UNPKG

aws-cfn-constructor

Version:

Constructor for AWS CloudFormation resources using AWS CDK

github.com/hmin01/aws-cloudformation-resources-constructor

hmin01/aws-cloudformation-resources-constructor

367 lines (366 loc) 13.5 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268
269
270
271
272
273
274
275
276
277
278
279
280
281
282
283
284
285
286
287
288
289
290
291
292
293
294
295
296
297
298
299
300
301
302
303
304
305
306
307
308
309
310
311
312
313
314
315
316
317
318
319
320
321
322
323
324
325
326
327
328
329
330
331
332
333
334
335
336
337
338
339
340
341
342
343
344
345
346
347
348
349
350
351
352
353
354
355
356
357
358
359
360
361
362
363
364
365
366
367
"use strict"; Object.defineProperty(exports, "__esModule", { value: true }); exports.createSQSQueues = exports.createSQSQueue = exports.createSNSTopics = exports.createSNSTopic = exports.createLambdaFunctions = exports.createLambdaFunction = exports.createIAMRoles = exports.createIAMRole = exports.createIAMPolicies = exports.createIAMPolicy = exports.createDynamoDBTables = exports.createDynamoDBTable = exports.createCognitoUserPools = exports.createCognitoUserPool = exports.createCloudFrontOAI = exports.createCloudFrontDistributions = exports.createCloudFrontPolicies = exports.createRestApi = exports.createAPIGatewayRestApis = exports.createAPIGatewayRestApi = void 0; // Resources (CDK) const apigateway_1 = require("./services/apigateway "); const cloudFront_1 = require("./services/cloudFront"); const cognito_1 = require("./services/cognito"); const dynamodb_1 = require("./services/dynamodb"); const iam_1 = require("./services/iam"); const lambda_1 = require("./services/lambda"); const sns_1 = require("./services/sns"); const sqs_1 = require("./services/sqs"); // Util const cache_1 = require("../utils/cache"); const util_1 = require("../utils/util"); /** For Amazon APIGateway */ /** * Create an amazon apigateway rest api * @param scope scope context * @param config configuration for apigateway rest api */ function createAPIGatewayRestApi(scope, config) { // Create a cloud formation resource for rest api const restApi = new apigateway_1.RestApi(scope, config); // Create the gateway responses if (config.GatewayResponses) { for (const elem of config.GatewayResponses) { restApi.createGatewayResponse(elem); } } // Create the models if (config.Models) { for (const elem of config.Models) { restApi.createModel(elem); } } // Create the request validators if (config.RequestValidators) { for (const elem of config.RequestValidators) { restApi.createRequestValidator(elem); } } // Create the resources if (config.Resources) { restApi.createResources(config.Resources); // Create the methods for (const elem of config.Resources) { if (elem.resourceMethods !== undefined) { restApi.createMethod(elem.path, elem.resourceMethods); } } } } exports.createAPIGatewayRestApi = createAPIGatewayRestApi; /** * Create the amazon apigateway rest apis * @param scope scope context * @param config configuration for apigateway rest apis */ function createAPIGatewayRestApis(scope, config) { for (const elem of config) { // Create an apigateway rest api createAPIGatewayRestApi(scope, elem); } } exports.createAPIGatewayRestApis = createAPIGatewayRestApis; /** * Create the rest api * @param scope scope context * @param config configuration for rest api */ function createRestApi(scope, config) { for (const elem of config) { // Create a rest api const restApi = new apigateway_1.RestApi(scope, elem); // Store the resource (0, cache_1.storeResource)("restApi", elem.name, restApi); // Create the gateway responses for (const data of elem.GatewayResponses) { restApi.createGatewayResponse(data); } // Create the models for (const data of elem.Models) { restApi.createModel(data); } // Create the request validators for (const data of elem.RequestValidators) { restApi.createRequestValidator(data); } // Create the resources restApi.createResources(elem.Resources); // Create the mothods for (const data of elem.Resources) { if (data.resourceMethods !== undefined) { restApi.createMethod(data.path, data.resourceMethods); } } } } exports.createRestApi = createRestApi; /** For Amazon CloudFront */ /** * Create the policies for cloudFront * @param scope scope context * @param config configuration for each policies */ function createCloudFrontPolicies(scope, config) { // Create the cache policies for (const elem of config.CachePolicy) { if (elem.Type !== "managed") { // Create a cache policy const policy = new cloudFront_1.CachePolicy(scope, elem.CachePolicy.CachePolicyConfig); // Set the resource (0, cache_1.storeResource)("cloudfront-cachepolicy", elem.CachePolicy.Id, policy); } } // Create the origin request policies for (const elem of config.OriginRequestPolicy) { if (elem.Type !== "managed") { // Create a cache policy const policy = new cloudFront_1.OriginRequestPolicy(scope, elem.OriginRequestPolicy.OriginRequestPolicyConfig); // Set the resource (0, cache_1.storeResource)("cloudfront-originrequestpolicy", elem.OriginRequestPolicy.Id, policy); } } // Create the response header policies for (const elem of config.ResponseHeadersPolicy) { if (elem.Type !== "managed") { // Create a cache policy const policy = new cloudFront_1.ResponseHeadersPolicy(scope, elem.ResponseHeadersPolicy.ResponseHeadersPolicyConfig); ; // Set the resource (0, cache_1.storeResource)("cloudfront-responseheaderspolicy", elem.ResponseHeadersPolicy.Id, policy); } } } exports.createCloudFrontPolicies = createCloudFrontPolicies; /** * Create the distributions * @param scope scope context * @param config configuration for distributions */ function createCloudFrontDistributions(scope, config) { for (const distributionId of Object.keys(config)) { // Get a configuration for distribution const elem = config[distributionId]; // Create a distribution const distribution = new cloudFront_1.Distribution(scope, elem.DistributionConfig); // Store the resource (0, cache_1.storeResource)("cloudfront-distribution", distributionId, distribution); } } exports.createCloudFrontDistributions = createCloudFrontDistributions; /** * Create the origin access identity * @param scope scope context * @param config configuration for origin access identity */ function createCloudFrontOAI(scope, config) { // Create a origin access identiry const oai = new cloudFront_1.OriginAccessIdentity(scope, config); // Store the resource (0, cache_1.storeResource)("cloudfront-oai", config, oai); } exports.createCloudFrontOAI = createCloudFrontOAI; /** For Amazon Cognito */ /** * Create an amazon cognito user pool * @param scope scope context * @param config configuration for cognito user pool */ function createCognitoUserPool(scope, config) { // Create a cloud formation resource for cognito user pool const userPool = new cognito_1.UserPool(scope, config); // Create a default domain if (config.Domain) { userPool.createDefaultDomain(config.Domain); } // Create the resource servers for user pool if (config.ResourceServers) { for (const server of config.ResourceServers) { userPool.createResourceServer(server); } } } exports.createCognitoUserPool = createCognitoUserPool; /** * Create the amazon cognito user pools * @param scope scope context * @param config configuration for cognito user pools {"userPoolId": data} */ function createCognitoUserPools(scope, config) { for (const userPoolId of Object.keys(config)) { // Create a cognito user pool createCognitoUserPool(scope, config[userPoolId]); } } exports.createCognitoUserPools = createCognitoUserPools; /** For Amazon DynamoDB */ /** * Create an amazon dynamodb table * @param scope scope context * @param config configuration for dynamodb table */ function createDynamoDBTable(scope, config) { // Create a cloud formation resource for dynamodb table new dynamodb_1.Table(scope, config); } exports.createDynamoDBTable = createDynamoDBTable; /** * Create the amazon dynamodb tables * @param scope scope context * @param config configuration for dynamodb tables {"tableName": data} */ function createDynamoDBTables(scope, config) { for (const tableName of Object.keys(config)) { // Create a table createDynamoDBTable(scope, config[tableName]); } } exports.createDynamoDBTables = createDynamoDBTables; /** For Amazon IAM */ /** * Create an amazon iam policy * @param scope scope context * @param config configuration for iam policy */ function createIAMPolicy(scope, config) { // Create a cloud formation resource for iam policy const policy = new iam_1.Policy(scope, config); // Store a resource for iam policy (0, cache_1.storeResource)("policy", config.PolicyName, policy); } exports.createIAMPolicy = createIAMPolicy; /** * Create the amazon iam policies * @param scope scope context * @param config configuration for iam policies {"policyArn": data} */ function createIAMPolicies(scope, config) { for (const policyArn of Object.keys(config)) { // Extract an account id from arn const accountId = (0, util_1.extractDataFromArn)(policyArn, "account"); // Create the policies that are not managed by aws if (accountId === process.env.ORIGIN_ACCOUNT) { // Create an iam policy createIAMPolicy(scope, config[policyArn]); } } } exports.createIAMPolicies = createIAMPolicies; /** * Create an amazon iam role * @param scope scope context * @param config configuration for iam role {AttachedPolicies: data, Policies: data, Role: data} */ function createIAMRole(scope, config) { // Create a cloud formation resource for iam role const role = new iam_1.Role(scope, config.Role); // Store a resource for iam role (0, cache_1.storeResource)("role", config.Role.RoleName, role); // Associate the managed policies role.associateManagedPolicies(config.AttachedPolicies); // Set the inline policies if (config.Policies) { for (const policyName of Object.keys(config.Policies)) { role.setInlinePolicy(policyName, config.Policies[policyName]); } } } exports.createIAMRole = createIAMRole; /** * Create the amazon iam roles * @param scope scope context * @param config configuration for iam roles {"roleId": data} */ function createIAMRoles(scope, config) { for (const roleId of Object.keys(config)) { // Create an iam role createIAMRole(scope, config[roleId]); } } exports.createIAMRoles = createIAMRoles; /** For AWS Lambda */ /** * Create an aws lambda function * @param scope scope context * @param config configuration for lambda function */ function createLambdaFunction(scope, config) { // Create a cloud formation resource for lambda function const lambdaFunction = new lambda_1.Function(scope, config); // Store a resource for lambda function (0, cache_1.storeResource)("lambda", config.FunctionName, lambdaFunction); } exports.createLambdaFunction = createLambdaFunction; /** * Create the aws lambda functions * @param scope scope context * @param config configuration for functions {"functionName": data} */ function createLambdaFunctions(scope, config) { for (const functionName of Object.keys(config)) { // Create a lambda function createLambdaFunction(scope, config[functionName].Configuration); } } exports.createLambdaFunctions = createLambdaFunctions; /** For Amazon SNS */ /** * Create an amazon sns topic * @param scope scope context * @param config configuration for topic {Attributes: data, Tags: data} */ function createSNSTopic(scope, config) { // Create a cloud formation resource for sns topic const topic = new sns_1.Topic(scope, config.Attributes); // Set the tags if (config.Tags && config.Tags !== null && Object.keys(config.Tags).length > 0) { topic.setTags(config.Tags); } } exports.createSNSTopic = createSNSTopic; /** * Create the amazon sns topics * @param scope scope context * @param config configuration for topics {"topicArn": data} */ function createSNSTopics(scope, config) { for (const topicArn of Object.keys(config)) { // Create a sns topic createSNSTopic(scope, config[topicArn]); } } exports.createSNSTopics = createSNSTopics; /** For Amazonz SQS */ /** * Create an amazon queue * @param scope scope context * @param config configuration for queue {Attributes: data, Tags: data} */ function createSQSQueue(scope, config) { // Create a cloud formation resource for sqs queue const queue = new sqs_1.Queue(scope, config.Attributes); // Set a policy if (config.Attributes.PolicyObject && config.Attributes.PolicyObject !== null) { queue.setPolicy(config.Attributes.PolicyObject); } // Set the tags if (config.Tags && config.Tags !== null && Object.keys(config.Tags).length > 0) { queue.setTags(config.Tags); } } exports.createSQSQueue = createSQSQueue; /** * Create the amazon queues * @param scope scope context * @param config configuration for queues {"queueUrl": data} */ function createSQSQueues(scope, config) { for (const queueUrl of Object.keys(config)) { // Create a sqs queue createSQSQueue(scope, config[queueUrl]); } } exports.createSQSQueues = createSQSQueues;