konokenj.cdk-api-mcp-server 0.31.0__py3-none-any.whl → 0.57.0__py3-none-any.whl
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
Potentially problematic release.
This version of konokenj.cdk-api-mcp-server might be problematic. Click here for more details.
- cdk_api_mcp_server/__about__.py +1 -1
- cdk_api_mcp_server/resources/aws-cdk/constructs/@aws-cdk/aws-amplify-alpha/README.md +12 -0
- cdk_api_mcp_server/resources/aws-cdk/constructs/@aws-cdk/aws-bedrock-agentcore-alpha/README.md +1979 -0
- cdk_api_mcp_server/resources/aws-cdk/constructs/@aws-cdk/aws-bedrock-alpha/README.md +946 -0
- cdk_api_mcp_server/resources/aws-cdk/constructs/@aws-cdk/aws-eks-v2-alpha/README.md +160 -75
- cdk_api_mcp_server/resources/aws-cdk/constructs/@aws-cdk/aws-elasticache-alpha/README.md +421 -0
- cdk_api_mcp_server/resources/aws-cdk/constructs/@aws-cdk/aws-glue-alpha/README.md +39 -9
- cdk_api_mcp_server/resources/aws-cdk/constructs/@aws-cdk/aws-imagebuilder-alpha/README.md +656 -0
- cdk_api_mcp_server/resources/aws-cdk/constructs/@aws-cdk/aws-iot-alpha/README.md +1 -1
- cdk_api_mcp_server/resources/aws-cdk/constructs/@aws-cdk/aws-lambda-go-alpha/README.md +102 -4
- cdk_api_mcp_server/resources/aws-cdk/constructs/@aws-cdk/aws-lambda-python-alpha/README.md +6 -6
- cdk_api_mcp_server/resources/aws-cdk/constructs/@aws-cdk/aws-msk-alpha/README.md +38 -8
- cdk_api_mcp_server/resources/aws-cdk/constructs/@aws-cdk/aws-s3tables-alpha/README.md +82 -2
- cdk_api_mcp_server/resources/aws-cdk/constructs/@aws-cdk/aws-sagemaker-alpha/README.md +32 -0
- cdk_api_mcp_server/resources/aws-cdk/constructs/@aws-cdk/mixins-preview/README.md +182 -0
- cdk_api_mcp_server/resources/aws-cdk/constructs/aws-cdk-lib/README.md/README.md +367 -17
- cdk_api_mcp_server/resources/aws-cdk/constructs/aws-cdk-lib/aws-apigateway/README.md +34 -0
- cdk_api_mcp_server/resources/aws-cdk/constructs/aws-cdk-lib/aws-apigateway/integ.api-with-authorizer-and-proxy.ts +1 -1
- cdk_api_mcp_server/resources/aws-cdk/constructs/aws-cdk-lib/aws-apigateway/integ.lambda-api.ts +1 -1
- cdk_api_mcp_server/resources/aws-cdk/constructs/aws-cdk-lib/aws-apigateway/integ.lambda-permission-consolidation.ts +55 -0
- cdk_api_mcp_server/resources/aws-cdk/constructs/aws-cdk-lib/aws-apigateway/integ.spec-restapi.ts +1 -0
- cdk_api_mcp_server/resources/aws-cdk/constructs/aws-cdk-lib/aws-apigatewayv2/README.md +224 -60
- cdk_api_mcp_server/resources/aws-cdk/constructs/aws-cdk-lib/aws-apigatewayv2/integ.api-dualstack.ts +3 -4
- cdk_api_mcp_server/resources/aws-cdk/constructs/aws-cdk-lib/aws-apigatewayv2/integ.api.ts +5 -3
- cdk_api_mcp_server/resources/aws-cdk/constructs/aws-cdk-lib/aws-apigatewayv2/integ.stage.ts +10 -7
- cdk_api_mcp_server/resources/aws-cdk/constructs/aws-cdk-lib/aws-apigatewayv2/integ.usage-plan.ts +80 -0
- cdk_api_mcp_server/resources/aws-cdk/constructs/aws-cdk-lib/aws-apigatewayv2-authorizers/integ.iam.ts +34 -38
- cdk_api_mcp_server/resources/aws-cdk/constructs/aws-cdk-lib/aws-apigatewayv2-authorizers/integ.lambda.ts +2 -2
- cdk_api_mcp_server/resources/aws-cdk/constructs/aws-cdk-lib/aws-apigatewayv2-authorizers/integ.user-pool.ts +1 -1
- cdk_api_mcp_server/resources/aws-cdk/constructs/aws-cdk-lib/aws-apigatewayv2-integrations/README.md +35 -0
- cdk_api_mcp_server/resources/aws-cdk/constructs/aws-cdk-lib/aws-apigatewayv2-integrations/integ.add-subroute-integration.ts +7 -4
- cdk_api_mcp_server/resources/aws-cdk/constructs/aws-cdk-lib/aws-apigatewayv2-integrations/integ.http-proxy.ts +1 -1
- cdk_api_mcp_server/resources/aws-cdk/constructs/aws-cdk-lib/aws-apigatewayv2-integrations/integ.lambda-connect-disconnect-trigger.ts +2 -2
- cdk_api_mcp_server/resources/aws-cdk/constructs/aws-cdk-lib/aws-apigatewayv2-integrations/integ.lambda-permission-consolidation.ts +45 -0
- cdk_api_mcp_server/resources/aws-cdk/constructs/aws-cdk-lib/aws-apigatewayv2-integrations/integ.lambda-proxy.ts +1 -1
- cdk_api_mcp_server/resources/aws-cdk/constructs/aws-cdk-lib/aws-apigatewayv2-integrations/integ.lambda.ts +4 -4
- cdk_api_mcp_server/resources/aws-cdk/constructs/aws-cdk-lib/aws-apigatewayv2-integrations/integ.sqs.ts +58 -71
- cdk_api_mcp_server/resources/aws-cdk/constructs/aws-cdk-lib/aws-appsync/integ.graphql-lambda-permission.ts +1 -1
- cdk_api_mcp_server/resources/aws-cdk/constructs/aws-cdk-lib/aws-appsync/integ.js-resolver.ts +1 -1
- cdk_api_mcp_server/resources/aws-cdk/constructs/aws-cdk-lib/aws-autoscaling/README.md +1 -1
- cdk_api_mcp_server/resources/aws-cdk/constructs/aws-cdk-lib/aws-autoscaling/integ.asg-lt.ts +7 -0
- cdk_api_mcp_server/resources/aws-cdk/constructs/aws-cdk-lib/aws-batch/README.md +49 -1
- cdk_api_mcp_server/resources/aws-cdk/constructs/aws-cdk-lib/aws-batch/integ.ecs-exec-batch-job.ts +148 -0
- cdk_api_mcp_server/resources/aws-cdk/constructs/aws-cdk-lib/aws-batch/integ.managed-compute-environment-default-instance-class.ts +20 -0
- cdk_api_mcp_server/resources/aws-cdk/constructs/aws-cdk-lib/aws-certificatemanager/README.md +11 -0
- cdk_api_mcp_server/resources/aws-cdk/constructs/aws-cdk-lib/aws-cloudformation/integ.core-custom-resources-node-18.ts +1 -1
- cdk_api_mcp_server/resources/aws-cdk/constructs/aws-cdk-lib/aws-cloudformation/integ.core-custom-resources-service-timeout.ts +1 -1
- cdk_api_mcp_server/resources/aws-cdk/constructs/aws-cdk-lib/aws-cloudfront/README.md +292 -1
- cdk_api_mcp_server/resources/aws-cdk/constructs/aws-cdk-lib/aws-cloudfront-origins/README.md +83 -0
- cdk_api_mcp_server/resources/aws-cdk/constructs/aws-cdk-lib/aws-cloudfront-origins/integ.function-url-origin-ip-address-type.ts +84 -0
- cdk_api_mcp_server/resources/aws-cdk/constructs/aws-cdk-lib/aws-cloudfront-origins/integ.http-origin.ts +5 -2
- cdk_api_mcp_server/resources/aws-cdk/constructs/aws-cdk-lib/aws-cloudfront-origins/integ.origin-response-completion-timeout.ts +50 -0
- cdk_api_mcp_server/resources/aws-cdk/constructs/aws-cdk-lib/aws-cloudtrail/integ.cloudtrail-data-events-only.ts +1 -1
- cdk_api_mcp_server/resources/aws-cdk/constructs/aws-cdk-lib/aws-cloudwatch/README.md +104 -12
- cdk_api_mcp_server/resources/aws-cdk/constructs/aws-cdk-lib/aws-cloudwatch/integ.alarm-and-dashboard.ts +12 -0
- cdk_api_mcp_server/resources/aws-cdk/constructs/aws-cdk-lib/aws-cloudwatch/integ.anomaly-detection-alarm.ts +44 -2
- cdk_api_mcp_server/resources/aws-cdk/constructs/aws-cdk-lib/aws-cloudwatch/integ.dashboard-with-graphwidget-with-labels-visible.ts +92 -0
- cdk_api_mcp_server/resources/aws-cdk/constructs/aws-cdk-lib/aws-cloudwatch/integ.dashboard-with-metric-id-and-visible.ts +70 -0
- cdk_api_mcp_server/resources/aws-cdk/constructs/aws-cdk-lib/aws-cloudwatch/integ.search-expression.ts +51 -0
- cdk_api_mcp_server/resources/aws-cdk/constructs/aws-cdk-lib/aws-codebuild/README.md +143 -3
- cdk_api_mcp_server/resources/aws-cdk/constructs/aws-cdk-lib/aws-codebuild/integ.project-docker-server.ts +44 -0
- cdk_api_mcp_server/resources/aws-cdk/constructs/aws-cdk-lib/aws-codebuild/integ.project-fleet-attribute-based-compute.ts +59 -7
- cdk_api_mcp_server/resources/aws-cdk/constructs/aws-cdk-lib/aws-codebuild/integ.project-fleet-custom-instance-type.ts +130 -0
- cdk_api_mcp_server/resources/aws-cdk/constructs/aws-cdk-lib/aws-codebuild/integ.project-fleet-overflow-behavior.ts +61 -0
- cdk_api_mcp_server/resources/aws-cdk/constructs/aws-cdk-lib/aws-codebuild/integ.project-s3-cache.ts +71 -0
- cdk_api_mcp_server/resources/aws-cdk/constructs/aws-cdk-lib/aws-codebuild/integ.project-windows-image.ts +1 -2
- cdk_api_mcp_server/resources/aws-cdk/constructs/aws-cdk-lib/aws-codepipeline-actions/integ.pipeline-elastic-beanstalk-deploy.ts +26 -17
- cdk_api_mcp_server/resources/aws-cdk/constructs/aws-cdk-lib/aws-cognito/README.md +13 -2
- cdk_api_mcp_server/resources/aws-cdk/constructs/aws-cdk-lib/aws-cognito/integ.user-pool-client-explicit-props.ts +1 -0
- cdk_api_mcp_server/resources/aws-cdk/constructs/aws-cdk-lib/aws-docdb/README.md +24 -0
- cdk_api_mcp_server/resources/aws-cdk/constructs/aws-cdk-lib/aws-docdb/integ.cluster-serverless.ts +34 -0
- cdk_api_mcp_server/resources/aws-cdk/constructs/aws-cdk-lib/aws-dynamodb/README.md +225 -15
- cdk_api_mcp_server/resources/aws-cdk/constructs/aws-cdk-lib/aws-dynamodb/TABLE_V1_API.md +45 -2
- cdk_api_mcp_server/resources/aws-cdk/constructs/aws-cdk-lib/aws-dynamodb/integ.dynamodb-v2.cci.ts +49 -0
- cdk_api_mcp_server/resources/aws-cdk/constructs/aws-cdk-lib/aws-dynamodb/integ.dynamodb.add-to-resource-policy.ts +97 -0
- cdk_api_mcp_server/resources/aws-cdk/constructs/aws-cdk-lib/aws-dynamodb/integ.dynamodb.cci.ts +27 -0
- cdk_api_mcp_server/resources/aws-cdk/constructs/aws-cdk-lib/aws-dynamodb/integ.dynamodb.compound.ts +32 -0
- cdk_api_mcp_server/resources/aws-cdk/constructs/aws-cdk-lib/aws-dynamodb/integ.dynamodb.contirubtor-insights-for-gsi.ts +6 -2
- cdk_api_mcp_server/resources/aws-cdk/constructs/aws-cdk-lib/aws-dynamodb/integ.dynamodb.policy.ts +21 -1
- cdk_api_mcp_server/resources/aws-cdk/constructs/aws-cdk-lib/aws-dynamodb/integ.table-v2-global.ts +9 -3
- cdk_api_mcp_server/resources/aws-cdk/constructs/aws-cdk-lib/aws-dynamodb/integ.table-v2-mrsc.ts +31 -0
- cdk_api_mcp_server/resources/aws-cdk/constructs/aws-cdk-lib/aws-dynamodb/integ.table-v2.compound.ts +43 -0
- cdk_api_mcp_server/resources/aws-cdk/constructs/aws-cdk-lib/aws-ec2/README.md +28 -1
- cdk_api_mcp_server/resources/aws-cdk/constructs/aws-cdk-lib/aws-ec2/integ.client-vpn-endpoint-disconnect-on-session-timeout.ts +65 -0
- cdk_api_mcp_server/resources/aws-cdk/constructs/aws-cdk-lib/aws-ec2/integ.vpc-endpoint.lit.ts +6 -0
- cdk_api_mcp_server/resources/aws-cdk/constructs/aws-cdk-lib/aws-ec2/integ.vpc-flow-logs.ts +4 -0
- cdk_api_mcp_server/resources/aws-cdk/constructs/aws-cdk-lib/aws-ecr/README.md +41 -2
- cdk_api_mcp_server/resources/aws-cdk/constructs/aws-cdk-lib/aws-ecr/integ.tag-mutability-exclusion.ts +30 -0
- cdk_api_mcp_server/resources/aws-cdk/constructs/aws-cdk-lib/aws-ecr-assets/README.md +4 -0
- cdk_api_mcp_server/resources/aws-cdk/constructs/aws-cdk-lib/aws-ecr-assets/integ.assets-docker.ts +6 -0
- cdk_api_mcp_server/resources/aws-cdk/constructs/aws-cdk-lib/aws-ecs/README.md +189 -1
- cdk_api_mcp_server/resources/aws-cdk/constructs/aws-cdk-lib/aws-ecs/integ.availability-zone-rebalancing.ts +14 -4
- cdk_api_mcp_server/resources/aws-cdk/constructs/aws-cdk-lib/aws-ecs/integ.blue-green-deployment-strategy.ts +147 -0
- cdk_api_mcp_server/resources/aws-cdk/constructs/aws-cdk-lib/aws-ecs/integ.cluster-windows-server-ami.ts +5 -6
- cdk_api_mcp_server/resources/aws-cdk/constructs/aws-cdk-lib/aws-ecs/integ.ebs-volume-initialization-rate.ts +80 -0
- cdk_api_mcp_server/resources/aws-cdk/constructs/aws-cdk-lib/aws-ecs/integ.enable-execute-command.ts +35 -29
- cdk_api_mcp_server/resources/aws-cdk/constructs/aws-cdk-lib/aws-ecs/integ.exec-command.ts +16 -22
- cdk_api_mcp_server/resources/aws-cdk/constructs/aws-cdk-lib/aws-ecs/integ.lb-awsvpc-nw.ts +26 -16
- cdk_api_mcp_server/resources/aws-cdk/constructs/aws-cdk-lib/aws-ecs/integ.managedinstances-capacity-provider.ts +114 -0
- cdk_api_mcp_server/resources/aws-cdk/constructs/aws-cdk-lib/aws-ecs/integ.managedinstances-no-default-capacity-provider.ts +107 -0
- cdk_api_mcp_server/resources/aws-cdk/constructs/aws-cdk-lib/aws-ecs/integ.placement-strategies.ts +32 -8
- cdk_api_mcp_server/resources/aws-cdk/constructs/aws-cdk-lib/aws-ecs/integ.pseudo-terminal.ts +18 -8
- cdk_api_mcp_server/resources/aws-cdk/constructs/aws-cdk-lib/aws-ecs-patterns/README.md +2 -0
- cdk_api_mcp_server/resources/aws-cdk/constructs/aws-cdk-lib/aws-ecs-patterns/integ.alb-fargate-service-public-private-switch.ts +45 -0
- cdk_api_mcp_server/resources/aws-cdk/constructs/aws-cdk-lib/aws-ecs-patterns/integ.alb-fargate-service-smart-defaults.ts +143 -0
- cdk_api_mcp_server/resources/aws-cdk/constructs/aws-cdk-lib/aws-eks/README.md +103 -83
- cdk_api_mcp_server/resources/aws-cdk/constructs/aws-cdk-lib/aws-eks/integ.eks-al2023-nodegroup.ts +1 -1
- cdk_api_mcp_server/resources/aws-cdk/constructs/aws-cdk-lib/aws-eks/integ.eks-cluster-removal-policy.ts +31 -0
- cdk_api_mcp_server/resources/aws-cdk/constructs/aws-cdk-lib/aws-eks/integ.fargate-cluster.ts +1 -1
- cdk_api_mcp_server/resources/aws-cdk/constructs/aws-cdk-lib/aws-elasticloadbalancingv2/README.md +55 -4
- cdk_api_mcp_server/resources/aws-cdk/constructs/aws-cdk-lib/aws-elasticloadbalancingv2/integ.alb-lambda-multi-value-headers.ts +1 -1
- cdk_api_mcp_server/resources/aws-cdk/constructs/aws-cdk-lib/aws-elasticloadbalancingv2/integ.alb-target-group-attributes.ts +45 -0
- cdk_api_mcp_server/resources/aws-cdk/constructs/aws-cdk-lib/aws-elasticloadbalancingv2/integ.alb.oidc.ts +1 -1
- cdk_api_mcp_server/resources/aws-cdk/constructs/aws-cdk-lib/aws-elasticloadbalancingv2/integ.nlb-target-group-attributes.ts +45 -0
- cdk_api_mcp_server/resources/aws-cdk/constructs/aws-cdk-lib/aws-elasticloadbalancingv2/integ.nlb.security-group.ts +70 -0
- cdk_api_mcp_server/resources/aws-cdk/constructs/aws-cdk-lib/aws-elasticloadbalancingv2-actions/integ.cognito.ts +1 -1
- cdk_api_mcp_server/resources/aws-cdk/constructs/aws-cdk-lib/aws-events/README.md +41 -2
- cdk_api_mcp_server/resources/aws-cdk/constructs/aws-cdk-lib/aws-events/integ.api-destination.ts +42 -0
- cdk_api_mcp_server/resources/aws-cdk/constructs/aws-cdk-lib/aws-events/integ.archive-customer-managed-key.ts +23 -0
- cdk_api_mcp_server/resources/aws-cdk/constructs/aws-cdk-lib/aws-events/integ.eventbus.ts +13 -3
- cdk_api_mcp_server/resources/aws-cdk/constructs/aws-cdk-lib/aws-events-targets/README.md +93 -4
- cdk_api_mcp_server/resources/aws-cdk/constructs/aws-cdk-lib/aws-events-targets/integ.firehose-delivery-stream.ts +51 -0
- cdk_api_mcp_server/resources/aws-cdk/constructs/aws-cdk-lib/aws-iam/integ.custom-permissions-boundary-aspect.ts +50 -0
- cdk_api_mcp_server/resources/aws-cdk/constructs/aws-cdk-lib/aws-iam/integ.managed-policy.ts +9 -0
- cdk_api_mcp_server/resources/aws-cdk/constructs/aws-cdk-lib/aws-iam/integ.policy.ts +9 -0
- cdk_api_mcp_server/resources/aws-cdk/constructs/aws-cdk-lib/aws-kinesis/README.md +42 -0
- cdk_api_mcp_server/resources/aws-cdk/constructs/aws-cdk-lib/aws-kinesis/integ.stream-shard-level-monitoring.ts +47 -0
- cdk_api_mcp_server/resources/aws-cdk/constructs/aws-cdk-lib/aws-kinesisfirehose/README.md +159 -3
- cdk_api_mcp_server/resources/aws-cdk/constructs/aws-cdk-lib/aws-kinesisfirehose/integ.cloudwatch-logs-processors.ts +45 -0
- cdk_api_mcp_server/resources/aws-cdk/constructs/aws-cdk-lib/aws-kinesisfirehose/integ.record-format-conversion-schema.ts +154 -0
- cdk_api_mcp_server/resources/aws-cdk/constructs/aws-cdk-lib/aws-kinesisfirehose/integ.record-format-conversion.ts +178 -0
- cdk_api_mcp_server/resources/aws-cdk/constructs/aws-cdk-lib/aws-kinesisfirehose/integ.s3-bucket.lit.ts +1 -0
- cdk_api_mcp_server/resources/aws-cdk/constructs/aws-cdk-lib/aws-lambda/README.md +41 -2
- cdk_api_mcp_server/resources/aws-cdk/constructs/aws-cdk-lib/aws-lambda/integ.binary-payload.ts +1 -1
- cdk_api_mcp_server/resources/aws-cdk/constructs/aws-cdk-lib/aws-lambda/integ.lambda-policy-with-token-resolution.ts +46 -0
- cdk_api_mcp_server/resources/aws-cdk/constructs/aws-cdk-lib/aws-lambda/integ.logging-config.ts +8 -8
- cdk_api_mcp_server/resources/aws-cdk/constructs/aws-cdk-lib/aws-lambda/integ.multi-tenancy.ts +24 -0
- cdk_api_mcp_server/resources/aws-cdk/constructs/aws-cdk-lib/aws-lambda/integ.params-and-secrets.ts +1 -1
- cdk_api_mcp_server/resources/aws-cdk/constructs/aws-cdk-lib/aws-lambda/integ.runtime-management.ts +1 -1
- cdk_api_mcp_server/resources/aws-cdk/constructs/aws-cdk-lib/aws-lambda/integ.runtime.fromasset.ts +19 -4
- cdk_api_mcp_server/resources/aws-cdk/constructs/aws-cdk-lib/aws-lambda/integ.runtime.inlinecode.ts +11 -4
- cdk_api_mcp_server/resources/aws-cdk/constructs/aws-cdk-lib/aws-lambda-nodejs/README.md +3 -3
- cdk_api_mcp_server/resources/aws-cdk/constructs/aws-cdk-lib/aws-lambda-nodejs/integ.dependencies-bun-lock.ts +50 -0
- cdk_api_mcp_server/resources/aws-cdk/constructs/aws-cdk-lib/aws-lambda-nodejs/integ.dependencies-pnpm.ts +1 -1
- cdk_api_mcp_server/resources/aws-cdk/constructs/aws-cdk-lib/aws-lambda-nodejs/integ.function-exclude-smithy-models.ts +2 -2
- cdk_api_mcp_server/resources/aws-cdk/constructs/aws-cdk-lib/aws-lambda-nodejs/integ.nodejs.build.images.ts +1 -1
- cdk_api_mcp_server/resources/aws-cdk/constructs/aws-cdk-lib/aws-logs/README.md +69 -1
- cdk_api_mcp_server/resources/aws-cdk/constructs/aws-cdk-lib/aws-logs/integ.loggroup-transformer.ts +37 -0
- cdk_api_mcp_server/resources/aws-cdk/constructs/aws-cdk-lib/aws-logs/integ.metricfilter-apply-on-transformed-logs.ts +29 -0
- cdk_api_mcp_server/resources/aws-cdk/constructs/aws-cdk-lib/aws-logs/integ.save-logs-insights-query-definition.ts +7 -2
- cdk_api_mcp_server/resources/aws-cdk/constructs/aws-cdk-lib/aws-logs/integ.subscriptionfilter.ts +1 -1
- cdk_api_mcp_server/resources/aws-cdk/constructs/aws-cdk-lib/aws-logs/integ.transformer.ts +27 -0
- cdk_api_mcp_server/resources/aws-cdk/constructs/aws-cdk-lib/aws-opensearchservice/integ.opensearch.ebs.ts +1 -1
- cdk_api_mcp_server/resources/aws-cdk/constructs/aws-cdk-lib/aws-opensearchservice/integ.opensearch.min.ts +1 -0
- cdk_api_mcp_server/resources/aws-cdk/constructs/aws-cdk-lib/aws-rds/README.md +72 -2
- cdk_api_mcp_server/resources/aws-cdk/constructs/aws-cdk-lib/aws-rds/integ.cluster-cloudwatch-logs-exports.ts +56 -0
- cdk_api_mcp_server/resources/aws-cdk/constructs/aws-cdk-lib/aws-rds/integ.cluster-data-api-to-imported-cluster.ts +1 -1
- cdk_api_mcp_server/resources/aws-cdk/constructs/aws-cdk-lib/aws-rds/integ.cluster-data-api.ts +1 -1
- cdk_api_mcp_server/resources/aws-cdk/constructs/aws-cdk-lib/aws-rds/integ.cluster-lookup.ts +100 -0
- cdk_api_mcp_server/resources/aws-cdk/constructs/aws-cdk-lib/aws-rds/integ.cluster.ts +1 -1
- cdk_api_mcp_server/resources/aws-cdk/constructs/aws-cdk-lib/aws-rds/integ.instance-database-insights.ts +43 -0
- cdk_api_mcp_server/resources/aws-cdk/constructs/aws-cdk-lib/aws-rds/integ.instance-lookup.ts +77 -0
- cdk_api_mcp_server/resources/aws-cdk/constructs/aws-cdk-lib/aws-rds/integ.proxy-endpoint.ts +36 -0
- cdk_api_mcp_server/resources/aws-cdk/constructs/aws-cdk-lib/aws-route53/README.md +68 -31
- cdk_api_mcp_server/resources/aws-cdk/constructs/aws-cdk-lib/aws-route53/integ.delete-existing-record-set.ts +0 -1
- cdk_api_mcp_server/resources/aws-cdk/constructs/aws-cdk-lib/aws-route53/integ.private-hosted-zone-from-attributes.ts +41 -0
- cdk_api_mcp_server/resources/aws-cdk/constructs/aws-cdk-lib/aws-route53/integ.route53.ts +51 -1
- cdk_api_mcp_server/resources/aws-cdk/constructs/aws-cdk-lib/aws-route53/integ.zone-delegation-iam-stack.ts +66 -0
- cdk_api_mcp_server/resources/aws-cdk/constructs/aws-cdk-lib/aws-route53-targets/integ.cloudfront-alias-target.ts +16 -1
- cdk_api_mcp_server/resources/aws-cdk/constructs/aws-cdk-lib/aws-route53-targets/integ.elastic-beanstalk-hostedzoneid.ts +1 -1
- cdk_api_mcp_server/resources/aws-cdk/constructs/aws-cdk-lib/aws-s3/integ.bucket.notifications-scoped-permissions.ts +71 -0
- cdk_api_mcp_server/resources/aws-cdk/constructs/aws-cdk-lib/aws-s3-assets/integ.assets.bundling.docker-opts.ts +4 -1
- cdk_api_mcp_server/resources/aws-cdk/constructs/aws-cdk-lib/aws-s3-deployment/README.md +83 -4
- cdk_api_mcp_server/resources/aws-cdk/constructs/aws-cdk-lib/aws-s3-deployment/integ.bucket-deployment-big-response.ts +17 -6
- cdk_api_mcp_server/resources/aws-cdk/constructs/aws-cdk-lib/aws-s3-deployment/integ.bucket-deployment-cloudfront.ts +20 -18
- cdk_api_mcp_server/resources/aws-cdk/constructs/aws-cdk-lib/aws-s3-deployment/integ.bucket-deployment-cross-nested-stack-source.ts +64 -0
- cdk_api_mcp_server/resources/aws-cdk/constructs/aws-cdk-lib/aws-s3-deployment/integ.bucket-deployment-cross-stack-source.ts +53 -0
- cdk_api_mcp_server/resources/aws-cdk/constructs/aws-cdk-lib/aws-s3-deployment/integ.bucket-deployment-cross-stack-ssm-source.ts +97 -0
- cdk_api_mcp_server/resources/aws-cdk/constructs/aws-cdk-lib/aws-s3-deployment/integ.bucket-deployment-data.ts +99 -59
- cdk_api_mcp_server/resources/aws-cdk/constructs/aws-cdk-lib/aws-s3-deployment/integ.bucket-deployment-deployed-bucket.ts +10 -4
- cdk_api_mcp_server/resources/aws-cdk/constructs/aws-cdk-lib/aws-s3-deployment/integ.bucket-deployment-large-file.ts +23 -12
- cdk_api_mcp_server/resources/aws-cdk/constructs/aws-cdk-lib/aws-s3-deployment/integ.bucket-deployment-loggroup.ts +7 -2
- cdk_api_mcp_server/resources/aws-cdk/constructs/aws-cdk-lib/aws-s3-deployment/integ.bucket-deployment-security-groups-efs.ts +77 -0
- cdk_api_mcp_server/resources/aws-cdk/constructs/aws-cdk-lib/aws-s3-deployment/integ.bucket-deployment-security-groups-empty.ts +69 -0
- cdk_api_mcp_server/resources/aws-cdk/constructs/aws-cdk-lib/aws-s3-deployment/integ.bucket-deployment-security-groups-multiple.ts +89 -0
- cdk_api_mcp_server/resources/aws-cdk/constructs/aws-cdk-lib/aws-s3-deployment/integ.bucket-deployment-security-groups-single.ts +77 -0
- cdk_api_mcp_server/resources/aws-cdk/constructs/aws-cdk-lib/aws-s3-deployment/integ.bucket-deployment-signcontent.ts +11 -7
- cdk_api_mcp_server/resources/aws-cdk/constructs/aws-cdk-lib/aws-s3-deployment/integ.bucket-deployment-substitution-with-destination-key.ts +15 -8
- cdk_api_mcp_server/resources/aws-cdk/constructs/aws-cdk-lib/aws-s3-deployment/integ.bucket-deployment-substitution-with-role.ts +29 -14
- cdk_api_mcp_server/resources/aws-cdk/constructs/aws-cdk-lib/aws-s3-deployment/integ.bucket-deployment-substitution.ts +16 -8
- cdk_api_mcp_server/resources/aws-cdk/constructs/aws-cdk-lib/aws-s3-deployment/integ.bucket-deployment-vpc-basic.ts +65 -0
- cdk_api_mcp_server/resources/aws-cdk/constructs/aws-cdk-lib/aws-s3-deployment/integ.bucket-deployment-vpc-config.ts +66 -0
- cdk_api_mcp_server/resources/aws-cdk/constructs/aws-cdk-lib/aws-s3-deployment/integ.bucket-deployment-vpc-custom-subnets.ts +66 -0
- cdk_api_mcp_server/resources/aws-cdk/constructs/aws-cdk-lib/aws-s3-deployment/integ.bucket-deployment-vpc-efs.ts +66 -0
- cdk_api_mcp_server/resources/aws-cdk/constructs/aws-cdk-lib/aws-s3-deployment/integ.bucket-deployment-vpc-security-groups.ts +72 -0
- cdk_api_mcp_server/resources/aws-cdk/constructs/aws-cdk-lib/aws-s3-deployment/integ.bucket-deployment-vpc-subnet-selection.ts +70 -0
- cdk_api_mcp_server/resources/aws-cdk/constructs/aws-cdk-lib/aws-s3-deployment/integ.bucket-deployment.ts +47 -69
- cdk_api_mcp_server/resources/aws-cdk/constructs/aws-cdk-lib/aws-s3-notifications/integ.bucket-notifications.ts +80 -42
- cdk_api_mcp_server/resources/aws-cdk/constructs/aws-cdk-lib/aws-secretsmanager/integ.secret.dynamic-reference-key.ts +38 -0
- cdk_api_mcp_server/resources/aws-cdk/constructs/aws-cdk-lib/aws-signer/integ.signing-profile.ts +5 -0
- cdk_api_mcp_server/resources/aws-cdk/constructs/aws-cdk-lib/aws-sns/README.md +2 -0
- cdk_api_mcp_server/resources/aws-cdk/constructs/aws-cdk-lib/aws-sns-subscriptions/integ.sns-sqs-subscription-filter.ts +75 -0
- cdk_api_mcp_server/resources/aws-cdk/constructs/aws-cdk-lib/aws-sns-subscriptions/integ.sns-sqs.ts +21 -40
- cdk_api_mcp_server/resources/aws-cdk/constructs/aws-cdk-lib/aws-stepfunctions/integ.distributed-map-parallel.ts +82 -0
- cdk_api_mcp_server/resources/aws-cdk/constructs/aws-cdk-lib/aws-stepfunctions/integ.distributed-map-redrive.ts +130 -0
- cdk_api_mcp_server/resources/aws-cdk/constructs/aws-cdk-lib/aws-stepfunctions/integ.map-with-catch.ts +1 -0
- cdk_api_mcp_server/resources/aws-cdk/constructs/aws-cdk-lib/aws-stepfunctions/integ.sm-jsonpath-with-distributed-map-jsonata.ts +105 -0
- cdk_api_mcp_server/resources/aws-cdk/constructs/aws-cdk-lib/aws-stepfunctions-tasks/README.md +75 -5
- cdk_api_mcp_server/resources/aws-cdk/constructs/aws-cdk-lib/aws-stepfunctions-tasks/integ.call-aws-service-cross-region-lambda.ts +1 -1
- cdk_api_mcp_server/resources/aws-cdk/constructs/aws-cdk-lib/aws-stepfunctions-tasks/integ.emr-create-cluster-with-ebs.ts +126 -0
- cdk_api_mcp_server/resources/aws-cdk/constructs/aws-cdk-lib/aws-stepfunctions-tasks/integ.evaluate-expression-arm64.ts +27 -0
- cdk_api_mcp_server/resources/aws-cdk/constructs/aws-cdk-lib/aws-stepfunctions-tasks/integ.evaluate-expression-default.ts +25 -0
- cdk_api_mcp_server/resources/aws-cdk/constructs/aws-cdk-lib/aws-stepfunctions-tasks/integ.evaluate-expression-mixed-arch.ts +35 -0
- cdk_api_mcp_server/resources/aws-cdk/constructs/aws-cdk-lib/aws-stepfunctions-tasks/integ.evaluate-expression-nodejs22.ts +27 -0
- cdk_api_mcp_server/resources/aws-cdk/constructs/aws-cdk-lib/aws-stepfunctions-tasks/integ.evaluate-expression-x86.ts +27 -0
- cdk_api_mcp_server/resources/aws-cdk/constructs/aws-cdk-lib/aws-stepfunctions-tasks/integ.invoke-json-path.ts +102 -0
- cdk_api_mcp_server/resources/aws-cdk/constructs/aws-cdk-lib/aws-synthetics/README.md +84 -1
- cdk_api_mcp_server/resources/aws-cdk/constructs/aws-cdk-lib/aws-synthetics/integ.canary-browser-type.ts +35 -0
- cdk_api_mcp_server/resources/aws-cdk/constructs/aws-cdk-lib/aws-synthetics/integ.canary-resources-to-replicate-tags.ts +36 -0
- cdk_api_mcp_server/resources/aws-cdk/constructs/aws-cdk-lib/aws-synthetics/integ.canary-retry.ts +32 -0
- cdk_api_mcp_server/resources/aws-cdk/constructs/aws-cdk-lib/aws-synthetics/integ.canary-runtime-validation.ts +43 -0
- cdk_api_mcp_server/resources/aws-cdk/constructs/aws-cdk-lib/aws-synthetics/integ.canary.ts +2 -0
- cdk_api_mcp_server/resources/aws-cdk/constructs/aws-cdk-lib/cloudformation-include/integ.novalue-nonstring.ts +25 -0
- cdk_api_mcp_server/resources/aws-cdk/constructs/aws-cdk-lib/core/README.md +2 -1870
- cdk_api_mcp_server/resources/aws-cdk/constructs/aws-cdk-lib/custom-resources/README.md +59 -0
- cdk_api_mcp_server/resources/aws-cdk/constructs/aws-cdk-lib/custom-resources/integ.aws-custom-resource.ts +1 -1
- cdk_api_mcp_server/resources/aws-cdk/constructs/aws-cdk-lib/custom-resources/integ.custom-resource-config-lambda-node-runtime.ts +1 -1
- cdk_api_mcp_server/resources/aws-cdk/constructs/aws-cdk-lib/custom-resources/integ.external-id.ts +80 -0
- cdk_api_mcp_server/resources/aws-cdk/constructs/aws-cdk-lib/custom-resources/integ.invoke-function-payload.ts +1 -1
- cdk_api_mcp_server/resources/aws-cdk/constructs/aws-cdk-lib/cx-api/FEATURE_FLAGS.md +152 -10
- cdk_api_mcp_server/resources/aws-cdk/constructs/aws-cdk-lib/cx-api/README.md +55 -1
- cdk_api_mcp_server/resources/aws-cdk/constructs/aws-cdk-lib/interfaces/README.md +33 -0
- cdk_api_mcp_server/resources/aws-cdk/constructs/aws-cdk-lib/pipelines/README.md +4 -0
- cdk_api_mcp_server/resources/aws-cdk/constructs/aws-cdk-lib/pipelines/integ.newpipeline-reduce-stagerole-scope.ts +4 -1
- cdk_api_mcp_server/resources/aws-cdk/constructs/aws-cdk-lib/pipelines/integ.pipeline-with-customsynthesizer.ts +105 -0
- {konokenj_cdk_api_mcp_server-0.31.0.dist-info → konokenj_cdk_api_mcp_server-0.57.0.dist-info}/METADATA +2 -2
- {konokenj_cdk_api_mcp_server-0.31.0.dist-info → konokenj_cdk_api_mcp_server-0.57.0.dist-info}/RECORD +240 -151
- cdk_api_mcp_server/resources/aws-cdk/constructs/aws-cdk-lib/aws-events-targets/integ.kinesis-firehose-stream.ts +0 -33
- cdk_api_mcp_server/resources/aws-cdk/constructs/aws-cdk-lib/aws-logs/integ.expose-metric-with-dimensions.ts +0 -47
- cdk_api_mcp_server/resources/aws-cdk/constructs/aws-cdk-lib/aws-s3-deployment/integ.bucket-deployment-signcontent.d.ts +0 -1
- {konokenj_cdk_api_mcp_server-0.31.0.dist-info → konokenj_cdk_api_mcp_server-0.57.0.dist-info}/WHEEL +0 -0
- {konokenj_cdk_api_mcp_server-0.31.0.dist-info → konokenj_cdk_api_mcp_server-0.57.0.dist-info}/entry_points.txt +0 -0
- {konokenj_cdk_api_mcp_server-0.31.0.dist-info → konokenj_cdk_api_mcp_server-0.57.0.dist-info}/licenses/LICENSE.txt +0 -0
|
@@ -0,0 +1,421 @@
|
|
|
1
|
+
# ElastiCache CDK Construct Library
|
|
2
|
+
<!--BEGIN STABILITY BANNER-->
|
|
3
|
+
|
|
4
|
+
---
|
|
5
|
+
|
|
6
|
+
|
|
7
|
+
|
|
8
|
+
> The APIs of higher level constructs in this module are experimental and under active development.
|
|
9
|
+
> They are subject to non-backward compatible changes or removal in any future version. These are
|
|
10
|
+
> not subject to the [Semantic Versioning](https://semver.org/) model and breaking changes will be
|
|
11
|
+
> announced in the release notes. This means that while you may use them, you may need to update
|
|
12
|
+
> your source code when upgrading to a newer version of this package.
|
|
13
|
+
|
|
14
|
+
---
|
|
15
|
+
|
|
16
|
+
<!--END STABILITY BANNER-->
|
|
17
|
+
|
|
18
|
+
This module has constructs for [Amazon ElastiCache](https://docs.aws.amazon.com/AmazonElastiCache/latest/dg/WhatIs.html).
|
|
19
|
+
|
|
20
|
+
* The `ServerlessCache` construct facilitates the creation and management of serverless cache.
|
|
21
|
+
* The `User` and `UserGroup` constructs facilitate the creation and management of users for the cache.
|
|
22
|
+
|
|
23
|
+
## Serverless Cache
|
|
24
|
+
|
|
25
|
+
Amazon ElastiCache Serverless is a serverless option that automatically scales cache capacity based on application traffic patterns. You can create a serverless cache using the `ServerlessCache` construct:
|
|
26
|
+
|
|
27
|
+
```ts
|
|
28
|
+
const vpc = new ec2.Vpc(this, 'VPC');
|
|
29
|
+
|
|
30
|
+
const cache = new elasticache.ServerlessCache(this, 'ServerlessCache', {
|
|
31
|
+
vpc,
|
|
32
|
+
});
|
|
33
|
+
```
|
|
34
|
+
|
|
35
|
+
### Connecting to serverless cache
|
|
36
|
+
|
|
37
|
+
To control who can access the serverless cache by the security groups, use the `.connections` attribute.
|
|
38
|
+
|
|
39
|
+
The serverless cache has a default port `6379`.
|
|
40
|
+
|
|
41
|
+
This example allows an EC2 instance to connect to the serverless cache:
|
|
42
|
+
|
|
43
|
+
```ts
|
|
44
|
+
declare const serverlessCache: elasticache.ServerlessCache;
|
|
45
|
+
declare const instance: ec2.Instance;
|
|
46
|
+
|
|
47
|
+
// allow the EC2 instance to connect to serverless cache on default port 6379
|
|
48
|
+
serverlessCache.connections.allowDefaultPortFrom(instance);
|
|
49
|
+
```
|
|
50
|
+
|
|
51
|
+
### Cache usage limits
|
|
52
|
+
|
|
53
|
+
You can configure usage limits on both cache data storage and ECPU/second for your cache to control costs and ensure predictable performance.
|
|
54
|
+
|
|
55
|
+
**Configuration options:**
|
|
56
|
+
|
|
57
|
+
* **Maximum limits**: Ensure your cache usage never exceeds the configured maximum
|
|
58
|
+
* **Minimum limits**: Reserve a baseline level of resources for consistent performance
|
|
59
|
+
* **Both**: Define a range where your cache usage will operate
|
|
60
|
+
|
|
61
|
+
For more infomation, see [Setting scaling limits to manage costs](https://docs.aws.amazon.com/AmazonElastiCache/latest/dg/Scaling.html#Pre-Scaling).
|
|
62
|
+
|
|
63
|
+
```ts
|
|
64
|
+
declare const vpc: ec2.Vpc;
|
|
65
|
+
|
|
66
|
+
const serverlessCache = new elasticache.ServerlessCache(this, 'ServerlessCache', {
|
|
67
|
+
engine: elasticache.CacheEngine.VALKEY_LATEST,
|
|
68
|
+
vpc,
|
|
69
|
+
cacheUsageLimits: {
|
|
70
|
+
// cache data storage limits (GB)
|
|
71
|
+
dataStorageMinimumSize: Size.gibibytes(2), // minimum: 1GB
|
|
72
|
+
dataStorageMaximumSize: Size.gibibytes(3), // maximum: 5000GB
|
|
73
|
+
// rate limits (ECPU/second)
|
|
74
|
+
requestRateLimitMinimum: 1000, // minimum: 1000
|
|
75
|
+
requestRateLimitMaximum: 10000, // maximum: 15000000
|
|
76
|
+
},
|
|
77
|
+
});
|
|
78
|
+
```
|
|
79
|
+
|
|
80
|
+
### Backups and restore
|
|
81
|
+
|
|
82
|
+
You can enable automatic backups for serverless cache.
|
|
83
|
+
When automatic backups are enabled, ElastiCache creates a backup of the cache on a daily basis.
|
|
84
|
+
|
|
85
|
+
Also you can set the backup window for any time when it's most convenient.
|
|
86
|
+
If you don't specify a backup window, ElastiCache assigns one automatically.
|
|
87
|
+
|
|
88
|
+
For more information, see [Scheduling automatic backups](https://docs.aws.amazon.com/AmazonElastiCache/latest/dg/backups-automatic.html).
|
|
89
|
+
|
|
90
|
+
To enable automatic backups, set the `backupRetentionLimit` property. You can also specify the snapshot creation time by setting `backupTime` property:
|
|
91
|
+
|
|
92
|
+
```ts
|
|
93
|
+
declare const vpc: ec2.Vpc;
|
|
94
|
+
|
|
95
|
+
const serverlessCache = new elasticache.ServerlessCache(this, 'ServerlessCache', {
|
|
96
|
+
backup: {
|
|
97
|
+
// enable automatic backups and set the retention period to 6 days
|
|
98
|
+
backupRetentionLimit: 6,
|
|
99
|
+
// set the backup window to 9:00 AM UTC
|
|
100
|
+
backupTime: events.Schedule.cron({
|
|
101
|
+
hour: '9',
|
|
102
|
+
minute: '0',
|
|
103
|
+
}),
|
|
104
|
+
},
|
|
105
|
+
vpc,
|
|
106
|
+
});
|
|
107
|
+
```
|
|
108
|
+
|
|
109
|
+
You can create a final backup by setting `backupNameBeforeDeletion` property.
|
|
110
|
+
|
|
111
|
+
```ts
|
|
112
|
+
declare const vpc: ec2.Vpc;
|
|
113
|
+
|
|
114
|
+
const serverlessCache = new elasticache.ServerlessCache(this, 'ServerlessCache', {
|
|
115
|
+
engine: elasticache.CacheEngine.VALKEY_LATEST,
|
|
116
|
+
backup: {
|
|
117
|
+
// set a backup name before deleting a cache
|
|
118
|
+
backupNameBeforeDeletion: "my-final-backup-name",
|
|
119
|
+
},
|
|
120
|
+
vpc,
|
|
121
|
+
});
|
|
122
|
+
```
|
|
123
|
+
|
|
124
|
+
You can restore from backups by setting snapshot ARNs to `backupArnsToRestore` property:
|
|
125
|
+
|
|
126
|
+
```ts
|
|
127
|
+
declare const vpc: ec2.Vpc;
|
|
128
|
+
|
|
129
|
+
const serverlessCache = new elasticache.ServerlessCache(this, 'ServerlessCache', {
|
|
130
|
+
engine: elasticache.CacheEngine.VALKEY_LATEST,
|
|
131
|
+
backup: {
|
|
132
|
+
// set the backup(s) to restore
|
|
133
|
+
backupArnsToRestore: ['arn:aws:elasticache:us-east-1:123456789012:serverlesscachesnapshot:my-final-backup-name'],
|
|
134
|
+
},
|
|
135
|
+
vpc,
|
|
136
|
+
});
|
|
137
|
+
```
|
|
138
|
+
|
|
139
|
+
### Encryption at rest
|
|
140
|
+
|
|
141
|
+
At-rest encryption is always enabled for Serverless Cache. There are two encryption options:
|
|
142
|
+
|
|
143
|
+
* **Default**: When no `kmsKey` is specified (left as `undefined`), AWS owned KMS keys are used automatically
|
|
144
|
+
* **Customer Managed Key**: Create a KMS key first, then pass it to the cache via the `kmsKey` property
|
|
145
|
+
|
|
146
|
+
### Customer Managed Key for encryption at rest
|
|
147
|
+
|
|
148
|
+
ElastiCache supports symmetric Customer Managed key (CMK) for encryption at rest.
|
|
149
|
+
|
|
150
|
+
For more information, see [Using customer managed keys from AWS KMS](https://docs.aws.amazon.com/AmazonElastiCache/latest/dg/at-rest-encryption.html#using-customer-managed-keys-for-elasticache-security).
|
|
151
|
+
|
|
152
|
+
To use CMK, set your CMK to the `kmsKey` property:
|
|
153
|
+
|
|
154
|
+
```ts
|
|
155
|
+
import { Key } from 'aws-cdk-lib/aws-kms';
|
|
156
|
+
|
|
157
|
+
declare const kmsKey: Key;
|
|
158
|
+
declare const vpc: ec2.Vpc;
|
|
159
|
+
|
|
160
|
+
const serverlessCache = new elasticache.ServerlessCache(this, 'ServerlessCache', {
|
|
161
|
+
engine: elasticache.CacheEngine.VALKEY_LATEST,
|
|
162
|
+
serverlessCacheName: 'my-serverless-cache',
|
|
163
|
+
vpc,
|
|
164
|
+
// set Customer Managed Key
|
|
165
|
+
kmsKey,
|
|
166
|
+
});
|
|
167
|
+
```
|
|
168
|
+
|
|
169
|
+
### Metrics and monitoring
|
|
170
|
+
|
|
171
|
+
You can monitor your serverless cache using CloudWatch Metrics via the `metric` method.
|
|
172
|
+
|
|
173
|
+
For more information about serverless cache metrics, see [Serverless metrics and events for Valkey and Redis OSS](https://docs.aws.amazon.com/AmazonElastiCache/latest/dg/serverless-metrics-events-redis.html) and [Serverless metrics and events for Memcached](https://docs.aws.amazon.com/AmazonElastiCache/latest/dg/serverless-metrics-events.memcached.html).
|
|
174
|
+
|
|
175
|
+
```ts
|
|
176
|
+
declare const serverlessCache: elasticache.ServerlessCache;
|
|
177
|
+
|
|
178
|
+
// The 5 minutes average of the total number of successful read-only key lookups in the cache.
|
|
179
|
+
const cacheHits = serverlessCache.metricCacheHitCount();
|
|
180
|
+
|
|
181
|
+
// The 5 minutes average of the total number of bytes used by the data stored in the cache.
|
|
182
|
+
const bytesUsedForCache = serverlessCache.metricDataStored();
|
|
183
|
+
|
|
184
|
+
// The 5 minutes average of the total number of ElastiCacheProcessingUnits (ECPUs) consumed by the requests executed on the cache.
|
|
185
|
+
const elastiCacheProcessingUnits = serverlessCache.metricProcessingUnitsConsumed();
|
|
186
|
+
|
|
187
|
+
// Create an alarm for ECPUs.
|
|
188
|
+
elastiCacheProcessingUnits.createAlarm(this, 'ElastiCacheProcessingUnitsAlarm', {
|
|
189
|
+
threshold: 50,
|
|
190
|
+
evaluationPeriods: 1,
|
|
191
|
+
});
|
|
192
|
+
```
|
|
193
|
+
|
|
194
|
+
### Import an existing serverless cache
|
|
195
|
+
|
|
196
|
+
To import an existing ServerlessCache, use the `ServerlessCache.fromServerlessCacheAttributes` method:
|
|
197
|
+
|
|
198
|
+
```ts
|
|
199
|
+
declare const securityGroup: ec2.SecurityGroup;
|
|
200
|
+
|
|
201
|
+
const importedServerlessCache = elasticache.ServerlessCache.fromServerlessCacheAttributes(this, 'ImportedServerlessCache', {
|
|
202
|
+
serverlessCacheName: 'my-serverless-cache',
|
|
203
|
+
securityGroups: [securityGroup],
|
|
204
|
+
});
|
|
205
|
+
```
|
|
206
|
+
|
|
207
|
+
## User and User Group
|
|
208
|
+
|
|
209
|
+
Setup required properties and create:
|
|
210
|
+
|
|
211
|
+
```ts
|
|
212
|
+
const newDefaultUser = new elasticache.NoPasswordUser(this, 'NoPasswordUser', {
|
|
213
|
+
userId: 'default',
|
|
214
|
+
accessControl: elasticache.AccessControl.fromAccessString("on ~* +@all"),
|
|
215
|
+
})
|
|
216
|
+
|
|
217
|
+
const userGroup = new elasticache.UserGroup(this, 'UserGroup', {
|
|
218
|
+
users: [newDefaultUser],
|
|
219
|
+
});
|
|
220
|
+
```
|
|
221
|
+
|
|
222
|
+
### RBAC
|
|
223
|
+
|
|
224
|
+
In Valkey 7.2 and onward and Redis OSS 6.0 onward you can use a feature called Role-Based Access Control (RBAC). RBAC is also the only way to control access to serverless caches.
|
|
225
|
+
|
|
226
|
+
RBAC enables you to control cache access through user groups. These user groups are designed as a way to organize access to caches.
|
|
227
|
+
|
|
228
|
+
For more information, see [Role-Based Access Control (RBAC)](https://docs.aws.amazon.com/AmazonElastiCache/latest/dg/Clusters.RBAC.html).
|
|
229
|
+
|
|
230
|
+
To enable RBAC for ElastiCache with Valkey or Redis OSS, you take the following steps:
|
|
231
|
+
|
|
232
|
+
* Create users.
|
|
233
|
+
* Create a user group and add users to the user group.
|
|
234
|
+
* Assign the user group to a cache.
|
|
235
|
+
|
|
236
|
+
### Create users
|
|
237
|
+
|
|
238
|
+
First, you need to create users by using `IamUser`, `PasswordUser` or `NoPasswordUser` construct.
|
|
239
|
+
|
|
240
|
+
With RBAC, you create users and assign them specific permissions by using `accessString` property.
|
|
241
|
+
|
|
242
|
+
For more information, see [Specifying Permissions Using an Access String](https://docs.aws.amazon.com/AmazonElastiCache/latest/dg/Clusters.RBAC.html#Access-string).
|
|
243
|
+
|
|
244
|
+
You can create an IAM-enabled user by using `IamUser` construct:
|
|
245
|
+
|
|
246
|
+
```ts
|
|
247
|
+
const user = new elasticache.IamUser(this, 'User', {
|
|
248
|
+
// set user engine
|
|
249
|
+
engine: elasticache.UserEngine.REDIS,
|
|
250
|
+
|
|
251
|
+
// set user id
|
|
252
|
+
userId: 'my-user',
|
|
253
|
+
|
|
254
|
+
// set username
|
|
255
|
+
userName: 'my-user',
|
|
256
|
+
|
|
257
|
+
// set access string
|
|
258
|
+
accessControl: elasticache.AccessControl.fromAccessString("on ~* +@all"),
|
|
259
|
+
});
|
|
260
|
+
```
|
|
261
|
+
|
|
262
|
+
> NOTE: IAM-enabled users must have matching user id and username. For more information, see [Limitations](https://docs.aws.amazon.com/AmazonElastiCache/latest/dg/auth-iam.html). The construct can set automatically the username to be the same as the user id.
|
|
263
|
+
|
|
264
|
+
If you want to create a password authenticated user, use `PasswordUser` construct:
|
|
265
|
+
|
|
266
|
+
```ts
|
|
267
|
+
const user = new elasticache.PasswordUser(this, 'User', {
|
|
268
|
+
// set user engine
|
|
269
|
+
engine: elasticache.UserEngine.VALKEY,
|
|
270
|
+
|
|
271
|
+
// set user id
|
|
272
|
+
userId: 'my-user-id',
|
|
273
|
+
|
|
274
|
+
// set access string
|
|
275
|
+
accessControl: elasticache.AccessControl.fromAccessString("on ~* +@all"),
|
|
276
|
+
|
|
277
|
+
// set username
|
|
278
|
+
userName: 'my-user-name',
|
|
279
|
+
|
|
280
|
+
// set up to two passwords
|
|
281
|
+
passwords: [
|
|
282
|
+
// "SecretIdForPassword" is the secret id for the password
|
|
283
|
+
SecretValue.secretsManager('SecretIdForPassword'),
|
|
284
|
+
// "AnotherSecretIdForPassword" is the secret id for the password
|
|
285
|
+
SecretValue.secretsManager('AnotherSecretIdForPassword'),
|
|
286
|
+
],
|
|
287
|
+
});
|
|
288
|
+
```
|
|
289
|
+
|
|
290
|
+
You can also create a no password required user by using `NoPasswordUser` construct:
|
|
291
|
+
|
|
292
|
+
```ts
|
|
293
|
+
const user = new elasticache.NoPasswordUser(this, 'User', {
|
|
294
|
+
// set user engine
|
|
295
|
+
engine: elasticache.UserEngine.REDIS,
|
|
296
|
+
|
|
297
|
+
// set user id
|
|
298
|
+
userId: 'my-user-id',
|
|
299
|
+
|
|
300
|
+
// set access string
|
|
301
|
+
accessControl: elasticache.AccessControl.fromAccessString("on ~* +@all"),
|
|
302
|
+
|
|
303
|
+
// set username
|
|
304
|
+
userName: 'my-user-name',
|
|
305
|
+
});
|
|
306
|
+
```
|
|
307
|
+
|
|
308
|
+
### Default user
|
|
309
|
+
|
|
310
|
+
ElastiCache automatically creates a default user with both a user ID and username set to `default`. This default user cannot be modified or deleted. The user is created as a no password authentication user.
|
|
311
|
+
|
|
312
|
+
This user is intended for compatibility with the default behavior of previous Redis OSS versions and has an access string that permits it to call all commands and access all keys.
|
|
313
|
+
|
|
314
|
+
To use this automatically created default user in CDK, you can import it using `NoPasswordUser.fromUserAttributes` method. For more information on import methods, see the [Import an existing user and user group](#import-an-existing-user-and-user-group) section.
|
|
315
|
+
|
|
316
|
+
To add proper access control to a cache, replace the default user with a new one that is either disabled by setting the `accessString` to `off -@all` or secured with a strong password.
|
|
317
|
+
|
|
318
|
+
To change the default user, create a new default user with the username set to `default`. You can then swap it with the original default user.
|
|
319
|
+
|
|
320
|
+
For more information, see [Applying RBAC to a Cache for ElastiCache with Valkey or Redis OSS](https://docs.aws.amazon.com/AmazonElastiCache/latest/dg/Clusters.RBAC.html#rbac-using).
|
|
321
|
+
|
|
322
|
+
If you want to create a new default user, `userName` must be `default` and `userId` must not be `default` by using `NoPasswordUser` or `PasswordUser`:
|
|
323
|
+
|
|
324
|
+
```ts
|
|
325
|
+
// use the original `default` user by using import method
|
|
326
|
+
const defaultUser = elasticache.NoPasswordUser.fromUserAttributes(this, 'DefaultUser', {
|
|
327
|
+
// userId and userName must be 'default'
|
|
328
|
+
userId: 'default',
|
|
329
|
+
});
|
|
330
|
+
|
|
331
|
+
// create a new default user
|
|
332
|
+
const newDefaultUser = new elasticache.NoPasswordUser(this, 'NewDefaultUser', {
|
|
333
|
+
// new default user id must not be 'default'
|
|
334
|
+
userId: 'new-default',
|
|
335
|
+
// new default username must be 'default'
|
|
336
|
+
userName: 'default',
|
|
337
|
+
// set access string
|
|
338
|
+
accessControl: elasticache.AccessControl.fromAccessString("on ~* +@all"),
|
|
339
|
+
});
|
|
340
|
+
```
|
|
341
|
+
|
|
342
|
+
> NOTE: You can't create a new default user using `IamUser` because an IAM-enabled user's username and user ID cannot be different.
|
|
343
|
+
|
|
344
|
+
### Add users to the user group
|
|
345
|
+
|
|
346
|
+
Next, use the `UserGroup` construct to create a user group and add users to it.
|
|
347
|
+
Ensure that you include either the original default user or a new default user:
|
|
348
|
+
|
|
349
|
+
```ts
|
|
350
|
+
declare const newDefaultUser: elasticache.IUser;
|
|
351
|
+
declare const user: elasticache.IUser;
|
|
352
|
+
declare const anotherUser: elasticache.IUser;
|
|
353
|
+
|
|
354
|
+
const userGroup = new elasticache.UserGroup(this, 'UserGroup', {
|
|
355
|
+
// add users including default user
|
|
356
|
+
users: [newDefaultUser, user],
|
|
357
|
+
});
|
|
358
|
+
|
|
359
|
+
// you can also add a user by using addUser method
|
|
360
|
+
userGroup.addUser(anotherUser);
|
|
361
|
+
```
|
|
362
|
+
|
|
363
|
+
### Assign user group
|
|
364
|
+
|
|
365
|
+
Finally, assign a user group to cache:
|
|
366
|
+
|
|
367
|
+
```ts
|
|
368
|
+
declare const vpc: ec2.Vpc;
|
|
369
|
+
declare const userGroup: elasticache.UserGroup;
|
|
370
|
+
|
|
371
|
+
const serverlessCache = new elasticache.ServerlessCache(this, 'ServerlessCache', {
|
|
372
|
+
engine: elasticache.CacheEngine.VALKEY_LATEST,
|
|
373
|
+
serverlessCacheName: 'my-serverless-cache',
|
|
374
|
+
vpc,
|
|
375
|
+
// assign User Group
|
|
376
|
+
userGroup,
|
|
377
|
+
});
|
|
378
|
+
|
|
379
|
+
```
|
|
380
|
+
|
|
381
|
+
### Grant permissions to IAM-enabled users
|
|
382
|
+
|
|
383
|
+
If you create IAM-enabled users, `"elasticache:Connect"` action must be allowed for the users and cache.
|
|
384
|
+
|
|
385
|
+
> NOTE: You don't need grant permissions to no password required users or password authentication users.
|
|
386
|
+
|
|
387
|
+
For more information, see [Authenticating with IAM](https://docs.aws.amazon.com/AmazonElastiCache/latest/dg/auth-iam.html).
|
|
388
|
+
|
|
389
|
+
To grant permissions, you can use the `grantConnect` method in `IamUser` and `ServerlessCache` constructs:
|
|
390
|
+
|
|
391
|
+
```ts
|
|
392
|
+
declare const user: elasticache.IamUser;
|
|
393
|
+
declare const serverlessCache: elasticache.ServerlessCache;
|
|
394
|
+
declare const role: iam.Role;
|
|
395
|
+
|
|
396
|
+
// grant "elasticache:Connect" action permissions to role
|
|
397
|
+
user.grantConnect(role);
|
|
398
|
+
serverlessCache.grantConnect(role);
|
|
399
|
+
```
|
|
400
|
+
|
|
401
|
+
### Import an existing user and user group
|
|
402
|
+
|
|
403
|
+
You can import an existing user and user group by using import methods:
|
|
404
|
+
|
|
405
|
+
```ts
|
|
406
|
+
const stack = new Stack();
|
|
407
|
+
|
|
408
|
+
const importedIamUser = elasticache.IamUser.fromUserId(this, 'ImportedIamUser', 'my-iam-user-id');
|
|
409
|
+
|
|
410
|
+
const importedPasswordUser = elasticache.PasswordUser.fromUserAttributes(stack, 'ImportedPasswordUser', {
|
|
411
|
+
userId: 'my-password-user-id',
|
|
412
|
+
});
|
|
413
|
+
|
|
414
|
+
const importedNoPasswordUser = elasticache.NoPasswordUser.fromUserAttributes(stack, 'ImportedNoPasswordUser', {
|
|
415
|
+
userId: 'my-no-password-user-id',
|
|
416
|
+
});
|
|
417
|
+
|
|
418
|
+
const importedUserGroup = elasticache.UserGroup.fromUserGroupAttributes(this, 'ImportedUserGroup', {
|
|
419
|
+
userGroupName: 'my-user-group-name'
|
|
420
|
+
});
|
|
421
|
+
```
|
|
@@ -68,7 +68,7 @@ for more granular details.
|
|
|
68
68
|
|
|
69
69
|
### Spark Jobs
|
|
70
70
|
|
|
71
|
-
|
|
71
|
+
#### ETL Jobs
|
|
72
72
|
|
|
73
73
|
ETL jobs support pySpark and Scala languages, for which there are separate but
|
|
74
74
|
similar constructors. ETL jobs default to the G2 worker type, but you can
|
|
@@ -130,7 +130,7 @@ new glue.PySparkEtlJob(stack, 'PySparkETLJob', {
|
|
|
130
130
|
});
|
|
131
131
|
```
|
|
132
132
|
|
|
133
|
-
|
|
133
|
+
#### Streaming Jobs
|
|
134
134
|
|
|
135
135
|
Streaming jobs are similar to ETL jobs, except that they perform ETL on data
|
|
136
136
|
streams using the Apache Spark Structured Streaming framework. Some Spark
|
|
@@ -186,7 +186,7 @@ new glue.PySparkStreamingJob(stack, 'PySparkStreamingJob', {
|
|
|
186
186
|
});
|
|
187
187
|
```
|
|
188
188
|
|
|
189
|
-
|
|
189
|
+
#### Flex Jobs
|
|
190
190
|
|
|
191
191
|
The flexible execution class is appropriate for non-urgent jobs such as
|
|
192
192
|
pre-production jobs, testing, and one-time data loads. Flexible jobs default
|
|
@@ -343,6 +343,36 @@ new glue.RayJob(stack, 'ImportedJob', {
|
|
|
343
343
|
});
|
|
344
344
|
```
|
|
345
345
|
|
|
346
|
+
### Metrics Control
|
|
347
|
+
|
|
348
|
+
By default, Glue jobs enable CloudWatch metrics (`--enable-metrics`) and observability metrics (`--enable-observability-metrics`) for monitoring and debugging. You can disable these metrics to reduce CloudWatch costs:
|
|
349
|
+
|
|
350
|
+
```ts
|
|
351
|
+
import * as cdk from 'aws-cdk-lib';
|
|
352
|
+
import * as iam from 'aws-cdk-lib/aws-iam';
|
|
353
|
+
declare const stack: cdk.Stack;
|
|
354
|
+
declare const role: iam.IRole;
|
|
355
|
+
declare const script: glue.Code;
|
|
356
|
+
|
|
357
|
+
// Disable both metrics for cost optimization
|
|
358
|
+
new glue.PySparkEtlJob(stack, 'CostOptimizedJob', {
|
|
359
|
+
role,
|
|
360
|
+
script,
|
|
361
|
+
enableMetrics: false,
|
|
362
|
+
enableObservabilityMetrics: false,
|
|
363
|
+
});
|
|
364
|
+
|
|
365
|
+
// Selective control - keep observability, disable profiling
|
|
366
|
+
new glue.PySparkEtlJob(stack, 'SelectiveJob', {
|
|
367
|
+
role,
|
|
368
|
+
script,
|
|
369
|
+
enableMetrics: false,
|
|
370
|
+
// enableObservabilityMetrics defaults to true
|
|
371
|
+
});
|
|
372
|
+
```
|
|
373
|
+
|
|
374
|
+
This feature is available for all Spark job types (ETL, Streaming, Flex) and Ray jobs.
|
|
375
|
+
|
|
346
376
|
### Enable Job Run Queuing
|
|
347
377
|
|
|
348
378
|
AWS Glue job queuing monitors your account level quotas and limits. If quotas or limits are insufficient to start a Glue job run, AWS Glue will automatically queue the job and wait for limits to free up. Once limits become available, AWS Glue will retry the job run. Glue jobs will queue for limits like max concurrent job runs per account, max concurrent Data Processing Units (DPU), and resource unavailable due to IP address exhaustion in Amazon Virtual Private Cloud (Amazon VPC).
|
|
@@ -389,14 +419,14 @@ override it if you prefer for your trigger not to start on creation.
|
|
|
389
419
|
Reference the workflow-triggers.test.ts unit tests for examples of creating
|
|
390
420
|
workflows and triggers.
|
|
391
421
|
|
|
392
|
-
1.
|
|
422
|
+
#### **1. On-Demand Triggers**
|
|
393
423
|
|
|
394
424
|
On-demand triggers can start glue jobs or crawlers. This construct provides
|
|
395
425
|
convenience functions to create on-demand crawler or job triggers. The constructor
|
|
396
426
|
takes an optional description parameter, but abstracts the requirement of an
|
|
397
427
|
actions list using the job or crawler objects using conditional types.
|
|
398
428
|
|
|
399
|
-
|
|
429
|
+
#### **2. Scheduled Triggers**
|
|
400
430
|
|
|
401
431
|
You can create scheduled triggers using cron expressions. This construct
|
|
402
432
|
provides daily, weekly, and monthly convenience functions,
|
|
@@ -424,13 +454,13 @@ The trigger actions are executed when the predicateCondition is true.
|
|
|
424
454
|
A `Connection` allows Glue jobs, crawlers and development endpoints to access
|
|
425
455
|
certain types of data stores.
|
|
426
456
|
|
|
427
|
-
|
|
428
|
-
|
|
457
|
+
* **Secrets Management**
|
|
458
|
+
You must specify JDBC connection credentials in Secrets Manager and
|
|
429
459
|
provide the Secrets Manager Key name as a property to the job connection.
|
|
430
460
|
|
|
431
461
|
* **Networking - the CDK determines the best fit subnet for Glue connection
|
|
432
|
-
configuration
|
|
433
|
-
|
|
462
|
+
configuration**
|
|
463
|
+
The prior version of the glue-alpha-module requires the developer to
|
|
434
464
|
specify the subnet of the Connection when it’s defined. Now, you can still
|
|
435
465
|
specify the specific subnet you want to use, but are no longer required
|
|
436
466
|
to. You are only required to provide a VPC and either a public or private
|