sst 3.0.0 → 3.0.1-1

package/constructs/cdk/dns-validated-certificate.js

@@ -1,125 +0,0 @@
-import url from "url";
-import * as path from "path";
-import { Token, TagManager, TagType, Duration, Stack, CustomResource, Lazy, } from "aws-cdk-lib/core";
-import * as iam from "aws-cdk-lib/aws-iam";
-import * as lambda from "aws-cdk-lib/aws-lambda";
-import { CertificateBase } from "./certificate-base.js";
-const __dirname = url.fileURLToPath(new URL(".", import.meta.url));
-/**
- * A certificate managed by AWS Certificate Manager.  Will be automatically
- * validated using DNS validation against the specified Route 53 hosted zone.
- *
- * @resource AWS::CertificateManager::Certificate
- */
-export class DnsValidatedCertificate extends CertificateBase {
-    certificateArn;
-    /**
-     * Resource Tags.
-     * @see https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-certificatemanager-certificate.html#cfn-certificatemanager-certificate-tags
-     */
-    tags;
-    region;
-    normalizedZoneName;
-    hostedZoneId;
-    domainName;
-    _removalPolicy;
-    constructor(scope, id, props) {
-        super(scope, id);
-        this.region = props.region;
-        this.domainName = props.domainName;
-        // check if domain name is 64 characters or less
-        if (!Token.isUnresolved(props.domainName) && props.domainName.length > 64) {
-            throw new Error("Domain name must be 64 characters or less");
-        }
-        this.normalizedZoneName = props.hostedZone.zoneName;
-        // Remove trailing `.` from zone name
-        if (this.normalizedZoneName.endsWith(".")) {
-            this.normalizedZoneName = this.normalizedZoneName.substring(0, this.normalizedZoneName.length - 1);
-        }
-        // Remove any `/hostedzone/` prefix from the Hosted Zone ID
-        this.hostedZoneId = props.hostedZone.hostedZoneId.replace(/^\/hostedzone\//, "");
-        this.tags = new TagManager(TagType.MAP, "AWS::CertificateManager::Certificate");
-        let certificateTransparencyLoggingPreference;
-        if (props.transparencyLoggingEnabled !== undefined) {
-            certificateTransparencyLoggingPreference =
-                props.transparencyLoggingEnabled ? "ENABLED" : "DISABLED";
-        }
-        const requestorFunction = new lambda.Function(this, "CertificateRequestorFunction", {
-            code: lambda.Code.fromAsset(path.join(__dirname, "../../support/certificate-requestor")),
-            handler: "index.certificateRequestHandler",
-            runtime: lambda.Runtime.NODEJS_16_X,
-            timeout: Duration.minutes(15),
-            role: props.customResourceRole,
-        });
-        requestorFunction.addToRolePolicy(new iam.PolicyStatement({
-            actions: [
-                "acm:RequestCertificate",
-                "acm:DescribeCertificate",
-                "acm:DeleteCertificate",
-                "acm:AddTagsToCertificate",
-            ],
-            resources: ["*"],
-        }));
-        requestorFunction.addToRolePolicy(new iam.PolicyStatement({
-            actions: ["route53:GetChange"],
-            resources: ["*"],
-        }));
-        requestorFunction.addToRolePolicy(new iam.PolicyStatement({
-            actions: ["route53:changeResourceRecordSets"],
-            resources: [
-                `arn:${Stack.of(requestorFunction).partition}:route53:::hostedzone/${this.hostedZoneId}`,
-            ],
-            conditions: {
-                "ForAllValues:StringEquals": {
-                    "route53:ChangeResourceRecordSetsRecordTypes": ["CNAME"],
-                    "route53:ChangeResourceRecordSetsActions": props.cleanupRoute53Records ? ["UPSERT", "DELETE"] : ["UPSERT"],
-                },
-                "ForAllValues:StringLike": {
-                    "route53:ChangeResourceRecordSetsNormalizedRecordNames": [
-                        addWildcard(props.domainName),
-                        ...(props.subjectAlternativeNames ?? []).map((d) => addWildcard(d)),
-                    ],
-                },
-            },
-        }));
-        const certificate = new CustomResource(this, "CertificateRequestorResource", {
-            serviceToken: requestorFunction.functionArn,
-            properties: {
-                DomainName: props.domainName,
-                SubjectAlternativeNames: Lazy.list({ produce: () => props.subjectAlternativeNames }, { omitEmpty: true }),
-                CertificateTransparencyLoggingPreference: certificateTransparencyLoggingPreference,
-                HostedZoneId: this.hostedZoneId,
-                Region: props.region,
-                Route53Endpoint: props.route53Endpoint,
-                RemovalPolicy: Lazy.any({ produce: () => this._removalPolicy }),
-                // Custom resources properties are always converted to strings; might as well be explict here.
-                CleanupRecords: props.cleanupRoute53Records ? "true" : undefined,
-                Tags: Lazy.list({ produce: () => this.tags.renderTags() }),
-            },
-        });
-        this.certificateArn = certificate.getAtt("Arn").toString();
-        this.node.addValidation({
-            validate: () => this.validateDnsValidatedCertificate(),
-        });
-    }
-    applyRemovalPolicy(policy) {
-        this._removalPolicy = policy;
-    }
-    validateDnsValidatedCertificate() {
-        const errors = [];
-        // Ensure the zone name is a parent zone of the certificate domain name
-        if (!Token.isUnresolved(this.normalizedZoneName) &&
-            this.domainName !== this.normalizedZoneName &&
-            !this.domainName.endsWith("." + this.normalizedZoneName)) {
-            errors.push(`DNS zone ${this.normalizedZoneName} is not authoritative for certificate domain name ${this.domainName}`);
-        }
-        return errors;
-    }
-}
-// https://docs.aws.amazon.com/Route53/latest/DeveloperGuide/specifying-rrset-conditions.html
-function addWildcard(domainName) {
-    if (domainName.startsWith("*.")) {
-        return domainName;
-    }
-    return `*.${domainName}`;
-}

package/constructs/cdk/website-redirect.d.ts

@@ -1,53 +0,0 @@
-import { ICertificate } from "aws-cdk-lib/aws-certificatemanager";
-import { IHostedZone } from "aws-cdk-lib/aws-route53";
-import { Construct } from "constructs";
-/**
- * Properties to configure an HTTPS Redirect
- */
-export interface HttpsRedirectProps {
-    /**
-     * Hosted zone of the domain which will be used to create alias record(s) from
-     * domain names in the hosted zone to the target domain. The hosted zone must
-     * contain entries for the domain name(s) supplied through `recordNames` that
-     * will redirect to the target domain.
-     *
-     * Domain names in the hosted zone can include a specific domain (example.com)
-     * and its subdomains (acme.example.com, zenith.example.com).
-     *
-     */
-    readonly zone: IHostedZone;
-    /**
-     * The redirect target fully qualified domain name (FQDN). An alias record
-     * will be created that points to your CloudFront distribution. Root domain
-     * or sub-domain can be supplied.
-     */
-    readonly targetDomain: string;
-    /**
-     * The domain names that will redirect to `targetDomain`
-     *
-     * @default - the domain name of the hosted zone
-     */
-    readonly recordNames?: string[];
-    /**
-     * The AWS Certificate Manager (ACM) certificate that will be associated with
-     * the CloudFront distribution that will be created. If provided, the certificate must be
-     * stored in us-east-1 (N. Virginia)
-     *
-     * @default - A new certificate is created in us-east-1 (N. Virginia)
-     */
-    readonly certificate?: ICertificate;
-}
-/**
- * Allows creating a domainA -> domainB redirect using CloudFront and S3.
- * You can specify multiple domains to be redirected.
- */
-export declare class HttpsRedirect extends Construct {
-    constructor(scope: Construct, id: string, props: HttpsRedirectProps);
-    /**
-     * Creates a certificate.
-     *
-     * This is also safe to upgrade since the new certificate will be created and updated
-     * on the CloudFront distribution before the old one is deleted.
-     */
-    private createCertificate;
-}

package/constructs/cdk/website-redirect.js

@@ -1,77 +0,0 @@
-import { CloudFrontWebDistribution, OriginProtocolPolicy, PriceClass, ViewerCertificate, ViewerProtocolPolicy, } from "aws-cdk-lib/aws-cloudfront";
-import { ARecord, AaaaRecord, RecordTarget, } from "aws-cdk-lib/aws-route53";
-import { CloudFrontTarget } from "aws-cdk-lib/aws-route53-targets";
-import { BlockPublicAccess, Bucket, RedirectProtocol, } from "aws-cdk-lib/aws-s3";
-import { ArnFormat, RemovalPolicy, Stack, Token } from "aws-cdk-lib/core";
-import cdkHelpers from "aws-cdk-lib/core/lib/helpers-internal";
-import { Construct } from "constructs";
-import { DnsValidatedCertificate } from "./dns-validated-certificate.js";
-const { md5hash } = cdkHelpers;
-/**
- * Allows creating a domainA -> domainB redirect using CloudFront and S3.
- * You can specify multiple domains to be redirected.
- */
-export class HttpsRedirect extends Construct {
-    constructor(scope, id, props) {
-        super(scope, id);
-        const domainNames = props.recordNames ?? [props.zone.zoneName];
-        if (props.certificate) {
-            const certificateRegion = Stack.of(this).splitArn(props.certificate.certificateArn, ArnFormat.SLASH_RESOURCE_NAME).region;
-            if (!Token.isUnresolved(certificateRegion) &&
-                certificateRegion !== "us-east-1") {
-                throw new Error(`The certificate must be in the us-east-1 region and the certificate you provided is in ${certificateRegion}.`);
-            }
-        }
-        const redirectCert = props.certificate ?? this.createCertificate(domainNames, props.zone);
-        const redirectBucket = new Bucket(this, "RedirectBucket", {
-            websiteRedirect: {
-                hostName: props.targetDomain,
-                protocol: RedirectProtocol.HTTPS,
-            },
-            removalPolicy: RemovalPolicy.DESTROY,
-            blockPublicAccess: BlockPublicAccess.BLOCK_ALL,
-        });
-        const redirectDist = new CloudFrontWebDistribution(this, "RedirectDistribution", {
-            defaultRootObject: "",
-            originConfigs: [
-                {
-                    behaviors: [{ isDefaultBehavior: true }],
-                    customOriginSource: {
-                        domainName: redirectBucket.bucketWebsiteDomainName,
-                        originProtocolPolicy: OriginProtocolPolicy.HTTP_ONLY,
-                    },
-                },
-            ],
-            viewerCertificate: ViewerCertificate.fromAcmCertificate(redirectCert, {
-                aliases: domainNames,
-            }),
-            comment: `Redirect to ${props.targetDomain} from ${domainNames.join(", ")}`,
-            priceClass: PriceClass.PRICE_CLASS_ALL,
-            viewerProtocolPolicy: ViewerProtocolPolicy.REDIRECT_TO_HTTPS,
-        });
-        domainNames.forEach((domainName) => {
-            const hash = md5hash(domainName).slice(0, 6);
-            const aliasProps = {
-                recordName: domainName,
-                zone: props.zone,
-                target: RecordTarget.fromAlias(new CloudFrontTarget(redirectDist)),
-            };
-            new ARecord(this, `RedirectAliasRecord${hash}`, aliasProps);
-            new AaaaRecord(this, `RedirectAliasRecordSix${hash}`, aliasProps);
-        });
-    }
-    /**
-     * Creates a certificate.
-     *
-     * This is also safe to upgrade since the new certificate will be created and updated
-     * on the CloudFront distribution before the old one is deleted.
-     */
-    createCertificate(domainNames, zone) {
-        return new DnsValidatedCertificate(this, "RedirectCertificate", {
-            domainName: domainNames[0],
-            subjectAlternativeNames: domainNames,
-            hostedZone: zone,
-            region: "us-east-1",
-        });
-    }
-}

package/constructs/context.d.ts

@@ -1,3 +0,0 @@
-import { App } from "./App.js";
-export declare function provideApp(app: App): void;
-export declare const createAppContext: <C>(cb: () => C) => () => C;

package/constructs/context.js

@@ -1,27 +0,0 @@
-const AppContext = (() => {
-    let app;
-    const children = new Map();
-    return {
-        set(input) {
-            children.clear();
-            app = input;
-        },
-        get current() {
-            return app;
-        },
-        createAppContext(cb) {
-            return () => {
-                const exists = children.get(cb);
-                if (exists)
-                    return exists;
-                const val = cb();
-                children.set(cb, val);
-                return val;
-            };
-        },
-    };
-})();
-export function provideApp(app) {
-    AppContext.set(app);
-}
-export const createAppContext = AppContext.createAppContext;

package/constructs/deferred_task.d.ts

@@ -1,6 +0,0 @@
-type Task = () => Promise<void>;
-export declare const useDeferredTasks: () => {
-    add(task: Task): void;
-    run(): Promise<unknown>;
-};
-export {};

package/constructs/deferred_task.js

@@ -1,45 +0,0 @@
-import { cpus } from "os";
-import { Logger } from "../logger.js";
-import { createAppContext } from "./context.js";
-export const useDeferredTasks = createAppContext(() => {
-    const tasks = [];
-    return {
-        add(task) {
-            tasks.push(task);
-        },
-        async run() {
-            const coreNum = cpus().length;
-            const concurrency = Math.max(1, process.env.SST_BUILD_CONCURRENCY
-                ? parseInt(process.env.SST_BUILD_CONCURRENCY, 10)
-                : coreNum - 1);
-            Logger.debug(`Running ${tasks.length} deferred tasks with concurrency: ${concurrency}`);
-            let remaining = tasks.length;
-            return new Promise((resolve, reject) => {
-                const runTask = () => {
-                    // Get task
-                    const task = tasks.shift();
-                    if (!task) {
-                        // all tasks completed
-                        if (remaining === 0) {
-                            resolve(true);
-                        }
-                        return;
-                    }
-                    // Run task
-                    task()
-                        .then(() => {
-                        remaining--;
-                        runTask();
-                    })
-                        .catch((e) => {
-                        reject(e);
-                    });
-                };
-                // Run tasks in parallel
-                for (let i = 0; i < concurrency; i++) {
-                    runTask();
-                }
-            });
-        },
-    };
-});

package/constructs/deprecated/NextjsSite.d.ts

@@ -1,309 +0,0 @@
-import { Construct } from "constructs";
-import * as s3 from "aws-cdk-lib/aws-s3";
-import * as sqs from "aws-cdk-lib/aws-sqs";
-import * as route53 from "aws-cdk-lib/aws-route53";
-import * as cloudfront from "aws-cdk-lib/aws-cloudfront";
-import * as acm from "aws-cdk-lib/aws-certificatemanager";
-import { SSTConstruct } from "../Construct.js";
-import { DistributionDomainProps } from "../Distribution.js";
-import { BaseSiteCdkDistributionProps } from "../BaseSite.js";
-import { Permissions } from "../util/permission.js";
-import { FunctionBindingProps } from "../util/functionBinding.js";
-export interface NextjsDomainProps extends DistributionDomainProps {
-}
-export interface NextjsCdkDistributionProps extends BaseSiteCdkDistributionProps {
-}
-export interface NextjsSiteProps {
-    /**
-     * Path to the directory where the website source is located.
-     */
-    path: string;
-    /**
-     * Path to the next executable, typically in node_modules.
-     * This should be used if next is installed in a non-standard location.
-     *
-     * @default "./node_modules/.bin/next"
-     */
-    nextBinPath?: string;
-    /**
-     * The customDomain for this website. SST supports domains that are hosted either on [Route 53](https://aws.amazon.com/route53/) or externally.
-     *
-     * Note that you can also migrate externally hosted domains to Route 53 by [following this guide](https://docs.aws.amazon.com/Route53/latest/DeveloperGuide/MigratingDNS.html).
-     *
-     * @example
-     * ```js {3}
-     * new NextjsSite(stack, "Site", {
-     *   path: "path/to/site",
-     *   customDomain: "domain.com",
-     * });
-     * ```
-     *
-     * ```js {3-6}
-     * new NextjsSite(stack, "Site", {
-     *   path: "path/to/site",
-     *   customDomain: {
-     *     domainName: "domain.com",
-     *     domainAlias: "www.domain.com",
-     *     hostedZone: "domain.com"
-     *   },
-     * });
-     * ```
-     */
-    customDomain?: string | NextjsDomainProps;
-    /**
-     * An object with the key being the environment variable name.
-     *
-     * @example
-     * ```js {3-6}
-     * new NextjsSite(stack, "NextSite", {
-     *   path: "path/to/site",
-     *   environment: {
-     *     API_URL: api.url,
-     *     USER_POOL_CLIENT: auth.cognitoUserPoolClient.userPoolClientId,
-     *   },
-     * });
-     * ```
-     */
-    environment?: {
-        [key: string]: string;
-    };
-    defaults?: {
-        function?: {
-            timeout?: number;
-            memorySize?: number;
-            permissions?: Permissions;
-            /**
-             * The runtime environment.
-             * @default "nodejs18.x"
-             * @example
-             * ```js
-             * new Function(stack, "Function", {
-             *   path: "path/to/site",
-             *   runtime: "nodejs18.x",
-             * })
-             *```
-             */
-            runtime?: "nodejs12.x" | "nodejs14.x" | "nodejs16.x" | "nodejs18.x";
-        };
-    };
-    /**
-     * When running `sst start`, a placeholder site is deployed. This is to ensure that the site content remains unchanged, and subsequent `sst start` can start up quickly.
-     *
-     * @example
-     * ```js {3}
-     * new NextjsSite(stack, "NextSite", {
-     *   path: "path/to/site",
-     *   disablePlaceholder: true,
-     * });
-     * ```
-     */
-    disablePlaceholder?: boolean;
-    /**
-     * While deploying, SST waits for the CloudFront cache invalidation process to finish. This ensures that the new content will be served once the deploy command finishes. However, this process can sometimes take more than 5 mins. For non-prod environments it might make sense to pass in `false`. That'll skip waiting for the cache to invalidate and speed up the deploy process.
-     */
-    waitForInvalidation?: boolean;
-    commandHooks?: {
-        /**
-         * Commands to run after building the Next.js app. Commands are chained with `&&`, and they are run inside the Next.js app folder.
-         *
-         * @example
-         * ```js
-         * new NextjsSite(stack, "NextSite", {
-         *   path: "path/to/site",
-         *   commandHooks: {
-         *     afterBuild: ["npx next-sitemap"],
-         *   }
-         * });
-         * ```
-         */
-        afterBuild?: string[];
-    };
-    cdk?: {
-        /**
-         * Allows you to override default id for this construct.
-         */
-        id?: string;
-        /**
-         * Allows you to override default settings this construct uses internally to ceate the bucket
-         */
-        bucket?: s3.BucketProps | s3.IBucket;
-        /**
-         * Pass in a value to override the default settings this construct uses to create the CDK `Distribution` internally.
-         */
-        distribution?: NextjsCdkDistributionProps;
-        /**
-         * Override the default CloudFront cache policies created internally.
-         */
-        cachePolicies?: {
-            staticCachePolicy?: cloudfront.ICachePolicy;
-            imageCachePolicy?: cloudfront.ICachePolicy;
-            lambdaCachePolicy?: cloudfront.ICachePolicy;
-        };
-        /**
-         * Override the default CloudFront image origin request policy created internally
-         */
-        imageOriginRequestPolicy?: cloudfront.IOriginRequestPolicy;
-        /**
-         * Override the default settings this construct uses to create the CDK `Queue` internally.
-         */
-        regenerationQueue?: sqs.QueueProps;
-    };
-}
-/**
- * The `NextjsSite` construct is a higher level CDK construct that makes it easy to create a Next.js app.
- *
- * @example
- *
- * Deploys a Next.js app in the `path/to/site` directory.
- *
- * ```js
- * new NextjsSite(stack, "NextSite", {
- *   path: "path/to/site",
- * });
- * ```
- */
-export declare class NextjsSite extends Construct implements SSTConstruct {
-    readonly id: string;
-    /**
-     * The default CloudFront cache policy properties for static pages.
-     */
-    static staticCachePolicyProps: cloudfront.CachePolicyProps;
-    /**
-     * The default CloudFront cache policy properties for images.
-     */
-    static imageCachePolicyProps: cloudfront.CachePolicyProps;
-    /**
-     * The default CloudFront cache policy properties for Lambda@Edge.
-     */
-    static lambdaCachePolicyProps: cloudfront.CachePolicyProps;
-    /**
-     * The default CloudFront image origin request policy properties for Lambda@Edge.
-     */
-    static imageOriginRequestPolicyProps: cloudfront.OriginRequestPolicyProps;
-    readonly cdk: {
-        /**
-         * The internally created CDK `Bucket` instance.
-         */
-        bucket: s3.Bucket;
-        /**
-         * The internally created CDK `Queue` instance.
-         */
-        regenerationQueue: sqs.Queue;
-        /**
-         * The internally created CDK `Distribution` instance.
-         */
-        distribution: cloudfront.Distribution;
-        /**
-         * The Route 53 hosted zone for the custom domain.
-         */
-        hostedZone?: route53.IHostedZone;
-        /**
-         * The AWS Certificate Manager certificate for the custom domain.
-         */
-        certificate?: acm.ICertificate;
-    };
-    /**
-     * The root SST directory used for builds.
-     */
-    private sstBuildDir;
-    private props;
-    private isPlaceholder;
-    private buildOutDir;
-    private assets;
-    private awsCliLayer;
-    private routesManifest;
-    private edgeLambdaRole;
-    private mainFunctionVersion;
-    private apiFunctionVersion;
-    private imageFunctionVersion;
-    private regenerationFunction;
-    constructor(scope: Construct, id: string, props: NextjsSiteProps);
-    /**
-     * The CloudFront URL of the website.
-     */
-    get url(): string;
-    /**
-     * If the custom domain is enabled, this is the URL of the website with the custom domain.
-     */
-    get customDomainUrl(): string | undefined;
-    /**
-     * The ARN of the internally created S3 Bucket.
-     */
-    get bucketArn(): string;
-    /**
-     * The name of the internally created S3 Bucket.
-     */
-    get bucketName(): string;
-    /**
-     * The ID of the internally created CloudFront Distribution.
-     */
-    get distributionId(): string;
-    /**
-     * The domain name of the internally created CloudFront Distribution.
-     */
-    get distributionDomain(): string;
-    /**
-     * Attaches the given list of permissions to allow the Next.js API routes and Server Side rendering `getServerSideProps` to access other AWS resources.
-     * @example
-     * ### Attaching permissions
-     *
-     * ```js {5}
-     * const site = new NextjsSite(stack, "Site", {
-     *   path: "path/to/site",
-     * });
-     *
-     * site.attachPermissions(["sns"]);
-     * ```
-     */
-    attachPermissions(permissions: Permissions): void;
-    getConstructMetadata(): {
-        type: "SlsNextjsSite";
-        data: {
-            path: string;
-            environment: {
-                [key: string]: string;
-            };
-            distributionId: string;
-            customDomainUrl: string | undefined;
-        };
-    };
-    /** @internal */
-    getFunctionBinding(): FunctionBindingProps;
-    private zipAppAssets;
-    private zipAppStubAssets;
-    private createEdgeFunction;
-    private createEdgeFunctionInUE1;
-    private createEdgeFunctionInNonUE1;
-    private createEdgeFunctionRole;
-    private createRegenerationQueue;
-    private createRegenerationFunction;
-    private createLambdaCodeReplacer;
-    private createS3Bucket;
-    private createS3Deployment;
-    private buildApp;
-    private runBuild;
-    private runAfterBuild;
-    private createCloudFrontDistribution;
-    private createCloudFrontStaticCachePolicy;
-    private createCloudFrontImageCachePolicy;
-    private createCloudFrontLambdaCachePolicy;
-    private createCloudFrontImageOriginRequestPolicy;
-    private createCloudFrontInvalidation;
-    protected validateCustomDomainSettings(): void;
-    protected lookupHostedZone(): route53.IHostedZone | undefined;
-    private createCertificate;
-    protected createRoute53Records(): void;
-    private pathPattern;
-    private readRoutesManifest;
-    private getS3ContentReplaceValues;
-    private getLambdaContentReplaceValues;
-    private normalizeRuntime;
-}
-export declare const useSites: () => {
-    add(stack: string, name: string, props: NextjsSiteProps): void;
-    readonly all: {
-        stack: string;
-        name: string;
-        props: NextjsSiteProps;
-    }[];
-};