UNPKG

aws-cdk-lib

Version:

Version 2 of the AWS Cloud Development Kit library

github.com/aws/aws-cdk

aws/aws-cdk

271 lines (270 loc) 11.6 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268
269
270
271
import { Construct } from 'constructs'; import * as cloudformation from '../../../aws-cloudformation'; import * as codepipeline from '../../../aws-codepipeline'; import * as iam from '../../../aws-iam'; import * as cdk from '../../../core'; import { Action } from '../action'; /** * Properties common to all CloudFormation actions */ interface CloudFormationActionProps extends codepipeline.CommonAwsActionProps { /** * The name of the stack to apply this action to */ readonly stackName: string; /** * A name for the filename in the output artifact to store the AWS CloudFormation call's result. * * The file will contain the result of the call to AWS CloudFormation (for example * the call to UpdateStack or CreateChangeSet). * * AWS CodePipeline adds the file to the output artifact after performing * the specified action. * * @default No output artifact generated */ readonly outputFileName?: string; /** * The name of the output artifact to generate * * Only applied if `outputFileName` is set as well. * * @default Automatically generated artifact name. */ readonly output?: codepipeline.Artifact; /** * The AWS region the given Action resides in. * Note that a cross-region Pipeline requires replication buckets to function correctly. * You can provide their names with the `PipelineProps#crossRegionReplicationBuckets` property. * If you don't, the CodePipeline Construct will create new Stacks in your CDK app containing those buckets, * that you will need to `cdk deploy` before deploying the main, Pipeline-containing Stack. * * @default the Action resides in the same region as the Pipeline */ readonly region?: string; /** * The AWS account this Action is supposed to operate in. * **Note**: if you specify the `role` property, * this is ignored - the action will operate in the same region the passed role does. * * @default - action resides in the same account as the pipeline */ readonly account?: string; } /** * Base class for Actions that execute CloudFormation */ declare abstract class CloudFormationAction extends Action { private readonly props; constructor(props: CloudFormationActionProps, inputs: codepipeline.Artifact[] | undefined); protected bound(_scope: Construct, _stage: codepipeline.IStage, options: codepipeline.ActionBindOptions): codepipeline.ActionConfig; } /** * Properties for the CloudFormationExecuteChangeSetAction. */ export interface CloudFormationExecuteChangeSetActionProps extends CloudFormationActionProps { /** * Name of the change set to execute. */ readonly changeSetName: string; } /** * CodePipeline action to execute a prepared change set. */ export declare class CloudFormationExecuteChangeSetAction extends CloudFormationAction { private readonly props2; constructor(props: CloudFormationExecuteChangeSetActionProps); protected bound(scope: Construct, stage: codepipeline.IStage, options: codepipeline.ActionBindOptions): codepipeline.ActionConfig; } /** * Properties common to CloudFormation actions that stage deployments */ interface CloudFormationDeployActionProps extends CloudFormationActionProps { /** * IAM role to assume when deploying changes. * * If not specified, a fresh role is created. The role is created with zero * permissions unless `adminPermissions` is true, in which case the role will have * full permissions. * * @default A fresh role with full or no permissions (depending on the value of `adminPermissions`). */ readonly deploymentRole?: iam.IRole; /** * Acknowledge certain changes made as part of deployment. * * For stacks that contain certain resources, * explicit acknowledgement is required that AWS CloudFormation might create or update those resources. * For example, you must specify `ANONYMOUS_IAM` or `NAMED_IAM` if your stack template contains AWS * Identity and Access Management (IAM) resources. * For more information, see the link below. * * @default None, unless `adminPermissions` is true * * @see https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/using-iam-template.html#using-iam-capabilities */ readonly cfnCapabilities?: cdk.CfnCapabilities[]; /** * Whether to grant full permissions to CloudFormation while deploying this template. * * Setting this to `true` affects the defaults for `role` and `capabilities`, if you * don't specify any alternatives. * * The default role that will be created for you will have full (i.e., `*`) * permissions on all resources, and the deployment will have named IAM * capabilities (i.e., able to create all IAM resources). * * This is a shorthand that you can use if you fully trust the templates that * are deployed in this pipeline. If you want more fine-grained permissions, * use `addToRolePolicy` and `capabilities` to control what the CloudFormation * deployment is allowed to do. */ readonly adminPermissions: boolean; /** * Input artifact to use for template parameters values and stack policy. * * The template configuration file should contain a JSON object that should look like this: * `{ "Parameters": {...}, "Tags": {...}, "StackPolicy": {... }}`. For more information, * see [AWS CloudFormation Artifacts](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/continuous-delivery-codepipeline-cfn-artifacts.html). * * Note that if you include sensitive information, such as passwords, restrict access to this * file. * * @default No template configuration based on input artifacts */ readonly templateConfiguration?: codepipeline.ArtifactPath; /** * Additional template parameters. * * Template parameters specified here take precedence over template parameters * found in the artifact specified by the `templateConfiguration` property. * * We recommend that you use the template configuration file to specify * most of your parameter values. Use parameter overrides to specify only * dynamic parameter values (values that are unknown until you run the * pipeline). * * All parameter names must be present in the stack template. * * Note: the entire object cannot be more than 1kB. * * @default No overrides */ readonly parameterOverrides?: { [name: string]: any; }; /** * The list of additional input Artifacts for this Action. * This is especially useful when used in conjunction with the `parameterOverrides` property. * For example, if you have: * * parameterOverrides: { * 'Param1': action1.outputArtifact.bucketName, * 'Param2': action2.outputArtifact.objectKey, * } * * , if the output Artifacts of `action1` and `action2` were not used to * set either the `templateConfiguration` or the `templatePath` properties, * you need to make sure to include them in the `extraInputs` - * otherwise, you'll get an "unrecognized Artifact" error during your Pipeline's execution. */ readonly extraInputs?: codepipeline.Artifact[]; } /** * Base class for all CloudFormation actions that execute or stage deployments. */ declare abstract class CloudFormationDeployAction extends CloudFormationAction { private _deploymentRole?; private readonly props2; constructor(props: CloudFormationDeployActionProps, inputs: codepipeline.Artifact[] | undefined); /** * Add statement to the service role assumed by CloudFormation while executing this action. */ addToDeploymentRolePolicy(statement: iam.PolicyStatement): boolean; get deploymentRole(): iam.IRole; protected bound(scope: Construct, stage: codepipeline.IStage, options: codepipeline.ActionBindOptions): codepipeline.ActionConfig; private getDeploymentRole; } /** * Properties for the CloudFormationCreateReplaceChangeSetAction. */ export interface CloudFormationCreateReplaceChangeSetActionProps extends CloudFormationDeployActionProps { /** * Name of the change set to create or update. */ readonly changeSetName: string; /** * Input artifact with the ChangeSet's CloudFormation template */ readonly templatePath: codepipeline.ArtifactPath; } /** * CodePipeline action to prepare a change set. * * Creates the change set if it doesn't exist based on the stack name and template that you submit. * If the change set exists, AWS CloudFormation deletes it, and then creates a new one. */ export declare class CloudFormationCreateReplaceChangeSetAction extends CloudFormationDeployAction { private readonly props3; constructor(props: CloudFormationCreateReplaceChangeSetActionProps); protected bound(scope: Construct, stage: codepipeline.IStage, options: codepipeline.ActionBindOptions): codepipeline.ActionConfig; } /** * Properties for the CloudFormationCreateUpdateStackAction. */ export interface CloudFormationCreateUpdateStackActionProps extends CloudFormationDeployActionProps { /** * Input artifact with the CloudFormation template to deploy */ readonly templatePath: codepipeline.ArtifactPath; /** * Replace the stack if it's in a failed state. * * If this is set to true and the stack is in a failed state (one of * ROLLBACK_COMPLETE, ROLLBACK_FAILED, CREATE_FAILED, DELETE_FAILED, or * UPDATE_ROLLBACK_FAILED), AWS CloudFormation deletes the stack and then * creates a new stack. * * If this is not set to true and the stack is in a failed state, * the deployment fails. * * @default false */ readonly replaceOnFailure?: boolean; } /** * CodePipeline action to deploy a stack. * * Creates the stack if the specified stack doesn't exist. If the stack exists, * AWS CloudFormation updates the stack. Use this action to update existing * stacks. * * AWS CodePipeline won't replace the stack, and will fail deployment if the * stack is in a failed state. Use `ReplaceOnFailure` for an action that * will delete and recreate the stack to try and recover from failed states. * * Use this action to automatically replace failed stacks without recovering or * troubleshooting them. You would typically choose this mode for testing. */ export declare class CloudFormationCreateUpdateStackAction extends CloudFormationDeployAction { private readonly props3; constructor(props: CloudFormationCreateUpdateStackActionProps); protected bound(scope: Construct, stage: codepipeline.IStage, options: codepipeline.ActionBindOptions): codepipeline.ActionConfig; } /** * Properties for the CloudFormationDeleteStackAction. */ export interface CloudFormationDeleteStackActionProps extends CloudFormationDeployActionProps { } /** * CodePipeline action to delete a stack. * * Deletes a stack. If you specify a stack that doesn't exist, the action completes successfully * without deleting a stack. */ export declare class CloudFormationDeleteStackAction extends CloudFormationDeployAction { private readonly props3; constructor(props: CloudFormationDeleteStackActionProps); protected bound(scope: Construct, stage: codepipeline.IStage, options: codepipeline.ActionBindOptions): codepipeline.ActionConfig; } export {};