cdk-factory 0.18.6__tar.gz → 0.18.9__tar.gz

{cdk_factory-0.18.6 → cdk_factory-0.18.9}/PKG-INFO

@@ -1,6 +1,6 @@
 Metadata-Version: 2.4
 Name: cdk_factory
-Version: 0.18.6
+Version: 0.18.9
 Summary: CDK Factory. A QuickStarter and best practices setup for CDK projects
 Author-email: Eric Wilson <eric.wilson@geekcafe.com>
 License: MIT License

{cdk_factory-0.18.6 → cdk_factory-0.18.9}/pyproject.toml

@@ -33,7 +33,7 @@ markers = [
 [project]
 
 name = "cdk_factory"
-version = "0.18.6"
+version = "0.18.9"
 authors = [
   { name="Eric Wilson", email="eric.wilson@geekcafe.com" }
 ]

{cdk_factory-0.18.6 → cdk_factory-0.18.9}/src/cdk_factory/configurations/deployment.py

@@ -28,6 +28,18 @@ class DeploymentConfig:
         self.__load()
 
     def __load(self):
+        # Validate environment consistency
+        deployment_env = self.__deployment.get("environment")
+        workload_env = self.__workload.get("environment")
+        
+        if deployment_env and workload_env and deployment_env != workload_env:
+            from aws_lambda_powertools import Logger
+            logger = Logger()
+            logger.warning(
+                f"Environment mismatch: deployment.environment='{deployment_env}' != workload.environment='{workload_env}'. "
+                f"Using workload.environment for consistency."
+            )
+        
         self.__load_pipeline()
         self.__load_stacks()
 

{cdk_factory-0.18.6 → cdk_factory-0.18.9}/src/cdk_factory/configurations/resources/acm.py

@@ -59,15 +59,22 @@ class AcmConfig:
         """Certificate transparency logging preference (ENABLED or DISABLED)"""
         return self.__config.get("certificate_transparency_logging_preference")
 
+    @property
+    def ssm(self) -> Dict[str, Any]:
+        """SSM configuration for importing/exporting resources"""
+        return self.__config.get("ssm", {})
+
     @property
     def ssm_exports(self) -> Dict[str, str]:
         """SSM parameter paths to export certificate details"""
-        exports = self.__config.get("ssm_exports", {})
+        exports = self.ssm.get("exports", {})
         
         # Provide default SSM export path if not specified
         if not exports and self.__deployment:
+            workload_env = self.__deployment.workload.get("environment", self.__deployment.environment)
+            workload_name = self.__deployment.workload.get("name", self.__deployment.workload_name)
             exports = {
-                "certificate_arn": f"/{self.__deployment.environment}/{self.__deployment.workload_name}/certificate/arn"
+                "certificate_arn": f"/{workload_env}/{workload_name}/certificate/arn"
             }
         
         return exports

{cdk_factory-0.18.6 → cdk_factory-0.18.9}/src/cdk_factory/configurations/resources/auto_scaling.py

@@ -70,12 +70,9 @@ class AutoScalingConfig(EnhancedBaseConfig):
         return self.__config.get("termination_policies", ["DEFAULT"])
 
     @property
-    def update_policy(self) -> Dict[str, Any]:
+    def update_policy(self) -> Optional[Dict[str, Any]]:
         """Update policy configuration"""
-        return self.__config.get(
-            "update_policy",
-            {"min_instances_in_service": 1, "max_batch_size": 1, "pause_time": 300},
-        )
+        return self.__config.get("update_policy")
 
     @property
     def user_data_commands(self) -> List[str]:

{cdk_factory-0.18.6 → cdk_factory-0.18.9}/src/cdk_factory/constructs/lambdas/policies/policy_docs.py

@@ -46,7 +46,7 @@ class ResourceResolver:
                 ssm_config = lambda_dict.get("ssm", {})
 
                 if ssm_config.get("enabled", False):
-                    self._ssm_mixin.setup_standardized_ssm_integration(
+                    self._ssm_mixin.setup_ssm_integration(
                         scope=self.scope,
                         config=lambda_dict,
                         resource_type="lambda",

{cdk_factory-0.18.6 → cdk_factory-0.18.9}/src/cdk_factory/interfaces/networked_stack_mixin.py

@@ -26,7 +26,7 @@ class NetworkedStackMixin(StandardizedSsmMixin, VPCProviderMixin):
                 # SSM initialization is handled automatically by StandardizedSsmMixin.__init__
                 
             def _build(self, stack_config, deployment, workload):
-                self.setup_standardized_ssm_integration(scope=self, config=stack_config.dictionary, resource_type="my-resource", resource_name="my-name")
+                self.setup_ssm_integration(scope=self, config=stack_config.dictionary, resource_type="my-resource", resource_name="my-name")
                 self.vpc = self.resolve_vpc(stack_config, deployment, workload)
     """
     

{cdk_factory-0.18.6 → cdk_factory-0.18.9}/src/cdk_factory/interfaces/standardized_ssm_mixin.py

@@ -153,7 +153,7 @@ class StandardizedSsmMixin:
         normalized = normalized.strip('-')
         return normalized
 
-    def setup_standardized_ssm_integration(
+    def setup_ssm_integration(
         self,
         scope: Construct,
         config: Any,
@@ -202,7 +202,7 @@ class StandardizedSsmMixin:
         logger.info(f"SSM imports: {len(self.ssm_config.get('imports', {}))}")
         logger.info(f"SSM exports: {len(self.ssm_config.get('exports', {}))}")
     
-    def process_standardized_ssm_imports(self) -> None:
+    def process_ssm_imports(self) -> None:
         """
         Process SSM imports using standardized approach.
         
@@ -230,7 +230,7 @@ class StandardizedSsmMixin:
                 logger.error(error_msg)
                 raise ValueError(error_msg)
     
-    def export_standardized_ssm_parameters(self, resource_values: Dict[str, Any]) -> Dict[str, str]:
+    def export_ssm_parameters(self, resource_values: Dict[str, Any]) -> Dict[str, str]:
         """
         Export SSM parameters using standardized approach.
         
@@ -338,16 +338,18 @@ class StandardizedSsmMixin:
         # Prepare template variables
         variables = {}
         
-        if self.deployment:
+        # Always prioritize workload environment for consistency
+        if self.workload:
+            variables["ENVIRONMENT"] = self.workload.dictionary.get("environment", "test")
+            variables["WORKLOAD_NAME"] = self.workload.dictionary.get("name", "test-workload")
+            variables["AWS_REGION"] = os.getenv("AWS_REGION", "us-east-1")
+        elif self.deployment:
+            # Fallback to deployment only if workload not available
             variables["ENVIRONMENT"] = self.deployment.environment
             variables["WORKLOAD_NAME"] = self.deployment.workload_name
             variables["AWS_REGION"] = getattr(self.deployment, 'region', None) or os.getenv("AWS_REGION", "us-east-1")
-        elif self.workload:
-            variables["ENVIRONMENT"] = getattr(self.workload, 'environment', 'test')
-            variables["WORKLOAD_NAME"] = getattr(self.workload, 'name', 'test-workload')
-            variables["AWS_REGION"] = os.getenv("AWS_REGION", "us-east-1")
         else:
-            # Fallback to environment variables
+            # Final fallback to environment variables
             variables["ENVIRONMENT"] = os.getenv("ENVIRONMENT", "test")
             variables["WORKLOAD_NAME"] = os.getenv("WORKLOAD_NAME", "test-workload")
             variables["AWS_REGION"] = os.getenv("AWS_REGION", "us-east-1")
@@ -398,7 +400,7 @@ class StandardizedSsmMixin:
             resource_type = segments[3]
             
             # Check for valid environment patterns
-            if environment not in ["dev", "staging", "prod", "test"]:
+            if environment not in ["dev", "staging", "prod", "test", "alpha", "beta", "sandbox"]:
                 logger.warning(f"{context}: Unusual environment segment: {environment}")
             
             # Check for valid resource type patterns

{cdk_factory-0.18.6 → cdk_factory-0.18.9}/src/cdk_factory/stack_library/api_gateway/api_gateway_stack.py

@@ -744,7 +744,7 @@ class ApiGatewayStack(IStack, StandardizedSsmMixin):
         # Setup enhanced SSM integration with proper resource type and name
         api_name = self.api_config.name or "api-gateway"
 
-        self.setup_standardized_ssm_integration(
+        self.setup_ssm_integration(
             scope=self,
             config=self.stack_config.dictionary.get("api_gateway", {}),
             resource_type="api-gateway",
@@ -775,7 +775,7 @@ class ApiGatewayStack(IStack, StandardizedSsmMixin):
             resource_values["authorizer_id"] = authorizer.authorizer_id
 
         # Use enhanced SSM parameter export
-        exported_params = self.export_standardized_ssm_parameters(resource_values)
+        exported_params = self.export_ssm_parameters(resource_values)
 
         if exported_params:
             logger.info(

cdk_factory-0.18.6/src/cdk_factory/stack_library/auto_scaling/auto_scaling_stack_standardized.py → cdk_factory-0.18.9/src/cdk_factory/stack_library/auto_scaling/auto_scaling_stack.py

@@ -92,7 +92,7 @@ class AutoScalingStack(IStack, VPCProviderMixin, StandardizedSsmMixin):
         asg_name = deployment.build_resource_name(self.asg_config.name)
 
         # Setup standardized SSM integration
-        self.setup_standardized_ssm_integration(
+        self.setup_ssm_integration(
             scope=self,
             config=self.asg_config,
             resource_type="auto_scaling",
@@ -102,7 +102,7 @@ class AutoScalingStack(IStack, VPCProviderMixin, StandardizedSsmMixin):
         )
 
         # Process SSM imports using standardized method
-        self.process_standardized_ssm_imports()
+        self.process_ssm_imports()
 
         # Get security groups using standardized approach
         self.security_groups = self._get_security_groups()
@@ -358,7 +358,8 @@ class AutoScalingStack(IStack, VPCProviderMixin, StandardizedSsmMixin):
             elif self.asg_config.ami_type.upper() == "AMAZON-LINUX-2":
                 machine_image = ec2.MachineImage.latest_amazon_linux2()
             elif self.asg_config.ami_type.upper() == "ECS_OPTIMIZED":
-                machine_image = ec2.MachineImage.latest_amazon_linux2023()
+                # Use actual ECS-optimized AMI (Amazon Linux 2 based)
+                machine_image = ec2.MachineImage.lookup(name="amzn2-ami-ecs-hvm-*-x86_64-ebs")
             else:
                 # Default to latest Amazon Linux
                 machine_image = ec2.MachineImage.latest_amazon_linux2023()
@@ -483,6 +484,7 @@ class AutoScalingStack(IStack, VPCProviderMixin, StandardizedSsmMixin):
         update_policy = self.asg_config.update_policy
         
         if not update_policy:
+            # No update policy configured, don't add one
             return
             
         # Get the underlying CloudFormation resource to add update policy
@@ -519,7 +521,7 @@ class AutoScalingStack(IStack, VPCProviderMixin, StandardizedSsmMixin):
         }
 
         # Export using standardized SSM mixin
-        exported_params = self.export_standardized_ssm_parameters(resource_values)
+        exported_params = self.export_ssm_parameters(resource_values)
         
         logger.info(f"Exported SSM parameters: {exported_params}")
 

{cdk_factory-0.18.6 → cdk_factory-0.18.9}/src/cdk_factory/stack_library/cognito/cognito_stack.py

@@ -564,7 +564,7 @@ class CognitoStack(IStack, StandardizedSsmMixin):
         # Setup enhanced SSM integration with proper resource type and name
         # Use "user-pool" as resource identifier for SSM paths, not the full pool name
 
-        self.setup_standardized_ssm_integration(
+        self.setup_ssm_integration(
             scope=self,
             config=self.stack_config.dictionary.get("cognito", {}),
             resource_type="cognito",
@@ -591,7 +591,7 @@ class CognitoStack(IStack, StandardizedSsmMixin):
             # or retrieve via AWS Console/CLI if needed.
 
         # Use enhanced SSM parameter export
-        exported_params = self.export_standardized_ssm_parameters(resource_values)
+        exported_params = self.export_ssm_parameters(resource_values)
 
         if exported_params:
             logger.info(f"Exported {len(exported_params)} Cognito parameters to SSM")

{cdk_factory-0.18.6 → cdk_factory-0.18.9}/src/cdk_factory/stack_library/dynamodb/dynamodb_stack.py

@@ -152,7 +152,7 @@ class DynamoDBStack(IStack, StandardizedSsmMixin):
         # Setup enhanced SSM integration with proper resource type and name
         # Use "app-table" as resource identifier for SSM paths, not the full table name
 
-        self.setup_standardized_ssm_integration(
+        self.setup_ssm_integration(
             scope=self,
             config=self.stack_config.dictionary.get("dynamodb", {}),
             resource_type="dynamodb",
@@ -178,7 +178,7 @@ class DynamoDBStack(IStack, StandardizedSsmMixin):
         resource_values = {k: v for k, v in resource_values.items() if v is not None}
 
         # Use enhanced SSM parameter export
-        exported_params = self.export_standardized_ssm_parameters(resource_values)
+        exported_params = self.export_ssm_parameters(resource_values)
 
         if exported_params:
             logger.info(f"Exported {len(exported_params)} DynamoDB parameters to SSM")

cdk_factory-0.18.9/src/cdk_factory/stack_library/ecs/__init__.py

@@ -0,0 +1,12 @@
+"""
+ECS Stack Library
+
+Contains ECS-related stack modules for creating and managing
+ECS clusters, services, and related resources.
+"""
+
+from .ecs_cluster_stack import EcsClusterStack
+
+__all__ = [
+    "EcsClusterStack"
+]

cdk_factory-0.18.6/src/cdk_factory/stack_library/ecs/ecs_cluster_stack_standardized.py → cdk_factory-0.18.9/src/cdk_factory/stack_library/ecs/ecs_cluster_stack.py

@@ -86,17 +86,20 @@ class EcsClusterStack(IStack, VPCProviderMixin, StandardizedSsmMixin):
         # Initialize VPC cache from mixin
         self._initialize_vpc_cache()
         
-        # Load ECS cluster configuration
-        self.ecs_config: EcsClusterConfig = EcsClusterConfig(
-            stack_config.dictionary.get("ecs_cluster", {})
-        )
+        # Load ECS cluster configuration with full stack config for SSM access
+        ecs_cluster_dict = stack_config.dictionary.get("ecs_cluster", {})
+        # Merge SSM config from root level into ECS config for VPC resolution
+        if "ssm" in stack_config.dictionary:
+            ecs_cluster_dict["ssm"] = stack_config.dictionary["ssm"]
+        
+        self.ecs_config: EcsClusterConfig = EcsClusterConfig(ecs_cluster_dict)
         
         cluster_name = deployment.build_resource_name(self.ecs_config.name)
         
         logger.info(f"Creating ECS Cluster stack: {cluster_name}")
         
         # Setup standardized SSM integration
-        self.setup_standardized_ssm_integration(
+        self.setup_ssm_integration(
             scope=self,
             config=self.ecs_config,
             resource_type="ecs_cluster",
@@ -106,7 +109,7 @@ class EcsClusterStack(IStack, VPCProviderMixin, StandardizedSsmMixin):
         )
 
         # Process SSM imports using standardized method
-        self.process_standardized_ssm_imports()
+        self.process_ssm_imports()
         
         # Create the ECS cluster
         self._create_ecs_cluster()
@@ -167,7 +170,8 @@ class EcsClusterStack(IStack, VPCProviderMixin, StandardizedSsmMixin):
         """
         Get VPC using the centralized VPC provider mixin.
         """
-        # Use the centralized VPC resolution from VPCProviderMixin
+        
+        # Use the stack_config (not ecs_config) to ensure SSM imports are available
         return self.resolve_vpc(
             config=self.ecs_config,
             deployment=self.deployment,
@@ -302,33 +306,11 @@ class EcsClusterStack(IStack, VPCProviderMixin, StandardizedSsmMixin):
             logger.info(f"  {key}: {value}")
             
         try:
-            exported_params = self.export_standardized_ssm_parameters(resource_values)
+            exported_params = self.export_ssm_parameters(resource_values)
             logger.info(f"Successfully exported SSM parameters: {exported_params}")
         except Exception as e:
             logger.error(f"Failed to export SSM parameters: {str(e)}")
             raise
 
-    # Backward compatibility methods
-    def process_ssm_imports(self, config: Any, deployment: DeploymentConfig, resource_type: str = "resource") -> None:
-        """Backward compatibility method for existing modules."""
-        # Extract SSM configuration from old format
-        if hasattr(config, 'ssm_imports'):
-            # Convert old ssm_imports format to new format
-            old_imports = config.ssm_imports
-            new_imports = {}
-            
-            for key, value in old_imports.items():
-                # Resolve template variables using old method
-                if isinstance(value, str) and not value.startswith('/'):
-                    value = f"/{deployment.environment}/{deployment.workload_name}/{value}"
-                new_imports[key] = value
-            
-            # Update SSM config
-            self.ssm_config = {"imports": new_imports}
-        
-        # Process imports using standardized method
-        self.process_standardized_ssm_imports()
-
-
-# Backward compatibility alias
+    # Backward compatibility alias
 EcsClusterStackStandardized = EcsClusterStack

{cdk_factory-0.18.6 → cdk_factory-0.18.9}/src/cdk_factory/stack_library/load_balancer/load_balancer_stack.py

@@ -6,6 +6,8 @@ MIT License.  See Project Root for the license information.
 
 from typing import Dict, Any, List, Optional
 
+import base64
+import hashlib
 import aws_cdk as cdk
 from aws_cdk import aws_elasticloadbalancingv2 as elbv2
 from aws_cdk import aws_ec2 as ec2
@@ -50,7 +52,7 @@ class LoadBalancerStack(IStack, VPCProviderMixin, StandardizedSsmMixin):
         self._hosted_zone = None
         self._record_names = None
         # SSM imported values
-        self.ssm_imported_values: Dict[str, str] = {}
+        self._ssm_imported_values: Dict[str, str] = {}
 
     def build(
         self,
@@ -77,8 +79,18 @@ class LoadBalancerStack(IStack, VPCProviderMixin, StandardizedSsmMixin):
         )
         lb_name = deployment.build_resource_name(self.lb_config.name)
 
-        # Process SSM imports first
-        self._process_ssm_imports()
+        # Setup standardized SSM integration
+        self.setup_ssm_integration(
+            scope=self,
+            config=self.lb_config,
+            resource_type="load_balancer",
+            resource_name=self.lb_config.name,
+            deployment=deployment,
+            workload=workload
+        )
+        
+        # Process SSM imports
+        self.process_ssm_imports()
 
         self._prep_dns()
 
@@ -193,63 +205,13 @@ class LoadBalancerStack(IStack, VPCProviderMixin, StandardizedSsmMixin):
         )
         return self._vpc
 
-    def _process_ssm_imports(self) -> None:
-        """
-        Process SSM imports from configuration.
-        Follows the same pattern as RDS and Security Group stacks.
-        """
-        from aws_cdk import aws_ssm as ssm
-        
-        ssm_imports = self.lb_config.ssm_imports
-        
-        if not ssm_imports:
-            logger.debug("No SSM imports configured for Load Balancer")
-            return
-        
-        logger.info(f"Processing {len(ssm_imports)} SSM imports for Load Balancer")
-        
-        for param_key, param_value in ssm_imports.items():
-            try:
-                # Handle list values (like security_groups)
-                if isinstance(param_value, list):
-                    imported_list = []
-                    for idx, param_path in enumerate(param_value):
-                        if not param_path.startswith('/'):
-                            param_path = f"/{param_path}"
-                        
-                        construct_id = f"ssm-import-{param_key}-{idx}-{hash(param_path) % 10000}"
-                        param = ssm.StringParameter.from_string_parameter_name(
-                            self, construct_id, param_path
-                        )
-                        imported_list.append(param.string_value)
-                    
-                    self.ssm_imported_values[param_key] = imported_list
-                    logger.info(f"Imported SSM parameter list: {param_key} with {len(imported_list)} items")
-                else:
-                    # Handle string values
-                    param_path = param_value
-                    if not param_path.startswith('/'):
-                        param_path = f"/{param_path}"
-                    
-                    construct_id = f"ssm-import-{param_key}-{hash(param_path) % 10000}"
-                    param = ssm.StringParameter.from_string_parameter_name(
-                        self, construct_id, param_path
-                    )
-                    
-                    self.ssm_imported_values[param_key] = param.string_value
-                    logger.info(f"Imported SSM parameter: {param_key} from {param_path}")
-                    
-            except Exception as e:
-                logger.error(f"Failed to import SSM parameter {param_key}: {e}")
-                raise
-
     def _get_security_groups(self) -> List[ec2.ISecurityGroup]:
         """Get security groups for the Load Balancer"""
         security_groups = []
         
         # Check SSM imported values first
-        if "security_groups" in self.ssm_imported_values:
-            sg_ids = self.ssm_imported_values["security_groups"]
+        if "security_groups" in self._ssm_imported_values:
+            sg_ids = self._ssm_imported_values["security_groups"]
             if not isinstance(sg_ids, list):
                 sg_ids = [sg_ids]
         else:
@@ -293,6 +255,32 @@ class LoadBalancerStack(IStack, VPCProviderMixin, StandardizedSsmMixin):
             )
         return subnets
 
+    def _generate_target_group_name(self, lb_name: str, tg_name: str, max_length: int = 32) -> str:
+        """Generate a unique target group name that doesn't begin/end with hyphens"""
+        full_name = f"{lb_name}-{tg_name}"
+        
+        if len(full_name) <= max_length:
+            # No truncation needed, just ensure no leading/trailing hyphens
+            return full_name.strip('-')
+        
+        # Need to truncate - use hash suffix for uniqueness
+        # Reserve space for hash (typically 8 chars) and separator
+        hash_length = 8
+        separator_length = 1
+        max_name_length = max_length - hash_length - separator_length
+        
+        # Take the prefix and ensure it doesn't end with hyphen
+        prefix = full_name[:max_name_length].rstrip('-')
+        
+        # Generate hash of the full name for uniqueness
+        hash_bytes = hashlib.sha256(full_name.encode()).digest()
+        hash_suffix = base64.urlsafe_b64encode(hash_bytes).decode()[:hash_length]
+        
+        # Ensure hash doesn't start with hyphen (replace any non-alphanumeric chars)
+        hash_suffix = ''.join(c for c in hash_suffix if c.isalnum())[:hash_length]
+        
+        return f"{prefix}-{hash_suffix}"
+
     def _create_target_groups(self, lb_name: str) -> None:
         """Create target groups for the Load Balancer"""
 
@@ -300,6 +288,9 @@ class LoadBalancerStack(IStack, VPCProviderMixin, StandardizedSsmMixin):
             tg_name = tg_config.get("name", f"tg-{idx}")
             tg_id = f"{lb_name}-{tg_name}"
 
+            # Generate a unique target group name that doesn't begin/end with hyphens
+            tg_name_sanitized = self._generate_target_group_name(lb_name, tg_name)
+
             # Configure health check
             health_check = self._configure_health_check(
                 tg_config.get("health_check", {})
@@ -310,7 +301,7 @@ class LoadBalancerStack(IStack, VPCProviderMixin, StandardizedSsmMixin):
                 target_group = elbv2.ApplicationTargetGroup(
                     self,
                     tg_id,
-                    target_group_name=tg_id[:32],  # Ensure name is within AWS limits
+                    target_group_name=tg_name_sanitized,
                     vpc=self.vpc,
                     port=tg_config.get("port", 80),
                     protocol=elbv2.ApplicationProtocol(
@@ -325,7 +316,7 @@ class LoadBalancerStack(IStack, VPCProviderMixin, StandardizedSsmMixin):
                 target_group = elbv2.NetworkTargetGroup(
                     self,
                     tg_id,
-                    target_group_name=tg_id[:32],  # Ensure name is within AWS limits
+                    target_group_name=tg_name_sanitized,
                     vpc=self.vpc,
                     port=tg_config.get("port", 80),
                     protocol=elbv2.Protocol(tg_config.get("protocol", "TCP")),
@@ -335,6 +326,8 @@ class LoadBalancerStack(IStack, VPCProviderMixin, StandardizedSsmMixin):
                     health_check=health_check,
                 )
 
+
+            
             # Store target group for later use
             self.target_groups[tg_name] = target_group
 
@@ -375,6 +368,11 @@ class LoadBalancerStack(IStack, VPCProviderMixin, StandardizedSsmMixin):
                 if protocol.upper() == "HTTPS":
                     certificates = self._get_certificates()
 
+                if not certificates and protocol.upper() == "HTTPS":
+                    message = "No certificates found for HTTPS listener. Please attach a certificate or create a certificate stack."
+                    logger.warning(message)
+                    raise ValueError(message)
+
                 listener = elbv2.ApplicationListener(
                     self,
                     listener_id,
@@ -427,8 +425,9 @@ class LoadBalancerStack(IStack, VPCProviderMixin, StandardizedSsmMixin):
         certificates = []
         
         # Check SSM imported values first (takes priority)
-        if "certificate_arns" in self.ssm_imported_values:
-            cert_arns = self.ssm_imported_values["certificate_arns"]
+        ssm_imports = self.get_all_ssm_imports()
+        if "certificate_arns" in ssm_imports:
+            cert_arns = ssm_imports["certificate_arns"]
             if not isinstance(cert_arns, list):
                 cert_arns = [cert_arns]
             for cert_arn in cert_arns:

{cdk_factory-0.18.6 → cdk_factory-0.18.9}/src/cdk_factory/stack_library/rds/rds_stack.py

@@ -70,7 +70,7 @@ class RdsStack(IStack, VPCProviderMixin, StandardizedSsmMixin):
         db_name = deployment.build_resource_name(self.rds_config.name)
 
         # Setup standardized SSM integration
-        self.setup_standardized_ssm_integration(
+        self.setup_ssm_integration(
             scope=self,
             config=self.rds_config,
             resource_type="rds",
@@ -80,7 +80,7 @@ class RdsStack(IStack, VPCProviderMixin, StandardizedSsmMixin):
         )
         
         # Process SSM imports
-        self.process_standardized_ssm_imports()
+        self.process_ssm_imports()
 
         # Get VPC and security groups
         self.security_groups = self._get_security_groups()

{cdk_factory-0.18.6 → cdk_factory-0.18.9}/src/cdk_factory/stack_library/rum/rum_stack.py

@@ -72,7 +72,7 @@ class RumStack(IStack, StandardizedSsmMixin):
                     "cognito_identity_pool_id"
                 ] = "/{{ORGANIZATION}}/{{ENVIRONMENT}}/cognito/user-pool/identity-pool-id"
 
-        self.setup_standardized_ssm_integration(
+        self.setup_ssm_integration(
             scope=self,
             config=rum_config,
             resource_type="rum",
@@ -80,7 +80,7 @@ class RumStack(IStack, StandardizedSsmMixin):
         )
 
         # Process SSM imports using standardized method
-        self.process_standardized_ssm_imports()
+        self.process_ssm_imports()
 
         # Import or create Cognito resources
         identity_pool_id, guest_role_arn = self._setup_cognito_integration()
@@ -341,7 +341,7 @@ class RumStack(IStack, StandardizedSsmMixin):
             resource_values["user_pool_id"] = self.user_pool.user_pool_id
 
         # Use enhanced SSM parameter export
-        exported_params = self.export_standardized_ssm_parameters(resource_values)
+        exported_params = self.export_ssm_parameters(resource_values)
 
         if exported_params:
             logger.info(f"Exported {len(exported_params)} RUM parameters to SSM")