UNPKG

aws-cdk-lib

Version:

Version 2 of the AWS Cloud Development Kit library

github.com/aws/aws-cdk

aws/aws-cdk

2 lines (1 loc) 10.5 kB
1
2
"use strict";var __runInitializers=exports&&exports.__runInitializers||function(thisArg,initializers,value){for(var useValue=arguments.length>2,i=0;i<initializers.length;i++)value=useValue?initializers[i].call(thisArg,value):initializers[i].call(thisArg);return useValue?value:void 0},__esDecorate=exports&&exports.__esDecorate||function(ctor,descriptorIn,decorators,contextIn,initializers,extraInitializers){function accept(f){if(f!==void 0&&typeof f!="function")throw new TypeError("Function expected");return f}for(var kind=contextIn.kind,key=kind==="getter"?"get":kind==="setter"?"set":"value",target=!descriptorIn&&ctor?contextIn.static?ctor:ctor.prototype:null,descriptor=descriptorIn||(target?Object.getOwnPropertyDescriptor(target,contextIn.name):{}),_,done=!1,i=decorators.length-1;i>=0;i--){var context={};for(var p in contextIn)context[p]=p==="access"?{}:contextIn[p];for(var p in contextIn.access)context.access[p]=contextIn.access[p];context.addInitializer=function(f){if(done)throw new TypeError("Cannot add initializers after decoration has completed");extraInitializers.push(accept(f||null))};var result=(0,decorators[i])(kind==="accessor"?{get:descriptor.get,set:descriptor.set}:descriptor[key],context);if(kind==="accessor"){if(result===void 0)continue;if(result===null||typeof result!="object")throw new TypeError("Object expected");(_=accept(result.get))&&(descriptor.get=_),(_=accept(result.set))&&(descriptor.set=_),(_=accept(result.init))&&initializers.unshift(_)}else(_=accept(result))&&(kind==="field"?initializers.unshift(_):descriptor[key]=_)}target&&Object.defineProperty(target,contextIn.name,descriptor),done=!0};Object.defineProperty(exports,"__esModule",{value:!0}),exports.User=void 0;var jsiiDeprecationWarnings=()=>{var tmp=require("../../.warnings.jsii.js");return jsiiDeprecationWarnings=()=>tmp,tmp};const JSII_RTTI_SYMBOL_1=Symbol.for("jsii.rtti");var iam_generated_1=()=>{var tmp=require("./iam.generated");return iam_generated_1=()=>tmp,tmp},policy_1=()=>{var tmp=require("./policy");return policy_1=()=>tmp,tmp},principals_1=()=>{var tmp=require("./principals");return principals_1=()=>tmp,tmp},util_1=()=>{var tmp=require("./private/util");return util_1=()=>tmp,tmp},core_1=()=>{var tmp=require("../../core");return core_1=()=>tmp,tmp},metadata_resource_1=()=>{var tmp=require("../../core/lib/metadata-resource");return metadata_resource_1=()=>tmp,tmp},prop_injectable_1=()=>{var tmp=require("../../core/lib/prop-injectable");return prop_injectable_1=()=>tmp,tmp};let User=(()=>{let _classDecorators=[prop_injectable_1().propertyInjectable],_classDescriptor,_classExtraInitializers=[],_classThis,_classSuper=core_1().Resource,_instanceExtraInitializers=[],_addToGroup_decorators,_addManagedPolicy_decorators,_attachInlinePolicy_decorators,_addToPrincipalPolicy_decorators,_addToPolicy_decorators;var User2=class extends _classSuper{static{_classThis=this}static{const _metadata=typeof Symbol=="function"&&Symbol.metadata?Object.create(_classSuper[Symbol.metadata]??null):void 0;_addToGroup_decorators=[(0,metadata_resource_1().MethodMetadata)()],_addManagedPolicy_decorators=[(0,metadata_resource_1().MethodMetadata)()],_attachInlinePolicy_decorators=[(0,metadata_resource_1().MethodMetadata)()],_addToPrincipalPolicy_decorators=[(0,metadata_resource_1().MethodMetadata)()],_addToPolicy_decorators=[(0,metadata_resource_1().MethodMetadata)()],__esDecorate(this,null,_addToGroup_decorators,{kind:"method",name:"addToGroup",static:!1,private:!1,access:{has:obj=>"addToGroup"in obj,get:obj=>obj.addToGroup},metadata:_metadata},null,_instanceExtraInitializers),__esDecorate(this,null,_addManagedPolicy_decorators,{kind:"method",name:"addManagedPolicy",static:!1,private:!1,access:{has:obj=>"addManagedPolicy"in obj,get:obj=>obj.addManagedPolicy},metadata:_metadata},null,_instanceExtraInitializers),__esDecorate(this,null,_attachInlinePolicy_decorators,{kind:"method",name:"attachInlinePolicy",static:!1,private:!1,access:{has:obj=>"attachInlinePolicy"in obj,get:obj=>obj.attachInlinePolicy},metadata:_metadata},null,_instanceExtraInitializers),__esDecorate(this,null,_addToPrincipalPolicy_decorators,{kind:"method",name:"addToPrincipalPolicy",static:!1,private:!1,access:{has:obj=>"addToPrincipalPolicy"in obj,get:obj=>obj.addToPrincipalPolicy},metadata:_metadata},null,_instanceExtraInitializers),__esDecorate(this,null,_addToPolicy_decorators,{kind:"method",name:"addToPolicy",static:!1,private:!1,access:{has:obj=>"addToPolicy"in obj,get:obj=>obj.addToPolicy},metadata:_metadata},null,_instanceExtraInitializers),__esDecorate(null,_classDescriptor={value:_classThis},_classDecorators,{kind:"class",name:_classThis.name,metadata:_metadata},null,_classExtraInitializers),User2=_classThis=_classDescriptor.value,_metadata&&Object.defineProperty(_classThis,Symbol.metadata,{enumerable:!0,configurable:!0,writable:!0,value:_metadata})}static[JSII_RTTI_SYMBOL_1]={fqn:"aws-cdk-lib.aws_iam.User",version:"2.233.0"};static PROPERTY_INJECTION_ID="aws-cdk-lib.aws-iam.User";static fromUserName(scope,id,userName){const userArn=core_1().Stack.of(scope).formatArn({service:"iam",region:"",resource:"user",resourceName:userName});return User2.fromUserAttributes(scope,id,{userArn})}static fromUserArn(scope,id,userArn){return User2.fromUserAttributes(scope,id,{userArn})}static fromUserAttributes(scope,id,attrs){try{jsiiDeprecationWarnings().aws_cdk_lib_aws_iam_UserAttributes(attrs)}catch(error){throw process.env.JSII_DEBUG!=="1"&&error.name==="DeprecationError"&&Error.captureStackTrace(error,this.fromUserAttributes),error}class Import extends core_1().Resource{grantPrincipal=this;principalAccount=core_1().Stack.of(scope).splitArn(attrs.userArn,core_1().ArnFormat.SLASH_RESOURCE_NAME).account;userName=core_1().Arn.extractResourceName(attrs.userArn,"user").split("/").pop();userArn=attrs.userArn;assumeRoleAction="sts:AssumeRole";policyFragment=new(principals_1()).ArnPrincipal(attrs.userArn).policyFragment;attachedPolicies=new(util_1()).AttachedPolicies;defaultPolicy;groupId=0;addToPolicy(statement){return this.addToPrincipalPolicy(statement).statementAdded}addToPrincipalPolicy(statement){return this.defaultPolicy||(this.defaultPolicy=new(policy_1()).Policy(this,"Policy"),this.defaultPolicy.attachToUser(this)),this.defaultPolicy.addStatements(statement),{statementAdded:!0,policyDependable:this.defaultPolicy}}addToGroup(group){new(iam_generated_1()).CfnUserToGroupAddition(core_1().Stack.of(group),`${this.userName}Group${this.groupId}`,{groupName:group.groupRef.groupName,users:[this.userName]}),this.groupId+=1}attachInlinePolicy(policy){this.attachedPolicies.attach(policy),policy.attachToUser(this)}addManagedPolicy(_policy){throw new(core_1()).ValidationError("Cannot add managed policy to imported User",this)}get userRef(){return{userName:this.userName,userArn:this.userArn}}}return new Import(scope,id)}grantPrincipal=(__runInitializers(this,_instanceExtraInitializers),this);principalAccount=this.env.account;assumeRoleAction="sts:AssumeRole";userName;userArn;permissionsBoundary;policyFragment;groups=new Array;managedPolicies=new Array;attachedPolicies=new(util_1()).AttachedPolicies;defaultPolicy;constructor(scope,id,props={}){super(scope,id,{physicalName:props.userName});try{jsiiDeprecationWarnings().aws_cdk_lib_aws_iam_UserProps(props)}catch(error){throw process.env.JSII_DEBUG!=="1"&&error.name==="DeprecationError"&&Error.captureStackTrace(error,User2),error}(0,metadata_resource_1().addConstructMetadata)(this,props),this.managedPolicies.push(...props.managedPolicies||[]),this.permissionsBoundary=props.permissionsBoundary;const user=new(iam_generated_1()).CfnUser(this,"Resource",{userName:this.physicalName,groups:(0,util_1().undefinedIfEmpty)(()=>this.groups),managedPolicyArns:core_1().Lazy.list({produce:()=>this.managedPolicies.map(p=>p.managedPolicyArn)},{omitEmpty:!0}),path:props.path,permissionsBoundary:this.permissionsBoundary?this.permissionsBoundary.managedPolicyArn:void 0,loginProfile:this.parseLoginProfile(props)});this.userName=this.getResourceNameAttribute(user.ref),this.userArn=this.getResourceArnAttribute(user.attrArn,{region:"",service:"iam",resource:"user",resourceName:`${props.path?props.path.substr(props.path.charAt(0)==="/"?1:0):""}${this.physicalName}`}),this.policyFragment=new(principals_1()).ArnPrincipal(this.userArn).policyFragment,props.groups&&props.groups.forEach(g=>this.addToGroup(g))}get userRef(){return{userName:this.userName,userArn:this.userArn}}addToGroup(group){try{jsiiDeprecationWarnings().aws_cdk_lib_aws_iam_IGroup(group)}catch(error){throw process.env.JSII_DEBUG!=="1"&&error.name==="DeprecationError"&&Error.captureStackTrace(error,this.addToGroup),error}this.groups.push(group.groupName)}addManagedPolicy(policy){try{jsiiDeprecationWarnings().aws_cdk_lib_aws_iam_IManagedPolicy(policy)}catch(error){throw process.env.JSII_DEBUG!=="1"&&error.name==="DeprecationError"&&Error.captureStackTrace(error,this.addManagedPolicy),error}this.managedPolicies.find(mp=>mp===policy)||this.managedPolicies.push(policy)}attachInlinePolicy(policy){try{jsiiDeprecationWarnings().aws_cdk_lib_aws_iam_Policy(policy)}catch(error){throw process.env.JSII_DEBUG!=="1"&&error.name==="DeprecationError"&&Error.captureStackTrace(error,this.attachInlinePolicy),error}this.attachedPolicies.attach(policy),policy.attachToUser(this)}addToPrincipalPolicy(statement){try{jsiiDeprecationWarnings().aws_cdk_lib_aws_iam_PolicyStatement(statement)}catch(error){throw process.env.JSII_DEBUG!=="1"&&error.name==="DeprecationError"&&Error.captureStackTrace(error,this.addToPrincipalPolicy),error}return this.defaultPolicy||(this.defaultPolicy=new(policy_1()).Policy(this,"DefaultPolicy"),this.defaultPolicy.attachToUser(this)),this.defaultPolicy.addStatements(statement),{statementAdded:!0,policyDependable:this.defaultPolicy}}addToPolicy(statement){try{jsiiDeprecationWarnings().aws_cdk_lib_aws_iam_PolicyStatement(statement)}catch(error){throw process.env.JSII_DEBUG!=="1"&&error.name==="DeprecationError"&&Error.captureStackTrace(error,this.addToPolicy),error}return this.addToPrincipalPolicy(statement).statementAdded}parseLoginProfile(props){if(props.password)return{password:props.password.unsafeUnwrap(),passwordResetRequired:props.passwordResetRequired};if(props.passwordResetRequired)throw new(core_1()).ValidationError('Cannot set "passwordResetRequired" without specifying "initialPassword"',this)}static{__runInitializers(_classThis,_classExtraInitializers)}};return User2=_classThis})();exports.User=User;