UNPKG

@aws-cdk/aws-bedrock-agentcore-alpha

Version:

The CDK Construct Library for Amazon Bedrock

github.com/aws/aws-cdk

aws/aws-cdk

310 lines (309 loc) 11.8 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268
269
270
271
272
273
274
275
276
277
278
279
280
281
282
283
284
285
286
287
288
289
290
291
292
293
294
295
296
297
298
299
300
301
302
303
304
305
306
307
308
309
310
/** * Copyright Amazon.com, Inc. or its affiliates. All Rights Reserved. * * Licensed under the Apache License, Version 2.0 (the "License"). You may not use this file except in compliance * with the License. A copy of the License is located at * * http://www.apache.org/licenses/LICENSE-2.0 * * or in the 'license' file accompanying this file. This file is distributed on an 'AS IS' BASIS, WITHOUT WARRANTIES * OR CONDITIONS OF ANY KIND, express or implied. See the License for the specific language governing permissions * and limitations under the License. */ import { IResource, Resource } from 'aws-cdk-lib'; import { DimensionsMap, Metric, MetricOptions } from 'aws-cdk-lib/aws-cloudwatch'; import * as ec2 from 'aws-cdk-lib/aws-ec2'; import * as iam from 'aws-cdk-lib/aws-iam'; import { Construct } from 'constructs'; /****************************************************************************** * Interface *****************************************************************************/ /** * Interface for Agent Runtime resources */ export interface IBedrockAgentRuntime extends IResource, iam.IGrantable, ec2.IConnectable { /** * The ARN of the agent runtime resource * - Format `arn:${Partition}:bedrock-agentcore:${Region}:${Account}:runtime/${RuntimeId}` * * @attribute * @example "arn:aws:bedrock-agentcore:us-west-2:123456789012:runtime/runtime-abc123" */ readonly agentRuntimeArn: string; /** * The ID of the agent runtime * @attribute * @example "runtime-abc123" */ readonly agentRuntimeId: string; /** * The name of the agent runtime */ readonly agentRuntimeName: string; /** * The IAM role that provides permissions for the agent runtime * */ readonly role: iam.IRole; /** * The version of the agent runtime * @attribute */ readonly agentRuntimeVersion?: string; /** * The current status of the agent runtime */ readonly agentStatus?: string; /** * The time at which the runtime was created * @attribute * @example "2024-01-15T10:30:00Z" */ readonly createdAt?: string; /** * The time at which the runtime was last updated * @attribute * @example "2024-01-15T14:45:00Z" */ readonly lastUpdatedAt?: string; /** * Return the given named metric for this agent runtime. */ metric(metricName: string, dimensions: DimensionsMap, props?: MetricOptions): Metric; /** * Return a metric containing the total number of invocations for this agent runtime. */ metricInvocations(props?: MetricOptions): Metric; /** * Return a metric containing the total number of invocations across all resources. */ metricInvocationsAggregated(props?: MetricOptions): Metric; /** * Return a metric containing the number of throttled requests for this agent runtime. */ metricThrottles(props?: MetricOptions): Metric; /** * Return a metric containing the number of system errors for this agent runtime. */ metricSystemErrors(props?: MetricOptions): Metric; /** * Return a metric containing the number of user errors for this agent runtime. */ metricUserErrors(props?: MetricOptions): Metric; /** * Return a metric measuring the latency of requests for this agent runtime. */ metricLatency(props?: MetricOptions): Metric; /** * Return a metric containing the total number of errors (system + user) for this agent runtime. */ metricTotalErrors(props?: MetricOptions): Metric; /** * Return a metric containing the number of agent sessions for this agent runtime. */ metricSessionCount(props?: MetricOptions): Metric; /** * Return a metric containing the total number of sessions across all resources. */ metricSessionsAggregated(props?: MetricOptions): Metric; /** * Grant the runtime specific actions on AWS resources * * @param actions The actions to grant * @param resources The resource ARNs to grant access to * @returns The Grant object for chaining */ grant(actions: string[], resources: string[]): iam.Grant; /** * Adds a policy statement to the runtime's execution role * * @param statement The IAM policy statement to add * @returns The runtime instance for chaining */ addToRolePolicy(statement: iam.PolicyStatement): IBedrockAgentRuntime; /** * Permits an IAM principal to invoke this runtime * Grants the bedrock-agentcore:InvokeAgentRuntime permission * @param grantee The principal to grant access to */ grantInvokeRuntime(grantee: iam.IGrantable): iam.Grant; /** * Permits an IAM principal to invoke this runtime on behalf of a user * Grants the bedrock-agentcore:InvokeAgentRuntimeForUser permission * Required when using the X-Amzn-Bedrock-AgentCore-Runtime-User-Id header * @param grantee The principal to grant access to */ grantInvokeRuntimeForUser(grantee: iam.IGrantable): iam.Grant; /** * Permits an IAM principal to invoke this runtime both directly and on behalf of users * Grants both bedrock-agentcore:InvokeAgentRuntime and bedrock-agentcore:InvokeAgentRuntimeForUser permissions * @param grantee The principal to grant access to */ grantInvoke(grantee: iam.IGrantable): iam.Grant; } /****************************************************************************** * Base Class *****************************************************************************/ /** * Base class for Agent Runtime */ export declare abstract class RuntimeBase extends Resource implements IBedrockAgentRuntime { abstract readonly agentRuntimeArn: string; abstract readonly agentRuntimeId: string; abstract readonly agentRuntimeName: string; abstract readonly role: iam.IRole; abstract readonly agentRuntimeVersion?: string; abstract readonly agentStatus?: string; abstract readonly createdAt?: string; abstract readonly lastUpdatedAt?: string; abstract readonly grantPrincipal: iam.IPrincipal; /** * An accessor for the Connections object that will fail if this Runtime does not have a VPC * configured. */ get connections(): ec2.Connections; /** * The actual Connections object for this Runtime. This may be unset in the event that a VPC has not * been configured. * @internal */ protected _connections: ec2.Connections | undefined; constructor(scope: Construct, id: string); /** * Grant the runtime specific actions on AWS resources * * @param actions The actions to grant * @param resources The resource ARNs to grant access to * @returns The Grant object for chaining */ grant(actions: string[], resources: string[]): iam.Grant; /** * Adds a policy statement to the runtime's execution role * * @param statement The IAM policy statement to add * @returns The runtime instance for chaining */ addToRolePolicy(statement: iam.PolicyStatement): IBedrockAgentRuntime; /** * Permits an IAM principal to invoke this runtime * Grants the bedrock-agentcore:InvokeAgentRuntime permission * @param grantee The principal to grant access to */ grantInvokeRuntime(grantee: iam.IGrantable): iam.Grant; /** * Permits an IAM principal to invoke this runtime on behalf of a user * Grants the bedrock-agentcore:InvokeAgentRuntimeForUser permission * Required when using the X-Amzn-Bedrock-AgentCore-Runtime-User-Id header * @param grantee The principal to grant access to */ grantInvokeRuntimeForUser(grantee: iam.IGrantable): iam.Grant; /** * Permits an IAM principal to invoke this runtime both directly and on behalf of users * Grants both bedrock-agentcore:InvokeAgentRuntime and bedrock-agentcore:InvokeAgentRuntimeForUser permissions * @param grantee The principal to grant access to */ grantInvoke(grantee: iam.IGrantable): iam.Grant; /** * Return the given named metric for this agent runtime. * * By default, the metric will be calculated as a sum over a period of 5 minutes. * You can customize this by using the `statistic` and `period` properties. */ metric(metricName: string, dimensions: DimensionsMap, props?: MetricOptions): Metric; /** * Return a metric containing the total number of invocations for this agent runtime. */ metricInvocations(props?: MetricOptions): Metric; /** * Return a metric containing the total number of invocations across all resources. */ metricInvocationsAggregated(props?: MetricOptions): Metric; /** * Return a metric containing the number of throttled requests for this agent runtime. */ metricThrottles(props?: MetricOptions): Metric; /** * Return a metric containing the number of system errors for this agent runtime. */ metricSystemErrors(props?: MetricOptions): Metric; /** * Return a metric containing the number of user errors for this agent runtime. */ metricUserErrors(props?: MetricOptions): Metric; /** * Return a metric measuring the latency of requests for this agent runtime. * * The latency metric represents the total time elapsed between receiving the request * and sending the final response token, representing complete end-to-end processing time. */ metricLatency(props?: MetricOptions): Metric; /** * Return a metric containing the total number of errors (system + user) for this agent runtime. */ metricTotalErrors(props?: MetricOptions): Metric; /** * Return a metric containing the number of agent sessions for this agent runtime. */ metricSessionCount(props?: MetricOptions): Metric; /** * Return a metric containing the total number of sessions across all resources. */ metricSessionsAggregated(props?: MetricOptions): Metric; /** * Internal method to create a metric. */ private configureMetric; } /** * Attributes for importing an existing Agent Runtime */ export interface AgentRuntimeAttributes { /** * The ARN of the agent runtime */ readonly agentRuntimeArn: string; /** * The ID of the agent runtime */ readonly agentRuntimeId: string; /** * The name of the agent runtime */ readonly agentRuntimeName: string; /** * The IAM role ARN */ readonly roleArn: string; /** * The version of the agent runtime * When importing a runtime and this is not specified or undefined, endpoints created on this runtime * will point to version "1" unless explicitly overridden. * @default - undefined */ readonly agentRuntimeVersion?: string; /** * The description of the agent runtime * @default - No description */ readonly description?: string; /** * The security groups for this runtime, if in a VPC. * @default - By default, the runtime is not in a VPC. */ readonly securityGroups?: ec2.ISecurityGroup[]; /** * The current status of the agent runtime * @default - Status not available */ readonly agentStatus?: string; /** * The time at which the runtime was created * @default - Creation time not available */ readonly createdAt?: string; /** * The time at which the runtime was last updated * @default - Last update time not available */ readonly lastUpdatedAt?: string; }