAG7C,GAAG,CAACG,WAAW,CAACP,GAAG,CAACQ,EAAE,CAAC0C,uBAAuB,EAAE;IAC5E7C,IAAI,EAAE,GAAGA,IAAI,sBAAsB;IACnCK,MAAM,EAAE;MACJJ,MAAM,EAAEA,MAAM,CAACW,MAAM,CAACC,EAAE;MACxBiC,eAAe,EAAE,IAAI;MACrBC,iBAAiB,EAAE,IAAI;MACvBC,gBAAgB,EAAE,IAAI;MACtBC,qBAAqB,EAAE;IAC3B;EACJ,CAAC,CAAC;;EAEF;EACA,MAAMC,YAAY,GAAGnD,GAAG,CAACG,WAAW,CAACP,GAAG,CAACQ,EAAE,CAACgD,YAAY,EAAE;IACtDnD,IAAI,EAAE,GAAGA,IAAI,gBAAgB;IAC7BK,MAAM,EAAE;MACJJ,MAAM,EAAEA,MAAM,CAACW,MAAM,CAACX,MAAM;MAC5BmD,MAAM,EAAE;QACJC,OAAO,EAAE,YAAY;QACrBC,SAAS,EAAErD,MAAM,CAACW,MAAM,CAACa,GAAG,CAACe,KAAK,CAACf,GAAG,IAAI;UACtC,MAAM8B,UAAqC,GAAG,CAC1C;YACIC,MAAM,EAAE,OAAO;YACfC,SAAS,EAAE;cAAEC,GAAG,EAAErB,cAAc,CAACzB,MAAM,CAAC+C;YAAO,CAAC;YAChD;YACA;YACAC,MAAM,EAAE,CAAC,eAAe,EAAE,cAAc,CAAC;YACzCC,QAAQ,EAAE,CAAC,GAAGpC,GAAG,EAAE,EAAE,GAAGA,GAAG,IAAI;UACnC,CAAC,EACD;YACI+B,MAAM,EAAE,OAAO;YACfC,SAAS,EAAE;cACPC,GAAG,EAAExB,GAAG,CAAC4B;YACb,CAAC;YACDF,MAAM,EAAE,CACJ,iBAAiB,EACjB,iBAAiB,EACjB,iBAAiB,EACjB,cAAc,EACd,cAAc,EACd,eAAe,CAClB;YACDC,QAAQ,EAAE,CAAC,GAAGpC,GAAG,EAAE,EAAE,GAAGA,GAAG,IAAI;UACnC,CAAC,CACJ;UAED,OAAO8B,UAAU;QACrB,CAAC;MACL;IACJ;EACJ,CAAC,CAAC;EAEF,OAAO;IACHtD,MAAM;IACNS,uBAAuB;IACvBM,SAAS;IACTqB,cAAc;IACdd,MAAM;IACNqB,uBAAuB;IACvBM;EACJ,CAAC;AACL","ignoreList":[]}
|
|
1
|
+
{"version":3,"file":"pulumi/apps/createAppBucket.js","sources":["../../../src/pulumi/apps/createAppBucket.ts"],"sourcesContent":["import * as aws from \"@pulumi/aws\";\nimport { type PulumiApp } from \"@webiny/pulumi\";\nimport { ApiOutput } from \"~/pulumi/apps/api/index.js\";\nimport { getEnvVariableAwsRegion } from \"~/pulumi/env/awsRegion.js\";\n\nexport function createPublicAppBucket(app: PulumiApp, name: string) {\n const bucket = app.addResource(aws.s3.Bucket, {\n name: name,\n config: {\n forceDestroy: true,\n website: {\n indexDocument: \"index.html\",\n errorDocument: \"_NOT_FOUND_PAGE_/index.html\"\n }\n }\n });\n\n const bucketOwnershipControls = app.addResource(aws.s3.BucketOwnershipControls, {\n name: `${name}-ownership-controls`,\n config: {\n bucket: bucket.output.id,\n rule: {\n objectOwnership: \"BucketOwnerPreferred\"\n }\n }\n });\n\n const bucketAcl = app.addResource(aws.s3.BucketAcl, {\n name: `${name}-acl`,\n config: {\n bucket: bucket.output.id,\n acl: aws.s3.CannedAcl.PublicRead\n },\n opts: {\n dependsOn: [bucketOwnershipControls.output]\n }\n });\n\n const origin: aws.types.input.cloudfront.DistributionOrigin = {\n originId: bucket.output.arn,\n domainName: bucket.output.websiteEndpoint,\n customOriginConfig: {\n originProtocolPolicy: \"http-only\",\n httpPort: 80,\n httpsPort: 443,\n originSslProtocols: [\"TLSv1.2\"]\n }\n };\n\n return {\n bucket,\n bucketAcl,\n bucketOwnershipControls,\n origin\n };\n}\n\n// Forces S3 buckets to be available only through a cloudfront distribution.\n// Requires `ApiOutput` module to be loaded.\nexport function createPrivateAppBucket(app: PulumiApp, name: string) {\n const api = app.getModule(ApiOutput);\n\n const bucket = app.addResource(aws.s3.Bucket, {\n name: name,\n config: {\n forceDestroy: true\n }\n });\n\n const bucketOwnershipControls = app.addResource(aws.s3.BucketOwnershipControls, {\n name: `${name}-ownership-controls`,\n config: {\n bucket: bucket.output.id,\n rule: {\n objectOwnership: \"BucketOwnerPreferred\"\n }\n }\n });\n\n const bucketAcl = app.addResource(aws.s3.BucketAcl, {\n name: `${name}-acl`,\n config: {\n bucket: bucket.output.id,\n acl: aws.s3.CannedAcl.Private\n },\n opts: {\n dependsOn: [bucketOwnershipControls.output]\n }\n });\n\n // Origin Identity is a kind of AWS user that represents Cloudfront distribution\n // We can add IAM policies to it later, to allow accessing private S3 bucket\n const originIdentity = app.addResource(aws.cloudfront.OriginAccessIdentity, {\n name: `${name}-origin-identity`,\n config: {}\n });\n\n const origin: aws.types.input.cloudfront.DistributionOrigin = {\n originId: bucket.output.arn,\n domainName: bucket.output.bucket.apply(\n // We need to create a regional domain name. Otherwise, we'll run into the following issue:\n // https://aws.amazon.com/premiumsupport/knowledge-center/s3-http-307-response/\n name => `${name}.s3.${getEnvVariableAwsRegion()}.amazonaws.com`\n ),\n s3OriginConfig: {\n originAccessIdentity: originIdentity.output.cloudfrontAccessIdentityPath\n }\n };\n\n // block any public access\n const bucketPublicAccessBlock = app.addResource(aws.s3.BucketPublicAccessBlock, {\n name: `${name}-bucket-block-access`,\n config: {\n bucket: bucket.output.id,\n blockPublicAcls: true,\n blockPublicPolicy: true,\n ignorePublicAcls: true,\n restrictPublicBuckets: true\n }\n });\n\n // Create an IAM policy to allow access to S3 bucket from cloudfront\n const bucketPolicy = app.addResource(aws.s3.BucketPolicy, {\n name: `${name}-bucket-policy`,\n config: {\n bucket: bucket.output.bucket,\n policy: {\n Version: \"2012-10-17\",\n Statement: bucket.output.arn.apply(arn => {\n const statements: aws.iam.PolicyStatement[] = [\n {\n Effect: \"Allow\",\n Principal: { AWS: originIdentity.output.iamArn },\n // we need GetObject to retrieve objects from S3\n // and ListBucket allows to properly handle non-existing files (404)\n Action: [\"s3:ListBucket\", \"s3:GetObject\"],\n Resource: [`${arn}`, `${arn}/*`]\n },\n {\n Effect: \"Allow\",\n Principal: {\n AWS: api.graphqlLambdaRole\n },\n Action: [\n \"s3:GetObjectAcl\",\n \"s3:DeleteObject\",\n \"s3:PutObjectAcl\",\n \"s3:PutObject\",\n \"s3:GetObject\",\n \"s3:ListBucket\"\n ],\n Resource: [`${arn}`, `${arn}/*`]\n }\n ];\n\n return statements;\n })\n }\n }\n });\n\n return {\n bucket,\n bucketOwnershipControls,\n bucketAcl,\n originIdentity,\n origin,\n bucketPublicAccessBlock,\n bucketPolicy\n };\n}\n"],"names":["createPublicAppBucket","app","name","bucket","aws","bucketOwnershipControls","bucketAcl","origin","createPrivateAppBucket","api","ApiOutput","originIdentity","getEnvVariableAwsRegion","bucketPublicAccessBlock","bucketPolicy","arn","statements"],"mappings":";;;AAKO,SAASA,sBAAsBC,GAAc,EAAEC,IAAY;IAC9D,MAAMC,SAASF,IAAI,WAAW,CAACG,uCAAAA,EAAAA,CAAAA,MAAa,EAAE;QAC1C,MAAMF;QACN,QAAQ;YACJ,cAAc;YACd,SAAS;gBACL,eAAe;gBACf,eAAe;YACnB;QACJ;IACJ;IAEA,MAAMG,0BAA0BJ,IAAI,WAAW,CAACG,uCAAAA,EAAAA,CAAAA,uBAA8B,EAAE;QAC5E,MAAM,GAAGF,KAAK,mBAAmB,CAAC;QAClC,QAAQ;YACJ,QAAQC,OAAO,MAAM,CAAC,EAAE;YACxB,MAAM;gBACF,iBAAiB;YACrB;QACJ;IACJ;IAEA,MAAMG,YAAYL,IAAI,WAAW,CAACG,uCAAAA,EAAAA,CAAAA,SAAgB,EAAE;QAChD,MAAM,GAAGF,KAAK,IAAI,CAAC;QACnB,QAAQ;YACJ,QAAQC,OAAO,MAAM,CAAC,EAAE;YACxB,KAAKC,uCAAAA,EAAAA,CAAAA,SAAAA,CAAAA,UAA2B;QACpC;QACA,MAAM;YACF,WAAW;gBAACC,wBAAwB,MAAM;aAAC;QAC/C;IACJ;IAEA,MAAME,SAAwD;QAC1D,UAAUJ,OAAO,MAAM,CAAC,GAAG;QAC3B,YAAYA,OAAO,MAAM,CAAC,eAAe;QACzC,oBAAoB;YAChB,sBAAsB;YACtB,UAAU;YACV,WAAW;YACX,oBAAoB;gBAAC;aAAU;QACnC;IACJ;IAEA,OAAO;QACHA;QACAG;QACAD;QACAE;IACJ;AACJ;AAIO,SAASC,uBAAuBP,GAAc,EAAEC,IAAY;IAC/D,MAAMO,MAAMR,IAAI,SAAS,CAACS;IAE1B,MAAMP,SAASF,IAAI,WAAW,CAACG,uCAAAA,EAAAA,CAAAA,MAAa,EAAE;QAC1C,MAAMF;QACN,QAAQ;YACJ,cAAc;QAClB;IACJ;IAEA,MAAMG,0BAA0BJ,IAAI,WAAW,CAACG,uCAAAA,EAAAA,CAAAA,uBAA8B,EAAE;QAC5E,MAAM,GAAGF,KAAK,mBAAmB,CAAC;QAClC,QAAQ;YACJ,QAAQC,OAAO,MAAM,CAAC,EAAE;YACxB,MAAM;gBACF,iBAAiB;YACrB;QACJ;IACJ;IAEA,MAAMG,YAAYL,IAAI,WAAW,CAACG,uCAAAA,EAAAA,CAAAA,SAAgB,EAAE;QAChD,MAAM,GAAGF,KAAK,IAAI,CAAC;QACnB,QAAQ;YACJ,QAAQC,OAAO,MAAM,CAAC,EAAE;YACxB,KAAKC,uCAAAA,EAAAA,CAAAA,SAAAA,CAAAA,OAAwB;QACjC;QACA,MAAM;YACF,WAAW;gBAACC,wBAAwB,MAAM;aAAC;QAC/C;IACJ;IAIA,MAAMM,iBAAiBV,IAAI,WAAW,CAACG,uCAAAA,UAAAA,CAAAA,oBAAmC,EAAE;QACxE,MAAM,GAAGF,KAAK,gBAAgB,CAAC;QAC/B,QAAQ,CAAC;IACb;IAEA,MAAMK,SAAwD;QAC1D,UAAUJ,OAAO,MAAM,CAAC,GAAG;QAC3B,YAAYA,OAAO,MAAM,CAAC,MAAM,CAAC,KAAK,CAGlCD,CAAAA,OAAQ,GAAGA,KAAK,IAAI,EAAEU,0BAA0B,cAAc,CAAC;QAEnE,gBAAgB;YACZ,sBAAsBD,eAAe,MAAM,CAAC,4BAA4B;QAC5E;IACJ;IAGA,MAAME,0BAA0BZ,IAAI,WAAW,CAACG,uCAAAA,EAAAA,CAAAA,uBAA8B,EAAE;QAC5E,MAAM,GAAGF,KAAK,oBAAoB,CAAC;QACnC,QAAQ;YACJ,QAAQC,OAAO,MAAM,CAAC,EAAE;YACxB,iBAAiB;YACjB,mBAAmB;YACnB,kBAAkB;YAClB,uBAAuB;QAC3B;IACJ;IAGA,MAAMW,eAAeb,IAAI,WAAW,CAACG,uCAAAA,EAAAA,CAAAA,YAAmB,EAAE;QACtD,MAAM,GAAGF,KAAK,cAAc,CAAC;QAC7B,QAAQ;YACJ,QAAQC,OAAO,MAAM,CAAC,MAAM;YAC5B,QAAQ;gBACJ,SAAS;gBACT,WAAWA,OAAO,MAAM,CAAC,GAAG,CAAC,KAAK,CAACY,CAAAA;oBAC/B,MAAMC,aAAwC;wBAC1C;4BACI,QAAQ;4BACR,WAAW;gCAAE,KAAKL,eAAe,MAAM,CAAC,MAAM;4BAAC;4BAG/C,QAAQ;gCAAC;gCAAiB;6BAAe;4BACzC,UAAU;gCAAC,GAAGI,KAAK;gCAAE,GAAGA,IAAI,EAAE,CAAC;6BAAC;wBACpC;wBACA;4BACI,QAAQ;4BACR,WAAW;gCACP,KAAKN,IAAI,iBAAiB;4BAC9B;4BACA,QAAQ;gCACJ;gCACA;gCACA;gCACA;gCACA;gCACA;6BACH;4BACD,UAAU;gCAAC,GAAGM,KAAK;gCAAE,GAAGA,IAAI,EAAE,CAAC;6BAAC;wBACpC;qBACH;oBAED,OAAOC;gBACX;YACJ;QACJ;IACJ;IAEA,OAAO;QACHb;QACAE;QACAC;QACAK;QACAJ;QACAM;QACAC;IACJ;AACJ"}
|
|
@@ -1,9 +1,10 @@
|
|
|
1
|
-
|
|
2
|
-
|
|
3
|
-
|
|
4
|
-
|
|
5
|
-
|
|
6
|
-
|
|
1
|
+
function applyCustomDomain(cloudfront, params) {
|
|
2
|
+
cloudfront.config.aliases(params.domains);
|
|
3
|
+
cloudfront.config.viewerCertificate({
|
|
4
|
+
acmCertificateArn: params.acmCertificateArn,
|
|
5
|
+
sslSupportMethod: params.sslSupportMethod ?? "sni-only"
|
|
6
|
+
});
|
|
7
7
|
}
|
|
8
|
+
export { applyCustomDomain };
|
|
8
9
|
|
|
9
10
|
//# sourceMappingURL=customDomain.js.map
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"
|
|
1
|
+
{"version":3,"file":"pulumi/apps/customDomain.js","sources":["../../../src/pulumi/apps/customDomain.ts"],"sourcesContent":["import { type Input } from \"@pulumi/pulumi\";\nimport type * as aws from \"@pulumi/aws\";\nimport { type PulumiAppResource } from \"@webiny/pulumi\";\n\nexport interface CustomDomainParams {\n domains: Input<string[]>;\n acmCertificateArn: Input<string>;\n sslSupportMethod?: Input<string>;\n}\n\nexport function applyCustomDomain(\n cloudfront: PulumiAppResource<typeof aws.cloudfront.Distribution>,\n params: CustomDomainParams\n) {\n cloudfront.config.aliases(params.domains);\n\n cloudfront.config.viewerCertificate({\n acmCertificateArn: params.acmCertificateArn,\n sslSupportMethod: params.sslSupportMethod ?? \"sni-only\"\n });\n}\n"],"names":["applyCustomDomain","cloudfront","params"],"mappings":"AAUO,SAASA,kBACZC,UAAiE,EACjEC,MAA0B;IAE1BD,WAAW,MAAM,CAAC,OAAO,CAACC,OAAO,OAAO;IAExCD,WAAW,MAAM,CAAC,iBAAiB,CAAC;QAChC,mBAAmBC,OAAO,iBAAiB;QAC3C,kBAAkBA,OAAO,gBAAgB,IAAI;IACjD;AACJ"}
|
|
@@ -1,10 +1,11 @@
|
|
|
1
|
-
import { AwsTags
|
|
2
|
-
|
|
3
|
-
|
|
4
|
-
|
|
5
|
-
|
|
6
|
-
|
|
7
|
-
|
|
1
|
+
import { AwsTags } from "../../extensions/AwsTags.js";
|
|
2
|
+
const getAwsTagsFromExtension = (projectConfig)=>{
|
|
3
|
+
const awsTags = {};
|
|
4
|
+
projectConfig.extensionsByType(AwsTags).forEach((ext)=>{
|
|
5
|
+
Object.assign(awsTags, ext.params.tags);
|
|
6
|
+
});
|
|
7
|
+
return awsTags;
|
|
8
8
|
};
|
|
9
|
+
export { getAwsTagsFromExtension };
|
|
9
10
|
|
|
10
11
|
//# sourceMappingURL=getAwsTagsFromExtension.js.map
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"
|
|
1
|
+
{"version":3,"file":"pulumi/apps/extensions/getAwsTagsFromExtension.js","sources":["../../../../src/pulumi/apps/extensions/getAwsTagsFromExtension.ts"],"sourcesContent":["import { type IProjectConfigModel } from \"@webiny/project/abstractions/models/index.js\";\nimport { AwsTags as awsTagsExt } from \"~/pulumi/extensions/AwsTags.js\";\n\nexport const getAwsTagsFromExtension = (projectConfig: IProjectConfigModel) => {\n const awsTags: Record<string, string> = {};\n projectConfig.extensionsByType(awsTagsExt).forEach(ext => {\n Object.assign(awsTags, ext.params.tags);\n });\n\n return awsTags;\n};\n"],"names":["getAwsTagsFromExtension","projectConfig","awsTags","awsTagsExt","ext","Object"],"mappings":";AAGO,MAAMA,0BAA0B,CAACC;IACpC,MAAMC,UAAkC,CAAC;IACzCD,cAAc,gBAAgB,CAACE,SAAY,OAAO,CAACC,CAAAA;QAC/CC,OAAO,MAAM,CAACH,SAASE,IAAI,MAAM,CAAC,IAAI;IAC1C;IAEA,OAAOF;AACX"}
|
|
@@ -1,10 +1,9 @@
|
|
|
1
|
-
import { BlueGreenDeployments
|
|
2
|
-
|
|
3
|
-
|
|
4
|
-
|
|
5
|
-
return
|
|
6
|
-
}
|
|
7
|
-
return bgDeploymentsExtension.params;
|
|
1
|
+
import { BlueGreenDeployments } from "../../extensions/BlueGreenDeployments.js";
|
|
2
|
+
const getBgDeploymentsConfigFromExtension = (projectConfig)=>{
|
|
3
|
+
const [bgDeploymentsExtension] = projectConfig.extensionsByType(BlueGreenDeployments);
|
|
4
|
+
if (!bgDeploymentsExtension) return false;
|
|
5
|
+
return bgDeploymentsExtension.params;
|
|
8
6
|
};
|
|
7
|
+
export { getBgDeploymentsConfigFromExtension };
|
|
9
8
|
|
|
10
9
|
//# sourceMappingURL=getBgDeploymentsConfigFromExtension.js.map
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"
|
|
1
|
+
{"version":3,"file":"pulumi/apps/extensions/getBgDeploymentsConfigFromExtension.js","sources":["../../../../src/pulumi/apps/extensions/getBgDeploymentsConfigFromExtension.ts"],"sourcesContent":["import { BlueGreenDeployments as bgDeploymentsExt } from \"~/pulumi/extensions/BlueGreenDeployments.js\";\nimport { type IProjectConfigModel } from \"@webiny/project/abstractions/models/index.js\";\n\nexport const getBgDeploymentsConfigFromExtension = (projectConfig: IProjectConfigModel) => {\n const [bgDeploymentsExtension] = projectConfig.extensionsByType(bgDeploymentsExt);\n if (!bgDeploymentsExtension) {\n return false;\n }\n\n return bgDeploymentsExtension.params;\n};\n"],"names":["getBgDeploymentsConfigFromExtension","projectConfig","bgDeploymentsExtension","bgDeploymentsExt"],"mappings":";AAGO,MAAMA,sCAAsC,CAACC;IAChD,MAAM,CAACC,uBAAuB,GAAGD,cAAc,gBAAgB,CAACE;IAChE,IAAI,CAACD,wBACD,OAAO;IAGX,OAAOA,uBAAuB,MAAM;AACxC"}
|
|
@@ -1,45 +1,21 @@
|
|
|
1
|
-
import { OpenSearch
|
|
2
|
-
|
|
3
|
-
|
|
4
|
-
|
|
5
|
-
|
|
6
|
-
return
|
|
7
|
-
|
|
8
|
-
|
|
9
|
-
|
|
10
|
-
|
|
11
|
-
|
|
12
|
-
|
|
13
|
-
|
|
14
|
-
|
|
15
|
-
|
|
16
|
-
} = openSearchExtension.params;
|
|
17
|
-
if (enabled === false) {
|
|
18
|
-
return false;
|
|
19
|
-
}
|
|
20
|
-
if (endpoint || domainName || indexPrefix || sharedIndexes || username || password) {
|
|
21
|
-
const openSearch = {};
|
|
22
|
-
if (endpoint) {
|
|
23
|
-
openSearch.endpoint = endpoint;
|
|
1
|
+
import { OpenSearch } from "../../extensions/OpenSearch.js";
|
|
2
|
+
const getOsConfigFromExtension = (projectConfig)=>{
|
|
3
|
+
const [openSearchExtension] = projectConfig.extensionsByType(OpenSearch);
|
|
4
|
+
if (!openSearchExtension) return;
|
|
5
|
+
const { enabled, endpoint, domainName, indexPrefix, sharedIndexes, username, password } = openSearchExtension.params;
|
|
6
|
+
if (false === enabled) return false;
|
|
7
|
+
if (endpoint || domainName || indexPrefix || sharedIndexes || username || password) {
|
|
8
|
+
const openSearch = {};
|
|
9
|
+
if (endpoint) openSearch.endpoint = endpoint;
|
|
10
|
+
if (domainName) openSearch.domainName = domainName;
|
|
11
|
+
if (indexPrefix) openSearch.indexPrefix = indexPrefix;
|
|
12
|
+
if (sharedIndexes) openSearch.sharedIndexes = sharedIndexes;
|
|
13
|
+
if (username) openSearch.username = username;
|
|
14
|
+
if (password) openSearch.password = password;
|
|
15
|
+
return openSearch;
|
|
24
16
|
}
|
|
25
|
-
|
|
26
|
-
openSearch.domainName = domainName;
|
|
27
|
-
}
|
|
28
|
-
if (indexPrefix) {
|
|
29
|
-
openSearch.indexPrefix = indexPrefix;
|
|
30
|
-
}
|
|
31
|
-
if (sharedIndexes) {
|
|
32
|
-
openSearch.sharedIndexes = sharedIndexes;
|
|
33
|
-
}
|
|
34
|
-
if (username) {
|
|
35
|
-
openSearch.username = username;
|
|
36
|
-
}
|
|
37
|
-
if (password) {
|
|
38
|
-
openSearch.password = password;
|
|
39
|
-
}
|
|
40
|
-
return openSearch;
|
|
41
|
-
}
|
|
42
|
-
return true;
|
|
17
|
+
return true;
|
|
43
18
|
};
|
|
19
|
+
export { getOsConfigFromExtension };
|
|
44
20
|
|
|
45
21
|
//# sourceMappingURL=getOsConfigFromExtension.js.map
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"
|
|
1
|
+
{"version":3,"file":"pulumi/apps/extensions/getOsConfigFromExtension.js","sources":["../../../../src/pulumi/apps/extensions/getOsConfigFromExtension.ts"],"sourcesContent":["import { OpenSearch as openSearchExt } from \"~/pulumi/extensions/OpenSearch.js\";\nimport { type IProjectConfigModel } from \"@webiny/project/abstractions/models/index.js\";\n\nexport const getOsConfigFromExtension = (projectConfig: IProjectConfigModel) => {\n const [openSearchExtension] = projectConfig.extensionsByType(openSearchExt);\n if (!openSearchExtension) {\n // OpenSearch not used.\n return undefined;\n }\n\n const { enabled, endpoint, domainName, indexPrefix, sharedIndexes, username, password } =\n openSearchExtension.params;\n if (enabled === false) {\n return false;\n }\n\n if (endpoint || domainName || indexPrefix || sharedIndexes || username || password) {\n const openSearch: Omit<typeof openSearchExtension.params, \"enabled\"> = {};\n if (endpoint) {\n openSearch.endpoint = endpoint;\n }\n\n if (domainName) {\n openSearch.domainName = domainName;\n }\n\n if (indexPrefix) {\n openSearch.indexPrefix = indexPrefix;\n }\n\n if (sharedIndexes) {\n openSearch.sharedIndexes = sharedIndexes;\n }\n\n if (username) {\n openSearch.username = username;\n }\n\n if (password) {\n openSearch.password = password;\n }\n\n return openSearch;\n }\n\n return true;\n};\n"],"names":["getOsConfigFromExtension","projectConfig","openSearchExtension","openSearchExt","enabled","endpoint","domainName","indexPrefix","sharedIndexes","username","password","openSearch"],"mappings":";AAGO,MAAMA,2BAA2B,CAACC;IACrC,MAAM,CAACC,oBAAoB,GAAGD,cAAc,gBAAgB,CAACE;IAC7D,IAAI,CAACD,qBAED;IAGJ,MAAM,EAAEE,OAAO,EAAEC,QAAQ,EAAEC,UAAU,EAAEC,WAAW,EAAEC,aAAa,EAAEC,QAAQ,EAAEC,QAAQ,EAAE,GACnFR,oBAAoB,MAAM;IAC9B,IAAIE,AAAY,UAAZA,SACA,OAAO;IAGX,IAAIC,YAAYC,cAAcC,eAAeC,iBAAiBC,YAAYC,UAAU;QAChF,MAAMC,aAAiE,CAAC;QACxE,IAAIN,UACAM,WAAW,QAAQ,GAAGN;QAG1B,IAAIC,YACAK,WAAW,UAAU,GAAGL;QAG5B,IAAIC,aACAI,WAAW,WAAW,GAAGJ;QAG7B,IAAIC,eACAG,WAAW,aAAa,GAAGH;QAG/B,IAAIC,UACAE,WAAW,QAAQ,GAAGF;QAG1B,IAAIC,UACAC,WAAW,QAAQ,GAAGD;QAG1B,OAAOC;IACX;IAEA,OAAO;AACX"}
|