UNPKG

@pulumi/awsx

Version:

[![Actions Status](https://github.com/pulumi/pulumi-awsx/workflows/master/badge.svg)](https://github.com/pulumi/pulumi-awsx/actions) [![Slack](http://www.pulumi.com/images/docs/badges/slack.svg)](https://slack.pulumi.com) [![NPM version](https://badge.fur

pulumi.com

pulumi/pulumi-awsx

295 lines (294 loc) • 13.3 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268
269
270
271
272
273
274
275
276
277
278
279
280
281
282
283
284
285
286
287
288
289
290
291
292
293
294
295
import * as aws from "@pulumi/aws"; import * as pulumi from "@pulumi/pulumi"; import * as ec2 from "../ec2"; import { Listener, ListenerDefaultAction, ListenerDefaultActionArgs } from "./listener"; import { LoadBalancer, LoadBalancerSubnets } from "./loadBalancer"; import { TargetGroup, TargetGroupHealthCheck, TargetType } from "./targetGroup"; export type ApplicationProtocol = "HTTP" | "HTTPS"; /** * A application load balancer serves as the single point of contact for clients. The load balancer * distributes incoming application traffic across multiple targets, such as EC2 instances, in * multiple Availability Zones. This increases the availability of your application. You add one or * more listeners to your load balancer. * * See https://docs.aws.amazon.com/elasticloadbalancing/latest/application/introduction.html for * more details. */ export declare class ApplicationLoadBalancer extends LoadBalancer { readonly listeners: ApplicationListener[]; readonly targetGroups: ApplicationTargetGroup[]; constructor(name: string, args?: ApplicationLoadBalancerArgs, opts?: pulumi.ComponentResourceOptions); /** * Creates a new listener for this [ApplicationLoadBalancer] see ApplicationListener for more * details. */ createListener(name: string, args: ApplicationListenerArgs, opts?: pulumi.ComponentResourceOptions): ApplicationListener; /** * Creates a target group for this [ApplicationLoadBalancer] see ApplicationTargetGroup for more * details. */ createTargetGroup(name: string, args: ApplicationTargetGroupArgs, opts?: pulumi.ComponentResourceOptions): ApplicationTargetGroup; } /** * Each target group routes requests to one or more registered targets, such as EC2 instances, using * the protocol and port number that you specify. You can register a target with multiple target * groups. You can configure health checks on a per target group basis. Health checks are performed * on all targets registered to a target group that is specified in a listener rule for your load * balancer. */ export declare class ApplicationTargetGroup extends TargetGroup { readonly loadBalancer: ApplicationLoadBalancer; readonly listeners: ApplicationListener[]; constructor(name: string, args?: ApplicationTargetGroupArgs, opts?: pulumi.ComponentResourceOptions); createListener(name: string, args: ApplicationListenerArgs, opts?: pulumi.ComponentResourceOptions): ApplicationListener; static isInstance(obj: any): obj is ApplicationTargetGroup; } export declare class ApplicationListener extends Listener { readonly loadBalancer: ApplicationLoadBalancer; readonly defaultTargetGroup?: ApplicationTargetGroup; private readonly __isApplicationListenerInstance; constructor(name: string, args: ApplicationListenerArgs, opts?: pulumi.ComponentResourceOptions); } export interface ApplicationLoadBalancerArgs { /** * An existing aws.lb.LoadBalancer to use for this awsx.lb.LoadBalancer. * If this value is set then all other arguments are ignored. * If not provided, one will be created. */ loadBalancer?: aws.lb.LoadBalancer; /** * The vpc this load balancer will be used with. Defaults to `[Vpc.getDefault]` if * unspecified. */ vpc?: ec2.Vpc; /** * The name of the LoadBalancer. This name must be unique within your AWS account, can have a * maximum of 32 characters, must contain only alphanumeric characters or hyphens, and must not * begin or end with a hyphen. If not specified, the [name] parameter passed into the * LoadBalancer constructor will be hashed and used as the name. */ name?: string; /** * Whether or not the load balancer is exposed to the internet. Defaults to `true` if * unspecified. */ external?: boolean; /** * If true, deletion of the load balancer will be disabled via the AWS API. This will prevent * Terraform from deleting the load balancer. Defaults to `false`. */ enableDeletionProtection?: pulumi.Input<boolean>; /** * The type of IP addresses used by the subnets for your load balancer. The possible values are * `ipv4` and `dualstack` */ ipAddressType?: pulumi.Input<"ipv4" | "dualstack">; /** * A subnet mapping block as documented below. */ subnetMappings?: aws.lb.LoadBalancerArgs["subnetMappings"]; /** * A list of subnet IDs to attach to the LB. Subnets cannot be updated for Load Balancers of * type `network`. Changing this value for load balancers of type `network` will force a * recreation of the resource. */ subnets?: pulumi.Input<pulumi.Input<string>[]> | LoadBalancerSubnets; /** * A mapping of tags to assign to the resource. */ tags?: pulumi.Input<aws.Tags>; /** * An Access Logs block. Access Logs documented below. */ accessLogs?: aws.lb.LoadBalancerArgs["accessLogs"]; /** * Indicates whether HTTP/2 is enabled. Defaults to `true`. */ enableHttp2?: pulumi.Input<boolean>; /** * The time in seconds that the connection is allowed to be idle. Default: 60. */ idleTimeout?: pulumi.Input<number>; /** * A list of security group IDs to assign to the ALB. If not provided, a default instance will * be created for the ALB. To prevent a default instance from being created, pass in an empty * array here. */ securityGroups?: ec2.SecurityGroupOrId[]; } /** * A Health Check block. * * The Health Check parameters you can set vary by the protocol of the Target Group. See * http://docs.aws.amazon.com/elasticloadbalancing/latest/APIReference/API_CreateTargetGroup.html * for a complete reference. Keep in mind, that health checks produce actual requests to the * backend. The underlying function is invoked when target_type is set to lambda. */ export interface ApplicationTargetGroupHealthCheck extends TargetGroupHealthCheck { /** * (Required for HTTP/HTTPS ALB) The destination for the health check request. */ path: pulumi.Input<string>; /** * The amount of time, in seconds, during which no response means a failed health check. For * Application Load Balancers, the range is 2 to 60 seconds and the default is 5 seconds. */ timeout?: pulumi.Input<number>; /** * The number of consecutive health check failures required before considering the target * unhealthy. Defaults to 3. */ unhealthyThreshold?: pulumi.Input<number>; } export interface ApplicationTargetGroupArgs { /** * An existing aws.lb.TargetGroup to use for this awsx.lb.TargetGroup. * If not provided, one will be created. */ targetGroup?: aws.lb.TargetGroup; /** * The vpc this load balancer will be used with. Defaults to `[Vpc.getDefault]` if * unspecified. */ vpc?: ec2.Vpc; /** * The name of the TargetGroup. If not specified, the [name] parameter passed into the * TargetGroup constructor will be hashed and used as the name. If a [loadBalancer] is not * provided, this name will be used to name that resource as well. */ name?: string; /** * The load balancer this target group is associated with. If not provided, a new load balancer * will be automatically created. */ loadBalancer?: ApplicationLoadBalancer; /** * The amount time for Elastic Load Balancing to wait before changing the state of a * deregistering target from draining to unused. The range is 0-3600 seconds. The default value * is 300 seconds. */ deregistrationDelay?: pulumi.Input<number>; /** * A Health Check block. */ healthCheck?: pulumi.Input<ApplicationTargetGroupHealthCheck>; /** * Boolean to enable / disable support for proxy protocol v2 on Network Load Balancers. See * [doc](https://docs.aws.amazon.com/elasticloadbalancing/latest/network/load-balancer-target-groups.html#proxy-protocol) * for more information. */ proxyProtocolV2?: pulumi.Input<boolean>; /** * The amount time for targets to warm up before the load balancer sends them a full share of * requests. The range is 30-900 seconds or 0 to disable. The default value is 0 seconds. */ slowStart?: pulumi.Input<number>; /** * A Stickiness block. Stickiness blocks are documented below. `stickiness` is only valid if * used with Load Balancers of type `Application` */ stickiness?: aws.lb.TargetGroupArgs["stickiness"]; /** * A mapping of tags to assign to the resource. */ tags?: pulumi.Input<aws.Tags>; /** * The type of target that you must specify when registering targets with this target group. The * possible values are `instance` (targets are specified by instance ID) or `ip` (targets are * specified by IP address) or `lambda` (targets are specified by lambda arn). The default is * `ip`. Note that you can't specify targets for a target group using both instance IDs and IP * addresses. If the target type is `ip`, specify IP addresses from the subnets of the virtual * private cloud (VPC) for the target group, the RFC 1918 range (10.0.0.0/8, 172.16.0.0/12, and * 192.168.0.0/16), and the RFC 6598 range (100.64.0.0/10). You can't specify publicly routable * IP addresses. */ targetType?: pulumi.Input<TargetType>; /** * The port to use to connect with the target. Valid values are either ports 1-65536. If * unspecified will be inferred from the [protocol]. */ port?: pulumi.Input<number>; /** * The protocol to use to connect with the target. If unspecified will be inferred from [port]. */ protocol?: pulumi.Input<ApplicationProtocol>; } export interface ApplicationListenerArgs { /** * An existing aws.lb.Listener to use for this awsx.lb.Listener. * If not provided, one will be created. */ listener?: aws.lb.Listener; /** * The vpc this load balancer will be used with. Defaults to `[Vpc.getDefault]` if * unspecified. */ vpc?: ec2.Vpc; /** * An explicit name to use for dependent resources. Specifically, if a LoadBalancer or * TargetGroup is not provided, this name will be used to name those resources. */ name?: string; /** * The load balancer this listener is associated with. If not provided, a new load balancer * will be automatically created. */ loadBalancer?: ApplicationLoadBalancer | ApplicationLoadBalancerArgs; /** * The port. Specify a value from `1` to `65535`. Computed from "protocol" if not provided. */ port?: pulumi.Input<number>; /** * The protocol. Valid values are `HTTP`, `HTTPS`. Computed from "port" if not provided. */ protocol?: pulumi.Input<ApplicationProtocol>; /** * An Action block. If neither this nor [defaultActions] is provided, a suitable defaultAction * will be chosen that forwards to a new [ApplicationTargetGroup] created from [port]. * * Only provide one of [defaultAction], [defaultActions] or [targetGroup] */ defaultAction?: pulumi.Input<ListenerDefaultActionArgs> | ListenerDefaultAction; /** * An list of Action blocks. If neither this nor [defaultActions] is provided, a suitable * defaultAction will be chosen that forwards to a new [ApplicationTargetGroup] created from * [port]. * * Only provide one of [defaultAction], [defaultActions] or [targetGroup] */ defaultActions?: pulumi.Input<pulumi.Input<ListenerDefaultActionArgs>[]>; /** * Target group this listener is associated with. This is used to determine the [defaultAction] * for the listener. * * Only provide one of [defaultAction], [defaultActions] or [targetGroup] */ targetGroup?: ApplicationTargetGroup | ApplicationTargetGroupArgs; /** * The ARN of the default SSL server certificate. Exactly one certificate is required if the * protocol is HTTPS. For adding additional SSL certificates, see the * [`aws_lb_listener_certificate` * resource](https://www.terraform.io/docs/providers/aws/r/lb_listener_certificate.html). */ certificateArn?: pulumi.Input<string>; /** * The name of the SSL Policy for the listener. Required if `protocol` is `HTTPS`. */ sslPolicy?: pulumi.Input<string>; /** * If the listener should be available externally. * * If this is [true] and the LoadBalancer for this Listener is [external=true], then this * listener is available to the entire internet. If this is [true] and the LoadBalancer is * [external=false], then this listener is available to everything in the LoadBalancer's VPC. In * both cases, the security groups for the ALB will all get ingress rules to the port for this * listener from any IPv4 location. * * If this is [false] then access will controlled entirely by the egress and ingress rules of * the security groups of the LoadBalancer. No changes will be made to the security groups of * the ALB. * * Defaults to [true]. */ external?: boolean; }