UNPKG

@pulumi/awsx

Version:

[![Actions Status](https://github.com/pulumi/pulumi-awsx/workflows/master/badge.svg)](https://github.com/pulumi/pulumi-awsx/actions) [![Slack](http://www.pulumi.com/images/docs/badges/slack.svg)](https://slack.pulumi.com) [![NPM version](https://badge.fur

pulumi.com

pulumi/pulumi-awsx

217 lines (216 loc) 8.25 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
import * as aws from "@pulumi/aws"; import * as pulumi from "@pulumi/pulumi"; import { ContainerLoadBalancerProvider, ContainerPortMappingProvider } from "../ecs/container"; import { ListenerRule, ListenerRuleArgs } from "./listenerRule"; import { LoadBalancer, LoadBalancerTarget } from "./loadBalancer"; import { TargetGroup } from "./targetGroup"; export interface ListenerEndpoint { hostname: string; port: number; } export declare abstract class Listener extends pulumi.ComponentResource implements ContainerPortMappingProvider, ContainerLoadBalancerProvider { readonly listener: aws.lb.Listener; readonly loadBalancer: LoadBalancer; readonly defaultTargetGroup?: TargetGroup; readonly endpoint: pulumi.Output<ListenerEndpoint>; private readonly defaultListenerAction?; private readonly __isListenerInstance; constructor(type: string, name: string, defaultListenerAction: ListenerDefaultAction | undefined, args: ListenerArgs, opts: pulumi.ComponentResourceOptions); containerPortMapping(name: string, parent: pulumi.Resource): pulumi.Input<aws.ecs.PortMapping>; containerLoadBalancer(name: string, parent: pulumi.Resource): pulumi.Input<import("../ecs/container").ContainerLoadBalancer>; addListenerRule(name: string, args: ListenerRuleArgs, opts?: pulumi.ComponentResourceOptions): ListenerRule; /** * Attaches a target to the `defaultTargetGroup` for this Listener. */ attachTarget(name: string, args: LoadBalancerTarget, opts?: pulumi.CustomResourceOptions): import("./targetGroupAttachment").TargetGroupAttachment; } /** * See https://www.terraform.io/docs/providers/aws/r/lb_listener.html#default_action */ export interface ListenerDefaultActionArgs { authenticateCognito?: pulumi.Input<{ /** * The query parameters to include in the redirect request to the authorization endpoint. * Max: 10. */ authenticationRequestExtraParams?: pulumi.Input<{ [key: string]: any; }>; /** * The behavior if the user is not authenticated. Valid values: deny, allow and * authenticate. */ onUnauthenticatedRequest?: pulumi.Input<string>; /** * The set of user claims to be requested from the IdP. */ scope?: pulumi.Input<string>; /** * The name of the cookie used to maintain session information. */ sessionCookieName?: pulumi.Input<string>; /** * The maximum duration of the authentication session, in seconds. */ sessionTimeout?: pulumi.Input<number>; /** * The ARN of the Cognito user pool. */ userPoolArn: pulumi.Input<string>; /** * The ID of the Cognito user pool client. */ userPoolClientId: pulumi.Input<string>; /** * The domain prefix or fully-qualified domain name of the Cognito user pool. */ userPoolDomain: pulumi.Input<string>; }>; authenticateOidc?: pulumi.Input<{ /** * The query parameters to include in the redirect request to the authorization endpoint. * Max: 10. */ authenticationRequestExtraParams?: pulumi.Input<{ [key: string]: any; }>; /** * The authorization endpoint of the IdP. */ authorizationEndpoint: pulumi.Input<string>; /** * The OAuth 2.0 client identifier. */ clientId: pulumi.Input<string>; /** * The OAuth 2.0 client secret. */ clientSecret: pulumi.Input<string>; /** * The OIDC issuer identifier of the IdP. */ issuer: pulumi.Input<string>; /** * The behavior if the user is not authenticated. Valid values: deny, allow and authenticate */ onUnauthenticatedRequest?: pulumi.Input<string>; /** * The set of user claims to be requested from the IdP. */ scope?: pulumi.Input<string>; /** * The name of the cookie used to maintain session information. */ sessionCookieName?: pulumi.Input<string>; /** * The maximum duration of the authentication session, in seconds. */ sessionTimeout?: pulumi.Input<number>; /** * The token endpoint of the IdP. */ tokenEndpoint: pulumi.Input<string>; /** * The user info endpoint of the IdP. */ userInfoEndpoint: pulumi.Input<string>; }>; /** * Information for creating an action that returns a custom HTTP response. Required if type is * "fixed-response". */ fixedResponse?: pulumi.Input<{ /** * The content type. Valid values are text/plain, text/css, text/html, * application/javascript and application/json. */ contentType: pulumi.Input<string>; messageBody?: pulumi.Input<string>; /** * The HTTP response code. Valid values are 2XX, 4XX, or 5XX. */ statusCode?: pulumi.Input<string>; }>; order?: pulumi.Input<number>; /** * Information for creating a redirect action. Required if type is "redirect". */ redirect?: pulumi.Input<{ /** * The hostname. This component is not percent-encoded. The hostname can contain #{host}. * Defaults to #{host}. */ host?: pulumi.Input<string>; /** * The absolute path, starting with the leading "/". This component is not percent-encoded. * The path can contain #{host}, #{path}, and #{port}. Defaults to /#{path}. */ path?: pulumi.Input<string>; /** * The port. Specify a value from 1 to 65535 or #{port}. Defaults to #{port}. */ port?: pulumi.Input<string>; /** * The protocol. Valid values are HTTP, HTTPS, or #{protocol}. Defaults to #{protocol}. */ protocol?: pulumi.Input<string>; /** * The query parameters, URL-encoded when necessary, but not percent-encoded. Do not include * the leading "?". */ query?: pulumi.Input<string>; /** * The HTTP redirect code. The redirect is either permanent (HTTP_301) or temporary * (HTTP_302). */ statusCode: pulumi.Input<string>; }>; /** * The ARN of the Target Group to which to route traffic. Required if type is "forward". */ targetGroupArn?: pulumi.Input<string>; /** * The type of routing action. Valid values are "forward", "redirect", "fixed-response", * "authenticate-cognito" and "authenticate-oidc". */ type: pulumi.Input<string>; } export interface ListenerDefaultAction { listenerDefaultAction(): pulumi.Input<ListenerDefaultActionArgs>; registerListener(listener: Listener): void; } export interface ListenerActions { actions(): aws.lb.ListenerRuleArgs["actions"]; registerListener(listener: Listener): void; } export interface ListenerArgs { /** * An existing aws.lb.Listener to use for this awsx.lb.Listener. * If not provided, one will be created. */ listener?: aws.lb.Listener; loadBalancer: LoadBalancer; /** * The ARN of the default SSL server certificate. Exactly one certificate is required if the * protocol is HTTPS. For adding additional SSL certificates, see the * [`aws_lb_listener_certificate` * resource](https://www.terraform.io/docs/providers/aws/r/lb_listener_certificate.html). */ certificateArn?: pulumi.Input<string>; /** * An list of Action blocks. See [ListenerDefaultActionArgs] for more information. */ defaultActions: pulumi.Input<pulumi.Input<ListenerDefaultActionArgs>[]>; /** * The port. Specify a value from `1` to `65535`. */ port: pulumi.Input<number>; /** * The protocol. */ protocol: pulumi.Input<"HTTP" | "HTTPS" | "TCP" | "TLS" | "GENEVE" | "UDP" | "TCP_UDP">; /** * The name of the SSL Policy for the listener. Required if `protocol` is `HTTPS`. */ sslPolicy?: pulumi.Input<string>; }