dcl-ops-lib 8.3.3 → 9.1.0

package/acceptBastion.js

@@ -1,23 +1,14 @@
 "use strict";
-var __awaiter = (this && this.__awaiter) || function (thisArg, _arguments, P, generator) {
-    function adopt(value) { return value instanceof P ? value : new P(function (resolve) { resolve(value); }); }
-    return new (P || (P = Promise))(function (resolve, reject) {
-        function fulfilled(value) { try { step(generator.next(value)); } catch (e) { reject(e); } }
-        function rejected(value) { try { step(generator["throw"](value)); } catch (e) { reject(e); } }
-        function step(result) { result.done ? resolve(result.value) : adopt(result.value).then(fulfilled, rejected); }
-        step((generator = generator.apply(thisArg, _arguments || [])).next());
-    });
-};
 Object.defineProperty(exports, "__esModule", { value: true });
 exports.makeSecurityGroupAccessibleFromBastion = void 0;
 const aws = require("@pulumi/aws");
 const values_1 = require("./values");
 const withCache_1 = require("./withCache");
 const utils_1 = require("./utils");
-const bastionSecurityGroupId = (0, withCache_1.default)(() => __awaiter(void 0, void 0, void 0, function* () {
-    const config = yield (0, values_1.getEnvConfiguration)();
+const bastionSecurityGroupId = (0, withCache_1.default)(async () => {
+    const config = await (0, values_1.getEnvConfiguration)();
     return config.bastionSecurityGroupId;
-}));
+});
 function makeSecurityGroupAccessibleFromBastion(securityGroup, ruleName = "") {
     new aws.ec2.SecurityGroupRule((0, utils_1.withRuleName)("accesible-from-bastion-v2", ruleName), {
         securityGroupId: securityGroup.id,

package/acceptDb.js

@@ -1,25 +1,16 @@
 "use strict";
-var __awaiter = (this && this.__awaiter) || function (thisArg, _arguments, P, generator) {
-    function adopt(value) { return value instanceof P ? value : new P(function (resolve) { resolve(value); }); }
-    return new (P || (P = Promise))(function (resolve, reject) {
-        function fulfilled(value) { try { step(generator.next(value)); } catch (e) { reject(e); } }
-        function rejected(value) { try { step(generator["throw"](value)); } catch (e) { reject(e); } }
-        function step(result) { result.done ? resolve(result.value) : adopt(result.value).then(fulfilled, rejected); }
-        step((generator = generator.apply(thisArg, _arguments || [])).next());
-    });
-};
 Object.defineProperty(exports, "__esModule", { value: true });
 exports.acceptDbSecurityGroupId = exports.acceptDbSecurityGroup = void 0;
 const aws = require("@pulumi/aws");
 const values_1 = require("./values");
 const withCache_1 = require("./withCache");
-exports.acceptDbSecurityGroup = (0, withCache_1.default)(() => __awaiter(void 0, void 0, void 0, function* () {
-    const config = yield (0, values_1.getEnvConfiguration)();
+exports.acceptDbSecurityGroup = (0, withCache_1.default)(async () => {
+    const config = await (0, values_1.getEnvConfiguration)();
     return aws.ec2.getSecurityGroup({ id: config.dbSecurity });
-}));
-exports.acceptDbSecurityGroupId = (0, withCache_1.default)(() => __awaiter(void 0, void 0, void 0, function* () {
-    const config = yield (0, values_1.getEnvConfiguration)();
+});
+exports.acceptDbSecurityGroupId = (0, withCache_1.default)(async () => {
+    const config = await (0, values_1.getEnvConfiguration)();
     return config.dbSecurity;
-}));
+});
 exports.default = exports.acceptDbSecurityGroup;
 //# sourceMappingURL=acceptDb.js.map

package/accessTheInternet.js

@@ -1,13 +1,4 @@
 "use strict";
-var __awaiter = (this && this.__awaiter) || function (thisArg, _arguments, P, generator) {
-    function adopt(value) { return value instanceof P ? value : new P(function (resolve) { resolve(value); }); }
-    return new (P || (P = Promise))(function (resolve, reject) {
-        function fulfilled(value) { try { step(generator.next(value)); } catch (e) { reject(e); } }
-        function rejected(value) { try { step(generator["throw"](value)); } catch (e) { reject(e); } }
-        function step(result) { result.done ? resolve(result.value) : adopt(result.value).then(fulfilled, rejected); }
-        step((generator = generator.apply(thisArg, _arguments || [])).next());
-    });
-};
 Object.defineProperty(exports, "__esModule", { value: true });
 exports.makeSecurityGroupAccessibleByCloudflare = exports.makeSecurityGroupAccessTheInternetV2 = void 0;
 const aws = require("@pulumi/aws");
@@ -27,31 +18,29 @@ function makeSecurityGroupAccessTheInternetV2(securityGroup, ruleName = "") {
 }
 exports.makeSecurityGroupAccessTheInternetV2 = makeSecurityGroupAccessTheInternetV2;
 /** Enables ingress traffic from cloudflare CIDRs */
-function makeSecurityGroupAccessibleByCloudflare(securityGroup) {
-    return __awaiter(this, void 0, void 0, function* () {
-        const ips = yield cloudflare.getIpRanges({});
-        for (let block of ips.ipv4CidrBlocks) {
-            const hash = (0, utils_1.sha256hash)(block).substring(0, 6);
-            new aws.ec2.SecurityGroupRule(`accept-cf-80-${hash}`, {
-                protocol: "tcp",
-                fromPort: 80,
-                toPort: 80,
-                cidrBlocks: [block],
-                type: "ingress",
-                securityGroupId: securityGroup.id,
-                description: `pulumi-supra-${hash}`,
-            }, { deleteBeforeReplace: true });
-            new aws.ec2.SecurityGroupRule(`accept-cf-443-${hash}`, {
-                protocol: "tcp",
-                fromPort: 443,
-                toPort: 443,
-                cidrBlocks: [block],
-                type: "ingress",
-                securityGroupId: securityGroup.id,
-                description: `pulumi-supra-${hash}`,
-            }, { deleteBeforeReplace: true });
-        }
-    });
+async function makeSecurityGroupAccessibleByCloudflare(securityGroup) {
+    const ips = await cloudflare.getIpRanges({});
+    for (let block of ips.ipv4CidrBlocks) {
+        const hash = (0, utils_1.sha256hash)(block).substring(0, 6);
+        new aws.ec2.SecurityGroupRule(`accept-cf-80-${hash}`, {
+            protocol: "tcp",
+            fromPort: 80,
+            toPort: 80,
+            cidrBlocks: [block],
+            type: "ingress",
+            securityGroupId: securityGroup.id,
+            description: `pulumi-supra-${hash}`,
+        }, { deleteBeforeReplace: true });
+        new aws.ec2.SecurityGroupRule(`accept-cf-443-${hash}`, {
+            protocol: "tcp",
+            fromPort: 443,
+            toPort: 443,
+            cidrBlocks: [block],
+            type: "ingress",
+            securityGroupId: securityGroup.id,
+            description: `pulumi-supra-${hash}`,
+        }, { deleteBeforeReplace: true });
+    }
 }
 exports.makeSecurityGroupAccessibleByCloudflare = makeSecurityGroupAccessibleByCloudflare;
 //# sourceMappingURL=accessTheInternet.js.map

package/alb.js

@@ -1,13 +1,4 @@
 "use strict";
-var __awaiter = (this && this.__awaiter) || function (thisArg, _arguments, P, generator) {
-    function adopt(value) { return value instanceof P ? value : new P(function (resolve) { resolve(value); }); }
-    return new (P || (P = Promise))(function (resolve, reject) {
-        function fulfilled(value) { try { step(generator.next(value)); } catch (e) { reject(e); } }
-        function rejected(value) { try { step(generator["throw"](value)); } catch (e) { reject(e); } }
-        function step(result) { result.done ? resolve(result.value) : adopt(result.value).then(fulfilled, rejected); }
-        step((generator = generator.apply(thisArg, _arguments || [])).next());
-    });
-};
 Object.defineProperty(exports, "__esModule", { value: true });
 exports.getAlb = void 0;
 const aws = require("@pulumi/aws");
@@ -21,12 +12,12 @@ const cache = {
     dns: undefined,
     listener: null
 };
-exports.getAlb = (0, withCache_1.default)(() => __awaiter(void 0, void 0, void 0, function* () {
-    const dns = yield supra_1.supra.getOutputValue("dns");
-    const loadBalancer = yield supra_1.supra.requireOutputValue("albInstance");
-    const elbValues = yield supra_1.supra.requireOutputValue("elbValues");
-    const alb = yield aws.lb.getLoadBalancer({ arn: loadBalancer.arn });
-    const listener = yield aws.lb.getListener({ arn: elbValues.listenerArn });
+exports.getAlb = (0, withCache_1.default)(async () => {
+    const dns = await supra_1.supra.getOutputValue("dns");
+    const loadBalancer = await supra_1.supra.requireOutputValue("albInstance");
+    const elbValues = await supra_1.supra.requireOutputValue("elbValues");
+    const alb = await aws.lb.getLoadBalancer({ arn: loadBalancer.arn });
+    const listener = await aws.lb.getListener({ arn: elbValues.listenerArn });
     return { dns, alb, listener };
-}));
+});
 //# sourceMappingURL=alb.js.map

package/buildStatic.js

@@ -8,7 +8,6 @@ const cloudflare_1 = require("./cloudflare");
 const domain_1 = require("./domain");
 const getDomainAndSubdomain_1 = require("./getDomainAndSubdomain");
 function buildStatic(staticSite) {
-    var _a;
     const protect = !staticSite.unprotect;
     // Load the Pulumi program configuration. These act as the "parameters" to the Pulumi program,
     // so that different Pulumi Stacks can be brought up using the same code.
@@ -28,7 +27,7 @@ function buildStatic(staticSite) {
         // requests for "foo/" to "foo/index.html".
         website: {
             indexDocument: "index.html",
-            errorDocument: (_a = staticSite.defaultPath) !== null && _a !== void 0 ? _a : "404.html",
+            errorDocument: staticSite.defaultPath ?? "404.html",
         },
         forceDestroy: staticSite.destroy === true
     };

package/cloudflare.js

@@ -1,26 +1,15 @@
 "use strict";
-var __awaiter = (this && this.__awaiter) || function (thisArg, _arguments, P, generator) {
-    function adopt(value) { return value instanceof P ? value : new P(function (resolve) { resolve(value); }); }
-    return new (P || (P = Promise))(function (resolve, reject) {
-        function fulfilled(value) { try { step(generator.next(value)); } catch (e) { reject(e); } }
-        function rejected(value) { try { step(generator["throw"](value)); } catch (e) { reject(e); } }
-        function step(result) { result.done ? resolve(result.value) : adopt(result.value).then(fulfilled, rejected); }
-        step((generator = generator.apply(thisArg, _arguments || [])).next());
-    });
-};
 Object.defineProperty(exports, "__esModule", { value: true });
 exports.setRecord = exports.deployWorker = exports.getAccountId = exports.getZoneId = void 0;
 const pulumi = require("@pulumi/pulumi");
 const cloudflare = require("@pulumi/cloudflare");
 const domain_1 = require("./domain");
 const fs_1 = require("fs");
-function getZoneId() {
-    return __awaiter(this, void 0, void 0, function* () {
-        const res = yield cloudflare.getZones({ filter: { name: domain_1.publicDomain } });
-        if (res.zones.length == 0)
-            throw new Error(`Zone ${domain_1.publicDomain} not found`);
-        return res.zones[0].id;
-    });
+async function getZoneId() {
+    const res = await cloudflare.getZones({ filter: { name: domain_1.publicDomain } });
+    if (res.zones.length == 0)
+        throw new Error(`Zone ${domain_1.publicDomain} not found`);
+    return res.zones[0].id;
 }
 exports.getZoneId = getZoneId;
 function getAccountId() {
@@ -32,50 +21,51 @@ function getAccountId() {
     }
 }
 exports.getAccountId = getAccountId;
-function deployWorker(workerName, config) {
-    return __awaiter(this, void 0, void 0, function* () {
-        // get file contents
-        const content = (0, fs_1.readFileSync)(config.jsWorkerFileName).toString();
-        // build array of global variables for the workers
-        const plainTextBindings = [];
-        Object.entries(config.env || {}).forEach(([name, text]) => {
-            plainTextBindings.push({ name, text });
-        });
-        // create the worker
-        const worker = new cloudflare.WorkerScript(`${workerName}-${domain_1.publicTLD}`, Object.assign({ name: `${workerName}-${domain_1.publicTLD}`, content,
-            plainTextBindings, accountId: getAccountId() }, (config.overrides || {})));
-        const ret = { [workerName + "-" + domain_1.publicTLD]: worker.id, worker };
-        // create the routes
-        let count = 0;
-        for (let pattern of config.routes) {
-            const contentRoute = new cloudflare.WorkerRoute(`${workerName}-route-${count}`, {
-                pattern,
-                scriptName: worker.name,
-                zoneId: getZoneId(),
-            }, { aliases: [pulumi.interpolate `${workerName}-route-${pattern}`] });
-            count++;
-            ret[workerName + "-" + domain_1.publicTLD + "-route"] = contentRoute.id;
-        }
-        return ret;
+async function deployWorker(workerName, config) {
+    // get file contents
+    const content = (0, fs_1.readFileSync)(config.jsWorkerFileName).toString();
+    // build array of global variables for the workers
+    const plainTextBindings = [];
+    Object.entries(config.env || {}).forEach(([name, text]) => {
+        plainTextBindings.push({ name, text });
     });
+    // create the worker
+    const worker = new cloudflare.WorkerScript(`${workerName}-${domain_1.publicTLD}`, {
+        name: `${workerName}-${domain_1.publicTLD}`,
+        content,
+        plainTextBindings,
+        accountId: getAccountId(),
+        ...(config.overrides || {}),
+    });
+    const ret = { [workerName + "-" + domain_1.publicTLD]: worker.id, worker };
+    // create the routes
+    let count = 0;
+    for (let pattern of config.routes) {
+        const contentRoute = new cloudflare.WorkerRoute(`${workerName}-route-${count}`, {
+            pattern,
+            scriptName: worker.name,
+            zoneId: getZoneId(),
+        }, { aliases: [pulumi.interpolate `${workerName}-route-${pattern}`] });
+        count++;
+        ret[workerName + "-" + domain_1.publicTLD + "-route"] = contentRoute.id;
+    }
+    return ret;
 }
 exports.deployWorker = deployWorker;
-function setRecord(config) {
-    return __awaiter(this, void 0, void 0, function* () {
-        if (!config.proxied && config.ttl < 120) {
-            throw new Error("Min TTL is 120");
-        }
-        // create the record
-        const record = new cloudflare.Record(`${config.recordName}-${config.type}-${domain_1.publicTLD}`, {
-            type: config.type,
-            name: config.recordName,
-            value: config.value,
-            ttl: config.proxied ? 1 : config.ttl,
-            zoneId: getZoneId(),
-            proxied: config.proxied,
-        }, { deleteBeforeReplace: true });
-        return record;
-    });
+async function setRecord(config) {
+    if (!config.proxied && config.ttl < 120) {
+        throw new Error("Min TTL is 120");
+    }
+    // create the record
+    const record = new cloudflare.Record(`${config.recordName}-${config.type}-${domain_1.publicTLD}`, {
+        type: config.type,
+        name: config.recordName,
+        value: config.value,
+        ttl: config.proxied ? 1 : config.ttl,
+        zoneId: getZoneId(),
+        proxied: config.proxied,
+    }, { deleteBeforeReplace: true });
+    return record;
 }
 exports.setRecord = setRecord;
 //# sourceMappingURL=cloudflare.js.map

package/createFargateTask.d.ts

@@ -2,6 +2,7 @@ import * as aws from "@pulumi/aws";
 import * as pulumi from "@pulumi/pulumi";
 import { ExtraExposedServiceOptions } from "./exposePublicService";
 import { HealthCheck } from "@pulumi/aws/ecs";
+import { Team } from "./fargateHelpers";
 export declare const getDefaultLogs: (serviceName: string, logGroup: aws.cloudwatch.LogGroup) => aws.ecs.LogConfiguration;
 export declare function getClusterInstance(cluster: string | aws.ecs.Cluster | undefined): Promise<pulumi.Output<string> | string>;
 export type ALBMapping = {
@@ -42,7 +43,7 @@ export type FargateTaskOptions = {
     taskRolePolicies?: Record<string, pulumi.Input<string> | aws.iam.Policy>;
     secrets?: aws.ecs.Secret[];
     ignoreServiceDiscovery?: boolean;
-    team: "dapps" | "platform" | "data" | "marketing" | "infra";
+    team: Team;
     metrics?: {
         port?: number | string;
         path: "/metrics";
@@ -127,7 +128,7 @@ export type InternalServiceOptions = {
     forceNewDeployment?: boolean;
     dependsOn?: pulumi.Resource[];
     volumes?: pulumi.Input<aws.types.input.ecs.TaskDefinitionVolume[]>;
-    team: string;
+    team: Team;
     targetGroups: aws.alb.TargetGroup[];
     runtimePlatform?: aws.types.input.ecs.TaskDefinitionRuntimePlatform;
     appAutoscaling?: {