UNPKG

aws-cdk-lib

Version:

Version 2 of the AWS Cloud Development Kit library

github.com/aws/aws-cdk

aws/aws-cdk

96 lines (95 loc) 3.11 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
import type { IConstruct } from 'constructs'; import { Construct } from 'constructs'; import type { ICluster } from './cluster'; import * as iam from '../../aws-iam'; import type { RemovalPolicy } from '../../core'; import { NestedStack } from '../../core'; /** * Properties for a KubectlProvider */ export interface KubectlProviderProps { /** * The cluster to control. */ readonly cluster: ICluster; /** * The removal policy applied to the custom resource that provides kubectl. * * The removal policy controls what happens to the resource if it stops being managed by CloudFormation. * This can happen in one of three situations: * * - The resource is removed from the template, so CloudFormation stops managing it * - A change to the resource is made that requires it to be replaced, so CloudFormation stops managing it * - The stack is deleted, so CloudFormation stops managing all resources in it * * @default RemovalPolicy.DESTROY */ readonly removalPolicy?: RemovalPolicy; } /** * Kubectl Provider Attributes */ export interface KubectlProviderAttributes { /** * The custom resource provider's service token. */ readonly functionArn: string; /** * The IAM role to assume in order to perform kubectl operations against this cluster. */ readonly kubectlRoleArn: string; /** * The IAM execution role of the handler. This role must be able to assume kubectlRoleArn */ readonly handlerRole: iam.IRole; } /** * Imported KubectlProvider that can be used in place of the default one created by CDK */ export interface IKubectlProvider extends IConstruct { /** * The custom resource provider's service token. */ readonly serviceToken: string; /** * The IAM role to assume in order to perform kubectl operations against this cluster. */ readonly roleArn: string; /** * The IAM execution role of the handler. */ readonly handlerRole: iam.IRole; } /** * Implementation of Kubectl Lambda */ export declare class KubectlProvider extends NestedStack implements IKubectlProvider { /** * Take existing provider or create new based on cluster * * @param scope Construct * @param cluster k8s cluster */ static getOrCreate(scope: Construct, cluster: ICluster): IKubectlProvider; /** * Import an existing provider * * @param scope Construct * @param id an id of resource * @param attrs attributes for the provider */ static fromKubectlProviderAttributes(scope: Construct, id: string, attrs: KubectlProviderAttributes): IKubectlProvider; /** * The custom resource provider's service token. */ readonly serviceToken: string; /** * The IAM role to assume in order to perform kubectl operations against this cluster. */ readonly roleArn: string; /** * The IAM execution role of the handler. */ readonly handlerRole: iam.IRole; constructor(scope: Construct, id: string, props: KubectlProviderProps); }