aws-cdk-lib
Version:
Version 2 of the AWS Cloud Development Kit library
2 lines (1 loc) • 8.98 kB
JavaScript
"use strict";var __esDecorate=exports&&exports.__esDecorate||function(ctor,descriptorIn,decorators,contextIn,initializers,extraInitializers){function accept(f){if(f!==void 0&&typeof f!="function")throw new TypeError("Function expected");return f}for(var kind=contextIn.kind,key=kind==="getter"?"get":kind==="setter"?"set":"value",target=!descriptorIn&&ctor?contextIn.static?ctor:ctor.prototype:null,descriptor=descriptorIn||(target?Object.getOwnPropertyDescriptor(target,contextIn.name):{}),_,done=!1,i=decorators.length-1;i>=0;i--){var context={};for(var p in contextIn)context[p]=p==="access"?{}:contextIn[p];for(var p in contextIn.access)context.access[p]=contextIn.access[p];context.addInitializer=function(f){if(done)throw new TypeError("Cannot add initializers after decoration has completed");extraInitializers.push(accept(f||null))};var result=(0,decorators[i])(kind==="accessor"?{get:descriptor.get,set:descriptor.set}:descriptor[key],context);if(kind==="accessor"){if(result===void 0)continue;if(result===null||typeof result!="object")throw new TypeError("Object expected");(_=accept(result.get))&&(descriptor.get=_),(_=accept(result.set))&&(descriptor.set=_),(_=accept(result.init))&&initializers.unshift(_)}else(_=accept(result))&&(kind==="field"?initializers.unshift(_):descriptor[key]=_)}target&&Object.defineProperty(target,contextIn.name,descriptor),done=!0},__runInitializers=exports&&exports.__runInitializers||function(thisArg,initializers,value){for(var useValue=arguments.length>2,i=0;i<initializers.length;i++)value=useValue?initializers[i].call(thisArg,value):initializers[i].call(thisArg);return useValue?value:void 0};Object.defineProperty(exports,"__esModule",{value:!0}),exports.Alias=void 0;var jsiiDeprecationWarnings=()=>{var tmp=require("../../.warnings.jsii.js");return jsiiDeprecationWarnings=()=>tmp,tmp};const JSII_RTTI_SYMBOL_1=Symbol.for("jsii.rtti");var kms_generated_1=()=>{var tmp=require("./kms.generated");return kms_generated_1=()=>tmp,tmp},iam=()=>{var tmp=require("../../aws-iam");return iam=()=>tmp,tmp},perms=()=>{var tmp=require("./private/perms");return perms=()=>tmp,tmp},core_1=()=>{var tmp=require("../../core");return core_1=()=>tmp,tmp},metadata_resource_1=()=>{var tmp=require("../../core/lib/metadata-resource");return metadata_resource_1=()=>tmp,tmp},prop_injectable_1=()=>{var tmp=require("../../core/lib/prop-injectable");return prop_injectable_1=()=>tmp,tmp},cx_api_1=()=>{var tmp=require("../../cx-api");return cx_api_1=()=>tmp,tmp};const REQUIRED_ALIAS_PREFIX="alias/",DISALLOWED_PREFIX=REQUIRED_ALIAS_PREFIX+"aws/";class AliasBase extends core_1().Resource{get aliasRef(){return{aliasName:this.aliasName}}get keyRef(){return{keyArn:this.aliasArn,keyId:this.keyId}}get keyArn(){return core_1().Stack.of(this).formatArn({service:"kms",resource:this.aliasName})}get aliasArn(){return core_1().Stack.of(this).formatArn({service:"kms",resource:this.aliasName})}get keyId(){return this.aliasName}addAlias(alias){return this.aliasTargetKey.addAlias(alias)}addToResourcePolicy(statement,allowNoOp){return this.aliasTargetKey.addToResourcePolicy(statement,allowNoOp)}grant(grantee,...actions){return this.aliasTargetKey.grant(grantee,...actions)}grantDecrypt(grantee){return this.aliasTargetKey.grantDecrypt(grantee)}grantEncrypt(grantee){return this.aliasTargetKey.grantEncrypt(grantee)}grantEncryptDecrypt(grantee){return this.aliasTargetKey.grantEncryptDecrypt(grantee)}grantSign(grantee){return this.aliasTargetKey.grantSign(grantee)}grantVerify(grantee){return this.aliasTargetKey.grantVerify(grantee)}grantSignVerify(grantee){return this.aliasTargetKey.grantSignVerify(grantee)}grantGenerateMac(grantee){return this.aliasTargetKey.grantGenerateMac(grantee)}grantVerifyMac(grantee){return this.aliasTargetKey.grantVerifyMac(grantee)}}let Alias=(()=>{let _classDecorators=[prop_injectable_1().propertyInjectable],_classDescriptor,_classExtraInitializers=[],_classThis,_classSuper=AliasBase;var Alias2=class extends _classSuper{static{_classThis=this}static{const _metadata=typeof Symbol=="function"&&Symbol.metadata?Object.create(_classSuper[Symbol.metadata]??null):void 0;__esDecorate(null,_classDescriptor={value:_classThis},_classDecorators,{kind:"class",name:_classThis.name,metadata:_metadata},null,_classExtraInitializers),Alias2=_classThis=_classDescriptor.value,_metadata&&Object.defineProperty(_classThis,Symbol.metadata,{enumerable:!0,configurable:!0,writable:!0,value:_metadata})}static[JSII_RTTI_SYMBOL_1]={fqn:"aws-cdk-lib.aws_kms.Alias",version:"2.233.0"};static PROPERTY_INJECTION_ID="aws-cdk-lib.aws-kms.Alias";static fromAliasAttributes(scope,id,attrs){try{jsiiDeprecationWarnings().aws_cdk_lib_aws_kms_AliasAttributes(attrs)}catch(error){throw process.env.JSII_DEBUG!=="1"&&error.name==="DeprecationError"&&Error.captureStackTrace(error,this.fromAliasAttributes),error}class _Alias extends AliasBase{get aliasName(){return attrs.aliasName}get aliasTargetKey(){return attrs.aliasTargetKey}}return new _Alias(scope,id)}static fromAliasName(scope,id,aliasName){class Import extends core_1().Resource{keyArn=core_1().Stack.of(this).formatArn({service:"kms",resource:aliasName});keyId=aliasName;aliasName=aliasName;get aliasTargetKey(){throw new(core_1()).ValidationError("Cannot access aliasTargetKey on an Alias imported by Alias.fromAliasName().",this)}addAlias(_alias){throw new(core_1()).ValidationError("Cannot call addAlias on an Alias imported by Alias.fromAliasName().",this)}addToResourcePolicy(_statement,_allowNoOp){return{statementAdded:!1}}get keyRef(){return{keyArn:this.keyArn,keyId:this.keyId}}grant(grantee,...actions){return core_1().FeatureFlags.of(this).isEnabled(cx_api_1().KMS_APPLY_IMPORTED_ALIAS_PERMISSIONS_TO_PRINCIPAL)?iam().Grant.addToPrincipal({grantee,actions,resourceArns:[core_1().Stack.of(scope).formatArn({service:"kms",resource:"key",resourceName:"*"})],conditions:{"ForAnyValue:StringEquals":{"kms:ResourceAliases":this.aliasName}}}):iam().Grant.drop(grantee,"")}get aliasRef(){return{aliasName:this.aliasName}}grantDecrypt(grantee){return this.grant(grantee,...perms().DECRYPT_ACTIONS)}grantEncrypt(grantee){return this.grant(grantee,...perms().ENCRYPT_ACTIONS)}grantEncryptDecrypt(grantee){return this.grant(grantee,...perms().DECRYPT_ACTIONS,...perms().ENCRYPT_ACTIONS)}grantSign(grantee){return this.grant(grantee,...perms().SIGN_ACTIONS)}grantVerify(grantee){return this.grant(grantee,...perms().VERIFY_ACTIONS)}grantSignVerify(grantee){return this.grant(grantee,...perms().SIGN_ACTIONS,...perms().VERIFY_ACTIONS)}grantGenerateMac(grantee){return this.grant(grantee,...perms().GENERATE_HMAC_ACTIONS)}grantVerifyMac(grantee){return this.grant(grantee,...perms().VERIFY_HMAC_ACTIONS)}}return new Import(scope,id)}aliasName;aliasTargetKey;constructor(scope,id,props){try{jsiiDeprecationWarnings().aws_cdk_lib_aws_kms_AliasProps(props)}catch(error){throw process.env.JSII_DEBUG!=="1"&&error.name==="DeprecationError"&&Error.captureStackTrace(error,Alias2),error}let aliasName=props.aliasName;if(core_1().Token.isUnresolved(aliasName)){if(core_1().Tokenization.reverseString(aliasName).firstValue&&core_1().Tokenization.reverseString(aliasName).firstToken===void 0){const valueInToken=core_1().Tokenization.reverseString(aliasName).firstValue;if(valueInToken.startsWith(REQUIRED_ALIAS_PREFIX)||(aliasName=REQUIRED_ALIAS_PREFIX+aliasName),valueInToken.toLocaleLowerCase().startsWith(DISALLOWED_PREFIX))throw new(core_1()).ValidationError(`Alias cannot start with ${DISALLOWED_PREFIX}: ${aliasName}`,scope);if(!valueInToken.match(/^[a-zA-Z0-9:/_-]{1,256}$/))throw new(core_1()).ValidationError("Alias name must be between 1 and 256 characters in a-zA-Z0-9:/_-",scope)}}else{if(aliasName.startsWith(REQUIRED_ALIAS_PREFIX)||(aliasName=REQUIRED_ALIAS_PREFIX+aliasName),aliasName===REQUIRED_ALIAS_PREFIX)throw new(core_1()).ValidationError(`Alias must include a value after "${REQUIRED_ALIAS_PREFIX}": ${aliasName}`,scope);if(aliasName.toLocaleLowerCase().startsWith(DISALLOWED_PREFIX))throw new(core_1()).ValidationError(`Alias cannot start with ${DISALLOWED_PREFIX}: ${aliasName}`,scope);if(!aliasName.match(/^[a-zA-Z0-9:/_-]{1,256}$/))throw new(core_1()).ValidationError("Alias name must be between 1 and 256 characters in a-zA-Z0-9:/_-",scope)}super(scope,id,{physicalName:aliasName}),(0,metadata_resource_1().addConstructMetadata)(this,props),this.aliasTargetKey=props.targetKey;const resource=new(kms_generated_1()).CfnAlias(this,"Resource",{aliasName:this.physicalName,targetKeyId:this.aliasTargetKey.keyArn});core_1().FeatureFlags.of(this).isEnabled(cx_api_1().KMS_ALIAS_NAME_REF)?this.aliasName=this.getResourceNameAttribute(resource.ref):this.aliasName=this.getResourceNameAttribute(resource.aliasName),props.removalPolicy&&resource.applyRemovalPolicy(props.removalPolicy)}generatePhysicalName(){return REQUIRED_ALIAS_PREFIX+super.generatePhysicalName()}static{__runInitializers(_classThis,_classExtraInitializers)}};return Alias2=_classThis})();exports.Alias=Alias;