README
¶
Condense's CDK Constructs
This library contains constructs and stacks we use across our projects.
Setup
Node.js
Install the package:npm install @condensetech/cdk-constructs # or
yarn add @condensetech/cdk-constructs # or
pnpm add @condensetech/cdk-constructs
Import it:
import * as condense from '@condensetech/cdk-constructs';
Python
Install the package:pip install condensetech.cdk-constructs
Import it:
from condensetech import cdk_constructs
.NET
Install the package:dotnet add package CondenseTech.CdkConstructs
Import it:
using CondenseTech.CdkConstructs;
Go
Install the package:go get github.com/condensetech/cdk-constructs
Import it:
import "github.com/condensetech/cdk-constructs"
Usage
All API docs can be found in the API.md.
Composable Infrastructure Constructs and Stacks
Readability and maintainability are key factors when writing IaC. By defining some high level interfaces, we can easily write constructs which don't need to be tied to the specific implementation of a resource.
For example, the INetworking, defines some high level methods to interact with a VPC. Often a VPC contains a bastion host, which should be whitelisted to databases, so the interface has a bastionHost property which can return the bastion host. This allows to write code like the following:
interface MyDatabaseStackProps extends cdk.StackProps {
networking: INetworking;
}
class MyDatabaseStack extends cdk.Stack {
constructor(scope: Construct, id: string, props: MyDatabaseStackProps) {
super(scope, id, props);
const db = new rds.DatabaseInstance(this, 'Database', {
vpc: props.networking.vpc,
...
});
if (props.networking.bastionHost) {
db.connections.allowDefaultPortFrom(props.networking.bastionHost);
}
}
}
If a certain point we want to add a bastion host, we just need to flip one single switch in the networking props, to have the bastion host able to connect to all the resources in the VPC.
Constructs and Stacks in this area:
- Networking and NetworkingStack
- Aurora Cluster and AuroraClusterStack
- RDS Instance and DatabaseInstanceStack
Entrypoint
A typical scenario is to have one single Application Load Balancer in a VPC, which routes traffic to different services. The Entrypoint Construct and the Entrypoint Stack allow to easily define this entrypoint load balancer.
TODO: Add a method to allow consumers to add rules without having to know the right priority order in advance.
Cloudwatch Alarms Topic
The CloudwatchAlarmsTopicStack creates an SNS Topic which can be used as a target for Cloudwatch Alarms. In addition to link the topic to HTTPS endpoints, it can also create a Lambda function which can be used to send messages to Discord.
Naive BasicAuth Cloudfront Function
NaiveBasicAuthCloudfrontFunction is useful when a basic protection layer must be added to Cloudfront (for SPAs or static sites) and you just need to avoid crawlers and unwanted visitors.
Monitoring
By instantiating a MonitoringFacade in your stack, you can easily add monitoring to your resources. The facade will create a Cloudwatch Dashboard, and will add alarms to the resources you want to monitor.
Documentation
¶
Overview ¶
Condense's opinionated constructs and stacks for AWS CDK
Index ¶
- func AuroraClusterStack_IsConstruct(x interface{}) *bool
- func AuroraClusterStack_IsStack(x interface{}) *bool
- func AuroraClusterStack_Of(construct constructs.IConstruct) awscdk.Stack
- func AuroraCluster_IsConstruct(x interface{}) *bool
- func AuroraCluster_MinimumInstanceType(engine awsrds.IClusterEngine) awsec2.InstanceType
- func CloudwatchAlarmsTopicStack_IsConstruct(x interface{}) *bool
- func CloudwatchAlarmsTopicStack_IsStack(x interface{}) *bool
- func CloudwatchAlarmsTopicStack_Of(construct constructs.IConstruct) awscdk.Stack
- func DatabaseInstanceStack_IsConstruct(x interface{}) *bool
- func DatabaseInstanceStack_IsStack(x interface{}) *bool
- func DatabaseInstanceStack_Of(construct constructs.IConstruct) awscdk.Stack
- func DatabaseInstance_IsConstruct(x interface{}) *bool
- func EntrypointStack_IsConstruct(x interface{}) *bool
- func EntrypointStack_IsStack(x interface{}) *bool
- func EntrypointStack_Of(construct constructs.IConstruct) awscdk.Stack
- func Entrypoint_IsConstruct(x interface{}) *bool
- func NaiveBasicAuthCloudfrontFunction_FromFunctionAttributes(scope constructs.Construct, id *string, ...) awscloudfront.IFunction
- func NaiveBasicAuthCloudfrontFunction_IsConstruct(x interface{}) *bool
- func NaiveBasicAuthCloudfrontFunction_IsOwnedResource(construct constructs.IConstruct) *bool
- func NaiveBasicAuthCloudfrontFunction_IsResource(construct constructs.IConstruct) *bool
- func NetworkingStack_IsConstruct(x interface{}) *bool
- func NetworkingStack_IsStack(x interface{}) *bool
- func NetworkingStack_Of(construct constructs.IConstruct) awscdk.Stack
- func Networking_IsConstruct(x interface{}) *bool
- func NewApplicationLoadBalancerMonitoringAspect_Override(a ApplicationLoadBalancerMonitoringAspect, ...)
- func NewAuroraClusterStack_Override(a AuroraClusterStack, scope constructs.Construct, id *string, ...)
- func NewAuroraCluster_Override(a AuroraCluster, scope constructs.Construct, id *string, ...)
- func NewCacheClusterMonitoringAspect_Override(c CacheClusterMonitoringAspect, monitoringFacade ICondenseMonitoringFacade)
- func NewCloudwatchAlarmsTopicStack_Override(c CloudwatchAlarmsTopicStack, scope constructs.Construct, id *string, ...)
- func NewDatabaseInstanceStack_Override(d DatabaseInstanceStack, scope constructs.Construct, id *string, ...)
- func NewDatabaseInstance_Override(d DatabaseInstance, scope constructs.Construct, id *string, ...)
- func NewEntrypointStack_Override(e EntrypointStack, scope constructs.Construct, id *string, ...)
- func NewEntrypoint_Override(e Entrypoint, scope constructs.Construct, id *string, props *EntrypointProps)
- func NewFargateServiceMonitoringAspect_Override(f FargateServiceMonitoringAspect, monitoringFacade ICondenseMonitoringFacade)
- func NewMonitoringFacade_Override(m MonitoringFacade, scope awscdk.Stack, props *MonitoringFacadeProps)
- func NewNaiveBasicAuthCloudfrontFunction_Override(n NaiveBasicAuthCloudfrontFunction, scope constructs.Construct, id *string, ...)
- func NewNetworkingStack_Override(n NetworkingStack, scope constructs.Construct, id *string, ...)
- func NewNetworking_Override(n Networking, scope constructs.Construct, id *string, props *NetworkingProps)
- func NewRdsClusterMonitoringAspect_Override(r RdsClusterMonitoringAspect, monitoringFacade ICondenseMonitoringFacade)
- func NewRdsInstanceMonitoringAspect_Override(r RdsInstanceMonitoringAspect, monitoringFacade ICondenseMonitoringFacade)
- func NewTargetGroupMonitoringAspect_Override(t TargetGroupMonitoringAspect, monitoringFacade ICondenseMonitoringFacade)
- type AlarmDefinitionProps
- type ApplicationLoadBalancerMonitoringAspect
- type ApplicationLoadBalancerMonitoringConfig
- type AuroraCluster
- type AuroraClusterProps
- type AuroraClusterStack
- type AuroraClusterStackProps
- type BuildAlarmsProps
- type CacheClusterMonitoringAspect
- type CacheClusterMonitoringConfig
- type CloudwatchAlarmsDiscordConfig
- type CloudwatchAlarmsTopicStack
- type CloudwatchAlarmsTopicStackProps
- type DatabaseInstance
- type DatabaseInstanceProps
- type DatabaseInstanceStack
- type DatabaseInstanceStackProps
- type Entrypoint
- type EntrypointProps
- type EntrypointStack
- type EntrypointStackProps
- type FargateServiceMonitoringAspect
- type FargateServiceMonitoringConfig
- type ICondenseMonitoringFacade
- type IDatabase
- type IEntrypoint
- type INetworking
- type MonitoringFacade
- type MonitoringFacadeProps
- type NaiveBasicAuthCloudfrontFunction
- type NaiveBasicAuthCloudfrontFunctionExcludedPath
- type NaiveBasicAuthCloudfrontFunctionProps
- type Networking
- type NetworkingProps
- type NetworkingStack
- type NetworkingStackProps
- type RdsClusterMonitoringAspect
- type RdsClusterMonitoringConfig
- type RdsInstanceMonitoringAspect
- type RdsInstanceMonitoringConfig
- type TargetGroupMonitoringAspect
- type TargetGroupMonitoringConfig
- type WidgetAlertAnnotationProps
Constants ¶
This section is empty.
Variables ¶
This section is empty.
Functions ¶
func AuroraClusterStack_IsConstruct ¶
func AuroraClusterStack_IsConstruct(x interface{}) *bool
Checks if `x` is a construct.
Returns: true if `x` is an object created from a class which extends `Construct`. Deprecated: use `x instanceof Construct` instead.
func AuroraClusterStack_IsStack ¶
func AuroraClusterStack_IsStack(x interface{}) *bool
Return whether the given object is a Stack.
We do attribute detection since we can't reliably use 'instanceof'. Experimental.
func AuroraClusterStack_Of ¶
func AuroraClusterStack_Of(construct constructs.IConstruct) awscdk.Stack
Looks up the first stack scope in which `construct` is defined.
Fails if there is no stack up the tree. Experimental.
func AuroraCluster_IsConstruct ¶
func AuroraCluster_IsConstruct(x interface{}) *bool
Checks if `x` is a construct.
Returns: true if `x` is an object created from a class which extends `Construct`. Deprecated: use `x instanceof Construct` instead.
func AuroraCluster_MinimumInstanceType ¶
func AuroraCluster_MinimumInstanceType(engine awsrds.IClusterEngine) awsec2.InstanceType
Returns the minimum instance type supported by the Aurora cluster based on the engine type.
This method is used to set the default instance type for the writer instance if not otherwise specified.
Returns: The minimum instance type supported by the Aurora cluster based on the engine type. Experimental.
func CloudwatchAlarmsTopicStack_IsConstruct ¶
func CloudwatchAlarmsTopicStack_IsConstruct(x interface{}) *bool
Checks if `x` is a construct.
Returns: true if `x` is an object created from a class which extends `Construct`. Deprecated: use `x instanceof Construct` instead.
func CloudwatchAlarmsTopicStack_IsStack ¶
func CloudwatchAlarmsTopicStack_IsStack(x interface{}) *bool
Return whether the given object is a Stack.
We do attribute detection since we can't reliably use 'instanceof'. Experimental.
func CloudwatchAlarmsTopicStack_Of ¶
func CloudwatchAlarmsTopicStack_Of(construct constructs.IConstruct) awscdk.Stack
Looks up the first stack scope in which `construct` is defined.
Fails if there is no stack up the tree. Experimental.
func DatabaseInstanceStack_IsConstruct ¶
func DatabaseInstanceStack_IsConstruct(x interface{}) *bool
Checks if `x` is a construct.
Returns: true if `x` is an object created from a class which extends `Construct`. Deprecated: use `x instanceof Construct` instead.
func DatabaseInstanceStack_IsStack ¶
func DatabaseInstanceStack_IsStack(x interface{}) *bool
Return whether the given object is a Stack.
We do attribute detection since we can't reliably use 'instanceof'. Experimental.
func DatabaseInstanceStack_Of ¶
func DatabaseInstanceStack_Of(construct constructs.IConstruct) awscdk.Stack
Looks up the first stack scope in which `construct` is defined.
Fails if there is no stack up the tree. Experimental.
func DatabaseInstance_IsConstruct ¶
func DatabaseInstance_IsConstruct(x interface{}) *bool
Checks if `x` is a construct.
Returns: true if `x` is an object created from a class which extends `Construct`. Deprecated: use `x instanceof Construct` instead.
func EntrypointStack_IsConstruct ¶
func EntrypointStack_IsConstruct(x interface{}) *bool
Checks if `x` is a construct.
Returns: true if `x` is an object created from a class which extends `Construct`. Deprecated: use `x instanceof Construct` instead.
func EntrypointStack_IsStack ¶
func EntrypointStack_IsStack(x interface{}) *bool
Return whether the given object is a Stack.
We do attribute detection since we can't reliably use 'instanceof'. Experimental.
func EntrypointStack_Of ¶
func EntrypointStack_Of(construct constructs.IConstruct) awscdk.Stack
Looks up the first stack scope in which `construct` is defined.
Fails if there is no stack up the tree. Experimental.
func Entrypoint_IsConstruct ¶
func Entrypoint_IsConstruct(x interface{}) *bool
Checks if `x` is a construct.
Returns: true if `x` is an object created from a class which extends `Construct`. Deprecated: use `x instanceof Construct` instead.
func NaiveBasicAuthCloudfrontFunction_FromFunctionAttributes ¶
func NaiveBasicAuthCloudfrontFunction_FromFunctionAttributes(scope constructs.Construct, id *string, attrs *awscloudfront.FunctionAttributes) awscloudfront.IFunction
Imports a function by its name and ARN. Experimental.
func NaiveBasicAuthCloudfrontFunction_IsConstruct ¶
func NaiveBasicAuthCloudfrontFunction_IsConstruct(x interface{}) *bool
Checks if `x` is a construct.
Returns: true if `x` is an object created from a class which extends `Construct`. Deprecated: use `x instanceof Construct` instead.
func NaiveBasicAuthCloudfrontFunction_IsOwnedResource ¶
func NaiveBasicAuthCloudfrontFunction_IsOwnedResource(construct constructs.IConstruct) *bool
Returns true if the construct was created by CDK, and false otherwise. Experimental.
func NaiveBasicAuthCloudfrontFunction_IsResource ¶
func NaiveBasicAuthCloudfrontFunction_IsResource(construct constructs.IConstruct) *bool
Check whether the given construct is a Resource. Experimental.
func NetworkingStack_IsConstruct ¶
func NetworkingStack_IsConstruct(x interface{}) *bool
Checks if `x` is a construct.
Returns: true if `x` is an object created from a class which extends `Construct`. Deprecated: use `x instanceof Construct` instead.
func NetworkingStack_IsStack ¶
func NetworkingStack_IsStack(x interface{}) *bool
Return whether the given object is a Stack.
We do attribute detection since we can't reliably use 'instanceof'. Experimental.
func NetworkingStack_Of ¶
func NetworkingStack_Of(construct constructs.IConstruct) awscdk.Stack
Looks up the first stack scope in which `construct` is defined.
Fails if there is no stack up the tree. Experimental.
func Networking_IsConstruct ¶
func Networking_IsConstruct(x interface{}) *bool
Checks if `x` is a construct.
Returns: true if `x` is an object created from a class which extends `Construct`. Deprecated: use `x instanceof Construct` instead.
func NewApplicationLoadBalancerMonitoringAspect_Override ¶
func NewApplicationLoadBalancerMonitoringAspect_Override(a ApplicationLoadBalancerMonitoringAspect, monitoringFacade ICondenseMonitoringFacade)
Experimental.
func NewAuroraClusterStack_Override ¶
func NewAuroraClusterStack_Override(a AuroraClusterStack, scope constructs.Construct, id *string, props *AuroraClusterStackProps)
Experimental.
func NewAuroraCluster_Override ¶
func NewAuroraCluster_Override(a AuroraCluster, scope constructs.Construct, id *string, props *AuroraClusterProps)
Experimental.
func NewCacheClusterMonitoringAspect_Override ¶
func NewCacheClusterMonitoringAspect_Override(c CacheClusterMonitoringAspect, monitoringFacade ICondenseMonitoringFacade)
Experimental.
func NewCloudwatchAlarmsTopicStack_Override ¶
func NewCloudwatchAlarmsTopicStack_Override(c CloudwatchAlarmsTopicStack, scope constructs.Construct, id *string, props *CloudwatchAlarmsTopicStackProps)
Experimental.
func NewDatabaseInstanceStack_Override ¶
func NewDatabaseInstanceStack_Override(d DatabaseInstanceStack, scope constructs.Construct, id *string, props *DatabaseInstanceStackProps)
Experimental.
func NewDatabaseInstance_Override ¶
func NewDatabaseInstance_Override(d DatabaseInstance, scope constructs.Construct, id *string, props *DatabaseInstanceProps)
Experimental.
func NewEntrypointStack_Override ¶
func NewEntrypointStack_Override(e EntrypointStack, scope constructs.Construct, id *string, props *EntrypointStackProps)
Experimental.
func NewEntrypoint_Override ¶
func NewEntrypoint_Override(e Entrypoint, scope constructs.Construct, id *string, props *EntrypointProps)
Experimental.
func NewFargateServiceMonitoringAspect_Override ¶
func NewFargateServiceMonitoringAspect_Override(f FargateServiceMonitoringAspect, monitoringFacade ICondenseMonitoringFacade)
Experimental.
func NewMonitoringFacade_Override ¶
func NewMonitoringFacade_Override(m MonitoringFacade, scope awscdk.Stack, props *MonitoringFacadeProps)
Experimental.
func NewNaiveBasicAuthCloudfrontFunction_Override ¶
func NewNaiveBasicAuthCloudfrontFunction_Override(n NaiveBasicAuthCloudfrontFunction, scope constructs.Construct, id *string, props *NaiveBasicAuthCloudfrontFunctionProps)
Experimental.
func NewNetworkingStack_Override ¶
func NewNetworkingStack_Override(n NetworkingStack, scope constructs.Construct, id *string, props *NetworkingStackProps)
Experimental.
func NewNetworking_Override ¶
func NewNetworking_Override(n Networking, scope constructs.Construct, id *string, props *NetworkingProps)
Experimental.
func NewRdsClusterMonitoringAspect_Override ¶
func NewRdsClusterMonitoringAspect_Override(r RdsClusterMonitoringAspect, monitoringFacade ICondenseMonitoringFacade)
Experimental.
func NewRdsInstanceMonitoringAspect_Override ¶
func NewRdsInstanceMonitoringAspect_Override(r RdsInstanceMonitoringAspect, monitoringFacade ICondenseMonitoringFacade)
Experimental.
func NewTargetGroupMonitoringAspect_Override ¶
func NewTargetGroupMonitoringAspect_Override(t TargetGroupMonitoringAspect, monitoringFacade ICondenseMonitoringFacade)
Experimental.
Types ¶
type AlarmDefinitionProps ¶
type AlarmDefinitionProps struct {
// Experimental.
AlarmId *string `field:"required" json:"alarmId" yaml:"alarmId"`
// Experimental.
EvaluationPeriods *float64 `field:"required" json:"evaluationPeriods" yaml:"evaluationPeriods"`
// Experimental.
Metric awscloudwatch.IMetric `field:"required" json:"metric" yaml:"metric"`
// Experimental.
AlarmDescription *string `field:"optional" json:"alarmDescription" yaml:"alarmDescription"`
// Experimental.
AlarmName *string `field:"optional" json:"alarmName" yaml:"alarmName"`
// Experimental.
ComparisonOperator awscloudwatch.ComparisonOperator `field:"optional" json:"comparisonOperator" yaml:"comparisonOperator"`
// Experimental.
Threshold *float64 `field:"optional" json:"threshold" yaml:"threshold"`
}
Experimental.
type ApplicationLoadBalancerMonitoringAspect ¶
type ApplicationLoadBalancerMonitoringAspect interface {
awscdk.IAspect
// Overrides the default configuration for a specific Application Load Balancer.
// Experimental.
OverrideConfig(node awselasticloadbalancingv2.ApplicationLoadBalancer, config *ApplicationLoadBalancerMonitoringConfig)
// All aspects can visit an IConstruct.
// Experimental.
Visit(node constructs.IConstruct)
}
The ApplicationLoadBalancerMonitoringAspect iterates over the Application Load Balancers and adds monitoring widgets and alarms. Experimental.
func NewApplicationLoadBalancerMonitoringAspect ¶
func NewApplicationLoadBalancerMonitoringAspect(monitoringFacade ICondenseMonitoringFacade) ApplicationLoadBalancerMonitoringAspect
Experimental.
type ApplicationLoadBalancerMonitoringConfig ¶
type ApplicationLoadBalancerMonitoringConfig struct {
// The Redirect URL Limit Exceeded threshold.
// Default: 0.
//
// Experimental.
RedirectUrlLimitExceededThreshold *float64 `field:"optional" json:"redirectUrlLimitExceededThreshold" yaml:"redirectUrlLimitExceededThreshold"`
// The Rejected Connections threshold.
// Default: 0.
//
// Experimental.
RejectedConnectionsThreshold *float64 `field:"optional" json:"rejectedConnectionsThreshold" yaml:"rejectedConnectionsThreshold"`
// The Response Time threshold.
// Default: - No threshold.
//
// Experimental.
ResponseTimeThreshold awscdk.Duration `field:"optional" json:"responseTimeThreshold" yaml:"responseTimeThreshold"`
// The 5xx Errors threshold.
// Default: 0.
//
// Experimental.
Target5xxErrorsThreshold *float64 `field:"optional" json:"target5xxErrorsThreshold" yaml:"target5xxErrorsThreshold"`
// The Target Connection Errors threshold.
// Default: 0.
//
// Experimental.
TargetConnectionErrorsThreshold *float64 `field:"optional" json:"targetConnectionErrorsThreshold" yaml:"targetConnectionErrorsThreshold"`
}
The ApplicationLoadBalancerMonitoringConfig defines the thresholds for the Application Load Balancer monitoring. Experimental.
type AuroraCluster ¶
type AuroraCluster interface {
constructs.Construct
IDatabase
// The network connections associated with this resource.
// Experimental.
Connections() awsec2.Connections
// The database cluster.
// Experimental.
DatabaseCluster() awsrds.IDatabaseCluster
// The endpoint of the database.
// Experimental.
Endpoint() awsrds.Endpoint
// The tree node.
// Experimental.
Node() constructs.Node
// Experimental.
ParameterGroup() awsrds.ParameterGroup
// Utility method that returns the secret with the credentials to access the database in a cross-stack compatible way.
// Experimental.
FetchSecret(scope constructs.Construct, id *string) awssecretsmanager.ISecret
// Returns a string representation of this construct.
// Experimental.
ToString() *string
}
The AuroraCluster Construct creates an opinionated Aurora Cluster.
Under the hood, it creates a [rds.DatabaseCluster](https://docs.aws.amazon.com/cdk/api/v2/docs/aws-cdk-lib.aws_rds-readme.html#starting-a-clustered-database) construct. It implements the IDatabase interface so that it can be used in other constructs and stacks without requiring to access to the underlying construct.
It also applies the following changes to the default behavior:
- A [rds.ParameterGroup](https://docs.aws.amazon.com/cdk/api/v2/docs/aws-cdk-lib.aws_rds-readme.html#parameter-groups) specific for the cluster is always defined. By using a custom parameter group instead of relying on the default one, a later change in the parameter group's parameters wouldn't require a replace of the cluster.
- The credentials secret name is created after the construct's path. This way, the secret name is more readable and, when working with multiple stacks, can be easily inferred without having to rely on Cloudformation exports.
- The default instance type for the writer instance is set to a minimum instance type based on the engine type.
- The storage is always encrypted.
Experimental.
func NewAuroraCluster ¶
func NewAuroraCluster(scope constructs.Construct, id *string, props *AuroraClusterProps) AuroraCluster
Experimental.
type AuroraClusterProps ¶
type AuroraClusterProps struct {
// The engine of the Aurora cluster.
// Experimental.
Engine awsrds.IClusterEngine `field:"required" json:"engine" yaml:"engine"`
// The networking configuration for the Aurora cluster.
// Experimental.
Networking INetworking `field:"required" json:"networking" yaml:"networking"`
// The backup retention period.
// Default: - It uses the default applied by [rds.DatabaseClusterProps#backup](https://docs.aws.amazon.com/cdk/api/v2/docs/aws-cdk-lib.aws_rds.DatabaseClusterProps.html#backup).
//
// Experimental.
BackupRetention awscdk.Duration `field:"optional" json:"backupRetention" yaml:"backupRetention"`
// The identifier of the cluster.
//
// If not specified, it relies on the underlying default naming.
// Experimental.
ClusterIdentifier *string `field:"optional" json:"clusterIdentifier" yaml:"clusterIdentifier"`
// The name of the cluster.
//
// If not specified, it relies on the underlying default naming.
// Deprecated: Use `clusterIdentifier` instead.
ClusterName *string `field:"optional" json:"clusterName" yaml:"clusterName"`
// The name of the secret that stores the credentials of the database.
// Default: `${construct.node.path}/secret`
//
// Experimental.
CredentialsSecretName *string `field:"optional" json:"credentialsSecretName" yaml:"credentialsSecretName"`
// The name of the database.
// Default: - No default database is created.
//
// Experimental.
DatabaseName *string `field:"optional" json:"databaseName" yaml:"databaseName"`
// If the Aurora cluster is multi-AZ.
// Default: false.
//
// Experimental.
MultiAz *bool `field:"optional" json:"multiAz" yaml:"multiAz"`
// The parameters to override in the parameter group.
// Default: - No parameter is overridden.
//
// Experimental.
Parameters *map[string]*string `field:"optional" json:"parameters" yaml:"parameters"`
// The reader instances of the Aurora cluster.
// Default: - No reader instances are created.
//
// Experimental.
Readers *[]awsrds.IClusterInstance `field:"optional" json:"readers" yaml:"readers"`
// The removal policy to apply when the cluster is removed.
// Default: RemovalPolicy.RETAIN
//
// Experimental.
RemovalPolicy awscdk.RemovalPolicy `field:"optional" json:"removalPolicy" yaml:"removalPolicy"`
// The writer instance of the Aurora cluster.
// Default: - A provisioned instance with the minimum instance type based on the engine type.
//
// Experimental.
Writer awsrds.IClusterInstance `field:"optional" json:"writer" yaml:"writer"`
}
Properties for the AuroraCluster construct. Experimental.
type AuroraClusterStack ¶
type AuroraClusterStack interface {
awscdk.Stack
IDatabase
// The AWS account into which this stack will be deployed.
//
// This value is resolved according to the following rules:
//
// 1. The value provided to `env.account` when the stack is defined. This can
// either be a concrete account (e.g. `585695031111`) or the
// `Aws.ACCOUNT_ID` token.
// 3. `Aws.ACCOUNT_ID`, which represents the CloudFormation intrinsic reference
// `{ "Ref": "AWS::AccountId" }` encoded as a string token.
//
// Preferably, you should use the return value as an opaque string and not
// attempt to parse it to implement your logic. If you do, you must first
// check that it is a concrete value an not an unresolved token. If this
// value is an unresolved token (`Token.isUnresolved(stack.account)` returns
// `true`), this implies that the user wishes that this stack will synthesize
// into a **account-agnostic template**. In this case, your code should either
// fail (throw an error, emit a synth error using `Annotations.of(construct).addError()`) or
// implement some other region-agnostic behavior.
// Experimental.
Account() *string
// The ID of the cloud assembly artifact for this stack.
// Experimental.
ArtifactId() *string
// Returns the list of AZs that are available in the AWS environment (account/region) associated with this stack.
//
// If the stack is environment-agnostic (either account and/or region are
// tokens), this property will return an array with 2 tokens that will resolve
// at deploy-time to the first two availability zones returned from CloudFormation's
// `Fn::GetAZs` intrinsic function.
//
// If they are not available in the context, returns a set of dummy values and
// reports them as missing, and let the CLI resolve them by calling EC2
// `DescribeAvailabilityZones` on the target environment.
//
// To specify a different strategy for selecting availability zones override this method.
// Experimental.
AvailabilityZones() *[]*string
// Indicates whether the stack requires bundling or not.
// Experimental.
BundlingRequired() *bool
// The network connections associated with this resource.
// Experimental.
Connections() awsec2.Connections
// Return the stacks this stack depends on.
// Experimental.
Dependencies() *[]awscdk.Stack
// The endpoint of the database.
// Experimental.
Endpoint() awsrds.Endpoint
// The environment coordinates in which this stack is deployed.
//
// In the form
// `aws://account/region`. Use `stack.account` and `stack.region` to obtain
// the specific values, no need to parse.
//
// You can use this value to determine if two stacks are targeting the same
// environment.
//
// If either `stack.account` or `stack.region` are not concrete values (e.g.
// `Aws.ACCOUNT_ID` or `Aws.REGION`) the special strings `unknown-account` and/or
// `unknown-region` will be used respectively to indicate this stack is
// region/account-agnostic.
// Experimental.
Environment() *string
// Indicates if this is a nested stack, in which case `parentStack` will include a reference to it's parent.
// Experimental.
Nested() *bool
// If this is a nested stack, returns it's parent stack.
// Experimental.
NestedStackParent() awscdk.Stack
// If this is a nested stack, this represents its `AWS::CloudFormation::Stack` resource.
//
// `undefined` for top-level (non-nested) stacks.
// Experimental.
NestedStackResource() awscdk.CfnResource
// The tree node.
// Experimental.
Node() constructs.Node
// Returns the list of notification Amazon Resource Names (ARNs) for the current stack.
// Experimental.
NotificationArns() *[]*string
// The partition in which this stack is defined.
// Experimental.
Partition() *string
// The AWS region into which this stack will be deployed (e.g. `us-west-2`).
//
// This value is resolved according to the following rules:
//
// 1. The value provided to `env.region` when the stack is defined. This can
// either be a concrete region (e.g. `us-west-2`) or the `Aws.REGION`
// token.
// 3. `Aws.REGION`, which is represents the CloudFormation intrinsic reference
// `{ "Ref": "AWS::Region" }` encoded as a string token.
//
// Preferably, you should use the return value as an opaque string and not
// attempt to parse it to implement your logic. If you do, you must first
// check that it is a concrete value an not an unresolved token. If this
// value is an unresolved token (`Token.isUnresolved(stack.region)` returns
// `true`), this implies that the user wishes that this stack will synthesize
// into a **region-agnostic template**. In this case, your code should either
// fail (throw an error, emit a synth error using `Annotations.of(construct).addError()`) or
// implement some other region-agnostic behavior.
// Experimental.
Region() *string
// The ID of the stack.
//
// Example:
// // After resolving, looks like
// 'arn:aws:cloudformation:us-west-2:123456789012:stack/teststack/51af3dc0-da77-11e4-872e-1234567db123'
//
// Experimental.
StackId() *string
// The concrete CloudFormation physical stack name.
//
// This is either the name defined explicitly in the `stackName` prop or
// allocated based on the stack's location in the construct tree. Stacks that
// are directly defined under the app use their construct `id` as their stack
// name. Stacks that are defined deeper within the tree will use a hashed naming
// scheme based on the construct path to ensure uniqueness.
//
// If you wish to obtain the deploy-time AWS::StackName intrinsic,
// you can use `Aws.STACK_NAME` directly.
// Experimental.
StackName() *string
// Synthesis method for this stack.
// Experimental.
Synthesizer() awscdk.IStackSynthesizer
// Tags to be applied to the stack.
// Experimental.
Tags() awscdk.TagManager
// The name of the CloudFormation template file emitted to the output directory during synthesis.
//
// Example value: `MyStack.template.json`
// Experimental.
TemplateFile() *string
// Options for CloudFormation template (like version, transform, description).
// Experimental.
TemplateOptions() awscdk.ITemplateOptions
// Whether termination protection is enabled for this stack.
// Experimental.
TerminationProtection() *bool
// Experimental.
SetTerminationProtection(val *bool)
// The Amazon domain suffix for the region in which this stack is defined.
// Experimental.
UrlSuffix() *string
// Add a dependency between this stack and another stack.
//
// This can be used to define dependencies between any two stacks within an
// app, and also supports nested stacks.
// Experimental.
AddDependency(target awscdk.Stack, reason *string)
// Adds an arbitary key-value pair, with information you want to record about the stack.
//
// These get translated to the Metadata section of the generated template.
// See: https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/metadata-section-structure.html
//
// Experimental.
AddMetadata(key *string, value interface{})
// Add a Transform to this stack. A Transform is a macro that AWS CloudFormation uses to process your template.
//
// Duplicate values are removed when stack is synthesized.
//
// Example:
// declare const stack: Stack;
//
// stack.addTransform('AWS::Serverless-2016-10-31')
//
// See: https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/transform-section-structure.html
//
// Experimental.
AddTransform(transform *string)
// Returns the naming scheme used to allocate logical IDs.
//
// By default, uses
// the `HashedAddressingScheme` but this method can be overridden to customize
// this behavior.
//
// In order to make sure logical IDs are unique and stable, we hash the resource
// construct tree path (i.e. toplevel/secondlevel/.../myresource) and add it as
// a suffix to the path components joined without a separator (CloudFormation
// IDs only allow alphanumeric characters).
//
// The result will be:
//
// <path.join(”)><md5(path.join('/')>
// "human" "hash"
//
// If the "human" part of the ID exceeds 240 characters, we simply trim it so
// the total ID doesn't exceed CloudFormation's 255 character limit.
//
// We only take 8 characters from the md5 hash (0.000005 chance of collision).
//
// Special cases:
//
// - If the path only contains a single component (i.e. it's a top-level
// resource), we won't add the hash to it. The hash is not needed for
// disambiguation and also, it allows for a more straightforward migration an
// existing CloudFormation template to a CDK stack without logical ID changes
// (or renames).
// - For aesthetic reasons, if the last components of the path are the same
// (i.e. `L1/L2/Pipeline/Pipeline`), they will be de-duplicated to make the
// resulting human portion of the ID more pleasing: `L1L2Pipeline<HASH>`
// instead of `L1L2PipelinePipeline<HASH>`
// - If a component is named "Default" it will be omitted from the path. This
// allows refactoring higher level abstractions around constructs without affecting
// the IDs of already deployed resources.
// - If a component is named "Resource" it will be omitted from the user-visible
// path, but included in the hash. This reduces visual noise in the human readable
// part of the identifier.
// Experimental.
AllocateLogicalId(cfnElement awscdk.CfnElement) *string
// Create a CloudFormation Export for a string list value.
//
// Returns a string list representing the corresponding `Fn.importValue()`
// expression for this Export. The export expression is automatically wrapped with an
// `Fn::Join` and the import value with an `Fn::Split`, since CloudFormation can only
// export strings. You can control the name for the export by passing the `name` option.
//
// If you don't supply a value for `name`, the value you're exporting must be
// a Resource attribute (for example: `bucket.bucketName`) and it will be
// given the same name as the automatic cross-stack reference that would be created
// if you used the attribute in another Stack.
//
// One of the uses for this method is to *remove* the relationship between
// two Stacks established by automatic cross-stack references. It will
// temporarily ensure that the CloudFormation Export still exists while you
// remove the reference from the consuming stack. After that, you can remove
// the resource and the manual export.
//
// See `exportValue` for an example of this process.
// Experimental.
ExportStringListValue(exportedValue interface{}, options *awscdk.ExportValueOptions) *[]*string
// Create a CloudFormation Export for a string value.
//
// Returns a string representing the corresponding `Fn.importValue()`
// expression for this Export. You can control the name for the export by
// passing the `name` option.
//
// If you don't supply a value for `name`, the value you're exporting must be
// a Resource attribute (for example: `bucket.bucketName`) and it will be
// given the same name as the automatic cross-stack reference that would be created
// if you used the attribute in another Stack.
//
// One of the uses for this method is to *remove* the relationship between
// two Stacks established by automatic cross-stack references. It will
// temporarily ensure that the CloudFormation Export still exists while you
// remove the reference from the consuming stack. After that, you can remove
// the resource and the manual export.
//
// ## Example
//
// Here is how the process works. Let's say there are two stacks,
// `producerStack` and `consumerStack`, and `producerStack` has a bucket
// called `bucket`, which is referenced by `consumerStack` (perhaps because
// an AWS Lambda Function writes into it, or something like that).
//
// It is not safe to remove `producerStack.bucket` because as the bucket is being
// deleted, `consumerStack` might still be using it.
//
// Instead, the process takes two deployments:
//
// ### Deployment 1: break the relationship
//
// - Make sure `consumerStack` no longer references `bucket.bucketName` (maybe the consumer
// stack now uses its own bucket, or it writes to an AWS DynamoDB table, or maybe you just
// remove the Lambda Function altogether).
// - In the `ProducerStack` class, call `this.exportValue(this.bucket.bucketName)`. This
// will make sure the CloudFormation Export continues to exist while the relationship
// between the two stacks is being broken.
// - Deploy (this will effectively only change the `consumerStack`, but it's safe to deploy both).
//
// ### Deployment 2: remove the bucket resource
//
// - You are now free to remove the `bucket` resource from `producerStack`.
// - Don't forget to remove the `exportValue()` call as well.
// - Deploy again (this time only the `producerStack` will be changed -- the bucket will be deleted).
// Experimental.
ExportValue(exportedValue interface{}, options *awscdk.ExportValueOptions) *string
// Utility method that returns the secret with the credentials to access the database in a cross-stack compatible way.
// Experimental.
FetchSecret(scope constructs.Construct, id *string) awssecretsmanager.ISecret
// Creates an ARN from components.
//
// If `partition`, `region` or `account` are not specified, the stack's
// partition, region and account will be used.
//
// If any component is the empty string, an empty string will be inserted
// into the generated ARN at the location that component corresponds to.
//
// The ARN will be formatted as follows:
//
// arn:{partition}:{service}:{region}:{account}:{resource}{sep}{resource-name}
//
// The required ARN pieces that are omitted will be taken from the stack that
// the 'scope' is attached to. If all ARN pieces are supplied, the supplied scope
// can be 'undefined'.
// Experimental.
FormatArn(components *awscdk.ArnComponents) *string
// Allocates a stack-unique CloudFormation-compatible logical identity for a specific resource.
//
// This method is called when a `CfnElement` is created and used to render the
// initial logical identity of resources. Logical ID renames are applied at
// this stage.
//
// This method uses the protected method `allocateLogicalId` to render the
// logical ID for an element. To modify the naming scheme, extend the `Stack`
// class and override this method.
// Experimental.
GetLogicalId(element awscdk.CfnElement) *string
// Look up a fact value for the given fact for the region of this stack.
//
// Will return a definite value only if the region of the current stack is resolved.
// If not, a lookup map will be added to the stack and the lookup will be done at
// CDK deployment time.
//
// What regions will be included in the lookup map is controlled by the
// `@aws-cdk/core:target-partitions` context value: it must be set to a list
// of partitions, and only regions from the given partitions will be included.
// If no such context key is set, all regions will be included.
//
// This function is intended to be used by construct library authors. Application
// builders can rely on the abstractions offered by construct libraries and do
// not have to worry about regional facts.
//
// If `defaultValue` is not given, it is an error if the fact is unknown for
// the given region.
// Experimental.
RegionalFact(factName *string, defaultValue *string) *string
// Rename a generated logical identities.
//
// To modify the naming scheme strategy, extend the `Stack` class and
// override the `allocateLogicalId` method.
// Experimental.
RenameLogicalId(oldId *string, newId *string)
// Indicate that a context key was expected.
//
// Contains instructions which will be emitted into the cloud assembly on how
// the key should be supplied.
// Experimental.
ReportMissingContextKey(report *cloudassemblyschema.MissingContext)
// Resolve a tokenized value in the context of the current stack.
// Experimental.
Resolve(obj interface{}) interface{}
// Splits the provided ARN into its components.
//
// Works both if 'arn' is a string like 'arn:aws:s3:::bucket',
// and a Token representing a dynamic CloudFormation expression
// (in which case the returned components will also be dynamic CloudFormation expressions,
// encoded as Tokens).
// Experimental.
SplitArn(arn *string, arnFormat awscdk.ArnFormat) *awscdk.ArnComponents
// Convert an object, potentially containing tokens, to a JSON string.
// Experimental.
ToJsonString(obj interface{}, space *float64) *string
// Returns a string representation of this construct.
// Experimental.
ToString() *string
// Convert an object, potentially containing tokens, to a YAML string.
// Experimental.
ToYamlString(obj interface{}) *string
}
The AuroraClusterStack creates an AuroraCluster(#@condensetech/cdk-constructs.AuroraCluster) construct and optionally defines the monitoring configuration. It implements the IDatabase interface so that it can be used in other constructs and stacks without requiring to access to the underlying construct. Experimental.
func NewAuroraClusterStack ¶
func NewAuroraClusterStack(scope constructs.Construct, id *string, props *AuroraClusterStackProps) AuroraClusterStack
Experimental.
type AuroraClusterStackProps ¶
type AuroraClusterStackProps struct {
// The engine of the Aurora cluster.
// Experimental.
Engine awsrds.IClusterEngine `field:"required" json:"engine" yaml:"engine"`
// The networking configuration for the Aurora cluster.
// Experimental.
Networking INetworking `field:"required" json:"networking" yaml:"networking"`
// The backup retention period.
// Default: - It uses the default applied by [rds.DatabaseClusterProps#backup](https://docs.aws.amazon.com/cdk/api/v2/docs/aws-cdk-lib.aws_rds.DatabaseClusterProps.html#backup).
//
// Experimental.
BackupRetention awscdk.Duration `field:"optional" json:"backupRetention" yaml:"backupRetention"`
// The identifier of the cluster.
//
// If not specified, it relies on the underlying default naming.
// Experimental.
ClusterIdentifier *string `field:"optional" json:"clusterIdentifier" yaml:"clusterIdentifier"`
// The name of the cluster.
//
// If not specified, it relies on the underlying default naming.
// Deprecated: Use `clusterIdentifier` instead.
ClusterName *string `field:"optional" json:"clusterName" yaml:"clusterName"`
// The name of the secret that stores the credentials of the database.
// Default: `${construct.node.path}/secret`
//
// Experimental.
CredentialsSecretName *string `field:"optional" json:"credentialsSecretName" yaml:"credentialsSecretName"`
// The name of the database.
// Default: - No default database is created.
//
// Experimental.
DatabaseName *string `field:"optional" json:"databaseName" yaml:"databaseName"`
// If the Aurora cluster is multi-AZ.
// Default: false.
//
// Experimental.
MultiAz *bool `field:"optional" json:"multiAz" yaml:"multiAz"`
// The parameters to override in the parameter group.
// Default: - No parameter is overridden.
//
// Experimental.
Parameters *map[string]*string `field:"optional" json:"parameters" yaml:"parameters"`
// The reader instances of the Aurora cluster.
// Default: - No reader instances are created.
//
// Experimental.
Readers *[]awsrds.IClusterInstance `field:"optional" json:"readers" yaml:"readers"`
// The removal policy to apply when the cluster is removed.
// Default: RemovalPolicy.RETAIN
//
// Experimental.
RemovalPolicy awscdk.RemovalPolicy `field:"optional" json:"removalPolicy" yaml:"removalPolicy"`
// The writer instance of the Aurora cluster.
// Default: - A provisioned instance with the minimum instance type based on the engine type.
//
// Experimental.
Writer awsrds.IClusterInstance `field:"optional" json:"writer" yaml:"writer"`
// Include runtime versioning information in this Stack.
// Default: `analyticsReporting` setting of containing `App`, or value of
// 'aws:cdk:version-reporting' context key.
//
// Experimental.
AnalyticsReporting *bool `field:"optional" json:"analyticsReporting" yaml:"analyticsReporting"`
// Enable this flag to allow native cross region stack references.
//
// Enabling this will create a CloudFormation custom resource
// in both the producing stack and consuming stack in order to perform the export/import
//
// This feature is currently experimental.
// Default: false.
//
// Experimental.
CrossRegionReferences *bool `field:"optional" json:"crossRegionReferences" yaml:"crossRegionReferences"`
// A description of the stack.
// Default: - No description.
//
// Experimental.
Description *string `field:"optional" json:"description" yaml:"description"`
// The AWS environment (account/region) where this stack will be deployed.
//
// Set the `region`/`account` fields of `env` to either a concrete value to
// select the indicated environment (recommended for production stacks), or to
// the values of environment variables
// `CDK_DEFAULT_REGION`/`CDK_DEFAULT_ACCOUNT` to let the target environment
// depend on the AWS credentials/configuration that the CDK CLI is executed
// under (recommended for development stacks).
//
// If the `Stack` is instantiated inside a `Stage`, any undefined
// `region`/`account` fields from `env` will default to the same field on the
// encompassing `Stage`, if configured there.
//
// If either `region` or `account` are not set nor inherited from `Stage`, the
// Stack will be considered "*environment-agnostic*"". Environment-agnostic
// stacks can be deployed to any environment but may not be able to take
// advantage of all features of the CDK. For example, they will not be able to
// use environmental context lookups such as `ec2.Vpc.fromLookup` and will not
// automatically translate Service Principals to the right format based on the
// environment's AWS partition, and other such enhancements.
//
// Example:
// // Use a concrete account and region to deploy this stack to:
// // `.account` and `.region` will simply return these values.
// new Stack(app, 'Stack1', {
// env: {
// account: '123456789012',
// region: 'us-east-1'
// },
// });
//
// // Use the CLI's current credentials to determine the target environment:
// // `.account` and `.region` will reflect the account+region the CLI
// // is configured to use (based on the user CLI credentials)
// new Stack(app, 'Stack2', {
// env: {
// account: process.env.CDK_DEFAULT_ACCOUNT,
// region: process.env.CDK_DEFAULT_REGION
// },
// });
//
// // Define multiple stacks stage associated with an environment
// const myStage = new Stage(app, 'MyStage', {
// env: {
// account: '123456789012',
// region: 'us-east-1'
// }
// });
//
// // both of these stacks will use the stage's account/region:
// // `.account` and `.region` will resolve to the concrete values as above
// new MyStack(myStage, 'Stack1');
// new YourStack(myStage, 'Stack2');
//
// // Define an environment-agnostic stack:
// // `.account` and `.region` will resolve to `{ "Ref": "AWS::AccountId" }` and `{ "Ref": "AWS::Region" }` respectively.
// // which will only resolve to actual values by CloudFormation during deployment.
// new MyStack(app, 'Stack1');
//
// Default: - The environment of the containing `Stage` if available,
// otherwise create the stack will be environment-agnostic.
//
// Experimental.
Env *awscdk.Environment `field:"optional" json:"env" yaml:"env"`
// Options for applying a permissions boundary to all IAM Roles and Users created within this Stage.
// Default: - no permissions boundary is applied.
//
// Experimental.
PermissionsBoundary awscdk.PermissionsBoundary `field:"optional" json:"permissionsBoundary" yaml:"permissionsBoundary"`
// Name to deploy the stack with.
// Default: - Derived from construct path.
//
// Experimental.
StackName *string `field:"optional" json:"stackName" yaml:"stackName"`
// Enable this flag to suppress indentation in generated CloudFormation templates.
//
// If not specified, the value of the `@aws-cdk/core:suppressTemplateIndentation`
// context key will be used. If that is not specified, then the
// default value `false` will be used.
// Default: - the value of `@aws-cdk/core:suppressTemplateIndentation`, or `false` if that is not set.
//
// Experimental.
SuppressTemplateIndentation *bool `field:"optional" json:"suppressTemplateIndentation" yaml:"suppressTemplateIndentation"`
// Synthesis method to use while deploying this stack.
//
// The Stack Synthesizer controls aspects of synthesis and deployment,
// like how assets are referenced and what IAM roles to use. For more
// information, see the README of the main CDK package.
//
// If not specified, the `defaultStackSynthesizer` from `App` will be used.
// If that is not specified, `DefaultStackSynthesizer` is used if
// `@aws-cdk/core:newStyleStackSynthesis` is set to `true` or the CDK major
// version is v2. In CDK v1 `LegacyStackSynthesizer` is the default if no
// other synthesizer is specified.
// Default: - The synthesizer specified on `App`, or `DefaultStackSynthesizer` otherwise.
//
// Experimental.
Synthesizer awscdk.IStackSynthesizer `field:"optional" json:"synthesizer" yaml:"synthesizer"`
// Stack tags that will be applied to all the taggable resources and the stack itself.
// Default: {}.
//
// Experimental.
Tags *map[string]*string `field:"optional" json:"tags" yaml:"tags"`
// Whether to enable termination protection for this stack.
// Default: false.
//
// Experimental.
TerminationProtection *bool `field:"optional" json:"terminationProtection" yaml:"terminationProtection"`
// The monitoring configuration to apply to this stack.
// Default: - No monitoring.
//
// Experimental.
Monitoring *MonitoringFacadeProps `field:"optional" json:"monitoring" yaml:"monitoring"`
}
Properties for the AuroraClusterStack. Experimental.
type BuildAlarmsProps ¶
type BuildAlarmsProps struct {
// Experimental.
Alarms *[]*AlarmDefinitionProps `field:"required" json:"alarms" yaml:"alarms"`
// Experimental.
Node constructs.Construct `field:"required" json:"node" yaml:"node"`
// Experimental.
NodeIdentifier *string `field:"required" json:"nodeIdentifier" yaml:"nodeIdentifier"`
}
Experimental.
type CacheClusterMonitoringAspect ¶
type CacheClusterMonitoringAspect interface {
awscdk.IAspect
// Experimental.
MonitoringFacade() ICondenseMonitoringFacade
// Overrides the default configuration for a specific Elasticache cluster.
// Experimental.
OverrideConfig(node awselasticache.CfnCacheCluster, config *CacheClusterMonitoringConfig)
// All aspects can visit an IConstruct.
// Experimental.
Visit(node constructs.IConstruct)
}
The CacheClusterMonitoringAspect iterates over the Elasticache clusters and adds monitoring widgets and alarms. Experimental.
func NewCacheClusterMonitoringAspect ¶
func NewCacheClusterMonitoringAspect(monitoringFacade ICondenseMonitoringFacade) CacheClusterMonitoringAspect
Experimental.
type CacheClusterMonitoringConfig ¶
type CacheClusterMonitoringConfig struct {
// The CPU Utilization (%) threshold.
// Default: 90.
//
// Experimental.
CpuUtilizationThreshold *float64 `field:"optional" json:"cpuUtilizationThreshold" yaml:"cpuUtilizationThreshold"`
// The Engine CPU Utilization (%) threshold.
// Default: 95.
//
// Experimental.
EngineCpuUtilizationThreshold *float64 `field:"optional" json:"engineCpuUtilizationThreshold" yaml:"engineCpuUtilizationThreshold"`
// The Max Connections threshold.
// Default: 60,000.
//
// Experimental.
MaxConnectionsThreshold *float64 `field:"optional" json:"maxConnectionsThreshold" yaml:"maxConnectionsThreshold"`
// The Memory Usage (%) threshold.
// Default: 90.
//
// Experimental.
MemoryUsageThreshold *float64 `field:"optional" json:"memoryUsageThreshold" yaml:"memoryUsageThreshold"`
// The Replication Lag threshold.
// Default: - No threshold.
//
// Experimental.
ReplicationLagThreshold awscdk.Duration `field:"optional" json:"replicationLagThreshold" yaml:"replicationLagThreshold"`
}
The CacheClusterMonitoringConfig defines the thresholds for the cache cluster monitoring. Experimental.
type CloudwatchAlarmsDiscordConfig ¶
type CloudwatchAlarmsDiscordConfig struct {
// Experimental.
Webhook *string `field:"required" json:"webhook" yaml:"webhook"`
// Experimental.
Username *string `field:"optional" json:"username" yaml:"username"`
}
Discord configuration for the Cloudwatch Alarms Topic. Experimental.
type CloudwatchAlarmsTopicStack ¶
type CloudwatchAlarmsTopicStack interface {
awscdk.Stack
// The AWS account into which this stack will be deployed.
//
// This value is resolved according to the following rules:
//
// 1. The value provided to `env.account` when the stack is defined. This can
// either be a concrete account (e.g. `585695031111`) or the
// `Aws.ACCOUNT_ID` token.
// 3. `Aws.ACCOUNT_ID`, which represents the CloudFormation intrinsic reference
// `{ "Ref": "AWS::AccountId" }` encoded as a string token.
//
// Preferably, you should use the return value as an opaque string and not
// attempt to parse it to implement your logic. If you do, you must first
// check that it is a concrete value an not an unresolved token. If this
// value is an unresolved token (`Token.isUnresolved(stack.account)` returns
// `true`), this implies that the user wishes that this stack will synthesize
// into a **account-agnostic template**. In this case, your code should either
// fail (throw an error, emit a synth error using `Annotations.of(construct).addError()`) or
// implement some other region-agnostic behavior.
// Experimental.
Account() *string
// Experimental.
AlarmsTopic() awssns.Topic
// The ID of the cloud assembly artifact for this stack.
// Experimental.
ArtifactId() *string
// Returns the list of AZs that are available in the AWS environment (account/region) associated with this stack.
//
// If the stack is environment-agnostic (either account and/or region are
// tokens), this property will return an array with 2 tokens that will resolve
// at deploy-time to the first two availability zones returned from CloudFormation's
// `Fn::GetAZs` intrinsic function.
//
// If they are not available in the context, returns a set of dummy values and
// reports them as missing, and let the CLI resolve them by calling EC2
// `DescribeAvailabilityZones` on the target environment.
//
// To specify a different strategy for selecting availability zones override this method.
// Experimental.
AvailabilityZones() *[]*string
// Indicates whether the stack requires bundling or not.
// Experimental.
BundlingRequired() *bool
// Return the stacks this stack depends on.
// Experimental.
Dependencies() *[]awscdk.Stack
// The environment coordinates in which this stack is deployed.
//
// In the form
// `aws://account/region`. Use `stack.account` and `stack.region` to obtain
// the specific values, no need to parse.
//
// You can use this value to determine if two stacks are targeting the same
// environment.
//
// If either `stack.account` or `stack.region` are not concrete values (e.g.
// `Aws.ACCOUNT_ID` or `Aws.REGION`) the special strings `unknown-account` and/or
// `unknown-region` will be used respectively to indicate this stack is
// region/account-agnostic.
// Experimental.
Environment() *string
// Indicates if this is a nested stack, in which case `parentStack` will include a reference to it's parent.
// Experimental.
Nested() *bool
// If this is a nested stack, returns it's parent stack.
// Experimental.
NestedStackParent() awscdk.Stack
// If this is a nested stack, this represents its `AWS::CloudFormation::Stack` resource.
//
// `undefined` for top-level (non-nested) stacks.
// Experimental.
NestedStackResource() awscdk.CfnResource
// The tree node.
// Experimental.
Node() constructs.Node
// Returns the list of notification Amazon Resource Names (ARNs) for the current stack.
// Experimental.
NotificationArns() *[]*string
// The partition in which this stack is defined.
// Experimental.
Partition() *string
// The AWS region into which this stack will be deployed (e.g. `us-west-2`).
//
// This value is resolved according to the following rules:
//
// 1. The value provided to `env.region` when the stack is defined. This can
// either be a concrete region (e.g. `us-west-2`) or the `Aws.REGION`
// token.
// 3. `Aws.REGION`, which is represents the CloudFormation intrinsic reference
// `{ "Ref": "AWS::Region" }` encoded as a string token.
//
// Preferably, you should use the return value as an opaque string and not
// attempt to parse it to implement your logic. If you do, you must first
// check that it is a concrete value an not an unresolved token. If this
// value is an unresolved token (`Token.isUnresolved(stack.region)` returns
// `true`), this implies that the user wishes that this stack will synthesize
// into a **region-agnostic template**. In this case, your code should either
// fail (throw an error, emit a synth error using `Annotations.of(construct).addError()`) or
// implement some other region-agnostic behavior.
// Experimental.
Region() *string
// The ID of the stack.
//
// Example:
// // After resolving, looks like
// 'arn:aws:cloudformation:us-west-2:123456789012:stack/teststack/51af3dc0-da77-11e4-872e-1234567db123'
//
// Experimental.
StackId() *string
// The concrete CloudFormation physical stack name.
//
// This is either the name defined explicitly in the `stackName` prop or
// allocated based on the stack's location in the construct tree. Stacks that
// are directly defined under the app use their construct `id` as their stack
// name. Stacks that are defined deeper within the tree will use a hashed naming
// scheme based on the construct path to ensure uniqueness.
//
// If you wish to obtain the deploy-time AWS::StackName intrinsic,
// you can use `Aws.STACK_NAME` directly.
// Experimental.
StackName() *string
// Synthesis method for this stack.
// Experimental.
Synthesizer() awscdk.IStackSynthesizer
// Tags to be applied to the stack.
// Experimental.
Tags() awscdk.TagManager
// The name of the CloudFormation template file emitted to the output directory during synthesis.
//
// Example value: `MyStack.template.json`
// Experimental.
TemplateFile() *string
// Options for CloudFormation template (like version, transform, description).
// Experimental.
TemplateOptions() awscdk.ITemplateOptions
// Whether termination protection is enabled for this stack.
// Experimental.
TerminationProtection() *bool
// Experimental.
SetTerminationProtection(val *bool)
// The Amazon domain suffix for the region in which this stack is defined.
// Experimental.
UrlSuffix() *string
// Add a dependency between this stack and another stack.
//
// This can be used to define dependencies between any two stacks within an
// app, and also supports nested stacks.
// Experimental.
AddDependency(target awscdk.Stack, reason *string)
// Adds an arbitary key-value pair, with information you want to record about the stack.
//
// These get translated to the Metadata section of the generated template.
// See: https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/metadata-section-structure.html
//
// Experimental.
AddMetadata(key *string, value interface{})
// Add a Transform to this stack. A Transform is a macro that AWS CloudFormation uses to process your template.
//
// Duplicate values are removed when stack is synthesized.
//
// Example:
// declare const stack: Stack;
//
// stack.addTransform('AWS::Serverless-2016-10-31')
//
// See: https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/transform-section-structure.html
//
// Experimental.
AddTransform(transform *string)
// Returns the naming scheme used to allocate logical IDs.
//
// By default, uses
// the `HashedAddressingScheme` but this method can be overridden to customize
// this behavior.
//
// In order to make sure logical IDs are unique and stable, we hash the resource
// construct tree path (i.e. toplevel/secondlevel/.../myresource) and add it as
// a suffix to the path components joined without a separator (CloudFormation
// IDs only allow alphanumeric characters).
//
// The result will be:
//
// <path.join(”)><md5(path.join('/')>
// "human" "hash"
//
// If the "human" part of the ID exceeds 240 characters, we simply trim it so
// the total ID doesn't exceed CloudFormation's 255 character limit.
//
// We only take 8 characters from the md5 hash (0.000005 chance of collision).
//
// Special cases:
//
// - If the path only contains a single component (i.e. it's a top-level
// resource), we won't add the hash to it. The hash is not needed for
// disambiguation and also, it allows for a more straightforward migration an
// existing CloudFormation template to a CDK stack without logical ID changes
// (or renames).
// - For aesthetic reasons, if the last components of the path are the same
// (i.e. `L1/L2/Pipeline/Pipeline`), they will be de-duplicated to make the
// resulting human portion of the ID more pleasing: `L1L2Pipeline<HASH>`
// instead of `L1L2PipelinePipeline<HASH>`
// - If a component is named "Default" it will be omitted from the path. This
// allows refactoring higher level abstractions around constructs without affecting
// the IDs of already deployed resources.
// - If a component is named "Resource" it will be omitted from the user-visible
// path, but included in the hash. This reduces visual noise in the human readable
// part of the identifier.
// Experimental.
AllocateLogicalId(cfnElement awscdk.CfnElement) *string
// Create a CloudFormation Export for a string list value.
//
// Returns a string list representing the corresponding `Fn.importValue()`
// expression for this Export. The export expression is automatically wrapped with an
// `Fn::Join` and the import value with an `Fn::Split`, since CloudFormation can only
// export strings. You can control the name for the export by passing the `name` option.
//
// If you don't supply a value for `name`, the value you're exporting must be
// a Resource attribute (for example: `bucket.bucketName`) and it will be
// given the same name as the automatic cross-stack reference that would be created
// if you used the attribute in another Stack.
//
// One of the uses for this method is to *remove* the relationship between
// two Stacks established by automatic cross-stack references. It will
// temporarily ensure that the CloudFormation Export still exists while you
// remove the reference from the consuming stack. After that, you can remove
// the resource and the manual export.
//
// See `exportValue` for an example of this process.
// Experimental.
ExportStringListValue(exportedValue interface{}, options *awscdk.ExportValueOptions) *[]*string
// Create a CloudFormation Export for a string value.
//
// Returns a string representing the corresponding `Fn.importValue()`
// expression for this Export. You can control the name for the export by
// passing the `name` option.
//
// If you don't supply a value for `name`, the value you're exporting must be
// a Resource attribute (for example: `bucket.bucketName`) and it will be
// given the same name as the automatic cross-stack reference that would be created
// if you used the attribute in another Stack.
//
// One of the uses for this method is to *remove* the relationship between
// two Stacks established by automatic cross-stack references. It will
// temporarily ensure that the CloudFormation Export still exists while you
// remove the reference from the consuming stack. After that, you can remove
// the resource and the manual export.
//
// ## Example
//
// Here is how the process works. Let's say there are two stacks,
// `producerStack` and `consumerStack`, and `producerStack` has a bucket
// called `bucket`, which is referenced by `consumerStack` (perhaps because
// an AWS Lambda Function writes into it, or something like that).
//
// It is not safe to remove `producerStack.bucket` because as the bucket is being
// deleted, `consumerStack` might still be using it.
//
// Instead, the process takes two deployments:
//
// ### Deployment 1: break the relationship
//
// - Make sure `consumerStack` no longer references `bucket.bucketName` (maybe the consumer
// stack now uses its own bucket, or it writes to an AWS DynamoDB table, or maybe you just
// remove the Lambda Function altogether).
// - In the `ProducerStack` class, call `this.exportValue(this.bucket.bucketName)`. This
// will make sure the CloudFormation Export continues to exist while the relationship
// between the two stacks is being broken.
// - Deploy (this will effectively only change the `consumerStack`, but it's safe to deploy both).
//
// ### Deployment 2: remove the bucket resource
//
// - You are now free to remove the `bucket` resource from `producerStack`.
// - Don't forget to remove the `exportValue()` call as well.
// - Deploy again (this time only the `producerStack` will be changed -- the bucket will be deleted).
// Experimental.
ExportValue(exportedValue interface{}, options *awscdk.ExportValueOptions) *string
// Creates an ARN from components.
//
// If `partition`, `region` or `account` are not specified, the stack's
// partition, region and account will be used.
//
// If any component is the empty string, an empty string will be inserted
// into the generated ARN at the location that component corresponds to.
//
// The ARN will be formatted as follows:
//
// arn:{partition}:{service}:{region}:{account}:{resource}{sep}{resource-name}
//
// The required ARN pieces that are omitted will be taken from the stack that
// the 'scope' is attached to. If all ARN pieces are supplied, the supplied scope
// can be 'undefined'.
// Experimental.
FormatArn(components *awscdk.ArnComponents) *string
// Allocates a stack-unique CloudFormation-compatible logical identity for a specific resource.
//
// This method is called when a `CfnElement` is created and used to render the
// initial logical identity of resources. Logical ID renames are applied at
// this stage.
//
// This method uses the protected method `allocateLogicalId` to render the
// logical ID for an element. To modify the naming scheme, extend the `Stack`
// class and override this method.
// Experimental.
GetLogicalId(element awscdk.CfnElement) *string
// Look up a fact value for the given fact for the region of this stack.
//
// Will return a definite value only if the region of the current stack is resolved.
// If not, a lookup map will be added to the stack and the lookup will be done at
// CDK deployment time.
//
// What regions will be included in the lookup map is controlled by the
// `@aws-cdk/core:target-partitions` context value: it must be set to a list
// of partitions, and only regions from the given partitions will be included.
// If no such context key is set, all regions will be included.
//
// This function is intended to be used by construct library authors. Application
// builders can rely on the abstractions offered by construct libraries and do
// not have to worry about regional facts.
//
// If `defaultValue` is not given, it is an error if the fact is unknown for
// the given region.
// Experimental.
RegionalFact(factName *string, defaultValue *string) *string
// Rename a generated logical identities.
//
// To modify the naming scheme strategy, extend the `Stack` class and
// override the `allocateLogicalId` method.
// Experimental.
RenameLogicalId(oldId *string, newId *string)
// Indicate that a context key was expected.
//
// Contains instructions which will be emitted into the cloud assembly on how
// the key should be supplied.
// Experimental.
ReportMissingContextKey(report *cloudassemblyschema.MissingContext)
// Resolve a tokenized value in the context of the current stack.
// Experimental.
Resolve(obj interface{}) interface{}
// Splits the provided ARN into its components.
//
// Works both if 'arn' is a string like 'arn:aws:s3:::bucket',
// and a Token representing a dynamic CloudFormation expression
// (in which case the returned components will also be dynamic CloudFormation expressions,
// encoded as Tokens).
// Experimental.
SplitArn(arn *string, arnFormat awscdk.ArnFormat) *awscdk.ArnComponents
// Convert an object, potentially containing tokens, to a JSON string.
// Experimental.
ToJsonString(obj interface{}, space *float64) *string
// Returns a string representation of this construct.
// Experimental.
ToString() *string
// Convert an object, potentially containing tokens, to a YAML string.
// Experimental.
ToYamlString(obj interface{}) *string
}
The CloudwatchAlarmsTopicStack creates an SNS topic for Cloudwatch alarms.
The stack and optionally sends the alarms to Discord or Jira. Experimental.
func NewCloudwatchAlarmsTopicStack ¶
func NewCloudwatchAlarmsTopicStack(scope constructs.Construct, id *string, props *CloudwatchAlarmsTopicStackProps) CloudwatchAlarmsTopicStack
Experimental.
type CloudwatchAlarmsTopicStackProps ¶
type CloudwatchAlarmsTopicStackProps struct {
// Include runtime versioning information in this Stack.
// Default: `analyticsReporting` setting of containing `App`, or value of
// 'aws:cdk:version-reporting' context key.
//
// Experimental.
AnalyticsReporting *bool `field:"optional" json:"analyticsReporting" yaml:"analyticsReporting"`
// Enable this flag to allow native cross region stack references.
//
// Enabling this will create a CloudFormation custom resource
// in both the producing stack and consuming stack in order to perform the export/import
//
// This feature is currently experimental.
// Default: false.
//
// Experimental.
CrossRegionReferences *bool `field:"optional" json:"crossRegionReferences" yaml:"crossRegionReferences"`
// A description of the stack.
// Default: - No description.
//
// Experimental.
Description *string `field:"optional" json:"description" yaml:"description"`
// The AWS environment (account/region) where this stack will be deployed.
//
// Set the `region`/`account` fields of `env` to either a concrete value to
// select the indicated environment (recommended for production stacks), or to
// the values of environment variables
// `CDK_DEFAULT_REGION`/`CDK_DEFAULT_ACCOUNT` to let the target environment
// depend on the AWS credentials/configuration that the CDK CLI is executed
// under (recommended for development stacks).
//
// If the `Stack` is instantiated inside a `Stage`, any undefined
// `region`/`account` fields from `env` will default to the same field on the
// encompassing `Stage`, if configured there.
//
// If either `region` or `account` are not set nor inherited from `Stage`, the
// Stack will be considered "*environment-agnostic*"". Environment-agnostic
// stacks can be deployed to any environment but may not be able to take
// advantage of all features of the CDK. For example, they will not be able to
// use environmental context lookups such as `ec2.Vpc.fromLookup` and will not
// automatically translate Service Principals to the right format based on the
// environment's AWS partition, and other such enhancements.
//
// Example:
// // Use a concrete account and region to deploy this stack to:
// // `.account` and `.region` will simply return these values.
// new Stack(app, 'Stack1', {
// env: {
// account: '123456789012',
// region: 'us-east-1'
// },
// });
//
// // Use the CLI's current credentials to determine the target environment:
// // `.account` and `.region` will reflect the account+region the CLI
// // is configured to use (based on the user CLI credentials)
// new Stack(app, 'Stack2', {
// env: {
// account: process.env.CDK_DEFAULT_ACCOUNT,
// region: process.env.CDK_DEFAULT_REGION
// },
// });
//
// // Define multiple stacks stage associated with an environment
// const myStage = new Stage(app, 'MyStage', {
// env: {
// account: '123456789012',
// region: 'us-east-1'
// }
// });
//
// // both of these stacks will use the stage's account/region:
// // `.account` and `.region` will resolve to the concrete values as above
// new MyStack(myStage, 'Stack1');
// new YourStack(myStage, 'Stack2');
//
// // Define an environment-agnostic stack:
// // `.account` and `.region` will resolve to `{ "Ref": "AWS::AccountId" }` and `{ "Ref": "AWS::Region" }` respectively.
// // which will only resolve to actual values by CloudFormation during deployment.
// new MyStack(app, 'Stack1');
//
// Default: - The environment of the containing `Stage` if available,
// otherwise create the stack will be environment-agnostic.
//
// Experimental.
Env *awscdk.Environment `field:"optional" json:"env" yaml:"env"`
// Options for applying a permissions boundary to all IAM Roles and Users created within this Stage.
// Default: - no permissions boundary is applied.
//
// Experimental.
PermissionsBoundary awscdk.PermissionsBoundary `field:"optional" json:"permissionsBoundary" yaml:"permissionsBoundary"`
// Name to deploy the stack with.
// Default: - Derived from construct path.
//
// Experimental.
StackName *string `field:"optional" json:"stackName" yaml:"stackName"`
// Enable this flag to suppress indentation in generated CloudFormation templates.
//
// If not specified, the value of the `@aws-cdk/core:suppressTemplateIndentation`
// context key will be used. If that is not specified, then the
// default value `false` will be used.
// Default: - the value of `@aws-cdk/core:suppressTemplateIndentation`, or `false` if that is not set.
//
// Experimental.
SuppressTemplateIndentation *bool `field:"optional" json:"suppressTemplateIndentation" yaml:"suppressTemplateIndentation"`
// Synthesis method to use while deploying this stack.
//
// The Stack Synthesizer controls aspects of synthesis and deployment,
// like how assets are referenced and what IAM roles to use. For more
// information, see the README of the main CDK package.
//
// If not specified, the `defaultStackSynthesizer` from `App` will be used.
// If that is not specified, `DefaultStackSynthesizer` is used if
// `@aws-cdk/core:newStyleStackSynthesis` is set to `true` or the CDK major
// version is v2. In CDK v1 `LegacyStackSynthesizer` is the default if no
// other synthesizer is specified.
// Default: - The synthesizer specified on `App`, or `DefaultStackSynthesizer` otherwise.
//
// Experimental.
Synthesizer awscdk.IStackSynthesizer `field:"optional" json:"synthesizer" yaml:"synthesizer"`
// Stack tags that will be applied to all the taggable resources and the stack itself.
// Default: {}.
//
// Experimental.
Tags *map[string]*string `field:"optional" json:"tags" yaml:"tags"`
// Whether to enable termination protection for this stack.
// Default: false.
//
// Experimental.
TerminationProtection *bool `field:"optional" json:"terminationProtection" yaml:"terminationProtection"`
// Discord webhook configuration.
//
// If provided, the alarms will be sent to the Discord channel.
// Experimental.
Discord *CloudwatchAlarmsDiscordConfig `field:"optional" json:"discord" yaml:"discord"`
// Jira subscription webhook.
//
// If provided, the alarms will be sent to Jira.
// Deprecated: Use `urlSubscriptionWebhooks` instead.
JiraSubscriptionWebhook *string `field:"optional" json:"jiraSubscriptionWebhook" yaml:"jiraSubscriptionWebhook"`
// The name of the alarms topic.
//
// It is recommended to set a name.
// Experimental.
TopicName *string `field:"optional" json:"topicName" yaml:"topicName"`
// Subscription webhooks.
//
// If provided, an HTTP request is made against the provided url with alarm details.
// Experimental.
UrlSubscriptionWebhooks *[]*string `field:"optional" json:"urlSubscriptionWebhooks" yaml:"urlSubscriptionWebhooks"`
}
Properties for the CloudwatchAlarmsTopicStack. Experimental.
type DatabaseInstance ¶
type DatabaseInstance interface {
constructs.Construct
IDatabase
// The network connections associated with this resource.
// Experimental.
Connections() awsec2.Connections
// The endpoint of the database.
// Experimental.
Endpoint() awsrds.Endpoint
// The tree node.
// Experimental.
Node() constructs.Node
// Utility method that returns the secret with the credentials to access the database in a cross-stack compatible way.
// Experimental.
FetchSecret(scope constructs.Construct, id *string) awssecretsmanager.ISecret
// Returns a string representation of this construct.
// Experimental.
ToString() *string
}
The DatabaseInstance construct creates an RDS database instance.
Under the hood, it creates a [rds.DatabaseInstance](https://docs.aws.amazon.com/cdk/api/v2/docs/aws-cdk-lib.aws_rds-readme.html#starting-an-instance-database) construct. It implements the IDatabase interface so that it can be used in other constructs and stacks without requiring to access to the underlying construct.
It also applies the following changes to the default behavior:
- A [rds.ParameterGroup](https://docs.aws.amazon.com/cdk/api/v2/docs/aws-cdk-lib.aws_rds-readme.html#parameter-groups) specific for the cluster is always defined. By using a custom parameter group instead of relying on the default one, a later change in the parameter group's parameters wouldn't require a replace of the cluster.
- The credentials secret name is created after the construct's path. This way, the secret name is more readable and, when working with multiple stacks, can be easily inferred without having to rely on Cloudformation exports.
- It defaults the storage type to GP3 when not specified.
- It defaults the allocated storage to the minimum storage of 20 GB when not specified.
- The default instance type is set to t3.small.
- The storage is always encrypted.
Experimental.
func NewDatabaseInstance ¶
func NewDatabaseInstance(scope constructs.Construct, id *string, props *DatabaseInstanceProps) DatabaseInstance
Experimental.
type DatabaseInstanceProps ¶
type DatabaseInstanceProps struct {
// The engine of the database instance.
// Experimental.
Engine awsrds.IInstanceEngine `field:"required" json:"engine" yaml:"engine"`
// The networking configuration for the database instance.
// Experimental.
Networking INetworking `field:"required" json:"networking" yaml:"networking"`
// The allocated storage of the database instance.
// Default: 20.
//
// Experimental.
AllocatedStorage *float64 `field:"optional" json:"allocatedStorage" yaml:"allocatedStorage"`
// The backup retention period.
// Default: - It uses the default applied by [rds.DatabaseInstanceProps#backupRetention]https://docs.aws.amazon.com/cdk/api/v2/docs/aws-cdk-lib.aws_rds.DatabaseInstanceProps.html#backupretention).
//
// Experimental.
BackupRetention awscdk.Duration `field:"optional" json:"backupRetention" yaml:"backupRetention"`
// The name of the secret that stores the credentials of the database.
// Default: `${construct.node.path}/secret`
//
// Experimental.
CredentialsSecretName *string `field:"optional" json:"credentialsSecretName" yaml:"credentialsSecretName"`
// The name of the database.
// Default: - No default database is created.
//
// Experimental.
DatabaseName *string `field:"optional" json:"databaseName" yaml:"databaseName"`
// The identifier of the database instance.
// Default: - No identifier is specified.
//
// Experimental.
InstanceIdentifier *string `field:"optional" json:"instanceIdentifier" yaml:"instanceIdentifier"`
// The name of the database instance.
// Default: - No name is specified.
//
// Deprecated: Use `instanceIdentifier` instead.
InstanceName *string `field:"optional" json:"instanceName" yaml:"instanceName"`
// The instance type of the database instance.
// Default: - db.t3.small.
//
// Experimental.
InstanceType awsec2.InstanceType `field:"optional" json:"instanceType" yaml:"instanceType"`
// If the database instance is multi-AZ.
// Default: false.
//
// Experimental.
MultiAz *bool `field:"optional" json:"multiAz" yaml:"multiAz"`
// The storage type of the database instance.
// Default: rds.StorageType.GP3
//
// Experimental.
StorageType awsrds.StorageType `field:"optional" json:"storageType" yaml:"storageType"`
}
Properties for the DatabaseInstance construct. Experimental.
type DatabaseInstanceStack ¶
type DatabaseInstanceStack interface {
awscdk.Stack
IDatabase
// The AWS account into which this stack will be deployed.
//
// This value is resolved according to the following rules:
//
// 1. The value provided to `env.account` when the stack is defined. This can
// either be a concrete account (e.g. `585695031111`) or the
// `Aws.ACCOUNT_ID` token.
// 3. `Aws.ACCOUNT_ID`, which represents the CloudFormation intrinsic reference
// `{ "Ref": "AWS::AccountId" }` encoded as a string token.
//
// Preferably, you should use the return value as an opaque string and not
// attempt to parse it to implement your logic. If you do, you must first
// check that it is a concrete value an not an unresolved token. If this
// value is an unresolved token (`Token.isUnresolved(stack.account)` returns
// `true`), this implies that the user wishes that this stack will synthesize
// into a **account-agnostic template**. In this case, your code should either
// fail (throw an error, emit a synth error using `Annotations.of(construct).addError()`) or
// implement some other region-agnostic behavior.
// Experimental.
Account() *string
// The ID of the cloud assembly artifact for this stack.
// Experimental.
ArtifactId() *string
// Returns the list of AZs that are available in the AWS environment (account/region) associated with this stack.
//
// If the stack is environment-agnostic (either account and/or region are
// tokens), this property will return an array with 2 tokens that will resolve
// at deploy-time to the first two availability zones returned from CloudFormation's
// `Fn::GetAZs` intrinsic function.
//
// If they are not available in the context, returns a set of dummy values and
// reports them as missing, and let the CLI resolve them by calling EC2
// `DescribeAvailabilityZones` on the target environment.
//
// To specify a different strategy for selecting availability zones override this method.
// Experimental.
AvailabilityZones() *[]*string
// Indicates whether the stack requires bundling or not.
// Experimental.
BundlingRequired() *bool
// The network connections associated with this resource.
// Experimental.
Connections() awsec2.Connections
// Return the stacks this stack depends on.
// Experimental.
Dependencies() *[]awscdk.Stack
// The endpoint of the database.
// Experimental.
Endpoint() awsrds.Endpoint
// The environment coordinates in which this stack is deployed.
//
// In the form
// `aws://account/region`. Use `stack.account` and `stack.region` to obtain
// the specific values, no need to parse.
//
// You can use this value to determine if two stacks are targeting the same
// environment.
//
// If either `stack.account` or `stack.region` are not concrete values (e.g.
// `Aws.ACCOUNT_ID` or `Aws.REGION`) the special strings `unknown-account` and/or
// `unknown-region` will be used respectively to indicate this stack is
// region/account-agnostic.
// Experimental.
Environment() *string
// Indicates if this is a nested stack, in which case `parentStack` will include a reference to it's parent.
// Experimental.
Nested() *bool
// If this is a nested stack, returns it's parent stack.
// Experimental.
NestedStackParent() awscdk.Stack
// If this is a nested stack, this represents its `AWS::CloudFormation::Stack` resource.
//
// `undefined` for top-level (non-nested) stacks.
// Experimental.
NestedStackResource() awscdk.CfnResource
// The tree node.
// Experimental.
Node() constructs.Node
// Returns the list of notification Amazon Resource Names (ARNs) for the current stack.
// Experimental.
NotificationArns() *[]*string
// The partition in which this stack is defined.
// Experimental.
Partition() *string
// The AWS region into which this stack will be deployed (e.g. `us-west-2`).
//
// This value is resolved according to the following rules:
//
// 1. The value provided to `env.region` when the stack is defined. This can
// either be a concrete region (e.g. `us-west-2`) or the `Aws.REGION`
// token.
// 3. `Aws.REGION`, which is represents the CloudFormation intrinsic reference
// `{ "Ref": "AWS::Region" }` encoded as a string token.
//
// Preferably, you should use the return value as an opaque string and not
// attempt to parse it to implement your logic. If you do, you must first
// check that it is a concrete value an not an unresolved token. If this
// value is an unresolved token (`Token.isUnresolved(stack.region)` returns
// `true`), this implies that the user wishes that this stack will synthesize
// into a **region-agnostic template**. In this case, your code should either
// fail (throw an error, emit a synth error using `Annotations.of(construct).addError()`) or
// implement some other region-agnostic behavior.
// Experimental.
Region() *string
// The ID of the stack.
//
// Example:
// // After resolving, looks like
// 'arn:aws:cloudformation:us-west-2:123456789012:stack/teststack/51af3dc0-da77-11e4-872e-1234567db123'
//
// Experimental.
StackId() *string
// The concrete CloudFormation physical stack name.
//
// This is either the name defined explicitly in the `stackName` prop or
// allocated based on the stack's location in the construct tree. Stacks that
// are directly defined under the app use their construct `id` as their stack
// name. Stacks that are defined deeper within the tree will use a hashed naming
// scheme based on the construct path to ensure uniqueness.
//
// If you wish to obtain the deploy-time AWS::StackName intrinsic,
// you can use `Aws.STACK_NAME` directly.
// Experimental.
StackName() *string
// Synthesis method for this stack.
// Experimental.
Synthesizer() awscdk.IStackSynthesizer
// Tags to be applied to the stack.
// Experimental.
Tags() awscdk.TagManager
// The name of the CloudFormation template file emitted to the output directory during synthesis.
//
// Example value: `MyStack.template.json`
// Experimental.
TemplateFile() *string
// Options for CloudFormation template (like version, transform, description).
// Experimental.
TemplateOptions() awscdk.ITemplateOptions
// Whether termination protection is enabled for this stack.
// Experimental.
TerminationProtection() *bool
// Experimental.
SetTerminationProtection(val *bool)
// The Amazon domain suffix for the region in which this stack is defined.
// Experimental.
UrlSuffix() *string
// Add a dependency between this stack and another stack.
//
// This can be used to define dependencies between any two stacks within an
// app, and also supports nested stacks.
// Experimental.
AddDependency(target awscdk.Stack, reason *string)
// Adds an arbitary key-value pair, with information you want to record about the stack.
//
// These get translated to the Metadata section of the generated template.
// See: https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/metadata-section-structure.html
//
// Experimental.
AddMetadata(key *string, value interface{})
// Add a Transform to this stack. A Transform is a macro that AWS CloudFormation uses to process your template.
//
// Duplicate values are removed when stack is synthesized.
//
// Example:
// declare const stack: Stack;
//
// stack.addTransform('AWS::Serverless-2016-10-31')
//
// See: https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/transform-section-structure.html
//
// Experimental.
AddTransform(transform *string)
// Returns the naming scheme used to allocate logical IDs.
//
// By default, uses
// the `HashedAddressingScheme` but this method can be overridden to customize
// this behavior.
//
// In order to make sure logical IDs are unique and stable, we hash the resource
// construct tree path (i.e. toplevel/secondlevel/.../myresource) and add it as
// a suffix to the path components joined without a separator (CloudFormation
// IDs only allow alphanumeric characters).
//
// The result will be:
//
// <path.join(”)><md5(path.join('/')>
// "human" "hash"
//
// If the "human" part of the ID exceeds 240 characters, we simply trim it so
// the total ID doesn't exceed CloudFormation's 255 character limit.
//
// We only take 8 characters from the md5 hash (0.000005 chance of collision).
//
// Special cases:
//
// - If the path only contains a single component (i.e. it's a top-level
// resource), we won't add the hash to it. The hash is not needed for
// disambiguation and also, it allows for a more straightforward migration an
// existing CloudFormation template to a CDK stack without logical ID changes
// (or renames).
// - For aesthetic reasons, if the last components of the path are the same
// (i.e. `L1/L2/Pipeline/Pipeline`), they will be de-duplicated to make the
// resulting human portion of the ID more pleasing: `L1L2Pipeline<HASH>`
// instead of `L1L2PipelinePipeline<HASH>`
// - If a component is named "Default" it will be omitted from the path. This
// allows refactoring higher level abstractions around constructs without affecting
// the IDs of already deployed resources.
// - If a component is named "Resource" it will be omitted from the user-visible
// path, but included in the hash. This reduces visual noise in the human readable
// part of the identifier.
// Experimental.
AllocateLogicalId(cfnElement awscdk.CfnElement) *string
// Create a CloudFormation Export for a string list value.
//
// Returns a string list representing the corresponding `Fn.importValue()`
// expression for this Export. The export expression is automatically wrapped with an
// `Fn::Join` and the import value with an `Fn::Split`, since CloudFormation can only
// export strings. You can control the name for the export by passing the `name` option.
//
// If you don't supply a value for `name`, the value you're exporting must be
// a Resource attribute (for example: `bucket.bucketName`) and it will be
// given the same name as the automatic cross-stack reference that would be created
// if you used the attribute in another Stack.
//
// One of the uses for this method is to *remove* the relationship between
// two Stacks established by automatic cross-stack references. It will
// temporarily ensure that the CloudFormation Export still exists while you
// remove the reference from the consuming stack. After that, you can remove
// the resource and the manual export.
//
// See `exportValue` for an example of this process.
// Experimental.
ExportStringListValue(exportedValue interface{}, options *awscdk.ExportValueOptions) *[]*string
// Create a CloudFormation Export for a string value.
//
// Returns a string representing the corresponding `Fn.importValue()`
// expression for this Export. You can control the name for the export by
// passing the `name` option.
//
// If you don't supply a value for `name`, the value you're exporting must be
// a Resource attribute (for example: `bucket.bucketName`) and it will be
// given the same name as the automatic cross-stack reference that would be created
// if you used the attribute in another Stack.
//
// One of the uses for this method is to *remove* the relationship between
// two Stacks established by automatic cross-stack references. It will
// temporarily ensure that the CloudFormation Export still exists while you
// remove the reference from the consuming stack. After that, you can remove
// the resource and the manual export.
//
// ## Example
//
// Here is how the process works. Let's say there are two stacks,
// `producerStack` and `consumerStack`, and `producerStack` has a bucket
// called `bucket`, which is referenced by `consumerStack` (perhaps because
// an AWS Lambda Function writes into it, or something like that).
//
// It is not safe to remove `producerStack.bucket` because as the bucket is being
// deleted, `consumerStack` might still be using it.
//
// Instead, the process takes two deployments:
//
// ### Deployment 1: break the relationship
//
// - Make sure `consumerStack` no longer references `bucket.bucketName` (maybe the consumer
// stack now uses its own bucket, or it writes to an AWS DynamoDB table, or maybe you just
// remove the Lambda Function altogether).
// - In the `ProducerStack` class, call `this.exportValue(this.bucket.bucketName)`. This
// will make sure the CloudFormation Export continues to exist while the relationship
// between the two stacks is being broken.
// - Deploy (this will effectively only change the `consumerStack`, but it's safe to deploy both).
//
// ### Deployment 2: remove the bucket resource
//
// - You are now free to remove the `bucket` resource from `producerStack`.
// - Don't forget to remove the `exportValue()` call as well.
// - Deploy again (this time only the `producerStack` will be changed -- the bucket will be deleted).
// Experimental.
ExportValue(exportedValue interface{}, options *awscdk.ExportValueOptions) *string
// Utility method that returns the secret with the credentials to access the database in a cross-stack compatible way.
// Experimental.
FetchSecret(scope constructs.Construct, id *string) awssecretsmanager.ISecret
// Creates an ARN from components.
//
// If `partition`, `region` or `account` are not specified, the stack's
// partition, region and account will be used.
//
// If any component is the empty string, an empty string will be inserted
// into the generated ARN at the location that component corresponds to.
//
// The ARN will be formatted as follows:
//
// arn:{partition}:{service}:{region}:{account}:{resource}{sep}{resource-name}
//
// The required ARN pieces that are omitted will be taken from the stack that
// the 'scope' is attached to. If all ARN pieces are supplied, the supplied scope
// can be 'undefined'.
// Experimental.
FormatArn(components *awscdk.ArnComponents) *string
// Allocates a stack-unique CloudFormation-compatible logical identity for a specific resource.
//
// This method is called when a `CfnElement` is created and used to render the
// initial logical identity of resources. Logical ID renames are applied at
// this stage.
//
// This method uses the protected method `allocateLogicalId` to render the
// logical ID for an element. To modify the naming scheme, extend the `Stack`
// class and override this method.
// Experimental.
GetLogicalId(element awscdk.CfnElement) *string
// Look up a fact value for the given fact for the region of this stack.
//
// Will return a definite value only if the region of the current stack is resolved.
// If not, a lookup map will be added to the stack and the lookup will be done at
// CDK deployment time.
//
// What regions will be included in the lookup map is controlled by the
// `@aws-cdk/core:target-partitions` context value: it must be set to a list
// of partitions, and only regions from the given partitions will be included.
// If no such context key is set, all regions will be included.
//
// This function is intended to be used by construct library authors. Application
// builders can rely on the abstractions offered by construct libraries and do
// not have to worry about regional facts.
//
// If `defaultValue` is not given, it is an error if the fact is unknown for
// the given region.
// Experimental.
RegionalFact(factName *string, defaultValue *string) *string
// Rename a generated logical identities.
//
// To modify the naming scheme strategy, extend the `Stack` class and
// override the `allocateLogicalId` method.
// Experimental.
RenameLogicalId(oldId *string, newId *string)
// Indicate that a context key was expected.
//
// Contains instructions which will be emitted into the cloud assembly on how
// the key should be supplied.
// Experimental.
ReportMissingContextKey(report *cloudassemblyschema.MissingContext)
// Resolve a tokenized value in the context of the current stack.
// Experimental.
Resolve(obj interface{}) interface{}
// Splits the provided ARN into its components.
//
// Works both if 'arn' is a string like 'arn:aws:s3:::bucket',
// and a Token representing a dynamic CloudFormation expression
// (in which case the returned components will also be dynamic CloudFormation expressions,
// encoded as Tokens).
// Experimental.
SplitArn(arn *string, arnFormat awscdk.ArnFormat) *awscdk.ArnComponents
// Convert an object, potentially containing tokens, to a JSON string.
// Experimental.
ToJsonString(obj interface{}, space *float64) *string
// Returns a string representation of this construct.
// Experimental.
ToString() *string
// Convert an object, potentially containing tokens, to a YAML string.
// Experimental.
ToYamlString(obj interface{}) *string
}
The DatabaseInstanceStack creates a DatabaseInstance(#@condensetech/cdk-constructs.DatabaseInstance) construct and optionally defines the monitoring configuration. It implements the IDatabase interface so that it can be used in other constructs and stacks without requiring to access to the underlying construct. Experimental.
func NewDatabaseInstanceStack ¶
func NewDatabaseInstanceStack(scope constructs.Construct, id *string, props *DatabaseInstanceStackProps) DatabaseInstanceStack
Experimental.
type DatabaseInstanceStackProps ¶
type DatabaseInstanceStackProps struct {
// The engine of the database instance.
// Experimental.
Engine awsrds.IInstanceEngine `field:"required" json:"engine" yaml:"engine"`
// The networking configuration for the database instance.
// Experimental.
Networking INetworking `field:"required" json:"networking" yaml:"networking"`
// The allocated storage of the database instance.
// Default: 20.
//
// Experimental.
AllocatedStorage *float64 `field:"optional" json:"allocatedStorage" yaml:"allocatedStorage"`
// The backup retention period.
// Default: - It uses the default applied by [rds.DatabaseInstanceProps#backupRetention]https://docs.aws.amazon.com/cdk/api/v2/docs/aws-cdk-lib.aws_rds.DatabaseInstanceProps.html#backupretention).
//
// Experimental.
BackupRetention awscdk.Duration `field:"optional" json:"backupRetention" yaml:"backupRetention"`
// The name of the secret that stores the credentials of the database.
// Default: `${construct.node.path}/secret`
//
// Experimental.
CredentialsSecretName *string `field:"optional" json:"credentialsSecretName" yaml:"credentialsSecretName"`
// The name of the database.
// Default: - No default database is created.
//
// Experimental.
DatabaseName *string `field:"optional" json:"databaseName" yaml:"databaseName"`
// The identifier of the database instance.
// Default: - No identifier is specified.
//
// Experimental.
InstanceIdentifier *string `field:"optional" json:"instanceIdentifier" yaml:"instanceIdentifier"`
// The name of the database instance.
// Default: - No name is specified.
//
// Deprecated: Use `instanceIdentifier` instead.
InstanceName *string `field:"optional" json:"instanceName" yaml:"instanceName"`
// The instance type of the database instance.
// Default: - db.t3.small.
//
// Experimental.
InstanceType awsec2.InstanceType `field:"optional" json:"instanceType" yaml:"instanceType"`
// If the database instance is multi-AZ.
// Default: false.
//
// Experimental.
MultiAz *bool `field:"optional" json:"multiAz" yaml:"multiAz"`
// The storage type of the database instance.
// Default: rds.StorageType.GP3
//
// Experimental.
StorageType awsrds.StorageType `field:"optional" json:"storageType" yaml:"storageType"`
// Include runtime versioning information in this Stack.
// Default: `analyticsReporting` setting of containing `App`, or value of
// 'aws:cdk:version-reporting' context key.
//
// Experimental.
AnalyticsReporting *bool `field:"optional" json:"analyticsReporting" yaml:"analyticsReporting"`
// Enable this flag to allow native cross region stack references.
//
// Enabling this will create a CloudFormation custom resource
// in both the producing stack and consuming stack in order to perform the export/import
//
// This feature is currently experimental.
// Default: false.
//
// Experimental.
CrossRegionReferences *bool `field:"optional" json:"crossRegionReferences" yaml:"crossRegionReferences"`
// A description of the stack.
// Default: - No description.
//
// Experimental.
Description *string `field:"optional" json:"description" yaml:"description"`
// The AWS environment (account/region) where this stack will be deployed.
//
// Set the `region`/`account` fields of `env` to either a concrete value to
// select the indicated environment (recommended for production stacks), or to
// the values of environment variables
// `CDK_DEFAULT_REGION`/`CDK_DEFAULT_ACCOUNT` to let the target environment
// depend on the AWS credentials/configuration that the CDK CLI is executed
// under (recommended for development stacks).
//
// If the `Stack` is instantiated inside a `Stage`, any undefined
// `region`/`account` fields from `env` will default to the same field on the
// encompassing `Stage`, if configured there.
//
// If either `region` or `account` are not set nor inherited from `Stage`, the
// Stack will be considered "*environment-agnostic*"". Environment-agnostic
// stacks can be deployed to any environment but may not be able to take
// advantage of all features of the CDK. For example, they will not be able to
// use environmental context lookups such as `ec2.Vpc.fromLookup` and will not
// automatically translate Service Principals to the right format based on the
// environment's AWS partition, and other such enhancements.
//
// Example:
// // Use a concrete account and region to deploy this stack to:
// // `.account` and `.region` will simply return these values.
// new Stack(app, 'Stack1', {
// env: {
// account: '123456789012',
// region: 'us-east-1'
// },
// });
//
// // Use the CLI's current credentials to determine the target environment:
// // `.account` and `.region` will reflect the account+region the CLI
// // is configured to use (based on the user CLI credentials)
// new Stack(app, 'Stack2', {
// env: {
// account: process.env.CDK_DEFAULT_ACCOUNT,
// region: process.env.CDK_DEFAULT_REGION
// },
// });
//
// // Define multiple stacks stage associated with an environment
// const myStage = new Stage(app, 'MyStage', {
// env: {
// account: '123456789012',
// region: 'us-east-1'
// }
// });
//
// // both of these stacks will use the stage's account/region:
// // `.account` and `.region` will resolve to the concrete values as above
// new MyStack(myStage, 'Stack1');
// new YourStack(myStage, 'Stack2');
//
// // Define an environment-agnostic stack:
// // `.account` and `.region` will resolve to `{ "Ref": "AWS::AccountId" }` and `{ "Ref": "AWS::Region" }` respectively.
// // which will only resolve to actual values by CloudFormation during deployment.
// new MyStack(app, 'Stack1');
//
// Default: - The environment of the containing `Stage` if available,
// otherwise create the stack will be environment-agnostic.
//
// Experimental.
Env *awscdk.Environment `field:"optional" json:"env" yaml:"env"`
// Options for applying a permissions boundary to all IAM Roles and Users created within this Stage.
// Default: - no permissions boundary is applied.
//
// Experimental.
PermissionsBoundary awscdk.PermissionsBoundary `field:"optional" json:"permissionsBoundary" yaml:"permissionsBoundary"`
// Name to deploy the stack with.
// Default: - Derived from construct path.
//
// Experimental.
StackName *string `field:"optional" json:"stackName" yaml:"stackName"`
// Enable this flag to suppress indentation in generated CloudFormation templates.
//
// If not specified, the value of the `@aws-cdk/core:suppressTemplateIndentation`
// context key will be used. If that is not specified, then the
// default value `false` will be used.
// Default: - the value of `@aws-cdk/core:suppressTemplateIndentation`, or `false` if that is not set.
//
// Experimental.
SuppressTemplateIndentation *bool `field:"optional" json:"suppressTemplateIndentation" yaml:"suppressTemplateIndentation"`
// Synthesis method to use while deploying this stack.
//
// The Stack Synthesizer controls aspects of synthesis and deployment,
// like how assets are referenced and what IAM roles to use. For more
// information, see the README of the main CDK package.
//
// If not specified, the `defaultStackSynthesizer` from `App` will be used.
// If that is not specified, `DefaultStackSynthesizer` is used if
// `@aws-cdk/core:newStyleStackSynthesis` is set to `true` or the CDK major
// version is v2. In CDK v1 `LegacyStackSynthesizer` is the default if no
// other synthesizer is specified.
// Default: - The synthesizer specified on `App`, or `DefaultStackSynthesizer` otherwise.
//
// Experimental.
Synthesizer awscdk.IStackSynthesizer `field:"optional" json:"synthesizer" yaml:"synthesizer"`
// Stack tags that will be applied to all the taggable resources and the stack itself.
// Default: {}.
//
// Experimental.
Tags *map[string]*string `field:"optional" json:"tags" yaml:"tags"`
// Whether to enable termination protection for this stack.
// Default: false.
//
// Experimental.
TerminationProtection *bool `field:"optional" json:"terminationProtection" yaml:"terminationProtection"`
// The monitoring configuration to apply to this stack.
// Default: - No monitoring.
//
// Experimental.
Monitoring *MonitoringFacadeProps `field:"optional" json:"monitoring" yaml:"monitoring"`
}
Properties for the DatabaseInstanceStack. Experimental.
type Entrypoint ¶
type Entrypoint interface {
constructs.Construct
IEntrypoint
// The ALB that serves as the entrypoint.
// Experimental.
Alb() awselasticloadbalancingv2.IApplicationLoadBalancer
// The domain name to which the entrypoint is associated.
// Experimental.
DomainName() *string
// Experimental.
Listener() awselasticloadbalancingv2.IApplicationListener
// The tree node.
// Experimental.
Node() constructs.Node
// Experimental.
SecurityGroup() awsec2.ISecurityGroup
// Utility method that returns the HTTPS listener of the entrypoint in a cross-stack compatible way.
// Experimental.
ReferenceListener(scope constructs.Construct, id *string) awselasticloadbalancingv2.IApplicationListener
// Returns a string representation of this construct.
// Experimental.
ToString() *string
}
The Entrypoint construct creates an Application Load Balancer (ALB) that serves as the centralized entry point for all applications.
This ALB is shared across multiple applications, primarily to optimize infrastructure costs by reducing the need for multiple load balancers. It implements the IEntrypoint interface so that it can be used in other constructs and stacks without requiring to access to the underlying construct.
It creates an HTTPS certificate, bound to the domain name and all subdomains (unless wildcardCertificate is set to false). It creates an ALB with: - an HTTP listener that redirects all traffic to HTTPS. - an HTTPS listener that returns a 403 Forbidden response by default. - a custom security group. This allows to expose the security group as a property of the entrypoint construct, making it easier to reference it in other constructs. Finally, it creates the Route 53 A and AAAA record that point to the ALB. Experimental.
func NewEntrypoint ¶
func NewEntrypoint(scope constructs.Construct, id *string, props *EntrypointProps) Entrypoint
Experimental.
type EntrypointProps ¶
type EntrypointProps struct {
// The domain name to which the entrypoint is associated.
// Experimental.
DomainName *string `field:"required" json:"domainName" yaml:"domainName"`
// The Route 53 hosted zone attributes for the domain name.
// Experimental.
HostedZoneProps *awsroute53.HostedZoneAttributes `field:"required" json:"hostedZoneProps" yaml:"hostedZoneProps"`
// The networking configuration for the entrypoint.
// Experimental.
Networking INetworking `field:"required" json:"networking" yaml:"networking"`
// The name of the entrypoint.
//
// This value is used as the name of the underlying Application Load Balancer (ALB)
// and as the prefix for the name of the associated security group.
// Default: - No name is specified.
//
// Experimental.
EntrypointName *string `field:"optional" json:"entrypointName" yaml:"entrypointName"`
// The name of the security group for the entrypoint.
// Default: `${entrypointName}-sg`.
//
// Deprecated: Use `securityGroupName` instead.
EntrypointSecurityGroupName *string `field:"optional" json:"entrypointSecurityGroupName" yaml:"entrypointSecurityGroupName"`
// The S3 bucket to store the logs of the ALB.
//
// Setting this will enable the access logs for the ALB.
// Default: - Logging is disabled.
//
// Experimental.
LogsBucket awss3.IBucket `field:"optional" json:"logsBucket" yaml:"logsBucket"`
// The name of the security group for the entrypoint.
// Default: `${entrypointName}-sg` if `entrypointName` is specified, otherwise no name is specified.
//
// Experimental.
SecurityGroupName *string `field:"optional" json:"securityGroupName" yaml:"securityGroupName"`
// Indicates whether the HTTPS certificate should be bound to all subdomains.
// Default: true.
//
// Experimental.
WildcardCertificate *bool `field:"optional" json:"wildcardCertificate" yaml:"wildcardCertificate"`
}
Properties for the Entrypoint construct. Experimental.
type EntrypointStack ¶
type EntrypointStack interface {
awscdk.Stack
IEntrypoint
// The AWS account into which this stack will be deployed.
//
// This value is resolved according to the following rules:
//
// 1. The value provided to `env.account` when the stack is defined. This can
// either be a concrete account (e.g. `585695031111`) or the
// `Aws.ACCOUNT_ID` token.
// 3. `Aws.ACCOUNT_ID`, which represents the CloudFormation intrinsic reference
// `{ "Ref": "AWS::AccountId" }` encoded as a string token.
//
// Preferably, you should use the return value as an opaque string and not
// attempt to parse it to implement your logic. If you do, you must first
// check that it is a concrete value an not an unresolved token. If this
// value is an unresolved token (`Token.isUnresolved(stack.account)` returns
// `true`), this implies that the user wishes that this stack will synthesize
// into a **account-agnostic template**. In this case, your code should either
// fail (throw an error, emit a synth error using `Annotations.of(construct).addError()`) or
// implement some other region-agnostic behavior.
// Experimental.
Account() *string
// The ALB that serves as the entrypoint.
// Experimental.
Alb() awselasticloadbalancingv2.IApplicationLoadBalancer
// The ID of the cloud assembly artifact for this stack.
// Experimental.
ArtifactId() *string
// Returns the list of AZs that are available in the AWS environment (account/region) associated with this stack.
//
// If the stack is environment-agnostic (either account and/or region are
// tokens), this property will return an array with 2 tokens that will resolve
// at deploy-time to the first two availability zones returned from CloudFormation's
// `Fn::GetAZs` intrinsic function.
//
// If they are not available in the context, returns a set of dummy values and
// reports them as missing, and let the CLI resolve them by calling EC2
// `DescribeAvailabilityZones` on the target environment.
//
// To specify a different strategy for selecting availability zones override this method.
// Experimental.
AvailabilityZones() *[]*string
// Indicates whether the stack requires bundling or not.
// Experimental.
BundlingRequired() *bool
// Return the stacks this stack depends on.
// Experimental.
Dependencies() *[]awscdk.Stack
// The domain name to which the entrypoint is associated.
// Experimental.
DomainName() *string
// The environment coordinates in which this stack is deployed.
//
// In the form
// `aws://account/region`. Use `stack.account` and `stack.region` to obtain
// the specific values, no need to parse.
//
// You can use this value to determine if two stacks are targeting the same
// environment.
//
// If either `stack.account` or `stack.region` are not concrete values (e.g.
// `Aws.ACCOUNT_ID` or `Aws.REGION`) the special strings `unknown-account` and/or
// `unknown-region` will be used respectively to indicate this stack is
// region/account-agnostic.
// Experimental.
Environment() *string
// Indicates if this is a nested stack, in which case `parentStack` will include a reference to it's parent.
// Experimental.
Nested() *bool
// If this is a nested stack, returns it's parent stack.
// Experimental.
NestedStackParent() awscdk.Stack
// If this is a nested stack, this represents its `AWS::CloudFormation::Stack` resource.
//
// `undefined` for top-level (non-nested) stacks.
// Experimental.
NestedStackResource() awscdk.CfnResource
// The tree node.
// Experimental.
Node() constructs.Node
// Returns the list of notification Amazon Resource Names (ARNs) for the current stack.
// Experimental.
NotificationArns() *[]*string
// The partition in which this stack is defined.
// Experimental.
Partition() *string
// The AWS region into which this stack will be deployed (e.g. `us-west-2`).
//
// This value is resolved according to the following rules:
//
// 1. The value provided to `env.region` when the stack is defined. This can
// either be a concrete region (e.g. `us-west-2`) or the `Aws.REGION`
// token.
// 3. `Aws.REGION`, which is represents the CloudFormation intrinsic reference
// `{ "Ref": "AWS::Region" }` encoded as a string token.
//
// Preferably, you should use the return value as an opaque string and not
// attempt to parse it to implement your logic. If you do, you must first
// check that it is a concrete value an not an unresolved token. If this
// value is an unresolved token (`Token.isUnresolved(stack.region)` returns
// `true`), this implies that the user wishes that this stack will synthesize
// into a **region-agnostic template**. In this case, your code should either
// fail (throw an error, emit a synth error using `Annotations.of(construct).addError()`) or
// implement some other region-agnostic behavior.
// Experimental.
Region() *string
// The ID of the stack.
//
// Example:
// // After resolving, looks like
// 'arn:aws:cloudformation:us-west-2:123456789012:stack/teststack/51af3dc0-da77-11e4-872e-1234567db123'
//
// Experimental.
StackId() *string
// The concrete CloudFormation physical stack name.
//
// This is either the name defined explicitly in the `stackName` prop or
// allocated based on the stack's location in the construct tree. Stacks that
// are directly defined under the app use their construct `id` as their stack
// name. Stacks that are defined deeper within the tree will use a hashed naming
// scheme based on the construct path to ensure uniqueness.
//
// If you wish to obtain the deploy-time AWS::StackName intrinsic,
// you can use `Aws.STACK_NAME` directly.
// Experimental.
StackName() *string
// Synthesis method for this stack.
// Experimental.
Synthesizer() awscdk.IStackSynthesizer
// Tags to be applied to the stack.
// Experimental.
Tags() awscdk.TagManager
// The name of the CloudFormation template file emitted to the output directory during synthesis.
//
// Example value: `MyStack.template.json`
// Experimental.
TemplateFile() *string
// Options for CloudFormation template (like version, transform, description).
// Experimental.
TemplateOptions() awscdk.ITemplateOptions
// Whether termination protection is enabled for this stack.
// Experimental.
TerminationProtection() *bool
// Experimental.
SetTerminationProtection(val *bool)
// The Amazon domain suffix for the region in which this stack is defined.
// Experimental.
UrlSuffix() *string
// Add a dependency between this stack and another stack.
//
// This can be used to define dependencies between any two stacks within an
// app, and also supports nested stacks.
// Experimental.
AddDependency(target awscdk.Stack, reason *string)
// Adds an arbitary key-value pair, with information you want to record about the stack.
//
// These get translated to the Metadata section of the generated template.
// See: https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/metadata-section-structure.html
//
// Experimental.
AddMetadata(key *string, value interface{})
// Add a Transform to this stack. A Transform is a macro that AWS CloudFormation uses to process your template.
//
// Duplicate values are removed when stack is synthesized.
//
// Example:
// declare const stack: Stack;
//
// stack.addTransform('AWS::Serverless-2016-10-31')
//
// See: https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/transform-section-structure.html
//
// Experimental.
AddTransform(transform *string)
// Returns the naming scheme used to allocate logical IDs.
//
// By default, uses
// the `HashedAddressingScheme` but this method can be overridden to customize
// this behavior.
//
// In order to make sure logical IDs are unique and stable, we hash the resource
// construct tree path (i.e. toplevel/secondlevel/.../myresource) and add it as
// a suffix to the path components joined without a separator (CloudFormation
// IDs only allow alphanumeric characters).
//
// The result will be:
//
// <path.join(”)><md5(path.join('/')>
// "human" "hash"
//
// If the "human" part of the ID exceeds 240 characters, we simply trim it so
// the total ID doesn't exceed CloudFormation's 255 character limit.
//
// We only take 8 characters from the md5 hash (0.000005 chance of collision).
//
// Special cases:
//
// - If the path only contains a single component (i.e. it's a top-level
// resource), we won't add the hash to it. The hash is not needed for
// disambiguation and also, it allows for a more straightforward migration an
// existing CloudFormation template to a CDK stack without logical ID changes
// (or renames).
// - For aesthetic reasons, if the last components of the path are the same
// (i.e. `L1/L2/Pipeline/Pipeline`), they will be de-duplicated to make the
// resulting human portion of the ID more pleasing: `L1L2Pipeline<HASH>`
// instead of `L1L2PipelinePipeline<HASH>`
// - If a component is named "Default" it will be omitted from the path. This
// allows refactoring higher level abstractions around constructs without affecting
// the IDs of already deployed resources.
// - If a component is named "Resource" it will be omitted from the user-visible
// path, but included in the hash. This reduces visual noise in the human readable
// part of the identifier.
// Experimental.
AllocateLogicalId(cfnElement awscdk.CfnElement) *string
// Create a CloudFormation Export for a string list value.
//
// Returns a string list representing the corresponding `Fn.importValue()`
// expression for this Export. The export expression is automatically wrapped with an
// `Fn::Join` and the import value with an `Fn::Split`, since CloudFormation can only
// export strings. You can control the name for the export by passing the `name` option.
//
// If you don't supply a value for `name`, the value you're exporting must be
// a Resource attribute (for example: `bucket.bucketName`) and it will be
// given the same name as the automatic cross-stack reference that would be created
// if you used the attribute in another Stack.
//
// One of the uses for this method is to *remove* the relationship between
// two Stacks established by automatic cross-stack references. It will
// temporarily ensure that the CloudFormation Export still exists while you
// remove the reference from the consuming stack. After that, you can remove
// the resource and the manual export.
//
// See `exportValue` for an example of this process.
// Experimental.
ExportStringListValue(exportedValue interface{}, options *awscdk.ExportValueOptions) *[]*string
// Create a CloudFormation Export for a string value.
//
// Returns a string representing the corresponding `Fn.importValue()`
// expression for this Export. You can control the name for the export by
// passing the `name` option.
//
// If you don't supply a value for `name`, the value you're exporting must be
// a Resource attribute (for example: `bucket.bucketName`) and it will be
// given the same name as the automatic cross-stack reference that would be created
// if you used the attribute in another Stack.
//
// One of the uses for this method is to *remove* the relationship between
// two Stacks established by automatic cross-stack references. It will
// temporarily ensure that the CloudFormation Export still exists while you
// remove the reference from the consuming stack. After that, you can remove
// the resource and the manual export.
//
// ## Example
//
// Here is how the process works. Let's say there are two stacks,
// `producerStack` and `consumerStack`, and `producerStack` has a bucket
// called `bucket`, which is referenced by `consumerStack` (perhaps because
// an AWS Lambda Function writes into it, or something like that).
//
// It is not safe to remove `producerStack.bucket` because as the bucket is being
// deleted, `consumerStack` might still be using it.
//
// Instead, the process takes two deployments:
//
// ### Deployment 1: break the relationship
//
// - Make sure `consumerStack` no longer references `bucket.bucketName` (maybe the consumer
// stack now uses its own bucket, or it writes to an AWS DynamoDB table, or maybe you just
// remove the Lambda Function altogether).
// - In the `ProducerStack` class, call `this.exportValue(this.bucket.bucketName)`. This
// will make sure the CloudFormation Export continues to exist while the relationship
// between the two stacks is being broken.
// - Deploy (this will effectively only change the `consumerStack`, but it's safe to deploy both).
//
// ### Deployment 2: remove the bucket resource
//
// - You are now free to remove the `bucket` resource from `producerStack`.
// - Don't forget to remove the `exportValue()` call as well.
// - Deploy again (this time only the `producerStack` will be changed -- the bucket will be deleted).
// Experimental.
ExportValue(exportedValue interface{}, options *awscdk.ExportValueOptions) *string
// Creates an ARN from components.
//
// If `partition`, `region` or `account` are not specified, the stack's
// partition, region and account will be used.
//
// If any component is the empty string, an empty string will be inserted
// into the generated ARN at the location that component corresponds to.
//
// The ARN will be formatted as follows:
//
// arn:{partition}:{service}:{region}:{account}:{resource}{sep}{resource-name}
//
// The required ARN pieces that are omitted will be taken from the stack that
// the 'scope' is attached to. If all ARN pieces are supplied, the supplied scope
// can be 'undefined'.
// Experimental.
FormatArn(components *awscdk.ArnComponents) *string
// Allocates a stack-unique CloudFormation-compatible logical identity for a specific resource.
//
// This method is called when a `CfnElement` is created and used to render the
// initial logical identity of resources. Logical ID renames are applied at
// this stage.
//
// This method uses the protected method `allocateLogicalId` to render the
// logical ID for an element. To modify the naming scheme, extend the `Stack`
// class and override this method.
// Experimental.
GetLogicalId(element awscdk.CfnElement) *string
// Utility method that returns the HTTPS listener of the entrypoint in a cross-stack compatible way.
// Experimental.
ReferenceListener(scope constructs.Construct, id *string) awselasticloadbalancingv2.IApplicationListener
// Look up a fact value for the given fact for the region of this stack.
//
// Will return a definite value only if the region of the current stack is resolved.
// If not, a lookup map will be added to the stack and the lookup will be done at
// CDK deployment time.
//
// What regions will be included in the lookup map is controlled by the
// `@aws-cdk/core:target-partitions` context value: it must be set to a list
// of partitions, and only regions from the given partitions will be included.
// If no such context key is set, all regions will be included.
//
// This function is intended to be used by construct library authors. Application
// builders can rely on the abstractions offered by construct libraries and do
// not have to worry about regional facts.
//
// If `defaultValue` is not given, it is an error if the fact is unknown for
// the given region.
// Experimental.
RegionalFact(factName *string, defaultValue *string) *string
// Rename a generated logical identities.
//
// To modify the naming scheme strategy, extend the `Stack` class and
// override the `allocateLogicalId` method.
// Experimental.
RenameLogicalId(oldId *string, newId *string)
// Indicate that a context key was expected.
//
// Contains instructions which will be emitted into the cloud assembly on how
// the key should be supplied.
// Experimental.
ReportMissingContextKey(report *cloudassemblyschema.MissingContext)
// Resolve a tokenized value in the context of the current stack.
// Experimental.
Resolve(obj interface{}) interface{}
// Splits the provided ARN into its components.
//
// Works both if 'arn' is a string like 'arn:aws:s3:::bucket',
// and a Token representing a dynamic CloudFormation expression
// (in which case the returned components will also be dynamic CloudFormation expressions,
// encoded as Tokens).
// Experimental.
SplitArn(arn *string, arnFormat awscdk.ArnFormat) *awscdk.ArnComponents
// Convert an object, potentially containing tokens, to a JSON string.
// Experimental.
ToJsonString(obj interface{}, space *float64) *string
// Returns a string representation of this construct.
// Experimental.
ToString() *string
// Convert an object, potentially containing tokens, to a YAML string.
// Experimental.
ToYamlString(obj interface{}) *string
}
The EntrypointStack creates an Entrypoint(#@condensetech/cdk-constructs.Entrypoint) construct and optionally defines the monitoring configuration. It implements the IEntrypoint interface so that it can be used in other constructs and stacks without requiring to access to the underlying construct. Experimental.
func NewEntrypointStack ¶
func NewEntrypointStack(scope constructs.Construct, id *string, props *EntrypointStackProps) EntrypointStack
Experimental.
type EntrypointStackProps ¶
type EntrypointStackProps struct {
// The domain name to which the entrypoint is associated.
// Experimental.
DomainName *string `field:"required" json:"domainName" yaml:"domainName"`
// The Route 53 hosted zone attributes for the domain name.
// Experimental.
HostedZoneProps *awsroute53.HostedZoneAttributes `field:"required" json:"hostedZoneProps" yaml:"hostedZoneProps"`
// The networking configuration for the entrypoint.
// Experimental.
Networking INetworking `field:"required" json:"networking" yaml:"networking"`
// The name of the entrypoint.
//
// This value is used as the name of the underlying Application Load Balancer (ALB)
// and as the prefix for the name of the associated security group.
// Default: - No name is specified.
//
// Experimental.
EntrypointName *string `field:"optional" json:"entrypointName" yaml:"entrypointName"`
// The name of the security group for the entrypoint.
// Default: `${entrypointName}-sg`.
//
// Deprecated: Use `securityGroupName` instead.
EntrypointSecurityGroupName *string `field:"optional" json:"entrypointSecurityGroupName" yaml:"entrypointSecurityGroupName"`
// The S3 bucket to store the logs of the ALB.
//
// Setting this will enable the access logs for the ALB.
// Default: - Logging is disabled.
//
// Experimental.
LogsBucket awss3.IBucket `field:"optional" json:"logsBucket" yaml:"logsBucket"`
// The name of the security group for the entrypoint.
// Default: `${entrypointName}-sg` if `entrypointName` is specified, otherwise no name is specified.
//
// Experimental.
SecurityGroupName *string `field:"optional" json:"securityGroupName" yaml:"securityGroupName"`
// Indicates whether the HTTPS certificate should be bound to all subdomains.
// Default: true.
//
// Experimental.
WildcardCertificate *bool `field:"optional" json:"wildcardCertificate" yaml:"wildcardCertificate"`
// Include runtime versioning information in this Stack.
// Default: `analyticsReporting` setting of containing `App`, or value of
// 'aws:cdk:version-reporting' context key.
//
// Experimental.
AnalyticsReporting *bool `field:"optional" json:"analyticsReporting" yaml:"analyticsReporting"`
// Enable this flag to allow native cross region stack references.
//
// Enabling this will create a CloudFormation custom resource
// in both the producing stack and consuming stack in order to perform the export/import
//
// This feature is currently experimental.
// Default: false.
//
// Experimental.
CrossRegionReferences *bool `field:"optional" json:"crossRegionReferences" yaml:"crossRegionReferences"`
// A description of the stack.
// Default: - No description.
//
// Experimental.
Description *string `field:"optional" json:"description" yaml:"description"`
// The AWS environment (account/region) where this stack will be deployed.
//
// Set the `region`/`account` fields of `env` to either a concrete value to
// select the indicated environment (recommended for production stacks), or to
// the values of environment variables
// `CDK_DEFAULT_REGION`/`CDK_DEFAULT_ACCOUNT` to let the target environment
// depend on the AWS credentials/configuration that the CDK CLI is executed
// under (recommended for development stacks).
//
// If the `Stack` is instantiated inside a `Stage`, any undefined
// `region`/`account` fields from `env` will default to the same field on the
// encompassing `Stage`, if configured there.
//
// If either `region` or `account` are not set nor inherited from `Stage`, the
// Stack will be considered "*environment-agnostic*"". Environment-agnostic
// stacks can be deployed to any environment but may not be able to take
// advantage of all features of the CDK. For example, they will not be able to
// use environmental context lookups such as `ec2.Vpc.fromLookup` and will not
// automatically translate Service Principals to the right format based on the
// environment's AWS partition, and other such enhancements.
//
// Example:
// // Use a concrete account and region to deploy this stack to:
// // `.account` and `.region` will simply return these values.
// new Stack(app, 'Stack1', {
// env: {
// account: '123456789012',
// region: 'us-east-1'
// },
// });
//
// // Use the CLI's current credentials to determine the target environment:
// // `.account` and `.region` will reflect the account+region the CLI
// // is configured to use (based on the user CLI credentials)
// new Stack(app, 'Stack2', {
// env: {
// account: process.env.CDK_DEFAULT_ACCOUNT,
// region: process.env.CDK_DEFAULT_REGION
// },
// });
//
// // Define multiple stacks stage associated with an environment
// const myStage = new Stage(app, 'MyStage', {
// env: {
// account: '123456789012',
// region: 'us-east-1'
// }
// });
//
// // both of these stacks will use the stage's account/region:
// // `.account` and `.region` will resolve to the concrete values as above
// new MyStack(myStage, 'Stack1');
// new YourStack(myStage, 'Stack2');
//
// // Define an environment-agnostic stack:
// // `.account` and `.region` will resolve to `{ "Ref": "AWS::AccountId" }` and `{ "Ref": "AWS::Region" }` respectively.
// // which will only resolve to actual values by CloudFormation during deployment.
// new MyStack(app, 'Stack1');
//
// Default: - The environment of the containing `Stage` if available,
// otherwise create the stack will be environment-agnostic.
//
// Experimental.
Env *awscdk.Environment `field:"optional" json:"env" yaml:"env"`
// Options for applying a permissions boundary to all IAM Roles and Users created within this Stage.
// Default: - no permissions boundary is applied.
//
// Experimental.
PermissionsBoundary awscdk.PermissionsBoundary `field:"optional" json:"permissionsBoundary" yaml:"permissionsBoundary"`
// Name to deploy the stack with.
// Default: - Derived from construct path.
//
// Experimental.
StackName *string `field:"optional" json:"stackName" yaml:"stackName"`
// Enable this flag to suppress indentation in generated CloudFormation templates.
//
// If not specified, the value of the `@aws-cdk/core:suppressTemplateIndentation`
// context key will be used. If that is not specified, then the
// default value `false` will be used.
// Default: - the value of `@aws-cdk/core:suppressTemplateIndentation`, or `false` if that is not set.
//
// Experimental.
SuppressTemplateIndentation *bool `field:"optional" json:"suppressTemplateIndentation" yaml:"suppressTemplateIndentation"`
// Synthesis method to use while deploying this stack.
//
// The Stack Synthesizer controls aspects of synthesis and deployment,
// like how assets are referenced and what IAM roles to use. For more
// information, see the README of the main CDK package.
//
// If not specified, the `defaultStackSynthesizer` from `App` will be used.
// If that is not specified, `DefaultStackSynthesizer` is used if
// `@aws-cdk/core:newStyleStackSynthesis` is set to `true` or the CDK major
// version is v2. In CDK v1 `LegacyStackSynthesizer` is the default if no
// other synthesizer is specified.
// Default: - The synthesizer specified on `App`, or `DefaultStackSynthesizer` otherwise.
//
// Experimental.
Synthesizer awscdk.IStackSynthesizer `field:"optional" json:"synthesizer" yaml:"synthesizer"`
// Stack tags that will be applied to all the taggable resources and the stack itself.
// Default: {}.
//
// Experimental.
Tags *map[string]*string `field:"optional" json:"tags" yaml:"tags"`
// Whether to enable termination protection for this stack.
// Default: false.
//
// Experimental.
TerminationProtection *bool `field:"optional" json:"terminationProtection" yaml:"terminationProtection"`
// The monitoring configuration to apply to this stack.
// Default: - No monitoring.
//
// Experimental.
Monitoring *MonitoringFacadeProps `field:"optional" json:"monitoring" yaml:"monitoring"`
}
Properties for the EntrypointStack. Experimental.
type FargateServiceMonitoringAspect ¶
type FargateServiceMonitoringAspect interface {
awscdk.IAspect
// Overrides the default configuration for a specific Fargate service.
// Experimental.
OverrideConfig(node awsecs.FargateService, config *FargateServiceMonitoringConfig)
// All aspects can visit an IConstruct.
// Experimental.
Visit(node constructs.IConstruct)
}
The FargateServiceMonitoringAspect iterates over the Fargate services and adds monitoring widgets and alarms. Experimental.
func NewFargateServiceMonitoringAspect ¶
func NewFargateServiceMonitoringAspect(monitoringFacade ICondenseMonitoringFacade) FargateServiceMonitoringAspect
Experimental.
type FargateServiceMonitoringConfig ¶
type FargateServiceMonitoringConfig struct {
// The CPU Utilization (%) threshold.
// Default: 90.
//
// Experimental.
CpuUtilizationThreshold *float64 `field:"optional" json:"cpuUtilizationThreshold" yaml:"cpuUtilizationThreshold"`
// The Memory Utilization (%) threshold.
// Default: 90.
//
// Experimental.
MemoryUtilization *float64 `field:"optional" json:"memoryUtilization" yaml:"memoryUtilization"`
}
The FargateServiceMonitoringConfig defines the thresholds for the Fargate service monitoring. Experimental.
type ICondenseMonitoringFacade ¶
type ICondenseMonitoringFacade interface {
// Add an alarm to the monitoring facade, by linking it to the alarms topic.
// Experimental.
AddAlarm(alarm awscloudwatch.Alarm)
// Returns the Cloudwatch dashboard to be used for this stack monitoring.
// Experimental.
Dashboard() awscloudwatch.Dashboard
}
The ICondenseMonitoringFacade interface defines the methods that the monitoring facade must implement. Experimental.
type IDatabase ¶
type IDatabase interface {
awsec2.IConnectable
// Utility method that returns the secret with the credentials to access the database in a cross-stack compatible way.
// Experimental.
FetchSecret(scope constructs.Construct, id *string) awssecretsmanager.ISecret
// The endpoint of the database.
// Experimental.
Endpoint() awsrds.Endpoint
}
The IDatabase interface allows to write stacks and constructs that depend on a database without being tied to the specific database implementation.
Example:
// In this example, MyConstruct is used across several IDatabase implementations without being tied to a specific construct or stack
interface MyProps {
database: IDatabase;
}
class MyConstruct extends Construct {
constructor(scope: Construct, id: string, props: MyProps) {
super(scope, id);
new CfnOutput(this, 'DatabaseEndpoint', { value: props.database.endpoint.hostname });
}
}
interface MyStackProps {
database3: IDatabase;
}
class MyStack extends cdk.Stack {
constructor(scope: Construct, id: string, props: MyStackProps) {
super(scope, id, props);
new MyConstruct(this, 'MyConstruct1', {
database: new AuroraCluster(this, 'Database', { ... })
});
new MyConstruct(this, 'MyConstruct2', {
database: new DatabaseInstance(this, 'Database', { ... })
});
new MyConstruct(this, 'MyConstruct3', {
database: props.database3
});
}
}
const database3 = new AuroraClustrStack(app, 'AuroraClusterStack', { ... });
new MyStack(app, 'MyStack', { database3 });
Experimental.
type IEntrypoint ¶
type IEntrypoint interface {
// Utility method that returns the HTTPS listener of the entrypoint in a cross-stack compatible way.
// Experimental.
ReferenceListener(scope constructs.Construct, id *string) awselasticloadbalancingv2.IApplicationListener
// The ALB that serves as the entrypoint.
// Experimental.
Alb() awselasticloadbalancingv2.IApplicationLoadBalancer
// The domain name to which the entrypoint is associated.
// Experimental.
DomainName() *string
}
The Entrypoint LoadBalancer is an Application Load Balancer (ALB) that serves as the centralized entry point for all applications.
This ALB is shared across multiple applications, primarily to optimize infrastructure costs by reducing the need for multiple load balancers.
The IEntrypoint interface defines the common behaviors and properties that various implementations must adhere to. This allows stacks and constructs to interact with the entry point without being dependent on a specific implementation, ensuring greater flexibility and maintainability. Experimental.
type INetworking ¶
type INetworking interface {
// Returns the bastion host instance of the VPC, if any.
// Experimental.
BastionHost() awsec2.BastionHostLinux
// Returns if the VPC has private subnets (with access to internet through a NAT gateway).
// Experimental.
HasPrivateSubnets() *bool
// Returns the isolated subnets of the VPC (without access to internet).
// Experimental.
IsolatedSubnets() *awsec2.SubnetSelection
// Returns the private subnets of the VPC (with access to internet through a NAT gateway).
// Experimental.
PrivateSubnets() *awsec2.SubnetSelection
// Returns the public subnets of the VPC.
// Experimental.
PublicSubnets() *awsec2.SubnetSelection
// The VPC where the networking resources are created.
// Experimental.
Vpc() awsec2.IVpc
}
The INetworking interface allows to write stacks and constructs that depend on networking without being tied to the specific networking implementation.
This allows to write composable infrastructures that, depending on the scenario, can split the networking layer in a separate stack or in a construct.
In addition, the INetworking interface imposes a set of properties to ease the development of constructs that depend on networking resources. Experimental.
type MonitoringFacade ¶
type MonitoringFacade interface {
ICondenseMonitoringFacade
// Experimental.
AlarmTopic() awssns.ITopic
// Returns the Cloudwatch dashboard to be used for this stack monitoring.
// Experimental.
Dashboard() awscloudwatch.Dashboard
// Add an alarm to the monitoring facade, by linking it to the alarms topic.
// Experimental.
AddAlarm(alarm awscloudwatch.Alarm)
// Overrides the default configuration for a specific Application Load Balancer.
// Experimental.
ConfigApplicationLoadBalancer(resource awselasticloadbalancingv2.ApplicationLoadBalancer, config *ApplicationLoadBalancerMonitoringConfig)
// Overrides the default configuration for a specific Elasticache cluster.
// Experimental.
ConfigCacheCluster(resource awselasticache.CfnCacheCluster, config *CacheClusterMonitoringConfig)
// Overrides the default configuration for a specific ECS Fargate service.
// Experimental.
ConfigFargateService(resource awsecs.FargateService, config *FargateServiceMonitoringConfig)
// Overrides the default configuration for a specific RDS cluster.
// Experimental.
ConfigRdsCluster(resource awsrds.DatabaseCluster, config *RdsClusterMonitoringConfig)
// Overrides the default configuration for a specific RDS instance.
// Experimental.
ConfigRdsInstance(resource awsrds.DatabaseInstance, config *RdsInstanceMonitoringConfig)
// Overrides the default configuration for a specific ELBv2 Target Group.
// Experimental.
ConfigTargetGroup(resource awselasticloadbalancingv2.ApplicationTargetGroup, config *TargetGroupMonitoringConfig)
}
The MonitoringFacade creates a Cloudwatch dashboard and applies monitoring aspects to resources.
These aspects will scan for resources, create alarms and add metrics to the MonitoringFacade dashboard.
This allow to have a centralized monitoring configuration for all resources in the stack.
Additionally, the `config*` methods allow to override the default configuration for a specific resource.
Example:
class MyStack extends cdk.Stack {
constructor(scope: Construct, id: string, props: cdk.StackProps) {
super(scope, id, props);
const cluster = new AuroraCluster(this, 'DatabaseCluster', { ... });
// Even if the MonitoringFacade is built after the AuroraCluster, the cluster will be monitored, because the aspects are executed after the stack is built.
const monitoring = new MonitoringFacade(this, { topicArn: 'arn:aws:sns:us-east-1:123456789012:MyTopic' });
const cluster2 = new AuroraCluster(this, 'DatabaseCluster2', { ... });
// The monitoring configuration for the second cluster is modified so that the CPU utilization alarm is triggered when the utilization is over the 10%.
monitoring.configRdsCluster(cluster2, {
cpuUtilizationThreshold: 0.1,
});
}
}
Experimental.
func MonitoringFacade_Of ¶
func MonitoringFacade_Of(scope constructs.Construct) MonitoringFacade
Experimental.
func NewMonitoringFacade ¶
func NewMonitoringFacade(scope awscdk.Stack, props *MonitoringFacadeProps) MonitoringFacade
Experimental.
type MonitoringFacadeProps ¶
type MonitoringFacadeProps struct {
// The ARN of the SNS topic to use for alarms.
// Experimental.
TopicArn *string `field:"required" json:"topicArn" yaml:"topicArn"`
// The name of the Cloudwatch dashboard to create.
// Default: - A name is generated by CDK.
//
// Experimental.
DashboardName *string `field:"optional" json:"dashboardName" yaml:"dashboardName"`
}
Properties for the MonitoringFacade. Experimental.
type NaiveBasicAuthCloudfrontFunction ¶
type NaiveBasicAuthCloudfrontFunction interface {
awscloudfront.Function
// The environment this resource belongs to.
//
// For resources that are created and managed by the CDK
// (generally, those created by creating new class instances like Role, Bucket, etc.),
// this is always the same as the environment of the stack they belong to;
// however, for imported resources
// (those obtained from static methods like fromRoleArn, fromBucketName, etc.),
// that might be different than the stack they were imported into.
// Experimental.
Env() *awscdk.ResourceEnvironment
// the ARN of the CloudFront function.
// Experimental.
FunctionArn() *string
// the name of the CloudFront function.
// Experimental.
FunctionName() *string
// the runtime of the CloudFront function.
// Experimental.
FunctionRuntime() *string
// the deployment stage of the CloudFront function.
// Experimental.
FunctionStage() *string
// The tree node.
// Experimental.
Node() constructs.Node
// Returns a string-encoded token that resolves to the physical name that should be passed to the CloudFormation resource.
//
// This value will resolve to one of the following:
// - a concrete value (e.g. `"my-awesome-bucket"`)
// - `undefined`, when a name should be generated by CloudFormation
// - a concrete name generated automatically during synthesis, in
// cross-environment scenarios.
// Experimental.
PhysicalName() *string
// The stack in which this resource is defined.
// Experimental.
Stack() awscdk.Stack
// Apply the given removal policy to this resource.
//
// The Removal Policy controls what happens to this resource when it stops
// being managed by CloudFormation, either because you've removed it from the
// CDK application or because you've made a change that requires the resource
// to be replaced.
//
// The resource can be deleted (`RemovalPolicy.DESTROY`), or left in your AWS
// account for data recovery and cleanup later (`RemovalPolicy.RETAIN`).
// Experimental.
ApplyRemovalPolicy(policy awscdk.RemovalPolicy)
// Experimental.
GeneratePhysicalName() *string
// Returns an environment-sensitive token that should be used for the resource's "ARN" attribute (e.g. `bucket.bucketArn`).
//
// Normally, this token will resolve to `arnAttr`, but if the resource is
// referenced across environments, `arnComponents` will be used to synthesize
// a concrete ARN with the resource's physical name. Make sure to reference
// `this.physicalName` in `arnComponents`.
// Experimental.
GetResourceArnAttribute(arnAttr *string, arnComponents *awscdk.ArnComponents) *string
// Returns an environment-sensitive token that should be used for the resource's "name" attribute (e.g. `bucket.bucketName`).
//
// Normally, this token will resolve to `nameAttr`, but if the resource is
// referenced across environments, it will be resolved to `this.physicalName`,
// which will be a concrete name.
// Experimental.
GetResourceNameAttribute(nameAttr *string) *string
// Returns a string representation of this construct.
// Experimental.
ToString() *string
}
A CloudFront function that implements a naive basic auth mechanism.
The function is naive because the basic auth string isn't treated as a secret and it's hardcoded in the function code.
This function is useful for simple use cases where you need to protect a CloudFront distribution with basic auth. A typical use case is to ensure that a staging environment isn't indexed by crawlers (just in case robots.txt is totally ignored). Experimental.
func NewNaiveBasicAuthCloudfrontFunction ¶
func NewNaiveBasicAuthCloudfrontFunction(scope constructs.Construct, id *string, props *NaiveBasicAuthCloudfrontFunctionProps) NaiveBasicAuthCloudfrontFunction
Experimental.
type NaiveBasicAuthCloudfrontFunctionExcludedPath ¶
type NaiveBasicAuthCloudfrontFunctionExcludedPath struct {
// The path to exclude from basic auth.
//
// Example:
// "/admin"
// "/\/admin\\/.+/"
//
// Experimental.
Path *string `field:"required" json:"path" yaml:"path"`
// The match mode to use for the path: - 'exact' for exact string match - 'regex' for regex match.
// Default: 'exact'.
//
// Experimental.
MatchMode *string `field:"optional" json:"matchMode" yaml:"matchMode"`
}
Exclusion path for the NaiveBasicAuthCloudfrontFunction. Experimental.
type NaiveBasicAuthCloudfrontFunctionProps ¶
type NaiveBasicAuthCloudfrontFunctionProps struct {
// The basic auth string to use for checking basic auth credentials You can generate a basic auth string using the following command: echo -n "$username:$password" | base64.
// Experimental.
BasicAuthString *string `field:"required" json:"basicAuthString" yaml:"basicAuthString"`
// The paths to exclude from basic auth.
//
// Pass a string or regex to match the path. Strings are checked using === operator.
// Default: - no paths are excluded.
//
// Experimental.
ExcludePaths *[]*NaiveBasicAuthCloudfrontFunctionExcludedPath `field:"optional" json:"excludePaths" yaml:"excludePaths"`
}
Props for the NaiveBasicAuthCloudfrontFunction construct. Experimental.
type Networking ¶
type Networking interface {
constructs.Construct
INetworking
// Returns the bastion host instance of the VPC, if any.
// Experimental.
BastionHost() awsec2.BastionHostLinux
// Returns if the VPC has private subnets (with access to internet through a NAT gateway).
// Experimental.
HasPrivateSubnets() *bool
// Returns the isolated subnets of the VPC (without access to internet).
// Experimental.
IsolatedSubnets() *awsec2.SubnetSelection
// The tree node.
// Experimental.
Node() constructs.Node
// Returns the private subnets of the VPC (with access to internet through a NAT gateway).
// Experimental.
PrivateSubnets() *awsec2.SubnetSelection
// Returns the public subnets of the VPC.
// Experimental.
PublicSubnets() *awsec2.SubnetSelection
// The VPC where the networking resources are created.
// Experimental.
Vpc() awsec2.IVpc
// Returns a string representation of this construct.
// Experimental.
ToString() *string
}
The Networking construct creates a VPC which can have public, private, and isolated subnets.
It enforces to define a CIDR block for the VPC, which is a best practice.
If the `natGateways` property is set to a positive integer, the VPC will be created with private subnets that have access to the internet through NAT gateways. If instead the `natGateways` property is set to 0, the VPC will have only public and isolated subnets. In this case, the subnets will anyway use a cidrMask of `24`, so that changing the number of NAT gateways will not require to re-provision the VPC.
In addition, this construct can also take care of creating a bastion host in the VPC by using the latest Amazon Linux AMI with the smallest available instance (t4g.nano), if the `bastionHostEnabled` property is set to `true`. Experimental.
func NewNetworking ¶
func NewNetworking(scope constructs.Construct, id *string, props *NetworkingProps) Networking
Experimental.
type NetworkingProps ¶
type NetworkingProps struct {
// Experimental.
IpAddresses awsec2.IIpAddresses `field:"required" json:"ipAddresses" yaml:"ipAddresses"`
// Experimental.
BastionHostAmi awsec2.IMachineImage `field:"optional" json:"bastionHostAmi" yaml:"bastionHostAmi"`
// Experimental.
BastionHostEnabled *bool `field:"optional" json:"bastionHostEnabled" yaml:"bastionHostEnabled"`
// Experimental.
BastionHostInstanceType awsec2.InstanceType `field:"optional" json:"bastionHostInstanceType" yaml:"bastionHostInstanceType"`
// Experimental.
BastionName *string `field:"optional" json:"bastionName" yaml:"bastionName"`
// Experimental.
MaxAzs *float64 `field:"optional" json:"maxAzs" yaml:"maxAzs"`
// Experimental.
NatGateways *float64 `field:"optional" json:"natGateways" yaml:"natGateways"`
// Experimental.
VpcName *string `field:"optional" json:"vpcName" yaml:"vpcName"`
}
Properties for the Networking construct. Experimental.
type NetworkingStack ¶
type NetworkingStack interface {
awscdk.Stack
INetworking
// The AWS account into which this stack will be deployed.
//
// This value is resolved according to the following rules:
//
// 1. The value provided to `env.account` when the stack is defined. This can
// either be a concrete account (e.g. `585695031111`) or the
// `Aws.ACCOUNT_ID` token.
// 3. `Aws.ACCOUNT_ID`, which represents the CloudFormation intrinsic reference
// `{ "Ref": "AWS::AccountId" }` encoded as a string token.
//
// Preferably, you should use the return value as an opaque string and not
// attempt to parse it to implement your logic. If you do, you must first
// check that it is a concrete value an not an unresolved token. If this
// value is an unresolved token (`Token.isUnresolved(stack.account)` returns
// `true`), this implies that the user wishes that this stack will synthesize
// into a **account-agnostic template**. In this case, your code should either
// fail (throw an error, emit a synth error using `Annotations.of(construct).addError()`) or
// implement some other region-agnostic behavior.
// Experimental.
Account() *string
// The ID of the cloud assembly artifact for this stack.
// Experimental.
ArtifactId() *string
// Returns the list of AZs that are available in the AWS environment (account/region) associated with this stack.
//
// If the stack is environment-agnostic (either account and/or region are
// tokens), this property will return an array with 2 tokens that will resolve
// at deploy-time to the first two availability zones returned from CloudFormation's
// `Fn::GetAZs` intrinsic function.
//
// If they are not available in the context, returns a set of dummy values and
// reports them as missing, and let the CLI resolve them by calling EC2
// `DescribeAvailabilityZones` on the target environment.
//
// To specify a different strategy for selecting availability zones override this method.
// Experimental.
AvailabilityZones() *[]*string
// Returns the bastion host instance of the VPC, if any.
// Experimental.
BastionHost() awsec2.BastionHostLinux
// Indicates whether the stack requires bundling or not.
// Experimental.
BundlingRequired() *bool
// Return the stacks this stack depends on.
// Experimental.
Dependencies() *[]awscdk.Stack
// The environment coordinates in which this stack is deployed.
//
// In the form
// `aws://account/region`. Use `stack.account` and `stack.region` to obtain
// the specific values, no need to parse.
//
// You can use this value to determine if two stacks are targeting the same
// environment.
//
// If either `stack.account` or `stack.region` are not concrete values (e.g.
// `Aws.ACCOUNT_ID` or `Aws.REGION`) the special strings `unknown-account` and/or
// `unknown-region` will be used respectively to indicate this stack is
// region/account-agnostic.
// Experimental.
Environment() *string
// Returns if the VPC has private subnets (with access to internet through a NAT gateway).
// Experimental.
HasPrivateSubnets() *bool
// Returns the isolated subnets of the VPC (without access to internet).
// Experimental.
IsolatedSubnets() *awsec2.SubnetSelection
// Indicates if this is a nested stack, in which case `parentStack` will include a reference to it's parent.
// Experimental.
Nested() *bool
// If this is a nested stack, returns it's parent stack.
// Experimental.
NestedStackParent() awscdk.Stack
// If this is a nested stack, this represents its `AWS::CloudFormation::Stack` resource.
//
// `undefined` for top-level (non-nested) stacks.
// Experimental.
NestedStackResource() awscdk.CfnResource
// The tree node.
// Experimental.
Node() constructs.Node
// Returns the list of notification Amazon Resource Names (ARNs) for the current stack.
// Experimental.
NotificationArns() *[]*string
// The partition in which this stack is defined.
// Experimental.
Partition() *string
// Returns the private subnets of the VPC (with access to internet through a NAT gateway).
// Experimental.
PrivateSubnets() *awsec2.SubnetSelection
// Returns the public subnets of the VPC.
// Experimental.
PublicSubnets() *awsec2.SubnetSelection
// The AWS region into which this stack will be deployed (e.g. `us-west-2`).
//
// This value is resolved according to the following rules:
//
// 1. The value provided to `env.region` when the stack is defined. This can
// either be a concrete region (e.g. `us-west-2`) or the `Aws.REGION`
// token.
// 3. `Aws.REGION`, which is represents the CloudFormation intrinsic reference
// `{ "Ref": "AWS::Region" }` encoded as a string token.
//
// Preferably, you should use the return value as an opaque string and not
// attempt to parse it to implement your logic. If you do, you must first
// check that it is a concrete value an not an unresolved token. If this
// value is an unresolved token (`Token.isUnresolved(stack.region)` returns
// `true`), this implies that the user wishes that this stack will synthesize
// into a **region-agnostic template**. In this case, your code should either
// fail (throw an error, emit a synth error using `Annotations.of(construct).addError()`) or
// implement some other region-agnostic behavior.
// Experimental.
Region() *string
// The ID of the stack.
//
// Example:
// // After resolving, looks like
// 'arn:aws:cloudformation:us-west-2:123456789012:stack/teststack/51af3dc0-da77-11e4-872e-1234567db123'
//
// Experimental.
StackId() *string
// The concrete CloudFormation physical stack name.
//
// This is either the name defined explicitly in the `stackName` prop or
// allocated based on the stack's location in the construct tree. Stacks that
// are directly defined under the app use their construct `id` as their stack
// name. Stacks that are defined deeper within the tree will use a hashed naming
// scheme based on the construct path to ensure uniqueness.
//
// If you wish to obtain the deploy-time AWS::StackName intrinsic,
// you can use `Aws.STACK_NAME` directly.
// Experimental.
StackName() *string
// Synthesis method for this stack.
// Experimental.
Synthesizer() awscdk.IStackSynthesizer
// Tags to be applied to the stack.
// Experimental.
Tags() awscdk.TagManager
// The name of the CloudFormation template file emitted to the output directory during synthesis.
//
// Example value: `MyStack.template.json`
// Experimental.
TemplateFile() *string
// Options for CloudFormation template (like version, transform, description).
// Experimental.
TemplateOptions() awscdk.ITemplateOptions
// Whether termination protection is enabled for this stack.
// Experimental.
TerminationProtection() *bool
// Experimental.
SetTerminationProtection(val *bool)
// The Amazon domain suffix for the region in which this stack is defined.
// Experimental.
UrlSuffix() *string
// The VPC where the networking resources are created.
// Experimental.
Vpc() awsec2.IVpc
// Add a dependency between this stack and another stack.
//
// This can be used to define dependencies between any two stacks within an
// app, and also supports nested stacks.
// Experimental.
AddDependency(target awscdk.Stack, reason *string)
// Adds an arbitary key-value pair, with information you want to record about the stack.
//
// These get translated to the Metadata section of the generated template.
// See: https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/metadata-section-structure.html
//
// Experimental.
AddMetadata(key *string, value interface{})
// Add a Transform to this stack. A Transform is a macro that AWS CloudFormation uses to process your template.
//
// Duplicate values are removed when stack is synthesized.
//
// Example:
// declare const stack: Stack;
//
// stack.addTransform('AWS::Serverless-2016-10-31')
//
// See: https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/transform-section-structure.html
//
// Experimental.
AddTransform(transform *string)
// Returns the naming scheme used to allocate logical IDs.
//
// By default, uses
// the `HashedAddressingScheme` but this method can be overridden to customize
// this behavior.
//
// In order to make sure logical IDs are unique and stable, we hash the resource
// construct tree path (i.e. toplevel/secondlevel/.../myresource) and add it as
// a suffix to the path components joined without a separator (CloudFormation
// IDs only allow alphanumeric characters).
//
// The result will be:
//
// <path.join(”)><md5(path.join('/')>
// "human" "hash"
//
// If the "human" part of the ID exceeds 240 characters, we simply trim it so
// the total ID doesn't exceed CloudFormation's 255 character limit.
//
// We only take 8 characters from the md5 hash (0.000005 chance of collision).
//
// Special cases:
//
// - If the path only contains a single component (i.e. it's a top-level
// resource), we won't add the hash to it. The hash is not needed for
// disambiguation and also, it allows for a more straightforward migration an
// existing CloudFormation template to a CDK stack without logical ID changes
// (or renames).
// - For aesthetic reasons, if the last components of the path are the same
// (i.e. `L1/L2/Pipeline/Pipeline`), they will be de-duplicated to make the
// resulting human portion of the ID more pleasing: `L1L2Pipeline<HASH>`
// instead of `L1L2PipelinePipeline<HASH>`
// - If a component is named "Default" it will be omitted from the path. This
// allows refactoring higher level abstractions around constructs without affecting
// the IDs of already deployed resources.
// - If a component is named "Resource" it will be omitted from the user-visible
// path, but included in the hash. This reduces visual noise in the human readable
// part of the identifier.
// Experimental.
AllocateLogicalId(cfnElement awscdk.CfnElement) *string
// Create a CloudFormation Export for a string list value.
//
// Returns a string list representing the corresponding `Fn.importValue()`
// expression for this Export. The export expression is automatically wrapped with an
// `Fn::Join` and the import value with an `Fn::Split`, since CloudFormation can only
// export strings. You can control the name for the export by passing the `name` option.
//
// If you don't supply a value for `name`, the value you're exporting must be
// a Resource attribute (for example: `bucket.bucketName`) and it will be
// given the same name as the automatic cross-stack reference that would be created
// if you used the attribute in another Stack.
//
// One of the uses for this method is to *remove* the relationship between
// two Stacks established by automatic cross-stack references. It will
// temporarily ensure that the CloudFormation Export still exists while you
// remove the reference from the consuming stack. After that, you can remove
// the resource and the manual export.
//
// See `exportValue` for an example of this process.
// Experimental.
ExportStringListValue(exportedValue interface{}, options *awscdk.ExportValueOptions) *[]*string
// Create a CloudFormation Export for a string value.
//
// Returns a string representing the corresponding `Fn.importValue()`
// expression for this Export. You can control the name for the export by
// passing the `name` option.
//
// If you don't supply a value for `name`, the value you're exporting must be
// a Resource attribute (for example: `bucket.bucketName`) and it will be
// given the same name as the automatic cross-stack reference that would be created
// if you used the attribute in another Stack.
//
// One of the uses for this method is to *remove* the relationship between
// two Stacks established by automatic cross-stack references. It will
// temporarily ensure that the CloudFormation Export still exists while you
// remove the reference from the consuming stack. After that, you can remove
// the resource and the manual export.
//
// ## Example
//
// Here is how the process works. Let's say there are two stacks,
// `producerStack` and `consumerStack`, and `producerStack` has a bucket
// called `bucket`, which is referenced by `consumerStack` (perhaps because
// an AWS Lambda Function writes into it, or something like that).
//
// It is not safe to remove `producerStack.bucket` because as the bucket is being
// deleted, `consumerStack` might still be using it.
//
// Instead, the process takes two deployments:
//
// ### Deployment 1: break the relationship
//
// - Make sure `consumerStack` no longer references `bucket.bucketName` (maybe the consumer
// stack now uses its own bucket, or it writes to an AWS DynamoDB table, or maybe you just
// remove the Lambda Function altogether).
// - In the `ProducerStack` class, call `this.exportValue(this.bucket.bucketName)`. This
// will make sure the CloudFormation Export continues to exist while the relationship
// between the two stacks is being broken.
// - Deploy (this will effectively only change the `consumerStack`, but it's safe to deploy both).
//
// ### Deployment 2: remove the bucket resource
//
// - You are now free to remove the `bucket` resource from `producerStack`.
// - Don't forget to remove the `exportValue()` call as well.
// - Deploy again (this time only the `producerStack` will be changed -- the bucket will be deleted).
// Experimental.
ExportValue(exportedValue interface{}, options *awscdk.ExportValueOptions) *string
// Creates an ARN from components.
//
// If `partition`, `region` or `account` are not specified, the stack's
// partition, region and account will be used.
//
// If any component is the empty string, an empty string will be inserted
// into the generated ARN at the location that component corresponds to.
//
// The ARN will be formatted as follows:
//
// arn:{partition}:{service}:{region}:{account}:{resource}{sep}{resource-name}
//
// The required ARN pieces that are omitted will be taken from the stack that
// the 'scope' is attached to. If all ARN pieces are supplied, the supplied scope
// can be 'undefined'.
// Experimental.
FormatArn(components *awscdk.ArnComponents) *string
// Allocates a stack-unique CloudFormation-compatible logical identity for a specific resource.
//
// This method is called when a `CfnElement` is created and used to render the
// initial logical identity of resources. Logical ID renames are applied at
// this stage.
//
// This method uses the protected method `allocateLogicalId` to render the
// logical ID for an element. To modify the naming scheme, extend the `Stack`
// class and override this method.
// Experimental.
GetLogicalId(element awscdk.CfnElement) *string
// Look up a fact value for the given fact for the region of this stack.
//
// Will return a definite value only if the region of the current stack is resolved.
// If not, a lookup map will be added to the stack and the lookup will be done at
// CDK deployment time.
//
// What regions will be included in the lookup map is controlled by the
// `@aws-cdk/core:target-partitions` context value: it must be set to a list
// of partitions, and only regions from the given partitions will be included.
// If no such context key is set, all regions will be included.
//
// This function is intended to be used by construct library authors. Application
// builders can rely on the abstractions offered by construct libraries and do
// not have to worry about regional facts.
//
// If `defaultValue` is not given, it is an error if the fact is unknown for
// the given region.
// Experimental.
RegionalFact(factName *string, defaultValue *string) *string
// Rename a generated logical identities.
//
// To modify the naming scheme strategy, extend the `Stack` class and
// override the `allocateLogicalId` method.
// Experimental.
RenameLogicalId(oldId *string, newId *string)
// Indicate that a context key was expected.
//
// Contains instructions which will be emitted into the cloud assembly on how
// the key should be supplied.
// Experimental.
ReportMissingContextKey(report *cloudassemblyschema.MissingContext)
// Resolve a tokenized value in the context of the current stack.
// Experimental.
Resolve(obj interface{}) interface{}
// Splits the provided ARN into its components.
//
// Works both if 'arn' is a string like 'arn:aws:s3:::bucket',
// and a Token representing a dynamic CloudFormation expression
// (in which case the returned components will also be dynamic CloudFormation expressions,
// encoded as Tokens).
// Experimental.
SplitArn(arn *string, arnFormat awscdk.ArnFormat) *awscdk.ArnComponents
// Convert an object, potentially containing tokens, to a JSON string.
// Experimental.
ToJsonString(obj interface{}, space *float64) *string
// Returns a string representation of this construct.
// Experimental.
ToString() *string
// Convert an object, potentially containing tokens, to a YAML string.
// Experimental.
ToYamlString(obj interface{}) *string
}
The NetworkingStack creates a Networking(#@condensetech/cdk-constructs.Networking) construct. It implements the INetworking interface so that it can be used in other constructs and stacks without requiring to access to the underlying construct. Experimental.
func NewNetworkingStack ¶
func NewNetworkingStack(scope constructs.Construct, id *string, props *NetworkingStackProps) NetworkingStack
Experimental.
type NetworkingStackProps ¶
type NetworkingStackProps struct {
// Experimental.
IpAddresses awsec2.IIpAddresses `field:"required" json:"ipAddresses" yaml:"ipAddresses"`
// Experimental.
BastionHostAmi awsec2.IMachineImage `field:"optional" json:"bastionHostAmi" yaml:"bastionHostAmi"`
// Experimental.
BastionHostEnabled *bool `field:"optional" json:"bastionHostEnabled" yaml:"bastionHostEnabled"`
// Experimental.
BastionHostInstanceType awsec2.InstanceType `field:"optional" json:"bastionHostInstanceType" yaml:"bastionHostInstanceType"`
// Experimental.
BastionName *string `field:"optional" json:"bastionName" yaml:"bastionName"`
// Experimental.
MaxAzs *float64 `field:"optional" json:"maxAzs" yaml:"maxAzs"`
// Experimental.
NatGateways *float64 `field:"optional" json:"natGateways" yaml:"natGateways"`
// Experimental.
VpcName *string `field:"optional" json:"vpcName" yaml:"vpcName"`
// Include runtime versioning information in this Stack.
// Default: `analyticsReporting` setting of containing `App`, or value of
// 'aws:cdk:version-reporting' context key.
//
// Experimental.
AnalyticsReporting *bool `field:"optional" json:"analyticsReporting" yaml:"analyticsReporting"`
// Enable this flag to allow native cross region stack references.
//
// Enabling this will create a CloudFormation custom resource
// in both the producing stack and consuming stack in order to perform the export/import
//
// This feature is currently experimental.
// Default: false.
//
// Experimental.
CrossRegionReferences *bool `field:"optional" json:"crossRegionReferences" yaml:"crossRegionReferences"`
// A description of the stack.
// Default: - No description.
//
// Experimental.
Description *string `field:"optional" json:"description" yaml:"description"`
// The AWS environment (account/region) where this stack will be deployed.
//
// Set the `region`/`account` fields of `env` to either a concrete value to
// select the indicated environment (recommended for production stacks), or to
// the values of environment variables
// `CDK_DEFAULT_REGION`/`CDK_DEFAULT_ACCOUNT` to let the target environment
// depend on the AWS credentials/configuration that the CDK CLI is executed
// under (recommended for development stacks).
//
// If the `Stack` is instantiated inside a `Stage`, any undefined
// `region`/`account` fields from `env` will default to the same field on the
// encompassing `Stage`, if configured there.
//
// If either `region` or `account` are not set nor inherited from `Stage`, the
// Stack will be considered "*environment-agnostic*"". Environment-agnostic
// stacks can be deployed to any environment but may not be able to take
// advantage of all features of the CDK. For example, they will not be able to
// use environmental context lookups such as `ec2.Vpc.fromLookup` and will not
// automatically translate Service Principals to the right format based on the
// environment's AWS partition, and other such enhancements.
//
// Example:
// // Use a concrete account and region to deploy this stack to:
// // `.account` and `.region` will simply return these values.
// new Stack(app, 'Stack1', {
// env: {
// account: '123456789012',
// region: 'us-east-1'
// },
// });
//
// // Use the CLI's current credentials to determine the target environment:
// // `.account` and `.region` will reflect the account+region the CLI
// // is configured to use (based on the user CLI credentials)
// new Stack(app, 'Stack2', {
// env: {
// account: process.env.CDK_DEFAULT_ACCOUNT,
// region: process.env.CDK_DEFAULT_REGION
// },
// });
//
// // Define multiple stacks stage associated with an environment
// const myStage = new Stage(app, 'MyStage', {
// env: {
// account: '123456789012',
// region: 'us-east-1'
// }
// });
//
// // both of these stacks will use the stage's account/region:
// // `.account` and `.region` will resolve to the concrete values as above
// new MyStack(myStage, 'Stack1');
// new YourStack(myStage, 'Stack2');
//
// // Define an environment-agnostic stack:
// // `.account` and `.region` will resolve to `{ "Ref": "AWS::AccountId" }` and `{ "Ref": "AWS::Region" }` respectively.
// // which will only resolve to actual values by CloudFormation during deployment.
// new MyStack(app, 'Stack1');
//
// Default: - The environment of the containing `Stage` if available,
// otherwise create the stack will be environment-agnostic.
//
// Experimental.
Env *awscdk.Environment `field:"optional" json:"env" yaml:"env"`
// Options for applying a permissions boundary to all IAM Roles and Users created within this Stage.
// Default: - no permissions boundary is applied.
//
// Experimental.
PermissionsBoundary awscdk.PermissionsBoundary `field:"optional" json:"permissionsBoundary" yaml:"permissionsBoundary"`
// Name to deploy the stack with.
// Default: - Derived from construct path.
//
// Experimental.
StackName *string `field:"optional" json:"stackName" yaml:"stackName"`
// Enable this flag to suppress indentation in generated CloudFormation templates.
//
// If not specified, the value of the `@aws-cdk/core:suppressTemplateIndentation`
// context key will be used. If that is not specified, then the
// default value `false` will be used.
// Default: - the value of `@aws-cdk/core:suppressTemplateIndentation`, or `false` if that is not set.
//
// Experimental.
SuppressTemplateIndentation *bool `field:"optional" json:"suppressTemplateIndentation" yaml:"suppressTemplateIndentation"`
// Synthesis method to use while deploying this stack.
//
// The Stack Synthesizer controls aspects of synthesis and deployment,
// like how assets are referenced and what IAM roles to use. For more
// information, see the README of the main CDK package.
//
// If not specified, the `defaultStackSynthesizer` from `App` will be used.
// If that is not specified, `DefaultStackSynthesizer` is used if
// `@aws-cdk/core:newStyleStackSynthesis` is set to `true` or the CDK major
// version is v2. In CDK v1 `LegacyStackSynthesizer` is the default if no
// other synthesizer is specified.
// Default: - The synthesizer specified on `App`, or `DefaultStackSynthesizer` otherwise.
//
// Experimental.
Synthesizer awscdk.IStackSynthesizer `field:"optional" json:"synthesizer" yaml:"synthesizer"`
// Stack tags that will be applied to all the taggable resources and the stack itself.
// Default: {}.
//
// Experimental.
Tags *map[string]*string `field:"optional" json:"tags" yaml:"tags"`
// Whether to enable termination protection for this stack.
// Default: false.
//
// Experimental.
TerminationProtection *bool `field:"optional" json:"terminationProtection" yaml:"terminationProtection"`
}
Properties for the NetworkingStack. Experimental.
type RdsClusterMonitoringAspect ¶
type RdsClusterMonitoringAspect interface {
awscdk.IAspect
// Overrides the default configuration for a specific RDS cluster.
// Experimental.
OverrideConfig(node awsrds.DatabaseCluster, config *RdsClusterMonitoringConfig)
// All aspects can visit an IConstruct.
// Experimental.
Visit(node constructs.IConstruct)
}
The RdsClusterMonitoringAspect iterates over the RDS clusters and adds monitoring widgets and alarms. Experimental.
func NewRdsClusterMonitoringAspect ¶
func NewRdsClusterMonitoringAspect(monitoringFacade ICondenseMonitoringFacade) RdsClusterMonitoringAspect
Experimental.
type RdsClusterMonitoringConfig ¶
type RdsClusterMonitoringConfig struct {
// The CPU Utilization (%) threshold.
// Default: 90.
//
// Experimental.
CpuUtilizationThreshold *float64 `field:"optional" json:"cpuUtilizationThreshold" yaml:"cpuUtilizationThreshold"`
// The EBS Byte Balance (%) threshold.
// Default: 10.
//
// Experimental.
EbsByteBalanceThreshold *float64 `field:"optional" json:"ebsByteBalanceThreshold" yaml:"ebsByteBalanceThreshold"`
// The EBS IO Balance (%) threshold.
// Default: 10.
//
// Experimental.
EbsIoBalanceThreshold *float64 `field:"optional" json:"ebsIoBalanceThreshold" yaml:"ebsIoBalanceThreshold"`
// The Freeable Memory threshold.
// Default: 100 MiB.
//
// Experimental.
FreeableMemoryThreshold awscdk.Size `field:"optional" json:"freeableMemoryThreshold" yaml:"freeableMemoryThreshold"`
// The Max Connections threshold.
// Default: 50.
//
// Experimental.
MaxConnectionsThreshold *float64 `field:"optional" json:"maxConnectionsThreshold" yaml:"maxConnectionsThreshold"`
// The Read Latency threshold.
// Default: 20.
//
// Experimental.
ReadLatencyThreshold *float64 `field:"optional" json:"readLatencyThreshold" yaml:"readLatencyThreshold"`
}
The RdsClusterMonitoringConfig defines the thresholds for the RDS cluster monitoring. Experimental.
type RdsInstanceMonitoringAspect ¶
type RdsInstanceMonitoringAspect interface {
awscdk.IAspect
// Overrides the default configuration for the RDS instance.
// Experimental.
OverrideConfig(node awsrds.DatabaseInstance, config *RdsInstanceMonitoringConfig)
// All aspects can visit an IConstruct.
// Experimental.
Visit(node constructs.IConstruct)
}
The RdsInstanceMonitoringAspect iterates over the RDS instances and adds monitoring widgets and alarms. Experimental.
func NewRdsInstanceMonitoringAspect ¶
func NewRdsInstanceMonitoringAspect(monitoringFacade ICondenseMonitoringFacade) RdsInstanceMonitoringAspect
Experimental.
type RdsInstanceMonitoringConfig ¶
type RdsInstanceMonitoringConfig struct {
// The CPU Utilization (%) threshold.
// Default: 90.
//
// Experimental.
CpuUtilizationThreshold *float64 `field:"optional" json:"cpuUtilizationThreshold" yaml:"cpuUtilizationThreshold"`
// The EBS Byte Balance (%) threshold.
// Default: 10.
//
// Experimental.
EbsByteBalanceThreshold *float64 `field:"optional" json:"ebsByteBalanceThreshold" yaml:"ebsByteBalanceThreshold"`
// The EBS IO Balance (%) threshold.
// Default: 10.
//
// Experimental.
EbsIoBalanceThreshold *float64 `field:"optional" json:"ebsIoBalanceThreshold" yaml:"ebsIoBalanceThreshold"`
// The Freeable Memory threshold.
// Default: 100 MiB.
//
// Experimental.
FreeableMemoryThreshold awscdk.Size `field:"optional" json:"freeableMemoryThreshold" yaml:"freeableMemoryThreshold"`
// The Free Storage Space threshold.
// Default: 100 MiB.
//
// Experimental.
FreeStorageSpaceThreshold awscdk.Size `field:"optional" json:"freeStorageSpaceThreshold" yaml:"freeStorageSpaceThreshold"`
// The Max Connections threshold.
// Default: 50.
//
// Experimental.
MaxConnectionsThreshold *float64 `field:"optional" json:"maxConnectionsThreshold" yaml:"maxConnectionsThreshold"`
// The Read Latency threshold.
// Default: 20.
//
// Experimental.
ReadLatencyThreshold *float64 `field:"optional" json:"readLatencyThreshold" yaml:"readLatencyThreshold"`
}
The RdsInstanceMonitoringConfig defines the thresholds for the RDS instance monitoring. Experimental.
type TargetGroupMonitoringAspect ¶
type TargetGroupMonitoringAspect interface {
awscdk.IAspect
// Experimental.
MonitoringFacade() ICondenseMonitoringFacade
// Overrides the default configuration for a specific target group.
// Experimental.
OverrideConfig(node awselasticloadbalancingv2.ApplicationTargetGroup, config *TargetGroupMonitoringConfig)
// All aspects can visit an IConstruct.
// Experimental.
Visit(node constructs.IConstruct)
}
The TargetGroupMonitoringAspect iterates over the target groups and adds monitoring widgets and alarms. Experimental.
func NewTargetGroupMonitoringAspect ¶
func NewTargetGroupMonitoringAspect(monitoringFacade ICondenseMonitoringFacade) TargetGroupMonitoringAspect
Experimental.
type TargetGroupMonitoringConfig ¶
type TargetGroupMonitoringConfig struct {
// The Min Healthy Hosts threshold.
// Default: 1.
//
// Experimental.
MinHealthyHostsThreshold *float64 `field:"optional" json:"minHealthyHostsThreshold" yaml:"minHealthyHostsThreshold"`
// The Response Time threshold.
// Default: - No threshold.
//
// Experimental.
ResponseTimeThreshold awscdk.Duration `field:"optional" json:"responseTimeThreshold" yaml:"responseTimeThreshold"`
}
The TargetGroupMonitoringConfig defines the thresholds for the target group monitoring. Experimental.
type WidgetAlertAnnotationProps ¶
type WidgetAlertAnnotationProps struct {
// Experimental.
Color *string `field:"optional" json:"color" yaml:"color"`
// Experimental.
Label *string `field:"optional" json:"label" yaml:"label"`
// Experimental.
Value *float64 `field:"optional" json:"value" yaml:"value"`
}
Experimental.
Source Files
¶
- AlarmDefinitionProps.go
- ApplicationLoadBalancerMonitoringAspect.go
- ApplicationLoadBalancerMonitoringAspect__checks.go
- ApplicationLoadBalancerMonitoringConfig.go
- AuroraCluster.go
- AuroraClusterProps.go
- AuroraClusterStack.go
- AuroraClusterStackProps.go
- AuroraClusterStack__checks.go
- AuroraCluster__checks.go
- BuildAlarmsProps.go
- CacheClusterMonitoringAspect.go
- CacheClusterMonitoringAspect__checks.go
- CacheClusterMonitoringConfig.go
- CloudwatchAlarmsDiscordConfig.go
- CloudwatchAlarmsTopicStack.go
- CloudwatchAlarmsTopicStackProps.go
- CloudwatchAlarmsTopicStack__checks.go
- DatabaseInstance.go
- DatabaseInstanceProps.go
- DatabaseInstanceStack.go
- DatabaseInstanceStackProps.go
- DatabaseInstanceStack__checks.go
- DatabaseInstance__checks.go
- Entrypoint.go
- EntrypointProps.go
- EntrypointStack.go
- EntrypointStackProps.go
- EntrypointStack__checks.go
- Entrypoint__checks.go
- FargateServiceMonitoringAspect.go
- FargateServiceMonitoringAspect__checks.go
- FargateServiceMonitoringConfig.go
- ICondenseMonitoringFacade.go
- ICondenseMonitoringFacade__checks.go
- IDatabase.go
- IDatabase__checks.go
- IEntrypoint.go
- IEntrypoint__checks.go
- INetworking.go
- MonitoringFacade.go
- MonitoringFacadeProps.go
- MonitoringFacade__checks.go
- NaiveBasicAuthCloudfrontFunction.go
- NaiveBasicAuthCloudfrontFunctionExcludedPath.go
- NaiveBasicAuthCloudfrontFunctionProps.go
- NaiveBasicAuthCloudfrontFunction__checks.go
- Networking.go
- NetworkingProps.go
- NetworkingStack.go
- NetworkingStackProps.go
- NetworkingStack__checks.go
- Networking__checks.go
- RdsClusterMonitoringAspect.go
- RdsClusterMonitoringAspect__checks.go
- RdsClusterMonitoringConfig.go
- RdsInstanceMonitoringAspect.go
- RdsInstanceMonitoringAspect__checks.go
- RdsInstanceMonitoringConfig.go
- TargetGroupMonitoringAspect.go
- TargetGroupMonitoringAspect__checks.go
- TargetGroupMonitoringConfig.go
- WidgetAlertAnnotationProps.go
- main.go
Directories
Click to show internal directories.
Click to hide internal directories.