UNPKG

serverless-step-functions

Version:

The module is AWS Step Functions plugin for Serverless Framework

github.com/horike37/serverless-step-functions

horike37/serverless-step-functions

73 lines (62 loc) 2.06 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
'use strict'; const _ = require('lodash'); const BbPromise = require('bluebird'); module.exports = { compileHttpIamRole() { const needDefaultIamRole = this.pluginhttpValidated.events.some(event => _.has(event, 'http') && !_.has(event, 'http.iamRole')); if (!needDefaultIamRole) { return BbPromise.resolve(); } const iamRoleApiGatewayToStepFunctionsAction = [ 'states:StartExecution', ]; // generate IAM Role action by http.action parameter. this.pluginhttpValidated.events.forEach((event) => { if (_.has(event, 'http.action')) { const actionName = `states:${event.http.action}`; if (iamRoleApiGatewayToStepFunctionsAction.indexOf(actionName) === -1) { iamRoleApiGatewayToStepFunctionsAction.push(actionName); } } }); const iamRoleApiGatewayToStepFunctions = { Type: 'AWS::IAM::Role', Properties: { AssumeRolePolicyDocument: { Version: '2012-10-17', Statement: [ { Effect: 'Allow', Principal: { Service: 'apigateway.amazonaws.com', }, Action: 'sts:AssumeRole', }, ], }, Policies: [ { PolicyName: 'apigatewaytostepfunctions', PolicyDocument: { Version: '2012-10-17', Statement: [ { Effect: 'Allow', Action: iamRoleApiGatewayToStepFunctionsAction, Resource: '*', }, ], }, }, ], }, }; const getApiToStepFunctionsIamRoleLogicalId = this.getApiToStepFunctionsIamRoleLogicalId(); const newIamRoleStateMachineExecutionObject = { [getApiToStepFunctionsIamRoleLogicalId]: iamRoleApiGatewayToStepFunctions, }; _.merge(this.serverless.service.provider.compiledCloudFormationTemplate.Resources, newIamRoleStateMachineExecutionObject); return BbPromise.resolve(); }, };