UNPKG

aws-cdk-lib

Version:

Version 2 of the AWS Cloud Development Kit library

github.com/aws/aws-cdk

aws/aws-cdk

151 lines (150 loc) 4.66 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
import { Construct } from 'constructs'; import { ICertificate } from '../../../aws-certificatemanager'; import { IBucket } from '../../../aws-s3'; import { IResource, Resource } from '../../../core'; /** * The minimum version of the SSL protocol that you want API Gateway to use for HTTPS connections. */ export declare enum SecurityPolicy { /** Cipher suite TLS 1.0 */ TLS_1_0 = "TLS_1_0", /** Cipher suite TLS 1.2 */ TLS_1_2 = "TLS_1_2" } /** * Endpoint type for a domain name. */ export declare enum EndpointType { /** * For an edge-optimized custom domain name. */ EDGE = "EDGE", /** * For a regional custom domain name. */ REGIONAL = "REGIONAL" } /** * Represents an APIGatewayV2 DomainName * @see https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-apigatewayv2-domainname.html */ export interface IDomainName extends IResource { /** * The custom domain name * @attribute */ readonly name: string; /** * The domain name associated with the regional endpoint for this custom domain name. * @attribute */ readonly regionalDomainName: string; /** * The region-specific Amazon Route 53 Hosted Zone ID of the regional endpoint. * @attribute */ readonly regionalHostedZoneId: string; } /** * custom domain name attributes */ export interface DomainNameAttributes { /** * domain name string */ readonly name: string; /** * The domain name associated with the regional endpoint for this custom domain name. */ readonly regionalDomainName: string; /** * The region-specific Amazon Route 53 Hosted Zone ID of the regional endpoint. */ readonly regionalHostedZoneId: string; } /** * properties used for creating the DomainName */ export interface DomainNameProps extends EndpointOptions { /** * The custom domain name */ readonly domainName: string; /** * The mutual TLS authentication configuration for a custom domain name. * @default - mTLS is not configured. */ readonly mtls?: MTLSConfig; } /** * properties for creating a domain name endpoint */ export interface EndpointOptions { /** * The ACM certificate for this domain name. * Certificate can be both ACM issued or imported. */ readonly certificate: ICertificate; /** * The user-friendly name of the certificate that will be used by the endpoint for this domain name. * @default - No friendly certificate name */ readonly certificateName?: string; /** * The type of endpoint for this DomainName. * @default EndpointType.REGIONAL */ readonly endpointType?: EndpointType; /** * The Transport Layer Security (TLS) version + cipher suite for this domain name. * @default SecurityPolicy.TLS_1_2 */ readonly securityPolicy?: SecurityPolicy; /** * A public certificate issued by ACM to validate that you own a custom domain. This parameter is required * only when you configure mutual TLS authentication and you specify an ACM imported or private CA certificate * for `certificate`. The ownership certificate validates that you have permissions to use the domain name. * @default - only required when configuring mTLS */ readonly ownershipCertificate?: ICertificate; } /** * The mTLS authentication configuration for a custom domain name. */ export interface MTLSConfig { /** * The bucket that the trust store is hosted in. */ readonly bucket: IBucket; /** * The key in S3 to look at for the trust store */ readonly key: string; /** * The version of the S3 object that contains your truststore. * To specify a version, you must have versioning enabled for the S3 bucket. * @default - latest version */ readonly version?: string; } /** * Custom domain resource for the API */ export declare class DomainName extends Resource implements IDomainName { /** * Import from attributes */ static fromDomainNameAttributes(scope: Construct, id: string, attrs: DomainNameAttributes): IDomainName; readonly name: string; readonly regionalDomainName: string; readonly regionalHostedZoneId: string; private readonly domainNameConfigurations; constructor(scope: Construct, id: string, props: DomainNameProps); private configureMTLS; /** * Adds an endpoint to a domain name. * @param options domain name endpoint properties to be set */ addEndpoint(options: EndpointOptions): void; private validateEndpointType; }