PyPI - cdk-factory - Versions diffs - 0.15.8__py3-none-any.whl → 0.15.10__py3-none-any.whl - Mend

cdk-factory 0.15.8py3-none-any.whl → 0.15.10py3-none-any.whl

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Potentially problematic release.

This version of cdk-factory might be problematic. Click here for more details.

Files changed (11) hide show

cdk_factory/configurations/resources/rds.py CHANGED Viewed

@@ -138,3 +138,11 @@ class RdsConfig(EnhancedBaseConfig):
         if "ssm" in self.__config and "imports" in self.__config["ssm"]:
             return self.__config["ssm"]["imports"]
         return self.__config.get("ssm_imports", {})
+    @property
+    def ssm_exports(self) -> Dict[str, str]:
+        """SSM parameter exports for the RDS instance"""
+        # Check both nested and flat structures for backwards compatibility
+        if "ssm" in self.__config and "exports" in self.__config["ssm"]:
+            return self.__config["ssm"]["exports"]
+        return self.__config.get("ssm_exports", {})

cdk_factory/configurations/resources/security_group_full_stack.py CHANGED Viewed

@@ -69,3 +69,16 @@ class SecurityGroupFullStackConfig:
         if "ssm" in self.__config and "imports" in self.__config["ssm"]:
             return self.__config["ssm"]["imports"]
         return self.__config.get("ssm_imports", {})
+    @property
+    def ssm_exports(self) -> Dict[str, str]:
+        """SSM parameter exports for the Security Group"""
+        # Check both nested and flat structures for backwards compatibility
+        if "ssm" in self.__config and "exports" in self.__config["ssm"]:
+            return self.__config["ssm"]["exports"]
+        return self.__config.get("ssm_exports", {})
+    @property
+    def security_groups(self) -> List[Dict[str, Any]]:
+        """List of security groups to create"""
+        return self.__config.get("security_groups", [])

cdk_factory/stack_library/rds/rds_stack.py CHANGED Viewed

@@ -82,6 +82,9 @@ class RdsStack(IStack, EnhancedSsmParameterMixin):
         # Add outputs
         self._add_outputs(db_name)
+        # Export to SSM Parameter Store
+        self._export_ssm_parameters(db_name)
     def _process_ssm_imports(self) -> None:
         """Process SSM imports from configuration"""
@@ -296,3 +299,60 @@ class RdsStack(IStack, EnhancedSsmParameterMixin):
                     value=self.db_instance.secret.secret_arn,
                     export_name=f"{self.deployment.build_resource_name(db_name)}-secret-arn",
                 )
+    def _export_ssm_parameters(self, db_name: str) -> None:
+        """Export RDS connection info and credentials to SSM Parameter Store"""
+        ssm_exports = self.rds_config.ssm_exports
+        if not ssm_exports:
+            logger.debug("No SSM exports configured for RDS")
+            return
+        logger.info(f"Exporting {len(ssm_exports)} SSM parameters for RDS")
+        # Export database endpoint
+        if "db_endpoint" in ssm_exports:
+            self.export_ssm_parameter(
+                scope=self,
+                id="SsmExportDbEndpoint",
+                value=self.db_instance.db_instance_endpoint_address,
+                parameter_name=ssm_exports["db_endpoint"],
+                description=f"RDS endpoint for {db_name}",
+            )
+            logger.info(f"Exported SSM parameter: {ssm_exports['db_endpoint']}")
+        # Export database port
+        if "db_port" in ssm_exports:
+            self.export_ssm_parameter(
+                scope=self,
+                id="SsmExportDbPort",
+                value=self.db_instance.db_instance_endpoint_port,
+                parameter_name=ssm_exports["db_port"],
+                description=f"RDS port for {db_name}",
+            )
+            logger.info(f"Exported SSM parameter: {ssm_exports['db_port']}")
+        # Export database name
+        if "db_name" in ssm_exports and self.rds_config.database_name:
+            self.export_ssm_parameter(
+                scope=self,
+                id="SsmExportDbName",
+                value=self.rds_config.database_name,
+                parameter_name=ssm_exports["db_name"],
+                description=f"RDS database name for {db_name}",
+            )
+            logger.info(f"Exported SSM parameter: {ssm_exports['db_name']}")
+        # Export secret ARN (contains username and password)
+        if "db_secret_arn" in ssm_exports:
+            if hasattr(self.db_instance, "secret") and self.db_instance.secret:
+                self.export_ssm_parameter(
+                    scope=self,
+                    id="SsmExportDbSecretArn",
+                    value=self.db_instance.secret.secret_arn,
+                    parameter_name=ssm_exports["db_secret_arn"],
+                    description=f"Secrets Manager ARN containing RDS credentials for {db_name}",
+                )
+                logger.info(f"Exported SSM parameter: {ssm_exports['db_secret_arn']}")
+            else:
+                logger.warning(f"Secret not found for RDS instance {db_name}, skipping secret ARN export")

cdk_factory/stack_library/security_group/security_group_full_stack.py CHANGED Viewed

@@ -225,6 +225,18 @@ class SecurityGroupsStack(IStack):
             export_name=f"{self.deployment.environment}-{self.workload.name}-WebMonitoringSecurityGroup",
         )
+        # =========================================================
+        # SSM Parameter Store Exports
+        # =========================================================
+        self._export_ssm_parameters(
+            security_groups_map={
+                "alb": alb_sg,
+                "ecs": web_fleet_sg,
+                "rds": mysql_sg,
+                "monitoring": monitoring_sg,
+            }
+        )
     def _process_ssm_imports(self) -> None:
         """
         Process SSM imports from configuration.
@@ -287,3 +299,64 @@ class SecurityGroupsStack(IStack):
             raise ValueError("VPC ID is not defined in the configuration or SSM imports.")
         return self._vpc
+    def _export_ssm_parameters(self, security_groups_map: Dict[str, ec2.CfnSecurityGroup]) -> None:
+        """
+        Export security group IDs to SSM Parameter Store based on configuration.
+        Args:
+            security_groups_map: Dictionary mapping security group types to their CDK resources
+        """
+        # Get the security groups configuration list from the config
+        security_groups_config = self.sg_config.security_groups
+        if not security_groups_config:
+            logger.debug("No security groups configuration found for SSM exports")
+            return
+        logger.info(f"Processing SSM exports for {len(security_groups_config)} security groups")
+        # Process each security group configuration
+        for sg_config in security_groups_config:
+            # Get the security group name and SSM exports
+            sg_name = sg_config.get("name", "")
+            ssm_config = sg_config.get("ssm", {})
+            ssm_exports = ssm_config.get("exports", {})
+            if not ssm_exports:
+                logger.debug(f"No SSM exports configured for security group: {sg_name}")
+                continue
+            # Determine which security group this config refers to based on the name pattern
+            # The config uses patterns like "{{WORKLOAD_NAME}}-{{ENVIRONMENT}}-rds-sg"
+            sg_resource = None
+            sg_type = None
+            if "-rds-sg" in sg_name or "-rds" in sg_name:
+                sg_resource = security_groups_map.get("rds")
+                sg_type = "rds"
+            elif "-ecs-sg" in sg_name or "instances" in sg_name:
+                sg_resource = security_groups_map.get("ecs")
+                sg_type = "ecs"
+            elif "-alb-sg" in sg_name or "alb" in sg_name:
+                sg_resource = security_groups_map.get("alb")
+                sg_type = "alb"
+            elif "monitoring" in sg_name:
+                sg_resource = security_groups_map.get("monitoring")
+                sg_type = "monitoring"
+            if not sg_resource:
+                logger.warning(f"Could not map security group configuration to resource: {sg_name}")
+                continue
+            # Export the security group ID if configured
+            security_group_id_path = ssm_exports.get("security_group_id")
+            if security_group_id_path:
+                self.export_ssm_parameter(
+                    scope=self,
+                    id=f"SsmExport{sg_type.upper()}SecurityGroupId",
+                    value=sg_resource.ref,
+                    parameter_name=security_group_id_path,
+                    description=f"Security Group ID for {sg_type} ({sg_name})",
+                )
+                logger.info(f"Exported SSM parameter: {security_group_id_path} for {sg_type} security group")

cdk_factory/utilities/api_gateway_integration_utility.py CHANGED Viewed

@@ -1425,7 +1425,9 @@ class ApiGatewayIntegrationUtility:
                 f"   2. Add 'allow_public_override': true to explicitly allow public access\n"
                 f"   3. Remove 'authorization_type': 'NONE' to use secure Cognito auth\n\n"
                 f"🔒 This prevents accidental public endpoints when authentication is available.\n\n"
-                f"👉 ApiGatewayIntegrationUtility documentation for more details: https://github.com/your-repo/api-gateway-stack"
+                f"👉 ApiGatewayIntegrationUtility documentation for more details: \n\n "
+                "\t https://github.com/geekcafe/cdk-factory/blob/main/src/cdk_factory/utilities/api_gateway_integration_utility.py \n\n"
+                "\t and https://github.com/geekcafe/cdk-factory/blob/main/src/cdk_factory/stack_library/api_gateway/api_gateway_stack.py"
             )
             raise ValueError(error_msg)

cdk_factory/version.py CHANGED Viewed

	@@ -1 +1 @@
1	- __version__ = "0.15.8"
1	+ __version__ = "0.15.10"

{cdk_factory-0.15.8.dist-info → cdk_factory-0.15.10.dist-info}/METADATA RENAMED Viewed

@@ -1,6 +1,6 @@
 Metadata-Version: 2.4
 Name: cdk_factory
-Version: 0.15.8
+Version: 0.15.10
 Summary: CDK Factory. A QuickStarter and best practices setup for CDK projects
 Author-email: Eric Wilson <eric.wilson@geekcafe.com>
 License: MIT License

{cdk_factory-0.15.8.dist-info → cdk_factory-0.15.10.dist-info}/RECORD RENAMED Viewed

@@ -2,7 +2,7 @@ cdk_factory/__init__.py,sha256=47DEQpj8HBSa-_TImW-5JCeuQeRkm5NMpJWZG3hSuFU,0
 cdk_factory/app.py,sha256=RnX0-pwdTAPAdKJK_j13Zl8anf9zYKBwboR0KA8K8xM,10346
 cdk_factory/cdk.json,sha256=SKZKhJ2PBpFH78j-F8S3VDYW-lf76--Q2I3ON-ZIQfw,3106
 cdk_factory/cli.py,sha256=FGbCTS5dYCNsfp-etshzvFlGDCjC28r6rtzYbe7KoHI,6407
-cdk_factory/version.py,sha256=GqK-8KWAo4vp6jaQ3n26VDgMQlCxjp7WFrJNanI0RCs,23
+cdk_factory/version.py,sha256=bVjzjoCZ4i8ekwD6vYFTiHHb51wVUtF_jW4KJEuwrAk,24
 cdk_factory/builds/README.md,sha256=9BBWd7bXpyKdMU_g2UljhQwrC9i5O_Tvkb6oPvndoZk,90
 cdk_factory/commands/command_loader.py,sha256=QbLquuP_AdxtlxlDy-2IWCQ6D-7qa58aphnDPtp_uTs,3744
 cdk_factory/configurations/base_config.py,sha256=JKjhNsy0RCUZy1s8n5D_aXXI-upR9izaLtCTfKYiV9k,9624
@@ -38,7 +38,7 @@ cdk_factory/configurations/resources/lambda_layers.py,sha256=gVeP_-LC3Eq0lkPaG_J
 cdk_factory/configurations/resources/lambda_triggers.py,sha256=MD7cdMNKEulNBhtMLIFnWJuJ5R-yyIqa0LHUgbSQerA,834
 cdk_factory/configurations/resources/load_balancer.py,sha256=idpKdvkkCM7J9J2pNjMBOY1DNaFR1tk1tFjTg76bvrY,5267
 cdk_factory/configurations/resources/monitoring.py,sha256=zsfDMa7yph33Ql8iP7lIqqLAyixh-Mesi0imtZJFdcE,2310
-cdk_factory/configurations/resources/rds.py,sha256=fYyS9qlsdHCdGQ5jS3f-edQUvbNYX30T96gxEwlz9tM,4828
+cdk_factory/configurations/resources/rds.py,sha256=is_odfCoe3kyiz8DpDxDayt1aVICJoNWuhuaHZ98qQo,5197
 cdk_factory/configurations/resources/resource_mapping.py,sha256=cwv3n63RJ6E59ErsmSTdkW4i-g8huhHtKI0ExbRhJxA,2182
 cdk_factory/configurations/resources/resource_naming.py,sha256=VE9S2cpzp11qqPL2z1sX79wXH0o1SntO2OG74nEmWC8,5508
 cdk_factory/configurations/resources/resource_types.py,sha256=1WQHyDoErb-M-tETZZzyLDtbq_jdC85-I403dM48pgE,2317
@@ -47,7 +47,7 @@ cdk_factory/configurations/resources/route53_hosted_zone.py,sha256=qjEYPCSxSOx5b
 cdk_factory/configurations/resources/rum.py,sha256=5aNLhyJEl97spby2gEV59RsMIQpUto2hGh1DeSyIp_I,5149
 cdk_factory/configurations/resources/s3.py,sha256=LBwTOZ4tOxNbgiu1fFGHOTyF5jlzeVphc_9VAqNw8zA,6042
 cdk_factory/configurations/resources/security_group.py,sha256=8kQtaaRVEn2aDm8XoC7QFh2mDOFbPbgobmssIuqU8MA,2259
-cdk_factory/configurations/resources/security_group_full_stack.py,sha256=3LHIJw4BEsagb0EMnc8C2_g4OQxUe0kQTn3XqQltUIE,2402
+cdk_factory/configurations/resources/security_group_full_stack.py,sha256=OzcQF5UMqIVAtDAlGY1kf1IWxq2x_gmnwAUTIZ5ITzY,2947
 cdk_factory/configurations/resources/sqs.py,sha256=fAh2dqttJ6PX46enFRULuiLEu3TEj0Vb2xntAOgUpYE,4346
 cdk_factory/configurations/resources/vpc.py,sha256=sNn6w76bHFwmt6N76gZZhqpsuNB9860C1SZu6tebaXY,3835
 cdk_factory/constructs/cloudfront/cloudfront_distribution_construct.py,sha256=LHgjvTNghCMTpHh90VWl7AbE100Er-S9EgyEVt12J_c,25809
@@ -101,13 +101,13 @@ cdk_factory/stack_library/load_balancer/load_balancer_stack.py,sha256=SBB-Cknon7
 cdk_factory/stack_library/monitoring/__init__.py,sha256=k1G_KDx47Aw0UugaL99PN_TKlyLK4nkJVApCaAK7GJg,153
 cdk_factory/stack_library/monitoring/monitoring_stack.py,sha256=N_1YvEXE7fboH_S3kv_dSKZsufxMuPdFMjGzlNFpuSo,19283
 cdk_factory/stack_library/rds/__init__.py,sha256=47DEQpj8HBSa-_TImW-5JCeuQeRkm5NMpJWZG3hSuFU,0
-cdk_factory/stack_library/rds/rds_stack.py,sha256=jvG3mcz5CQHv2NV-KwjGX8XgxtPiixRQTdBtaLb6sw4,12161
+cdk_factory/stack_library/rds/rds_stack.py,sha256=wlKPRCvioz9e6mzMuUDGUBw0gcnCDBnTI0ZN2NVatUo,14822
 cdk_factory/stack_library/route53/__init__.py,sha256=47DEQpj8HBSa-_TImW-5JCeuQeRkm5NMpJWZG3hSuFU,0
 cdk_factory/stack_library/route53/route53_stack.py,sha256=R-6DW7gIjeg25uBT5ZMLNDiQUOSZMipc-Tw6f8POVvI,8081
 cdk_factory/stack_library/rum/__init__.py,sha256=gUrWQdzd4rZ2J0YzAQC8PsEGAS7QgyYjB2ZCUKWasy4,90
 cdk_factory/stack_library/rum/rum_stack.py,sha256=OvQ6tsjYcXS8adqU_Xh0A_VKdnPtQnij4cG67nNqSVo,13611
 cdk_factory/stack_library/security_group/__init__.py,sha256=47DEQpj8HBSa-_TImW-5JCeuQeRkm5NMpJWZG3hSuFU,0
-cdk_factory/stack_library/security_group/security_group_full_stack.py,sha256=zu-xrz2KuojJGoN4-sTzD14sT9DwYaJpgwFl3wPiNXw,10907
+cdk_factory/stack_library/security_group/security_group_full_stack.py,sha256=je6MF6lriSaOMtIZ9hrcFagXObu5SItccpBr9Mp5TMo,14200
 cdk_factory/stack_library/security_group/security_group_stack.py,sha256=2zxd5ozgQ4GP0xi-Ni7SyChtEAOzC0nXeGz78DPXwPg,14445
 cdk_factory/stack_library/simple_queue_service/sqs_stack.py,sha256=jJksWrvrvgZUMM01RZ317DOIxqIJbkYYSYu38w0jHpc,6039
 cdk_factory/stack_library/vpc/__init__.py,sha256=7pIqP97Gf2AJbv9Ebp1WbQGHYhgEbWJ52L1MzeXBybA,42
@@ -117,7 +117,7 @@ cdk_factory/stages/websites/static_website_stage.py,sha256=X4fpKXkhb0zIbSHx3Qydd
 cdk_factory/templates/README.md,sha256=ATBEjG6beYvbEAdLtZ_8xnxgFD5X0cgZoI_6pToqH90,2679
 cdk_factory/templates/app.py.template,sha256=aM60x0nNV80idtCL8jm1EddY63F5tDITYOlavg-BPMU,1069
 cdk_factory/templates/cdk.json.template,sha256=SuGz4Y6kCVMDRpJrA_AJlp0kwdENiJPVngIv1xP5bwI,3526
-cdk_factory/utilities/api_gateway_integration_utility.py,sha256=yblKiMIHGXqKb7JK5IbzGM_TXjX9j893BMqgqBT44DE,63449
+cdk_factory/utilities/api_gateway_integration_utility.py,sha256=Mpyq038ZvL8FafcOwqp2Jj0cNcD_nLfVyTBzMYaUskM,63683
 cdk_factory/utilities/commandline_args.py,sha256=0FiNEJFbWVN8Ct7r0VHnJEx7rhUlaRKT7R7HMNJBSTI,2216
 cdk_factory/utilities/configuration_loader.py,sha256=z0ZdGLNbTO4_yfluB9zUh_i_Poc9qj-7oRyjMRlNkN8,1522
 cdk_factory/utilities/docker_utilities.py,sha256=6ee9KEGsaRJWo6FqvdPtE3_L2Emp3Lc0vu2Ie3VoflI,8280
@@ -129,8 +129,8 @@ cdk_factory/utilities/lambda_function_utilities.py,sha256=S1GvBsY_q2cyUiaud3HORJ
 cdk_factory/utilities/os_execute.py,sha256=5Op0LY_8Y-pUm04y1k8MTpNrmQvcLmQHPQITEP7EuSU,1019
 cdk_factory/utils/api_gateway_utilities.py,sha256=If7Xu5s_UxmuV-kL3JkXxPLBdSVUKoLtohm0IUFoiV8,4378
 cdk_factory/workload/workload_factory.py,sha256=mM8GU_5mKq_0OyK060T3JrUSUiGAcKf0eqNlT9mfaws,6028
-cdk_factory-0.15.8.dist-info/METADATA,sha256=VLrMowBafHShClFp5_iVJYyrE7kB9uKb3OdAC2IlEvY,2451
-cdk_factory-0.15.8.dist-info/WHEEL,sha256=qtCwoSJWgHk21S1Kb4ihdzI2rlJ1ZKaIurTj_ngOhyQ,87
-cdk_factory-0.15.8.dist-info/entry_points.txt,sha256=S1DPe0ORcdiwEALMN_WIo3UQrW_g4YdQCLEsc_b0Swg,53
-cdk_factory-0.15.8.dist-info/licenses/LICENSE,sha256=NOtdOeLwg2il_XBJdXUPFPX8JlV4dqTdDGAd2-khxT8,1066
-cdk_factory-0.15.8.dist-info/RECORD,,
+cdk_factory-0.15.10.dist-info/METADATA,sha256=9N2bg9PHi8myWMfxSoxxXA40AuuFbQl10ouIscuHBMQ,2452
+cdk_factory-0.15.10.dist-info/WHEEL,sha256=qtCwoSJWgHk21S1Kb4ihdzI2rlJ1ZKaIurTj_ngOhyQ,87
+cdk_factory-0.15.10.dist-info/entry_points.txt,sha256=S1DPe0ORcdiwEALMN_WIo3UQrW_g4YdQCLEsc_b0Swg,53
+cdk_factory-0.15.10.dist-info/licenses/LICENSE,sha256=NOtdOeLwg2il_XBJdXUPFPX8JlV4dqTdDGAd2-khxT8,1066
+cdk_factory-0.15.10.dist-info/RECORD,,

{cdk_factory-0.15.8.dist-info → cdk_factory-0.15.10.dist-info}/WHEEL RENAMED Viewed

File without changes

{cdk_factory-0.15.8.dist-info → cdk_factory-0.15.10.dist-info}/entry_points.txt RENAMED Viewed

File without changes

{cdk_factory-0.15.8.dist-info → cdk_factory-0.15.10.dist-info}/licenses/LICENSE RENAMED Viewed

File without changes

cdk-factory 0.15.8__py3-none-any.whl → 0.15.10__py3-none-any.whl

Potentially problematic release.

cdk-factory 0.15.8py3-none-any.whl → 0.15.10py3-none-any.whl