diff --git a/classes/constructs_acm.GuCertificate.html b/classes/constructs_acm.GuCertificate.html index 325749c0c..f6d5d22cb 100644 --- a/classes/constructs_acm.GuCertificate.html +++ b/classes/constructs_acm.GuCertificate.html @@ -3,7 +3,7 @@ validate your certificate.

If your DNS is not managed via Route 53, or you omit the hostedZoneId props, then the CloudFormation operation which adds this construct will pause until the relevant DNS record has been added manually.

-

Hierarchy

Constructors

Hierarchy

  • Mixin<typeof Certificate, this> & Certificate<this>
    • GuCertificate

Constructors

Properties

certificateArn: string

The certificate's ARN

+

Constructors

Properties

certificateArn: string

The certificate's ARN

env: ResourceEnvironment

The environment this resource belongs to. For resources that are created and managed by the CDK (generally, those created by creating new class instances like Role, Bucket, etc.), @@ -32,7 +32,7 @@ that might be different than the stack they were imported into.

idWithApp: string

The ID of the construct with the App suffix. This should be used in place of id when trying to reference the construct.

-
node: Node

The tree node.

+
node: Node

The tree node.

physicalName: string

Returns a string-encoded token that resolves to the physical name that should be passed to the CloudFormation resource.

This value will resolve to one of the following:

diff --git a/classes/constructs_autoscaling.GuAutoScalingGroup.html b/classes/constructs_autoscaling.GuAutoScalingGroup.html index 50de74a54..bf2f1831f 100644 --- a/classes/constructs_autoscaling.GuAutoScalingGroup.html +++ b/classes/constructs_autoscaling.GuAutoScalingGroup.html @@ -13,7 +13,7 @@ additionalSecurityGroups prop.

All EC2 instances provisioned via this construct will use IMDSv2.

-

Hierarchy

  • Mixin<typeof AutoScalingGroup, this> & AutoScalingGroup<this>
    • GuAutoScalingGroup

Constructors

Hierarchy

  • Mixin<typeof AutoScalingGroup, this> & AutoScalingGroup<this>
    • GuAutoScalingGroup

Constructors

Properties

albTargetGroup?: ApplicationTargetGroup
amiParameter: GuAmiParameter
app: string
autoScalingGroupArn: string

Arn of the AutoScalingGroup

+

Constructors

Properties

albTargetGroup?: ApplicationTargetGroup
amiParameter: GuAmiParameter
app: string
autoScalingGroupArn: string

Arn of the AutoScalingGroup

autoScalingGroupName: string

Name of the AutoScalingGroup

env: ResourceEnvironment

The environment this resource belongs to. For resources that are created and managed by the CDK @@ -75,7 +75,7 @@

grantPrincipal: IPrincipal

The principal to grant permissions to

hasCalledScaleOnRequestCount: boolean
idWithApp: string

The ID of the construct with the App suffix. This should be used in place of id when trying to reference the construct.

-
imageRecipe?: string | AmigoProps
instanceLaunchTemplate: LaunchTemplate
maxInstanceLifetime?: Duration

The maximum amount of time that an instance can be in service.

+
imageRecipe?: string | AmigoProps
instanceLaunchTemplate: LaunchTemplate
maxInstanceLifetime?: Duration

The maximum amount of time that an instance can be in service.

newInstancesProtectedFromScaleIn?: boolean
node: Node

The tree node.

osType: OperatingSystemType

The type of OS instances of this fleet are running.

physicalName: string

Returns a string-encoded token that resolves to the physical name that diff --git a/classes/constructs_autoscaling.GuUserData.html b/classes/constructs_autoscaling.GuUserData.html index d11aecbd2..692561058 100644 --- a/classes/constructs_autoscaling.GuUserData.html +++ b/classes/constructs_autoscaling.GuUserData.html @@ -5,9 +5,9 @@

  • download distributable
  • execute distributable
  • -

    Constructors

    Constructors

    Properties

    Accessors

    Methods

    Constructors

    Properties

    Accessors

    Methods

    +

    Constructors

    Properties

    Accessors

    Methods

    diff --git a/classes/constructs_cloudwatch.GuAlarm.html b/classes/constructs_cloudwatch.GuAlarm.html index 55cbdca56..90a29f780 100644 --- a/classes/constructs_cloudwatch.GuAlarm.html +++ b/classes/constructs_cloudwatch.GuAlarm.html @@ -6,7 +6,7 @@

    This library provides an implementation of some commonly used alarms, which require less boilerplate than this construct, for example the [[GuAlb5xxPercentageAlarm]]. Prefer using these more specific implementations where possible.

    -

    Hierarchy (View Summary)

    Constructors

    Hierarchy (View Summary)

    Constructors

    Properties

    alarmActionArns?: string[]
    alarmArn: string

    ARN of this alarm

    +

    Constructors

    Properties

    alarmActionArns?: string[]
    alarmArn: string

    ARN of this alarm

    alarmName: string

    Name of this alarm.

    env: ResourceEnvironment

    The environment this resource belongs to. For resources that are created and managed by the CDK diff --git a/classes/constructs_cloudwatch.GuAlb4xxPercentageAlarm.html b/classes/constructs_cloudwatch.GuAlb4xxPercentageAlarm.html index 5f8e17744..edf73e0e7 100644 --- a/classes/constructs_cloudwatch.GuAlb4xxPercentageAlarm.html +++ b/classes/constructs_cloudwatch.GuAlb4xxPercentageAlarm.html @@ -1,6 +1,6 @@ GuAlb4xxPercentageAlarm | @guardian/cdk

    Creates an alarm which is triggered whenever the percentage of requests with a 4xx response code exceeds the specified threshold.

    -

    Hierarchy (View Summary)

    Constructors

    Hierarchy (View Summary)

    Constructors

    Properties

    alarmActionArns?: string[]
    alarmArn: string

    ARN of this alarm

    +

    Constructors

    Properties

    alarmActionArns?: string[]
    alarmArn: string

    ARN of this alarm

    alarmName: string

    Name of this alarm.

    env: ResourceEnvironment

    The environment this resource belongs to. For resources that are created and managed by the CDK diff --git a/classes/constructs_cloudwatch.GuAlb5xxPercentageAlarm.html b/classes/constructs_cloudwatch.GuAlb5xxPercentageAlarm.html index 55ef27689..6d760c5ba 100644 --- a/classes/constructs_cloudwatch.GuAlb5xxPercentageAlarm.html +++ b/classes/constructs_cloudwatch.GuAlb5xxPercentageAlarm.html @@ -1,6 +1,6 @@ GuAlb5xxPercentageAlarm | @guardian/cdk

    Creates an alarm which is triggered whenever the percentage of requests with a 5xx response code exceeds the specified threshold.

    -

    Hierarchy (View Summary)

    Constructors

    Hierarchy (View Summary)

    Constructors

    Properties

    alarmActionArns?: string[]
    alarmArn: string

    ARN of this alarm

    +

    Constructors

    Properties

    alarmActionArns?: string[]
    alarmArn: string

    ARN of this alarm

    alarmName: string

    Name of this alarm.

    env: ResourceEnvironment

    The environment this resource belongs to. For resources that are created and managed by the CDK diff --git a/classes/constructs_cloudwatch.GuLambdaErrorPercentageAlarm.html b/classes/constructs_cloudwatch.GuLambdaErrorPercentageAlarm.html index 3acd02f50..e64632182 100644 --- a/classes/constructs_cloudwatch.GuLambdaErrorPercentageAlarm.html +++ b/classes/constructs_cloudwatch.GuLambdaErrorPercentageAlarm.html @@ -1,5 +1,5 @@ GuLambdaErrorPercentageAlarm | @guardian/cdk

    Creates an alarm which is triggered whenever the error percentage specified is exceeded.

    -

    Hierarchy (View Summary)

    • GuAlarm
      • GuLambdaErrorPercentageAlarm

    Constructors

    Hierarchy (View Summary)

    • GuAlarm
      • GuLambdaErrorPercentageAlarm

    Constructors

    Properties

    alarmActionArns?: string[]
    alarmArn: string

    ARN of this alarm

    +

    Constructors

    Properties

    alarmActionArns?: string[]
    alarmArn: string

    ARN of this alarm

    alarmName: string

    Name of this alarm.

    env: ResourceEnvironment

    The environment this resource belongs to. For resources that are created and managed by the CDK diff --git a/classes/constructs_cloudwatch.GuLambdaThrottlingAlarm.html b/classes/constructs_cloudwatch.GuLambdaThrottlingAlarm.html index be56bb434..f12a4f3ee 100644 --- a/classes/constructs_cloudwatch.GuLambdaThrottlingAlarm.html +++ b/classes/constructs_cloudwatch.GuLambdaThrottlingAlarm.html @@ -6,7 +6,7 @@

    This library provides an implementation of some commonly used alarms, which require less boilerplate than this construct, for example the [[GuAlb5xxPercentageAlarm]]. Prefer using these more specific implementations where possible.

    -

    Hierarchy (View Summary)

    Constructors

    Hierarchy (View Summary)

    Constructors

    Properties

    alarmActionArns?: string[]
    alarmArn: string

    ARN of this alarm

    +

    Constructors

    Properties

    alarmActionArns?: string[]
    alarmArn: string

    ARN of this alarm

    alarmName: string

    Name of this alarm.

    env: ResourceEnvironment

    The environment this resource belongs to. For resources that are created and managed by the CDK diff --git a/classes/constructs_cloudwatch.GuUnhealthyInstancesAlarm.html b/classes/constructs_cloudwatch.GuUnhealthyInstancesAlarm.html index d0a314fea..9fefa1107 100644 --- a/classes/constructs_cloudwatch.GuUnhealthyInstancesAlarm.html +++ b/classes/constructs_cloudwatch.GuUnhealthyInstancesAlarm.html @@ -1,5 +1,5 @@ GuUnhealthyInstancesAlarm | @guardian/cdk

    Creates an alarm which is triggered whenever there have been several healthcheck failures within a single hour.

    -

    Hierarchy (View Summary)

    Constructors

    Hierarchy (View Summary)

    Constructors

    Properties

    alarmActionArns?: string[]
    alarmArn: string

    ARN of this alarm

    +

    Constructors

    Properties

    alarmActionArns?: string[]
    alarmArn: string

    ARN of this alarm

    alarmName: string

    Name of this alarm.

    env: ResourceEnvironment

    The environment this resource belongs to. For resources that are created and managed by the CDK diff --git a/classes/constructs_core.GuAccessLoggingBucketParameter.html b/classes/constructs_core.GuAccessLoggingBucketParameter.html index 0e722994d..f9089fc15 100644 --- a/classes/constructs_core.GuAccessLoggingBucketParameter.html +++ b/classes/constructs_core.GuAccessLoggingBucketParameter.html @@ -1,6 +1,6 @@ GuAccessLoggingBucketParameter | @guardian/cdk

    Creates a CloudFormation parameter which references the bucket used to store load balancer access logs. By default, the bucket name is stored in an SSM Parameter called /account/services/access-logging/bucket.

    -

    Hierarchy (View Summary)

    Properties

    id +

    Hierarchy (View Summary)

    Properties

    Properties

    id: string
    logicalId: string

    The logical ID for this CloudFormation stack element. The logical ID of the element +

    Properties

    id: string
    logicalId: string

    The logical ID for this CloudFormation stack element. The logical ID of the element is calculated from the path of the resource node in the construct tree.

    To override this value, use overrideLogicalId(newLogicalId).

    the logical ID as a stringified token. This value will only get @@ -104,7 +104,7 @@

    Returns void

    • Overrides the auto-generated logical ID with a specific ID.

      Parameters

      • newLogicalId: string

        The new logical ID to use for this stack element.

      Returns void

    • Parameters

      • _context: IResolveContext

      Returns any

    • Returns a string representation of this construct.

      -

      Returns string

    • Returns true if a construct is a stack element (i.e. part of the +

      Returns string

    Properties

    id: string
    logicalId: string

    The logical ID for this CloudFormation stack element. The logical ID of the element is calculated from the path of the resource node in the construct tree.

    To override this value, use overrideLogicalId(newLogicalId).

    the logical ID as a stringified token. This value will only get @@ -108,7 +108,7 @@

    Returns string

    • Returns true if a construct is a stack element (i.e. part of the +

    Returns GuAnghammaradTopicParameter

    • Overrides the auto-generated logical ID with a specific ID.

      Parameters

      • newLogicalId: string

        The new logical ID to use for this stack element.

      Returns void

    • Parameters

      • _context: IResolveContext

      Returns any

    • Returns a string representation of this construct.

      -

      Returns string

    • Returns true if a construct is a stack element (i.e. part of the +

      Returns string

    • Returns true if a construct is a stack element (i.e. part of the synthesized cloudformation template).

      Uses duck-typing instead of instanceof to allow stack elements from different versions of this library to be included in the same stack.

      diff --git a/classes/constructs_core.GuFastlyCustomerIdParameter.html b/classes/constructs_core.GuFastlyCustomerIdParameter.html index 1ed8221f8..2e2ad0002 100644 --- a/classes/constructs_core.GuFastlyCustomerIdParameter.html +++ b/classes/constructs_core.GuFastlyCustomerIdParameter.html @@ -1,7 +1,7 @@ GuFastlyCustomerIdParameter | @guardian/cdk

      Creates a CloudFormation parameter which contains the Fastly customer ID to use in setting up a Fastly logging role. By default, the customer ID is stored in an SSM Parameter called /account/external/fastly/customer.id.

      -

      Hierarchy (View Summary)

      Properties

      id +

      Hierarchy (View Summary)

      Properties

      Properties

      id: string
      logicalId: string

      The logical ID for this CloudFormation stack element. The logical ID of the element +

      Properties

      id: string
      logicalId: string

      The logical ID for this CloudFormation stack element. The logical ID of the element is calculated from the path of the resource node in the construct tree.

      To override this value, use overrideLogicalId(newLogicalId).

      the logical ID as a stringified token. This value will only get @@ -105,7 +105,7 @@

      Returns void

    • Overrides the auto-generated logical ID with a specific ID.

      Parameters

      • newLogicalId: string

        The new logical ID to use for this stack element.

      Returns void

    • Parameters

      • _context: IResolveContext

      Returns any

    • Returns a string representation of this construct.

      -

      Returns string

    • Returns true if a construct is a stack element (i.e. part of the +

      Returns string

    • Returns true if a construct is a stack element (i.e. part of the synthesized cloudformation template).

      Uses duck-typing instead of instanceof to allow stack elements from different versions of this library to be included in the same stack.

      diff --git a/classes/constructs_core.GuLoggingStreamNameParameter.html b/classes/constructs_core.GuLoggingStreamNameParameter.html index c03a1b606..609287abf 100644 --- a/classes/constructs_core.GuLoggingStreamNameParameter.html +++ b/classes/constructs_core.GuLoggingStreamNameParameter.html @@ -1,4 +1,4 @@ -GuLoggingStreamNameParameter | @guardian/cdk

      Hierarchy (View Summary)

      Properties

      id +GuLoggingStreamNameParameter | @guardian/cdk

      Hierarchy (View Summary)

      Properties

      Properties

      id: string
      logicalId: string

      The logical ID for this CloudFormation stack element. The logical ID of the element +

      Properties

      id: string
      logicalId: string

      The logical ID for this CloudFormation stack element. The logical ID of the element is calculated from the path of the resource node in the construct tree.

      To override this value, use overrideLogicalId(newLogicalId).

      the logical ID as a stringified token. This value will only get @@ -102,7 +102,7 @@

      Returns void

    • Overrides the auto-generated logical ID with a specific ID.

      Parameters

      • newLogicalId: string

        The new logical ID to use for this stack element.

      Returns void

    • Parameters

      • _context: IResolveContext

      Returns any

    • Returns a string representation of this construct.

      -

      Returns string

    • Returns true if a construct is a stack element (i.e. part of the +

      Returns string

    • get notificationArns(): string[]
    • Returns the list of notification Amazon Resource Names (ARNs) for the current stack.

      Returns string[]

    • get partition(): string
    • The partition in which this stack is defined

      +
    • get partition(): string
    • The partition in which this stack is defined

      Returns string

    • get stackId(): string
    • The ID of the stack

      Returns string

      // After resolving, looks like
      'arn:aws:cloudformation:us-west-2:123456789012:stack/teststack/51af3dc0-da77-11e4-872e-1234567db123'
      @@ -191,7 +191,7 @@

      Parameters

      • key: string

        the tag name

      • value: string

        the value of the tag

      • applyToLaunchedInstances: boolean = true

        whether or not to apply the tag to instances launched in an ASG.

        -

      Returns void

    • Add a Transform to this stack. A Transform is a macro that AWS +

    Returns void

    • Add a Transform to this stack. A Transform is a macro that AWS CloudFormation uses to process your template.

      Duplicate values are removed when stack is synthesized.

      Parameters

    • Look up a fact value for the given fact for the region of this stack

      +
    • __namedParameters: GuStaticLogicalId

    Returns void

    • Internal

      Returns object

    • Overrides the auto-generated logical ID with a specific ID.

      Parameters

      • newLogicalId: string

        The new logical ID to use for this stack element.

      Returns void

    • Parameters

      • _context: IResolveContext

      Returns any

    • Returns a string representation of this construct.

      -

      Returns string

    • Returns true if a construct is a stack element (i.e. part of the +

      Returns string

    Returns string

    • Produce the egress rule JSON for the given connection

      Returns any

    • Produce the ingress rule JSON for the given connection

      Returns any

    • Returns a string representation of an object.

      -

      Returns string

    • Look up a security group by id.

      +

      Returns string

    • Look up a security group by id.

      Parameters

      • scope: Construct
      • id: string
      • securityGroupId: string

      Returns ISecurityGroup

    • Look up a security group by name.

      Parameters

      • scope: Construct
      • id: string
      • securityGroupName: string
      • vpc: IVpc

      Returns ISecurityGroup

    • Checks if x is a construct.

      +

    Returns GuWazuhAccess

    • Checks if x is a construct.

      Use this method instead of instanceof to properly detect Construct instances, even when the construct library is symlinked.

      Explanation: in JavaScript, multiple copies of the constructs library on diff --git a/classes/constructs_ecs.GuEcsTask.html b/classes/constructs_ecs.GuEcsTask.html index 3ba9239ae..700afee32 100644 --- a/classes/constructs_ecs.GuEcsTask.html +++ b/classes/constructs_ecs.GuEcsTask.html @@ -3,7 +3,7 @@

      For all configuration options, see [[GuEcsTaskProps]].

      Note that if your task reliably completes in less than 15 minutes then you should probably use a [[GuLambda]] instead. This pattern was mainly created to work around the 15 minute lambda timeout.

      -

    Hierarchy

    • Construct
      • GuEcsTask

    Constructors

    Hierarchy

    • Construct
      • GuEcsTask

    Constructors

    Properties

    Methods

    Constructors

    Properties

    containerDefinition: ContainerDefinition
    node: Node

    The tree node.

    -
    stateMachine: StateMachine
    task: EcsRunTask
    taskDefinition: TaskDefinition

    Methods

    • Returns a string representation of this construct.

      +

    Constructors

    Properties

    containerDefinition: ContainerDefinition
    node: Node

    The tree node.

    +
    stateMachine: StateMachine
    task: EcsRunTask
    taskDefinition: TaskDefinition

    Methods

    • Returns a string representation of this construct.

      Returns string

    -

    Hierarchy (View Summary)

    Properties

    Hierarchy (View Summary)

    Properties

    document env grantPrincipal node @@ -83,7 +83,7 @@ Commonly this is the resource's ref.

    Returns string

    • Returns a string representation of this construct.

      Returns string

    • Import a policy in this app based on its name

      -

      Parameters

      • scope: Construct
      • id: string
      • policyName: string

      Returns IPolicy

    • Checks if x is a construct.

      +

      Parameters

      • scope: Construct
      • id: string
      • policyName: string

      Returns IPolicy

    Returns string

    • Returns a string representation of this construct.

      Returns string

    • Import a policy in this app based on its name

      -

      Parameters

      • scope: Construct
      • id: string
      • policyName: string

      Returns IPolicy

    • Checks if x is a construct.

      +

      Parameters

      • scope: Construct
      • id: string
      • policyName: string

      Returns IPolicy

    Returns string

    • Returns a string representation of this construct.

      Returns string

    • Import a policy in this app based on its name

      -

      Parameters

      • scope: Construct
      • id: string
      • policyName: string

      Returns IPolicy

    • Checks if x is a construct.

      +

      Parameters

      • scope: Construct
      • id: string
      • policyName: string

      Returns IPolicy

    • Checks if x is a construct.

      Use this method instead of instanceof to properly detect Construct instances, even when the construct library is symlinked.

      Explanation: in JavaScript, multiple copies of the constructs library on diff --git a/classes/constructs_iam.GuParameterStoreReadPolicy.html b/classes/constructs_iam.GuParameterStoreReadPolicy.html index 0eb84612d..062e14501 100644 --- a/classes/constructs_iam.GuParameterStoreReadPolicy.html +++ b/classes/constructs_iam.GuParameterStoreReadPolicy.html @@ -1,6 +1,6 @@ GuParameterStoreReadPolicy | @guardian/cdk

      Grants read-only permissions for Parameter Store. These permissions are typically used for accessing private configuration. See [[ReadParametersByPath]] and [[ReadParametersByName]] for more details.

      -

      Hierarchy

      Constructors

      Hierarchy

      Constructors

      Properties

      Constructors

      Properties

      document: PolicyDocument

      The policy document.

      +

      Constructors

      Properties

      document: PolicyDocument

      The policy document.

      env: ResourceEnvironment

      The environment this resource belongs to. For resources that are created and managed by the CDK (generally, those created by creating new class instances like Role, Bucket, etc.), @@ -34,7 +34,7 @@

      grantPrincipal: IPrincipal

      The principal to grant permissions to

      idWithApp: string

      The ID of the construct with the App suffix. This should be used in place of id when trying to reference the construct.

      -
      node: Node

      The tree node.

      +
      node: Node

      The tree node.

      physicalName: string

      Returns a string-encoded token that resolves to the physical name that should be passed to the CloudFormation resource.

      This value will resolve to one of the following:

      diff --git a/classes/constructs_iam.GuPolicy.html b/classes/constructs_iam.GuPolicy.html index f1e7e1ffe..ad13af6bf 100644 --- a/classes/constructs_iam.GuPolicy.html +++ b/classes/constructs_iam.GuPolicy.html @@ -1,4 +1,4 @@ -GuPolicy | @guardian/cdk

      Hierarchy (View Summary)

      Constructors

      constructor +GuPolicy | @guardian/cdk

      Hierarchy (View Summary)

      Constructors

      Properties

      Constructors

      Properties

      document: PolicyDocument

      The policy document.

      +

      Constructors

      Properties

      document: PolicyDocument

      The policy document.

      env: ResourceEnvironment

      The environment this resource belongs to. For resources that are created and managed by the CDK (generally, those created by creating new class instances like Role, Bucket, etc.), diff --git a/classes/constructs_iam.GuPutCloudwatchMetricsPolicy.html b/classes/constructs_iam.GuPutCloudwatchMetricsPolicy.html index 4f854af57..7bc9125a5 100644 --- a/classes/constructs_iam.GuPutCloudwatchMetricsPolicy.html +++ b/classes/constructs_iam.GuPutCloudwatchMetricsPolicy.html @@ -1,4 +1,4 @@ -GuPutCloudwatchMetricsPolicy | @guardian/cdk

      Hierarchy

      • GuCloudwatchPolicy
        • GuPutCloudwatchMetricsPolicy

      Constructors

      constructor +GuPutCloudwatchMetricsPolicy | @guardian/cdk

      Hierarchy

      • GuCloudwatchPolicy
        • GuPutCloudwatchMetricsPolicy

      Constructors

      Properties

      Constructors

      Properties

      document: PolicyDocument

      The policy document.

      +

      Constructors

      Properties

      document: PolicyDocument

      The policy document.

      env: ResourceEnvironment

      The environment this resource belongs to. For resources that are created and managed by the CDK (generally, those created by creating new class instances like Role, Bucket, etc.), diff --git a/classes/constructs_iam.GuPutS3ObjectsPolicy.html b/classes/constructs_iam.GuPutS3ObjectsPolicy.html index 089938144..cd89cc871 100644 --- a/classes/constructs_iam.GuPutS3ObjectsPolicy.html +++ b/classes/constructs_iam.GuPutS3ObjectsPolicy.html @@ -1,4 +1,4 @@ -GuPutS3ObjectsPolicy | @guardian/cdk

      Hierarchy (View Summary)

      Constructors

      constructor +GuPutS3ObjectsPolicy | @guardian/cdk

      Hierarchy (View Summary)

      Constructors

      Properties

      Constructors

      Properties

      document: PolicyDocument

      The policy document.

      +

      Constructors

      Properties

      document: PolicyDocument

      The policy document.

      env: ResourceEnvironment

      The environment this resource belongs to. For resources that are created and managed by the CDK (generally, those created by creating new class instances like Role, Bucket, etc.), diff --git a/classes/constructs_iam.GuRole.html b/classes/constructs_iam.GuRole.html index 665bd6e2e..a2abad1de 100644 --- a/classes/constructs_iam.GuRole.html +++ b/classes/constructs_iam.GuRole.html @@ -1,4 +1,4 @@ -GuRole | @guardian/cdk

      Hierarchy (View Summary)

      Constructors

      constructor +GuRole | @guardian/cdk

      Hierarchy (View Summary)

      Constructors

      Properties

      assumeRoleAction: string

      When this Principal is used in an AssumeRole policy, the action to use.

      +

      Constructors

      Properties

      assumeRoleAction: string

      When this Principal is used in an AssumeRole policy, the action to use.

      assumeRolePolicy?: PolicyDocument

      The assume role policy document associated with this role.

      env: ResourceEnvironment

      The environment this resource belongs to. For resources that are created and managed by the CDK diff --git a/classes/constructs_iam.GuSESSenderPolicy.html b/classes/constructs_iam.GuSESSenderPolicy.html index f233c50bf..4507652d4 100644 --- a/classes/constructs_iam.GuSESSenderPolicy.html +++ b/classes/constructs_iam.GuSESSenderPolicy.html @@ -1,4 +1,4 @@ -GuSESSenderPolicy | @guardian/cdk

      Hierarchy (View Summary)

      Constructors

      constructor +GuSESSenderPolicy | @guardian/cdk

      Hierarchy (View Summary)

      Constructors

      Properties

      Constructors

      Properties

      document: PolicyDocument

      The policy document.

      +

      Constructors

      Properties

      document: PolicyDocument

      The policy document.

      env: ResourceEnvironment

      The environment this resource belongs to. For resources that are created and managed by the CDK (generally, those created by creating new class instances like Role, Bucket, etc.), diff --git a/classes/constructs_iam.ReadParametersByName.html b/classes/constructs_iam.ReadParametersByName.html index 53543109b..6c50aa593 100644 --- a/classes/constructs_iam.ReadParametersByName.html +++ b/classes/constructs_iam.ReadParametersByName.html @@ -1,7 +1,7 @@ ReadParametersByName | @guardian/cdk

      This is helpful for accessing specific pieces of private configuration. For example, the play-secret-rotation library requires ssm:GetParameters permissions.

      -

      Hierarchy

      • PolicyStatement
        • ReadParametersByName

      Constructors

      Hierarchy

      • PolicyStatement
        • ReadParametersByName

      Constructors

      Accessors

      • get actions(): string[]
      • The Actions added to this statement

        +

      Constructors

      Accessors

      • get actions(): string[]
      • The Actions added to this statement

        Returns string[]

      • get conditions(): any
      • The conditions added to this statement

        Returns any

      Constructors

      Properties

      autoCreatePolicy: true

      Indicates if a stream resource policy should automatically be created upon the first call to addToResourcePolicy.

      Set by subclasses.

      encryptionKey?: IKey

      Optional KMS encryption key associated with this stream.

      diff --git a/classes/constructs_lambda.GuLambdaFunction.html b/classes/constructs_lambda.GuLambdaFunction.html index fbb5cd0f3..936260763 100644 --- a/classes/constructs_lambda.GuLambdaFunction.html +++ b/classes/constructs_lambda.GuLambdaFunction.html @@ -21,7 +21,7 @@

      Note that this construct creates a Lambda without an event source. Depending on your use-case, you may wish to consider using a pattern which instantiates a Lambda with an event source e.g. [[GuScheduledLambda]].

      -

      Hierarchy (View Summary)

      Constructors

      Hierarchy (View Summary)

      Constructors

      Properties

      _connections?: Connections

      Actual connections object for this Lambda

      +

      Constructors

      Properties

      _connections?: Connections

      Actual connections object for this Lambda

      May be unset, in which case this Lambda is not configured use in a VPC.

      _functionUrlInvocationGrants: Record<string, Grant>

      Mapping of fucntion URL invocation principals to grants. Used to de-dupe grantInvokeUrl() calls.

      _invocationGrants: Record<string, Grant>

      Mapping of invocation principals to grants. Used to de-dupe grantInvoke() calls.

      @@ -111,8 +111,8 @@ where the user commits to modifying the permisssions on the imported lambda outside CDK.

      _warnIfCurrentVersionCalled: boolean

      Flag to delay adding a warning message until current version is invoked.

      -
      alias?: Alias
      app: string
      architecture: Architecture

      The architecture of this Lambda Function (this is an optional attribute and defaults to X86_64).

      -
      bucketNamePath: undefined | string
      canCreatePermissions: true

      Whether the addPermission() call adds any permissions

      +
      alias?: Alias
      app: string
      architecture: Architecture

      The architecture of this Lambda Function (this is an optional attribute and defaults to X86_64).

      +
      bucketNamePath: undefined | string
      canCreatePermissions: true

      Whether the addPermission() call adds any permissions

      True for new Lambdas, false for version $LATEST and imported Lambdas from different accounts.

      deadLetterQueue?: IQueue

      The DLQ (as queue) associated with this Lambda Function (this is an optional attribute).

      @@ -124,7 +124,7 @@ however, for imported resources (those obtained from static methods like fromRoleArn, fromBucketName, etc.), that might be different than the stack they were imported into.

      -
      fileName: string
      functionArn: string

      ARN of this function

      +
      fileName: string
      functionArn: string

      ARN of this function

      functionName: string

      Name of this function

      grantPrincipal: IPrincipal

      The principal this Lambda Function is running as

      node: Node

      The tree node.

      @@ -142,7 +142,7 @@
      runtime: Runtime

      The runtime configured for this lambda.

      stack: Stack

      The stack in which this resource is defined.

      timeout?: Duration

      The timeout configured for this lambda.

      -
      withoutArtifactUpload: boolean
      withoutFilePrefix: boolean
      _VER_PROPS: { [key: string]: boolean }

      Accessors

      • get connections(): Connections
      • Access the Connections object

        +
      withoutArtifactUpload: boolean
      withoutFilePrefix: boolean
      _VER_PROPS: { [key: string]: boolean }

      Accessors

      • get connections(): Connections
      • Access the Connections object

        Will fail if not a VPC-enabled Lambda Function

        Returns Connections

      • get currentVersion(): Version
      • Returns a lambda.Version which represents the current version of this Lambda function. A new version will be created every time the function's diff --git a/classes/constructs_loadbalancing.GuApplicationListener.html b/classes/constructs_loadbalancing.GuApplicationListener.html index f8aec5966..55c09ec9e 100644 --- a/classes/constructs_loadbalancing.GuApplicationListener.html +++ b/classes/constructs_loadbalancing.GuApplicationListener.html @@ -6,7 +6,7 @@ to reduce the amount of boilerplate needed when configuring your Listener.

        This resource is stateful.

      Hierarchy

      • Mixin<typeof ApplicationListener, this> & ApplicationListener<this>
        • GuApplicationListener

      Constructors

      Hierarchy

      • Mixin<typeof ApplicationListener, this> & ApplicationListener<this>
        • GuApplicationListener

      Constructors

      Properties

      Constructors

      Properties

      connections: Connections

      Manage connections to this ApplicationListener

      +

      Constructors

      Properties

      connections: Connections

      Manage connections to this ApplicationListener

      env: ResourceEnvironment

      The environment this resource belongs to. For resources that are created and managed by the CDK (generally, those created by creating new class instances like Role, Bucket, etc.), @@ -47,7 +47,7 @@ that might be different than the stack they were imported into.

      idWithApp: string

      The ID of the construct with the App suffix. This should be used in place of id when trying to reference the construct.

      -
      listenerArn: string
      loadBalancer: IApplicationLoadBalancer

      Load balancer this listener is associated with

      +
      listenerArn: string
      loadBalancer: IApplicationLoadBalancer

      Load balancer this listener is associated with

      node: Node

      The tree node.

      physicalName: string

      Returns a string-encoded token that resolves to the physical name that should be passed to the CloudFormation resource.

      diff --git a/classes/constructs_loadbalancing.GuApplicationLoadBalancer.html b/classes/constructs_loadbalancing.GuApplicationLoadBalancer.html index c143db974..4d6303cb6 100644 --- a/classes/constructs_loadbalancing.GuApplicationLoadBalancer.html +++ b/classes/constructs_loadbalancing.GuApplicationLoadBalancer.html @@ -4,7 +4,7 @@ AWS documentation.

      This resource is stateful.

      Hierarchy

      • Mixin<typeof ApplicationLoadBalancer, this> & ApplicationLoadBalancer<this>
        • GuApplicationLoadBalancer

      Constructors

      Hierarchy

      • Mixin<typeof ApplicationLoadBalancer, this> & ApplicationLoadBalancer<this>
        • GuApplicationLoadBalancer

      Constructors

      Properties

      Constructors

      Properties

      connections: Connections

      The network connections associated with this resource.

      +

      Constructors

      Properties

      connections: Connections

      The network connections associated with this resource.

      env: ResourceEnvironment

      The environment this resource belongs to. For resources that are created and managed by the CDK (generally, those created by creating new class instances like Role, Bucket, etc.), @@ -75,7 +75,7 @@ that might be different than the stack they were imported into.

      idWithApp: string

      The ID of the construct with the App suffix. This should be used in place of id when trying to reference the construct.

      -
      ipAddressType?: IpAddressType

      The IP Address Type for this load balancer

      +
      ipAddressType?: IpAddressType

      The IP Address Type for this load balancer

      IpAddressType.IPV4
       
      diff --git a/classes/constructs_loadbalancing.GuApplicationTargetGroup.html b/classes/constructs_loadbalancing.GuApplicationTargetGroup.html index 0227e984f..d016add38 100644 --- a/classes/constructs_loadbalancing.GuApplicationTargetGroup.html +++ b/classes/constructs_loadbalancing.GuApplicationTargetGroup.html @@ -10,7 +10,7 @@

      This resource is stateful.

      Hierarchy

      • Mixin<typeof ApplicationTargetGroup, this> & ApplicationTargetGroup<this>
        • GuApplicationTargetGroup

      Constructors

      Hierarchy

      • Mixin<typeof ApplicationTargetGroup, this> & ApplicationTargetGroup<this>
        • GuApplicationTargetGroup

      Constructors

      Properties

      defaultPort: number

      Default port configured for members of this target group

      +

      Constructors

      Properties

      defaultPort: number

      Default port configured for members of this target group

      healthCheck: HealthCheck

      Health check for the members of this target group

      idWithApp: string

      The ID of the construct with the App suffix. This should be used in place of id when trying to reference the construct.

      -
      loadBalancerArns: string

      A token representing a list of ARNs of the load balancers that route traffic to this target group

      +
      loadBalancerArns: string

      A token representing a list of ARNs of the load balancers that route traffic to this target group

      loadBalancerAttachedDependencies: DependencyGroup

      Configurable dependable with all resources that lead to load balancer attachment

      node: Node

      The tree node.

      targetGroupArn: string

      The ARN of the target group

      @@ -60,7 +60,7 @@
      targetGroupLoadBalancerArns: string[]

      ARNs of load balancers load balancing to this TargetGroup

      targetGroupName: string

      The name of the target group

      targetType?: TargetType

      The types of the directly registered members of this target group

      -
      DefaultHealthCheck: HealthCheck = ...

      Accessors

      • get firstLoadBalancerFullName(): string
      • Full name of first load balancer

        +
      DefaultHealthCheck: HealthCheck = ...

      Accessors

      • get firstLoadBalancerFullName(): string
      • Full name of first load balancer

        Returns string

      • get loadBalancerAttached(): IDependable
      • List of constructs that need to be depended on to ensure the TargetGroup is associated to a load balancer

        Returns IDependable

      • get metrics(): IApplicationTargetGroupMetrics
      • All metrics available for this target group.

        Returns IApplicationTargetGroupMetrics

      Methods

      • Register the given load balancing target as part of this group

        diff --git a/classes/constructs_loadbalancing.GuHttpsApplicationListener.html b/classes/constructs_loadbalancing.GuHttpsApplicationListener.html index 8315b6cf9..e86cef831 100644 --- a/classes/constructs_loadbalancing.GuHttpsApplicationListener.html +++ b/classes/constructs_loadbalancing.GuHttpsApplicationListener.html @@ -1,7 +1,7 @@ GuHttpsApplicationListener | @guardian/cdk

        Construct which creates a Listener which accepts HTTPS traffic.

        You must pass a [[GuCertificate]] to this Listener via the certificate prop.

        For general details about Listeners, see [[GuApplicationListener]].

        -

        Hierarchy

        • Mixin<typeof ApplicationListener, this> & ApplicationListener<this>
          • GuHttpsApplicationListener

        Constructors

        Hierarchy

        • Mixin<typeof ApplicationListener, this> & ApplicationListener<this>
          • GuHttpsApplicationListener

        Constructors

        Properties

        Constructors

        Properties

        connections: Connections

        Manage connections to this ApplicationListener

        +

        Constructors

        Properties

        connections: Connections

        Manage connections to this ApplicationListener

        env: ResourceEnvironment

        The environment this resource belongs to. For resources that are created and managed by the CDK (generally, those created by creating new class instances like Role, Bucket, etc.), @@ -42,7 +42,7 @@ that might be different than the stack they were imported into.

        idWithApp: string

        The ID of the construct with the App suffix. This should be used in place of id when trying to reference the construct.

        -
        listenerArn: string
        loadBalancer: IApplicationLoadBalancer

        Load balancer this listener is associated with

        +
        listenerArn: string
        loadBalancer: IApplicationLoadBalancer

        Load balancer this listener is associated with

        node: Node

        The tree node.

        physicalName: string

        Returns a string-encoded token that resolves to the physical name that should be passed to the CloudFormation resource.

        diff --git a/classes/constructs_rds.GuDatabaseInstance.html b/classes/constructs_rds.GuDatabaseInstance.html index c4e5f923e..b0fdb44c5 100644 --- a/classes/constructs_rds.GuDatabaseInstance.html +++ b/classes/constructs_rds.GuDatabaseInstance.html @@ -1,4 +1,4 @@ -GuDatabaseInstance | @guardian/cdk

        Hierarchy

        • Mixin<typeof DatabaseInstance, this> & DatabaseInstance<this>
          • GuDatabaseInstance

        Constructors

        constructor +GuDatabaseInstance | @guardian/cdk

        Hierarchy

        • Mixin<typeof DatabaseInstance, this> & DatabaseInstance<this>
          • GuDatabaseInstance

        Constructors

        Properties

        cloudwatchLogGroups: { [engine: string]: ILogGroup }

        The log group is created when cloudwatchLogsExports is set.

        +

        Constructors

        Properties

        cloudwatchLogGroups: { [engine: string]: ILogGroup }

        The log group is created when cloudwatchLogsExports is set.

        Each export value will create a separate log group.

        connections: Connections

        Access to network connections.

        dbInstanceEndpointAddress: string
        dbInstanceEndpointPort: string
        enableIamAuthentication?: boolean
        engine?: IInstanceEngine
        env: ResourceEnvironment

        The environment this resource belongs to. @@ -56,7 +56,7 @@ that might be different than the stack they were imported into.

        idWithApp: string

        The ID of the construct with the App suffix. This should be used in place of id when trying to reference the construct.

        -
        instanceEndpoint: Endpoint
        instanceIdentifier: string
        instanceResourceId?: string
        instanceType: InstanceType
        newCfnProps: CfnDBInstanceProps
        node: Node

        The tree node.

        +
        instanceEndpoint: Endpoint
        instanceIdentifier: string
        instanceResourceId?: string
        instanceType: InstanceType
        newCfnProps: CfnDBInstanceProps
        node: Node

        The tree node.

        physicalName: string

        Returns a string-encoded token that resolves to the physical name that should be passed to the CloudFormation resource.

        This value will resolve to one of the following:

        diff --git a/classes/constructs_s3.GuS3Bucket.html b/classes/constructs_s3.GuS3Bucket.html index c57d57b88..23ae9b9ad 100644 --- a/classes/constructs_s3.GuS3Bucket.html +++ b/classes/constructs_s3.GuS3Bucket.html @@ -1,5 +1,5 @@ GuS3Bucket | @guardian/cdk

        A construct to create a bucket with a "retain" policy to prevent it from being deleted. It will be orphaned instead.

        -

        Hierarchy

        • Mixin<typeof Bucket, this> & Bucket<this>
          • GuS3Bucket

        Constructors

        Hierarchy

        • Mixin<typeof Bucket, this> & Bucket<this>
          • GuS3Bucket

        Constructors

        Properties

        autoCreatePolicy: boolean

        Indicates if a bucket resource policy should automatically created upon +

        Constructors

        Properties

        autoCreatePolicy: boolean

        Indicates if a bucket resource policy should automatically created upon the first call to addToResourcePolicy.

        bucketArn: string
        bucketDomainName: string
        bucketDualStackDomainName: string
        bucketName: string
        bucketRegionalDomainName: string
        bucketWebsiteDomainName: string
        bucketWebsiteUrl: string
        disallowPublicAccess?: boolean

        Whether to disallow public access

        encryptionKey?: IKey

        Optional KMS encryption key associated with this bucket.

        @@ -71,7 +71,7 @@ that might be different than the stack they were imported into.

        idWithApp: string

        The ID of the construct with the App suffix. This should be used in place of id when trying to reference the construct.

        -
        isWebsite?: boolean

        If this bucket has been configured for static website hosting.

        +
        isWebsite?: boolean

        If this bucket has been configured for static website hosting.

        node: Node

        The tree node.

        notificationsHandlerRole?: IRole
        notificationsSkipDestinationValidation?: boolean
        objectOwnership?: ObjectOwnership
        physicalName: string

        Returns a string-encoded token that resolves to the physical name that should be passed to the CloudFormation resource.

        diff --git a/classes/constructs_ses.GuEmailIdentity.html b/classes/constructs_ses.GuEmailIdentity.html index 012d2466c..5245e0aca 100644 --- a/classes/constructs_ses.GuEmailIdentity.html +++ b/classes/constructs_ses.GuEmailIdentity.html @@ -7,7 +7,7 @@
        new GuEmailIdentity(stack, "MyEmailIdentity", {
        domainName: "my-service.gutools.co.uk",
        app: "test",
        });
        -

        Hierarchy

        • Mixin<typeof EmailIdentity, this> & EmailIdentity<this>
          • GuEmailIdentity

        Constructors

        Hierarchy

        • Mixin<typeof EmailIdentity, this> & EmailIdentity<this>
          • GuEmailIdentity

        Constructors

        Properties

        dkimDnsTokenName1: string

        The host name for the first token that you have to add to the +

      Constructors

      Properties

      dkimDnsTokenName1: string

      The host name for the first token that you have to add to the DNS configurationfor your domain

      dkimDnsTokenName2: string

      The host name for the second token that you have to add to the DNS configuration for your domain

      @@ -59,7 +59,7 @@ that might be different than the stack they were imported into.

      idWithApp: string

      The ID of the construct with the App suffix. This should be used in place of id when trying to reference the construct.

      -
      node: Node

      The tree node.

      +
      node: Node

      The tree node.

      physicalName: string

      Returns a string-encoded token that resolves to the physical name that should be passed to the CloudFormation resource.

      This value will resolve to one of the following:

      @@ -70,7 +70,7 @@ cross-environment scenarios.
    stack: Stack

    The stack in which this resource is defined.

    -

    Accessors

    Methods

    • Internal

      Called when this resource is referenced across environments +

    Accessors

    Methods

    • Internal

      Called when this resource is referenced across environments (account/region) to order to request that a physical name will be generated for this resource during synthesis, so the resource can be referenced through its absolute name/arn.

      diff --git a/classes/constructs_vpc.GuVpc.html b/classes/constructs_vpc.GuVpc.html index 0efa6af96..d0fe4bbf3 100644 --- a/classes/constructs_vpc.GuVpc.html +++ b/classes/constructs_vpc.GuVpc.html @@ -29,7 +29,7 @@ https://github.com/guardian/recommendations/blob/main/AWS.md#vpc

      For more information on VPCs and AWS see: https://docs.aws.amazon.com/vpc/latest/userguide/VPC_Subnets.html.

      -

    Hierarchy

    • Vpc
      • GuVpc

    Constructors

    Hierarchy

    • Vpc
      • GuVpc

    Constructors

    Properties

    _vpnGatewayId?: string

    Mutable private field for the vpnGatewayId

    +

    Constructors

    Properties

    _vpnGatewayId?: string

    Mutable private field for the vpnGatewayId

    availabilityZones: string[]

    AZs for this VPC

    dnsHostnamesEnabled: boolean

    Indicates if instances launched in this VPC will have public DNS hostnames.

    dnsSupportEnabled: boolean

    Indicates if DNS support is enabled for this VPC.

    diff --git a/classes/experimental_patterns.GuKinesisLambdaExperimental.html b/classes/experimental_patterns.GuKinesisLambdaExperimental.html index 5927858aa..3e79564d7 100644 --- a/classes/experimental_patterns.GuKinesisLambdaExperimental.html +++ b/classes/experimental_patterns.GuKinesisLambdaExperimental.html @@ -6,7 +6,7 @@

    The Kinesis stream is stateful, and is accessible via kinesisStream.

    https://github.com/guardian/cdk/blob/main/docs/stateful-resources.md

    This pattern is in early development. The API is likely to change in future releases.

    -

    Hierarchy (View Summary)

    Constructors

    Hierarchy (View Summary)

    Constructors

    Properties

    _connections?: Connections

    Actual connections object for this Lambda

    +

    Constructors

    Properties

    _connections?: Connections

    Actual connections object for this Lambda

    May be unset, in which case this Lambda is not configured use in a VPC.

    _functionUrlInvocationGrants: Record<string, Grant>

    Mapping of fucntion URL invocation principals to grants. Used to de-dupe grantInvokeUrl() calls.

    _invocationGrants: Record<string, Grant>

    Mapping of invocation principals to grants. Used to de-dupe grantInvoke() calls.

    @@ -97,8 +97,8 @@ where the user commits to modifying the permisssions on the imported lambda outside CDK.

    _warnIfCurrentVersionCalled: boolean

    Flag to delay adding a warning message until current version is invoked.

    -
    alias?: Alias
    app: string
    architecture: Architecture

    The architecture of this Lambda Function (this is an optional attribute and defaults to X86_64).

    -
    bucketNamePath: undefined | string
    canCreatePermissions: true

    Whether the addPermission() call adds any permissions

    +
    alias?: Alias
    app: string
    architecture: Architecture

    The architecture of this Lambda Function (this is an optional attribute and defaults to X86_64).

    +
    bucketNamePath: undefined | string
    canCreatePermissions: true

    Whether the addPermission() call adds any permissions

    True for new Lambdas, false for version $LATEST and imported Lambdas from different accounts.

    deadLetterQueue?: IQueue

    The DLQ (as queue) associated with this Lambda Function (this is an optional attribute).

    @@ -110,10 +110,10 @@ however, for imported resources (those obtained from static methods like fromRoleArn, fromBucketName, etc.), that might be different than the stack they were imported into.

    -
    fileName: string
    functionArn: string

    ARN of this function

    +
    fileName: string
    functionArn: string

    ARN of this function

    functionName: string

    Name of this function

    grantPrincipal: IPrincipal

    The principal this Lambda Function is running as

    -
    kinesisStream: IStream
    node: Node

    The tree node.

    +
    kinesisStream: IStream
    node: Node

    The tree node.

    permissionsNode: Node

    The construct node where permissions are attached.

    physicalName: string

    Returns a string-encoded token that resolves to the physical name that should be passed to the CloudFormation resource.

    @@ -128,7 +128,7 @@
    runtime: Runtime

    The runtime configured for this lambda.

    stack: Stack

    The stack in which this resource is defined.

    timeout?: Duration

    The timeout configured for this lambda.

    -
    withoutArtifactUpload: boolean
    withoutFilePrefix: boolean
    _VER_PROPS: { [key: string]: boolean }

    Accessors

    • get connections(): Connections
    • Experimental

      Access the Connections object

      +
    withoutArtifactUpload: boolean
    withoutFilePrefix: boolean
    _VER_PROPS: { [key: string]: boolean }

    Accessors

    • get connections(): Connections
    • Experimental

      Access the Connections object

      Will fail if not a VPC-enabled Lambda Function

      Returns Connections

    • get currentVersion(): Version
    • Experimental

      Returns a lambda.Version which represents the current version of this Lambda function. A new version will be created every time the function's diff --git a/classes/experimental_patterns.GuSnsLambdaExperimental.html b/classes/experimental_patterns.GuSnsLambdaExperimental.html index d1b720cbc..886edd8a7 100644 --- a/classes/experimental_patterns.GuSnsLambdaExperimental.html +++ b/classes/experimental_patterns.GuSnsLambdaExperimental.html @@ -6,7 +6,7 @@

      The SNS topic is stateful, and is accessible via snsTopic.

      https://github.com/guardian/cdk/blob/main/docs/stateful-resources.md

      This pattern is in early development. The API is likely to change in future releases.

      -

    Hierarchy (View Summary)

    Constructors

    Hierarchy (View Summary)

    Constructors

    Properties

    _connections?: Connections

    Actual connections object for this Lambda

    +

    Constructors

    Properties

    _connections?: Connections

    Actual connections object for this Lambda

    May be unset, in which case this Lambda is not configured use in a VPC.

    _functionUrlInvocationGrants: Record<string, Grant>

    Mapping of fucntion URL invocation principals to grants. Used to de-dupe grantInvokeUrl() calls.

    _invocationGrants: Record<string, Grant>

    Mapping of invocation principals to grants. Used to de-dupe grantInvoke() calls.

    @@ -97,8 +97,8 @@ where the user commits to modifying the permisssions on the imported lambda outside CDK.

    _warnIfCurrentVersionCalled: boolean

    Flag to delay adding a warning message until current version is invoked.

    -
    alias?: Alias
    app: string
    architecture: Architecture

    The architecture of this Lambda Function (this is an optional attribute and defaults to X86_64).

    -
    bucketNamePath: undefined | string
    canCreatePermissions: true

    Whether the addPermission() call adds any permissions

    +
    alias?: Alias
    app: string
    architecture: Architecture

    The architecture of this Lambda Function (this is an optional attribute and defaults to X86_64).

    +
    bucketNamePath: undefined | string
    canCreatePermissions: true

    Whether the addPermission() call adds any permissions

    True for new Lambdas, false for version $LATEST and imported Lambdas from different accounts.

    deadLetterQueue?: IQueue

    The DLQ (as queue) associated with this Lambda Function (this is an optional attribute).

    @@ -110,7 +110,7 @@ however, for imported resources (those obtained from static methods like fromRoleArn, fromBucketName, etc.), that might be different than the stack they were imported into.

    -
    fileName: string
    functionArn: string

    ARN of this function

    +
    fileName: string
    functionArn: string

    ARN of this function

    functionName: string

    Name of this function

    grantPrincipal: IPrincipal

    The principal this Lambda Function is running as

    node: Node

    The tree node.

    @@ -126,9 +126,9 @@
    role?: IRole

    Execution role associated with this function

    runtime: Runtime

    The runtime configured for this lambda.

    -
    snsTopic: ITopic
    stack: Stack

    The stack in which this resource is defined.

    +
    snsTopic: ITopic
    stack: Stack

    The stack in which this resource is defined.

    timeout?: Duration

    The timeout configured for this lambda.

    -
    withoutArtifactUpload: boolean
    withoutFilePrefix: boolean
    _VER_PROPS: { [key: string]: boolean }

    Accessors

    • get connections(): Connections
    • Experimental

      Access the Connections object

      +
    withoutArtifactUpload: boolean
    withoutFilePrefix: boolean
    _VER_PROPS: { [key: string]: boolean }

    Accessors

    • get connections(): Connections
    • Experimental

      Access the Connections object

      Will fail if not a VPC-enabled Lambda Function

      Returns Connections

    • get currentVersion(): Version
    • Experimental

      Returns a lambda.Version which represents the current version of this Lambda function. A new version will be created every time the function's diff --git a/classes/patterns.GuApiGatewayWithLambdaByPath.html b/classes/patterns.GuApiGatewayWithLambdaByPath.html index 7dd511b3a..cc6b46b12 100644 --- a/classes/patterns.GuApiGatewayWithLambdaByPath.html +++ b/classes/patterns.GuApiGatewayWithLambdaByPath.html @@ -9,12 +9,12 @@

      For all API configuration options, see [[GuApiGatewayWithLambdaByPathProps]].

      For details on configuring the individual Lambda functions, see [[GuLambdaFunction]].

      -

    Hierarchy

    • Construct
      • GuApiGatewayWithLambdaByPath

    Constructors

    Hierarchy

    • Construct
      • GuApiGatewayWithLambdaByPath

    Constructors

    Properties

    Methods

    Constructors

    Properties

    api: RestApi
    node: Node

    The tree node.

    +

    Constructors

    Properties

    api: RestApi
    node: Node

    The tree node.

    Methods

    • Returns a string representation of this construct.

      Returns string

    • Checks if x is a construct.

      Use this method instead of instanceof to properly detect Construct diff --git a/classes/patterns.GuApiLambda.html b/classes/patterns.GuApiLambda.html index fe4a78c16..fa424be1a 100644 --- a/classes/patterns.GuApiLambda.html +++ b/classes/patterns.GuApiLambda.html @@ -9,7 +9,7 @@

      new GuApiLambda(stack, "my-lambda", {
      fileName: "my-app.zip",
      handler: "handler.ts",
      runtime: Runtime.NODEJS_14_X,
      monitoringConfiguration: {
      http5xxAlarm: { tolerated5xxPercentage: 5 },
      snsTopicName: "alerts-topic",
      },
      app: "my-app",
      api: {
      id: "my-api",
      description: "...",
      },
      });
      -

    Hierarchy (View Summary)

    Constructors

    Hierarchy (View Summary)

    Constructors

    Properties

    _connections?: Connections

    Actual connections object for this Lambda

    +

    Constructors

    Properties

    _connections?: Connections

    Actual connections object for this Lambda

    May be unset, in which case this Lambda is not configured use in a VPC.

    _functionUrlInvocationGrants: Record<string, Grant>

    Mapping of fucntion URL invocation principals to grants. Used to de-dupe grantInvokeUrl() calls.

    _invocationGrants: Record<string, Grant>

    Mapping of invocation principals to grants. Used to de-dupe grantInvoke() calls.

    @@ -100,8 +100,8 @@ where the user commits to modifying the permisssions on the imported lambda outside CDK.

    _warnIfCurrentVersionCalled: boolean

    Flag to delay adding a warning message until current version is invoked.

    -
    alias?: Alias
    api: LambdaRestApi
    app: string
    architecture: Architecture

    The architecture of this Lambda Function (this is an optional attribute and defaults to X86_64).

    -
    bucketNamePath: undefined | string
    canCreatePermissions: true

    Whether the addPermission() call adds any permissions

    +
    alias?: Alias
    api: LambdaRestApi
    app: string
    architecture: Architecture

    The architecture of this Lambda Function (this is an optional attribute and defaults to X86_64).

    +
    bucketNamePath: undefined | string
    canCreatePermissions: true

    Whether the addPermission() call adds any permissions

    True for new Lambdas, false for version $LATEST and imported Lambdas from different accounts.

    deadLetterQueue?: IQueue

    The DLQ (as queue) associated with this Lambda Function (this is an optional attribute).

    @@ -113,7 +113,7 @@ however, for imported resources (those obtained from static methods like fromRoleArn, fromBucketName, etc.), that might be different than the stack they were imported into.

    -
    fileName: string
    functionArn: string

    ARN of this function

    +
    fileName: string
    functionArn: string

    ARN of this function

    functionName: string

    Name of this function

    grantPrincipal: IPrincipal

    The principal this Lambda Function is running as

    node: Node

    The tree node.

    @@ -131,7 +131,7 @@
    runtime: Runtime

    The runtime configured for this lambda.

    stack: Stack

    The stack in which this resource is defined.

    timeout?: Duration

    The timeout configured for this lambda.

    -
    withoutArtifactUpload: boolean
    withoutFilePrefix: boolean
    _VER_PROPS: { [key: string]: boolean }

    Accessors

    • get connections(): Connections
    • Access the Connections object

      +
    withoutArtifactUpload: boolean
    withoutFilePrefix: boolean
    _VER_PROPS: { [key: string]: boolean }

    Accessors

    • get connections(): Connections
    • Access the Connections object

      Will fail if not a VPC-enabled Lambda Function

      Returns Connections

    • get currentVersion(): Version
    • Returns a lambda.Version which represents the current version of this Lambda function. A new version will be created every time the function's diff --git a/classes/patterns.GuEc2App.html b/classes/patterns.GuEc2App.html index f5da0d579..96f642f24 100644 --- a/classes/patterns.GuEc2App.html +++ b/classes/patterns.GuEc2App.html @@ -2,7 +2,7 @@ behind a load balancer. For convenience, you may wish to use [[GuPlayApp]] or [[GuNodeApp]], which extend this class.

      See props for further details.

      -

    Hierarchy (View Summary)

    Constructors

    Hierarchy (View Summary)

    Constructors

    Properties

    Methods

    Constructors

    Properties

    autoScalingGroup: GuAutoScalingGroup
    certificate?: GuCertificate
    node: Node

    The tree node.

    -
    vpc: IVpc

    Methods

    • Returns a string representation of this construct.

      +

    Constructors

    Properties

    autoScalingGroup: GuAutoScalingGroup
    certificate?: GuCertificate
    node: Node

    The tree node.

    +
    vpc: IVpc

    Methods

    • Returns a string representation of this construct.

      Returns string

    PUBLIC: "Public"

    For when you want your application to be accessible to the world (0.0.0.0/0).

    +
    RESTRICTED: "Restricted"

    For when you want to restrict your application's access to a list of CIDR ranges.

    +
    diff --git a/enums/constructs_dns.RecordType.html b/enums/constructs_dns.RecordType.html index 33d04751a..c1c01d16a 100644 --- a/enums/constructs_dns.RecordType.html +++ b/enums/constructs_dns.RecordType.html @@ -1,2 +1,2 @@ -RecordType | @guardian/cdk

    Enumeration Members

    Enumeration Members

    CNAME: "CNAME"
    +RecordType | @guardian/cdk

    Enumeration Members

    Enumeration Members

    CNAME: "CNAME"
    diff --git a/enums/constructs_ec2.SubnetType.html b/enums/constructs_ec2.SubnetType.html index 949a24654..6e4edf654 100644 --- a/enums/constructs_ec2.SubnetType.html +++ b/enums/constructs_ec2.SubnetType.html @@ -1,3 +1,3 @@ -SubnetType | @guardian/cdk

    Enumeration Members

    PRIVATE +SubnetType | @guardian/cdk

    Enumeration Members

    Enumeration Members

    PRIVATE: "Private"
    PUBLIC: "Public"
    +

    Enumeration Members

    PRIVATE: "Private"
    PUBLIC: "Public"
    diff --git a/functions/constants.getDependency.html b/functions/constants.getDependency.html index 6f68d1700..ef14e2c63 100644 --- a/functions/constants.getDependency.html +++ b/functions/constants.getDependency.html @@ -1 +1 @@ -getDependency | @guardian/cdk
    +getDependency | @guardian/cdk
    diff --git a/functions/constants.getDevDependency.html b/functions/constants.getDevDependency.html index ad52c32ab..6026366c6 100644 --- a/functions/constants.getDevDependency.html +++ b/functions/constants.getDevDependency.html @@ -1 +1 @@ -getDevDependency | @guardian/cdk
    +getDevDependency | @guardian/cdk
    diff --git a/functions/constructs_ec2.maybeApp.html b/functions/constructs_ec2.maybeApp.html index d4014b1bc..cdf74b7fd 100644 --- a/functions/constructs_ec2.maybeApp.html +++ b/functions/constructs_ec2.maybeApp.html @@ -1 +1 @@ -maybeApp | @guardian/cdk
    +maybeApp | @guardian/cdk
    diff --git a/functions/utils_lambda.toAwsErrorHandlingProps.html b/functions/utils_lambda.toAwsErrorHandlingProps.html index f0ff8d68f..574c246ca 100644 --- a/functions/utils_lambda.toAwsErrorHandlingProps.html +++ b/functions/utils_lambda.toAwsErrorHandlingProps.html @@ -1 +1 @@ -toAwsErrorHandlingProps | @guardian/cdk

    Function toAwsErrorHandlingProps

    +toAwsErrorHandlingProps | @guardian/cdk

    Function toAwsErrorHandlingProps

    diff --git a/functions/utils_security-groups.transformToSecurityGroupAccessRule.html b/functions/utils_security-groups.transformToSecurityGroupAccessRule.html index e9fd50635..ef379b207 100644 --- a/functions/utils_security-groups.transformToSecurityGroupAccessRule.html +++ b/functions/utils_security-groups.transformToSecurityGroupAccessRule.html @@ -1 +1 @@ -transformToSecurityGroupAccessRule | @guardian/cdk
    +transformToSecurityGroupAccessRule | @guardian/cdk
    diff --git a/functions/utils_test.attachPolicyToTestRole.html b/functions/utils_test.attachPolicyToTestRole.html index 4f191519a..8940a7575 100644 --- a/functions/utils_test.attachPolicyToTestRole.html +++ b/functions/utils_test.attachPolicyToTestRole.html @@ -1 +1 @@ -attachPolicyToTestRole | @guardian/cdk

    Function attachPolicyToTestRole

    +attachPolicyToTestRole | @guardian/cdk

    Function attachPolicyToTestRole

    diff --git a/functions/utils_test.getTemplateAfterAspectInvocation.html b/functions/utils_test.getTemplateAfterAspectInvocation.html index 6a90e2e67..768eeadec 100644 --- a/functions/utils_test.getTemplateAfterAspectInvocation.html +++ b/functions/utils_test.getTemplateAfterAspectInvocation.html @@ -2,4 +2,4 @@ This means we must synth the stack to see the results of the Aspect.

    Parameters

    • stack: GuStack

      the stack to synthesise

    Returns Template

    +
    diff --git a/functions/utils_test.simpleGuStackForTesting.html b/functions/utils_test.simpleGuStackForTesting.html index bb691ad31..c0b2c5c87 100644 --- a/functions/utils_test.simpleGuStackForTesting.html +++ b/functions/utils_test.simpleGuStackForTesting.html @@ -1 +1 @@ -simpleGuStackForTesting | @guardian/cdk

    Function simpleGuStackForTesting

    +simpleGuStackForTesting | @guardian/cdk

    Function simpleGuStackForTesting

    diff --git a/interfaces/constants.SsmParameterPath.html b/interfaces/constants.SsmParameterPath.html index 4e472033f..fe3d0e8fe 100644 --- a/interfaces/constants.SsmParameterPath.html +++ b/interfaces/constants.SsmParameterPath.html @@ -1,5 +1,5 @@ -SsmParameterPath | @guardian/cdk

    Interface SsmParameterPath

    interface SsmParameterPath {
        description: string;
        namingPattern?: string;
        optional?: boolean;
        path: string;
    }

    Properties

    description +SsmParameterPath | @guardian/cdk

    Interface SsmParameterPath

    interface SsmParameterPath {
        description: string;
        namingPattern?: string;
        optional?: boolean;
        path: string;
    }

    Properties

    description: string
    namingPattern?: string
    optional?: boolean
    path: string
    +

    Properties

    description: string
    namingPattern?: string
    optional?: boolean
    path: string
    diff --git a/interfaces/constructs_autoscaling.GuAutoScalingGroupProps.html b/interfaces/constructs_autoscaling.GuAutoScalingGroupProps.html index 5a995f6c8..f3f1e67b4 100644 --- a/interfaces/constructs_autoscaling.GuAutoScalingGroupProps.html +++ b/interfaces/constructs_autoscaling.GuAutoScalingGroupProps.html @@ -1,4 +1,4 @@ -GuAutoScalingGroupProps | @guardian/cdk
    interface GuAutoScalingGroupProps {
        additionalSecurityGroups?: ISecurityGroup[];
        allowAllOutbound?: boolean;
        app: string;
        associatePublicIpAddress?: boolean;
        autoScalingGroupName?: string;
        blockDevices?: BlockDevice[];
        capacityRebalance?: boolean;
        cooldown?: Duration;
        defaultInstanceWarmup?: Duration;
        enabledDetailedInstanceMonitoring?: boolean;
        groupMetrics?: GroupMetrics[];
        healthCheck?: HealthCheck;
        httpPutResponseHopLimit?: number;
        ignoreUnmodifiedSizeProperties?: boolean;
        imageId?: GuAmiParameter;
        imageRecipe?: string | AmigoProps;
        init?: CloudFormationInit;
        initOptions?: ApplyCloudFormationInitOptions;
        instanceMonitoring?: Monitoring;
        instanceType: InstanceType;
        keyName?: string;
        keyPair?: IKeyPair;
        launchTemplate?: ILaunchTemplate;
        maxHealthyPercentage?: number;
        maximumInstances?: number;
        maxInstanceLifetime?: Duration;
        minHealthyPercentage?: number;
        minimumInstances: number;
        mixedInstancesPolicy?: MixedInstancesPolicy;
        newInstancesProtectedFromScaleIn?: boolean;
        notifications?: NotificationConfiguration[];
        role?: IRole;
        signals?: Signals;
        spotPrice?: string;
        ssmSessionPermissions?: boolean;
        targetGroup?: ApplicationTargetGroup;
        terminationPolicies?: TerminationPolicy[];
        terminationPolicyCustomLambdaFunctionArn?: string;
        updatePolicy?: UpdatePolicy;
        userData: UserData;
        vpc: IVpc;
        vpcSubnets?: SubnetSelection;
        withoutImdsv2?: boolean;
    }

    Hierarchy (View Summary)

    • Omit<
          AutoScalingGroupProps,
          | "imageId"
          | "osType"
          | "machineImage"
          | "userData"
          | "minCapacity"
          | "maxCapacity"
          | "desiredCapacity"
          | "requireImdsv2"
          | "securityGroup",
      >
    • AppIdentity
    • GuAsgCapacity
      • GuAutoScalingGroupProps

    Properties

    additionalSecurityGroups? +GuAutoScalingGroupProps | @guardian/cdk
    interface GuAutoScalingGroupProps {
        additionalSecurityGroups?: ISecurityGroup[];
        allowAllOutbound?: boolean;
        app: string;
        associatePublicIpAddress?: boolean;
        autoScalingGroupName?: string;
        blockDevices?: BlockDevice[];
        capacityRebalance?: boolean;
        cooldown?: Duration;
        defaultInstanceWarmup?: Duration;
        enabledDetailedInstanceMonitoring?: boolean;
        groupMetrics?: GroupMetrics[];
        healthCheck?: HealthCheck;
        httpPutResponseHopLimit?: number;
        ignoreUnmodifiedSizeProperties?: boolean;
        imageId?: GuAmiParameter;
        imageRecipe?: string | AmigoProps;
        init?: CloudFormationInit;
        initOptions?: ApplyCloudFormationInitOptions;
        instanceMonitoring?: Monitoring;
        instanceType: InstanceType;
        keyName?: string;
        keyPair?: IKeyPair;
        launchTemplate?: ILaunchTemplate;
        maxHealthyPercentage?: number;
        maximumInstances?: number;
        maxInstanceLifetime?: Duration;
        minHealthyPercentage?: number;
        minimumInstances: number;
        mixedInstancesPolicy?: MixedInstancesPolicy;
        newInstancesProtectedFromScaleIn?: boolean;
        notifications?: NotificationConfiguration[];
        role?: IRole;
        signals?: Signals;
        spotPrice?: string;
        ssmSessionPermissions?: boolean;
        targetGroup?: ApplicationTargetGroup;
        terminationPolicies?: TerminationPolicy[];
        terminationPolicyCustomLambdaFunctionArn?: string;
        updatePolicy?: UpdatePolicy;
        userData: UserData;
        vpc: IVpc;
        vpcSubnets?: SubnetSelection;
        withoutImdsv2?: boolean;
    }

    Hierarchy (View Summary)

    • Omit<
          AutoScalingGroupProps,
          | "imageId"
          | "osType"
          | "machineImage"
          | "userData"
          | "minCapacity"
          | "maxCapacity"
          | "desiredCapacity"
          | "requireImdsv2"
          | "securityGroup",
      >
    • AppIdentity
    • GuAsgCapacity
      • GuAutoScalingGroupProps

    Properties

    additionalSecurityGroups?: ISecurityGroup[]
    allowAllOutbound?: boolean

    Whether the instances can initiate connections to anywhere by default

    +

    Properties

    additionalSecurityGroups?: ISecurityGroup[]
    allowAllOutbound?: boolean

    Whether the instances can initiate connections to anywhere by default

    true
     
    -
    app: string
    associatePublicIpAddress?: boolean

    Whether instances in the Auto Scaling Group should have public +

    app: string
    associatePublicIpAddress?: boolean

    Whether instances in the Auto Scaling Group should have public IP addresses associated with them.

    launchTemplate and mixedInstancesPolicy must not be specified when this property is specified

    - Use subnet setting.
    @@ -87,7 +87,7 @@
     
    None
     
    -
    enabledDetailedInstanceMonitoring?: boolean
    groupMetrics?: GroupMetrics[]

    Enable monitoring for group metrics, these metrics describe the group rather than any of its instances. +

    enabledDetailedInstanceMonitoring?: boolean
    groupMetrics?: GroupMetrics[]

    Enable monitoring for group metrics, these metrics describe the group rather than any of its instances. To report all group metrics use GroupMetrics.all() Group metrics are reported in a granularity of 1 minute at no additional charge.

    - no group metrics will be reported
    @@ -97,7 +97,7 @@
     
    - HealthCheck.ec2 with no grace period
     
    -
    httpPutResponseHopLimit?: number
    ignoreUnmodifiedSizeProperties?: boolean

    If the ASG has scheduled actions, don't reset unchanged group sizes

    +
    httpPutResponseHopLimit?: number
    ignoreUnmodifiedSizeProperties?: boolean

    If the ASG has scheduled actions, don't reset unchanged group sizes

    Only used if the ASG has scheduled actions (which may scale your ASG up or down regardless of cdk deployments). If true, the size of the group will only be reset if it has been changed in the CDK app. If false, the @@ -109,10 +109,10 @@

    imageId?: GuAmiParameter

    It shouldn't be necessary to specify a value here. GuCDK will create an AMI parameter by default. Riff-Raff can use this parameter to inject the latest AMI ID for your AMIgo recipe.

    -
    imageRecipe?: string | AmigoProps

    If you are using GuCDK to generate your riff-raff.yaml file, specify AMIgo props here. +

    imageRecipe?: string | AmigoProps

    If you are using GuCDK to generate your riff-raff.yaml file, specify AMIgo props here. If you are using a hardcoded riff-raff.yaml file (usually found in project root) then providing a value here has no effect.

    -
    init?: CloudFormationInit

    Apply the given CloudFormation Init configuration to the instances in the AutoScalingGroup at startup

    +
    init?: CloudFormationInit

    Apply the given CloudFormation Init configuration to the instances in the AutoScalingGroup at startup

    If you specify init, you must also specify signals to configure the number of instances to wait for and the timeout for waiting for the init process.

    @@ -137,7 +137,7 @@
    - Do not provide any instance type
     
    -
    keyName?: string

    Name of SSH keypair to grant access to instances

    +
    keyName?: string

    Name of SSH keypair to grant access to instances

    launchTemplate and mixedInstancesPolicy must not be specified when this property is specified

    You can either specify keyPair or keyName, not both.

    - No SSH access will be possible.
    @@ -177,7 +177,7 @@
     

    Should only be set if you need to scale beyond the default limit (e.g. due to heavy traffic), or restrict scaling for a specific reason.

    Note: If minimumInstances is defined with a Mapping maximumInstances must also be defined as a Mapping.

    -
    maxInstanceLifetime?: Duration

    The maximum amount of time that an instance can be in service. The maximum duration applies +

    maxInstanceLifetime?: Duration

    The maximum amount of time that an instance can be in service. The maximum duration applies to all current and future instances in the group. As an instance approaches its maximum duration, it is terminated and replaced, and cannot be used again.

    You must specify a value of at least 604,800 seconds (7 days). To clear a previously set value, @@ -200,7 +200,7 @@

    minimumInstances: number

    The number of EC2 instances running under normal circumstances, i.e. when there are no deployment or scaling events in progress.

    -
    mixedInstancesPolicy?: MixedInstancesPolicy

    Mixed Instances Policy to use.

    +
    mixedInstancesPolicy?: MixedInstancesPolicy

    Mixed Instances Policy to use.

    Launch configuration related settings and Launch Template must not be specified when a MixedInstancesPolicy is specified.

    - Do not provide any MixedInstancesPolicy
    @@ -264,7 +264,7 @@
     
    false
     
    -
    targetGroup?: ApplicationTargetGroup
    terminationPolicies?: TerminationPolicy[]

    A policy or a list of policies that are used to select the instances to +

    targetGroup?: ApplicationTargetGroup
    terminationPolicies?: TerminationPolicy[]

    A policy or a list of policies that are used to select the instances to terminate. The policies are executed in the order that you list them.

      @@ -286,9 +286,9 @@
    • UpdatePolicy.rollingUpdate() if using init, UpdatePolicy.none() otherwise
    -
    userData: UserData
    vpc: IVpc

    VPC to launch these instances in.

    +
    userData: UserData
    vpc: IVpc

    VPC to launch these instances in.

    vpcSubnets?: SubnetSelection

    Where to place instances within the VPC

    - All Private subnets.
     
    -
    withoutImdsv2?: boolean
    +
    withoutImdsv2?: boolean
    diff --git a/interfaces/constructs_autoscaling.GuUserDataProps.html b/interfaces/constructs_autoscaling.GuUserDataProps.html index 3ed81c8f5..6bf4ec18f 100644 --- a/interfaces/constructs_autoscaling.GuUserDataProps.html +++ b/interfaces/constructs_autoscaling.GuUserDataProps.html @@ -1,3 +1,3 @@ -GuUserDataProps | @guardian/cdk
    interface GuUserDataProps {
        configuration?: GuPrivateS3ConfigurationProps;
        distributable: GuDistributableForEc2;
    }

    Properties

    configuration? +GuUserDataProps | @guardian/cdk
    +

    Properties

    distributable: GuDistributableForEc2
    diff --git a/interfaces/constructs_cloudwatch.GuAlarmProps.html b/interfaces/constructs_cloudwatch.GuAlarmProps.html index de8d82293..794f2a88e 100644 --- a/interfaces/constructs_cloudwatch.GuAlarmProps.html +++ b/interfaces/constructs_cloudwatch.GuAlarmProps.html @@ -1,4 +1,4 @@ -GuAlarmProps | @guardian/cdk
    interface GuAlarmProps {
        actionsEnabled?: boolean;
        alarmDescription?: string;
        alarmName?: string;
        app: string;
        comparisonOperator?: ComparisonOperator;
        datapointsToAlarm?: number;
        evaluateLowSampleCountPercentile?: string;
        evaluationPeriods: number;
        metric: IMetric;
        okAction?: boolean;
        snsTopicName: string;
        threshold: number;
        treatMissingData?: TreatMissingData;
    }

    Hierarchy (View Summary)

    Properties

    actionsEnabled? +GuAlarmProps | @guardian/cdk
    interface GuAlarmProps {
        actionsEnabled?: boolean;
        alarmDescription?: string;
        alarmName?: string;
        app: string;
        comparisonOperator?: ComparisonOperator;
        datapointsToAlarm?: number;
        evaluateLowSampleCountPercentile?: string;
        evaluationPeriods: number;
        metric: IMetric;
        okAction?: boolean;
        snsTopicName: string;
        threshold: number;
        treatMissingData?: TreatMissingData;
    }

    Hierarchy (View Summary)

    Properties

    Automatically generated name
     
    -
    app: string
    comparisonOperator?: ComparisonOperator

    Comparison to use to check if metric is breaching

    +
    app: string
    comparisonOperator?: ComparisonOperator

    Comparison to use to check if metric is breaching

    GreaterThanOrEqualToThreshold
     
    @@ -41,7 +41,7 @@
    metric: IMetric

    The metric to add the alarm on

    Metric objects can be obtained from most resources, or you can construct custom Metric objects by instantiating one.

    -
    okAction?: boolean
    snsTopicName: string
    threshold: number

    The value against which the specified statistic is compared.

    +
    okAction?: boolean
    snsTopicName: string
    threshold: number

    The value against which the specified statistic is compared.

    treatMissingData?: TreatMissingData

    Sets how this alarm is to handle missing data points.

    TreatMissingData.Missing
     
    diff --git a/interfaces/constructs_cloudwatch.GuLambdaErrorPercentageMonitoringProps.html b/interfaces/constructs_cloudwatch.GuLambdaErrorPercentageMonitoringProps.html index 2ef4f871f..def3c5c21 100644 --- a/interfaces/constructs_cloudwatch.GuLambdaErrorPercentageMonitoringProps.html +++ b/interfaces/constructs_cloudwatch.GuLambdaErrorPercentageMonitoringProps.html @@ -1,4 +1,4 @@ -GuLambdaErrorPercentageMonitoringProps | @guardian/cdk

    Interface GuLambdaErrorPercentageMonitoringProps

    interface GuLambdaErrorPercentageMonitoringProps {
        actionsEnabled?: boolean;
        alarmDescription?: string;
        alarmName?: string;
        datapointsToAlarm?: number;
        evaluateLowSampleCountPercentile?: string;
        lengthOfEvaluationPeriod?: Duration;
        noMonitoring?: false;
        numberOfEvaluationPeriodsAboveThresholdBeforeAlarm?: number;
        okAction?: boolean;
        snsTopicName: string;
        toleratedErrorPercentage: number;
    }

    Hierarchy

    • Omit<
          GuAlarmProps,
          | "metric"
          | "threshold"
          | "comparisonOperator"
          | "evaluationPeriods"
          | "treatMissingData"
          | "app",
      >
      • GuLambdaErrorPercentageMonitoringProps

    Properties

    actionsEnabled? +GuLambdaErrorPercentageMonitoringProps | @guardian/cdk

    Interface GuLambdaErrorPercentageMonitoringProps

    interface GuLambdaErrorPercentageMonitoringProps {
        actionsEnabled?: boolean;
        alarmDescription?: string;
        alarmName?: string;
        datapointsToAlarm?: number;
        evaluateLowSampleCountPercentile?: string;
        lengthOfEvaluationPeriod?: Duration;
        noMonitoring?: false;
        numberOfEvaluationPeriodsAboveThresholdBeforeAlarm?: number;
        okAction?: boolean;
        snsTopicName: string;
        toleratedErrorPercentage: number;
    }

    Hierarchy

    • Omit<
          GuAlarmProps,
          | "metric"
          | "threshold"
          | "comparisonOperator"
          | "evaluationPeriods"
          | "treatMissingData"
          | "app",
      >
      • GuLambdaErrorPercentageMonitoringProps

    Properties

    - Not configured.
     
    -
    lengthOfEvaluationPeriod?: Duration
    noMonitoring?: false
    numberOfEvaluationPeriodsAboveThresholdBeforeAlarm?: number
    okAction?: boolean
    snsTopicName: string
    toleratedErrorPercentage: number
    +
    lengthOfEvaluationPeriod?: Duration
    noMonitoring?: false
    numberOfEvaluationPeriodsAboveThresholdBeforeAlarm?: number
    okAction?: boolean
    snsTopicName: string
    toleratedErrorPercentage: number
    diff --git a/interfaces/constructs_cloudwatch.GuLambdaThrottlingMonitoringProps.html b/interfaces/constructs_cloudwatch.GuLambdaThrottlingMonitoringProps.html index 79e6ffb77..7c3702c5a 100644 --- a/interfaces/constructs_cloudwatch.GuLambdaThrottlingMonitoringProps.html +++ b/interfaces/constructs_cloudwatch.GuLambdaThrottlingMonitoringProps.html @@ -1,4 +1,4 @@ -GuLambdaThrottlingMonitoringProps | @guardian/cdk
    interface GuLambdaThrottlingMonitoringProps {
        actionsEnabled?: boolean;
        alarmDescription?: string;
        alarmName?: string;
        datapointsToAlarm?: number;
        evaluateLowSampleCountPercentile?: string;
        noMonitoring?: false;
        numberOfMinutesAboveThresholdBeforeAlarm?: number;
        okAction?: boolean;
        snsTopicName: string;
        toleratedThrottlingCount?: number;
    }

    Hierarchy

    • Omit<
          GuAlarmProps,
          | "metric"
          | "threshold"
          | "comparisonOperator"
          | "evaluationPeriods"
          | "treatMissingData"
          | "app",
      >
      • GuLambdaThrottlingMonitoringProps

    Properties

    actionsEnabled? +GuLambdaThrottlingMonitoringProps | @guardian/cdk
    interface GuLambdaThrottlingMonitoringProps {
        actionsEnabled?: boolean;
        alarmDescription?: string;
        alarmName?: string;
        datapointsToAlarm?: number;
        evaluateLowSampleCountPercentile?: string;
        noMonitoring?: false;
        numberOfMinutesAboveThresholdBeforeAlarm?: number;
        okAction?: boolean;
        snsTopicName: string;
        toleratedThrottlingCount?: number;
    }

    Hierarchy

    • Omit<
          GuAlarmProps,
          | "metric"
          | "threshold"
          | "comparisonOperator"
          | "evaluationPeriods"
          | "treatMissingData"
          | "app",
      >
      • GuLambdaThrottlingMonitoringProps

    Properties

    - Not configured.
     
    -
    noMonitoring?: false
    numberOfMinutesAboveThresholdBeforeAlarm?: number

    Evaluation period in minutes for alarm.

    +
    noMonitoring?: false
    numberOfMinutesAboveThresholdBeforeAlarm?: number

    Evaluation period in minutes for alarm.

    1
     
    -
    okAction?: boolean
    snsTopicName: string
    toleratedThrottlingCount?: number

    Sum of thottled invocations above which to alarm.

    +
    okAction?: boolean
    snsTopicName: string
    toleratedThrottlingCount?: number

    Sum of thottled invocations above which to alarm.

    0
     
    -
    +
    diff --git a/interfaces/constructs_cloudwatch.Http4xxAlarmProps.html b/interfaces/constructs_cloudwatch.Http4xxAlarmProps.html index 453fd89c5..199f8f25f 100644 --- a/interfaces/constructs_cloudwatch.Http4xxAlarmProps.html +++ b/interfaces/constructs_cloudwatch.Http4xxAlarmProps.html @@ -1,4 +1,4 @@ -Http4xxAlarmProps | @guardian/cdk
    interface Http4xxAlarmProps {
        actionsEnabled?: boolean;
        alarmDescription?: string;
        alarmName?: string;
        comparisonOperator?: ComparisonOperator;
        datapointsToAlarm?: number;
        evaluateLowSampleCountPercentile?: string;
        numberOfMinutesAboveThresholdBeforeAlarm?: number;
        okAction?: boolean;
        tolerated4xxPercentage: number;
    }

    Hierarchy

    • Omit<
          GuAlarmProps,
          | "snsTopicName"
          | "evaluationPeriods"
          | "metric"
          | "period"
          | "threshold"
          | "treatMissingData"
          | "app",
      >
      • Http4xxAlarmProps

    Properties

    actionsEnabled? +Http4xxAlarmProps | @guardian/cdk
    interface Http4xxAlarmProps {
        actionsEnabled?: boolean;
        alarmDescription?: string;
        alarmName?: string;
        comparisonOperator?: ComparisonOperator;
        datapointsToAlarm?: number;
        evaluateLowSampleCountPercentile?: string;
        numberOfMinutesAboveThresholdBeforeAlarm?: number;
        okAction?: boolean;
        tolerated4xxPercentage: number;
    }

    Hierarchy

    • Omit<
          GuAlarmProps,
          | "snsTopicName"
          | "evaluationPeriods"
          | "metric"
          | "period"
          | "threshold"
          | "treatMissingData"
          | "app",
      >
      • Http4xxAlarmProps

    Properties

    - Not configured.
     
    -
    numberOfMinutesAboveThresholdBeforeAlarm?: number
    okAction?: boolean
    tolerated4xxPercentage: number
    +
    numberOfMinutesAboveThresholdBeforeAlarm?: number
    okAction?: boolean
    tolerated4xxPercentage: number
    diff --git a/interfaces/constructs_cloudwatch.Http5xxAlarmProps.html b/interfaces/constructs_cloudwatch.Http5xxAlarmProps.html index 4b6d6d683..01ae7204d 100644 --- a/interfaces/constructs_cloudwatch.Http5xxAlarmProps.html +++ b/interfaces/constructs_cloudwatch.Http5xxAlarmProps.html @@ -1,4 +1,4 @@ -Http5xxAlarmProps | @guardian/cdk
    interface Http5xxAlarmProps {
        actionsEnabled?: boolean;
        alarmDescription?: string;
        alarmName?: string;
        comparisonOperator?: ComparisonOperator;
        datapointsToAlarm?: number;
        evaluateLowSampleCountPercentile?: string;
        numberOfMinutesAboveThresholdBeforeAlarm?: number;
        okAction?: boolean;
        tolerated5xxPercentage: number;
    }

    Hierarchy

    • Omit<
          GuAlarmProps,
          | "snsTopicName"
          | "evaluationPeriods"
          | "metric"
          | "period"
          | "threshold"
          | "treatMissingData"
          | "app",
      >
      • Http5xxAlarmProps

    Properties

    actionsEnabled? +Http5xxAlarmProps | @guardian/cdk
    interface Http5xxAlarmProps {
        actionsEnabled?: boolean;
        alarmDescription?: string;
        alarmName?: string;
        comparisonOperator?: ComparisonOperator;
        datapointsToAlarm?: number;
        evaluateLowSampleCountPercentile?: string;
        numberOfMinutesAboveThresholdBeforeAlarm?: number;
        okAction?: boolean;
        tolerated5xxPercentage: number;
    }

    Hierarchy

    • Omit<
          GuAlarmProps,
          | "snsTopicName"
          | "evaluationPeriods"
          | "metric"
          | "period"
          | "threshold"
          | "treatMissingData"
          | "app",
      >
      • Http5xxAlarmProps

    Properties

    - Not configured.
     
    -
    numberOfMinutesAboveThresholdBeforeAlarm?: number
    okAction?: boolean
    tolerated5xxPercentage: number
    +
    numberOfMinutesAboveThresholdBeforeAlarm?: number
    okAction?: boolean
    tolerated5xxPercentage: number
    diff --git a/interfaces/constructs_cloudwatch.NoMonitoring.html b/interfaces/constructs_cloudwatch.NoMonitoring.html index 1aba02d00..d8d7aad15 100644 --- a/interfaces/constructs_cloudwatch.NoMonitoring.html +++ b/interfaces/constructs_cloudwatch.NoMonitoring.html @@ -1,2 +1,2 @@ -NoMonitoring | @guardian/cdk
    interface NoMonitoring {
        noMonitoring: true;
    }

    Properties

    Properties

    noMonitoring: true
    +NoMonitoring | @guardian/cdk
    interface NoMonitoring {
        noMonitoring: true;
    }

    Properties

    Properties

    noMonitoring: true
    diff --git a/interfaces/constructs_core.AppIdentity.html b/interfaces/constructs_core.AppIdentity.html index 563c3f5ab..ed42e08d4 100644 --- a/interfaces/constructs_core.AppIdentity.html +++ b/interfaces/constructs_core.AppIdentity.html @@ -1,2 +1,2 @@ -AppIdentity | @guardian/cdk
    +AppIdentity | @guardian/cdk
    diff --git a/interfaces/constructs_core.GuParameterProps.html b/interfaces/constructs_core.GuParameterProps.html index 5e65bbcd8..d49c77e3d 100644 --- a/interfaces/constructs_core.GuParameterProps.html +++ b/interfaces/constructs_core.GuParameterProps.html @@ -1,4 +1,4 @@ -GuParameterProps | @guardian/cdk
    interface GuParameterProps {
        allowedPattern?: string;
        allowedValues?: string[];
        constraintDescription?: string;
        default?: any;
        description?: string;
        fromSSM?: boolean;
        maxLength?: number;
        maxValue?: number;
        minLength?: number;
        minValue?: number;
        noEcho?: boolean;
        type?: string;
    }

    Hierarchy

    • CfnParameterProps
      • GuParameterProps

    Properties

    allowedPattern? +GuParameterProps | @guardian/cdk
    interface GuParameterProps {
        allowedPattern?: string;
        allowedValues?: string[];
        constraintDescription?: string;
        default?: any;
        description?: string;
        fromSSM?: boolean;
        maxLength?: number;
        maxValue?: number;
        minLength?: number;
        minValue?: number;
        noEcho?: boolean;
        type?: string;
    }

    Hierarchy

    • CfnParameterProps
      • GuParameterProps

    Properties

    - No description for the parameter.
     
    -
    fromSSM?: boolean
    maxLength?: number

    An integer value that determines the largest number of characters you want to allow for String types.

    +
    fromSSM?: boolean
    maxLength?: number

    An integer value that determines the largest number of characters you want to allow for String types.

    - None.
     
    diff --git a/interfaces/constructs_core.GuStackProps.html b/interfaces/constructs_core.GuStackProps.html index 9ef3c3600..38e645b6c 100644 --- a/interfaces/constructs_core.GuStackProps.html +++ b/interfaces/constructs_core.GuStackProps.html @@ -1,4 +1,4 @@ -GuStackProps | @guardian/cdk
    interface GuStackProps {
        analyticsReporting?: boolean;
        app?: string;
        cloudFormationStackName?: string;
        crossRegionReferences?: boolean;
        description?: string;
        env?: Environment;
        notificationArns?: string[];
        permissionsBoundary?: PermissionsBoundary;
        stack: string;
        stage: string;
        suppressTemplateIndentation?: boolean;
        synthesizer?: IStackSynthesizer;
        tags?: { [key: string]: string };
        terminationProtection?: boolean;
        withoutMetadata?: boolean;
        withoutTags?: boolean;
    }

    Hierarchy

    • Omit<StackProps, "stackName">
      • GuStackProps

    Properties

    analyticsReporting? +GuStackProps | @guardian/cdk
    interface GuStackProps {
        analyticsReporting?: boolean;
        app?: string;
        cloudFormationStackName?: string;
        crossRegionReferences?: boolean;
        description?: string;
        env?: Environment;
        notificationArns?: string[];
        permissionsBoundary?: PermissionsBoundary;
        stack: string;
        stage: string;
        suppressTemplateIndentation?: boolean;
        synthesizer?: IStackSynthesizer;
        tags?: { [key: string]: string };
        terminationProtection?: boolean;
        withoutMetadata?: boolean;
        withoutTags?: boolean;
    }

    Hierarchy

    • Omit<StackProps, "stackName">
      • GuStackProps

    Properties

    analyticsReporting setting of containing App, or value of 'aws:cdk:version-reporting' context key

    app?: string

    Optional name of the app. If defined, all resources will have an App tag.

    -
    cloudFormationStackName?: string

    The AWS CloudFormation stack name (as shown in the AWS CloudFormation UI).

    +
    cloudFormationStackName?: string

    The AWS CloudFormation stack name (as shown in the AWS CloudFormation UI).

    the GU_CFN_STACK_NAME environment variable

    -
    crossRegionReferences?: boolean

    Enable this flag to allow native cross region stack references.

    +
    crossRegionReferences?: boolean

    Enable this flag to allow native cross region stack references.

    Enabling this will create a CloudFormation custom resource in both the producing stack and consuming stack in order to perform the export/import

    This feature is currently experimental

    @@ -66,9 +66,9 @@
    stack: string

    The Guardian stack being used (as defined in your riff-raff.yaml). This will be applied as a tag to all of your resources.

    -
    stage: string

    The stage being used (as defined in your riff-raff.yaml). +

    stage: string

    The stage being used (as defined in your riff-raff.yaml). This will be applied as a tag to all of your resources.

    -
    suppressTemplateIndentation?: boolean

    Enable this flag to suppress indentation in generated +

    suppressTemplateIndentation?: boolean

    Enable this flag to suppress indentation in generated CloudFormation templates.

    If not specified, the value of the @aws-cdk/core:suppressTemplateIndentation context key will be used. If that is not specified, then the @@ -99,6 +99,6 @@

    withoutMetadata?: boolean

    Set to disable CDK metadata. Only for internal use (for disabling for some snapshot tests). We rely on tracking data to prioritise future work so please do not override this.

    -
    withoutTags?: boolean

    Set this to true to stop the GuStack from tagging all of your AWS resources. +

    withoutTags?: boolean

    Set this to true to stop the GuStack from tagging all of your AWS resources. This should only be turned on as part of an initial migration from CloudFormation.

    -
    +
    diff --git a/interfaces/constructs_core.GuStaticLogicalId.html b/interfaces/constructs_core.GuStaticLogicalId.html index 5fb78e001..640f6ac4c 100644 --- a/interfaces/constructs_core.GuStaticLogicalId.html +++ b/interfaces/constructs_core.GuStaticLogicalId.html @@ -1,5 +1,5 @@ -GuStaticLogicalId | @guardian/cdk
    interface GuStaticLogicalId {
        logicalId: string;
        reason: string;
    }

    Properties

    logicalId +GuStaticLogicalId | @guardian/cdk
    interface GuStaticLogicalId {
        logicalId: string;
        reason: string;
    }

    Properties

    Properties

    logicalId: string

    The logical ID to use in the synthesised template for this resource.

    -
    reason: string

    A short description to help developers understand why this resource's logical ID is being set.

    -
    +
    reason: string

    A short description to help developers understand why this resource's logical ID is being set.

    +
    diff --git a/interfaces/constructs_core.Identity.html b/interfaces/constructs_core.Identity.html index a2db4fe23..7f0d6a01d 100644 --- a/interfaces/constructs_core.Identity.html +++ b/interfaces/constructs_core.Identity.html @@ -1,4 +1,4 @@ -Identity | @guardian/cdk
    interface Identity {
        app: string;
        stack: string;
        stage: string;
    }

    Hierarchy (View Summary)

    Properties

    app +Identity | @guardian/cdk
    interface Identity {
        app: string;
        stack: string;
        stage: string;
    }

    Hierarchy (View Summary)

    Properties

    Properties

    app: string
    stack: string
    stage: string
    +

    Properties

    app: string
    stack: string
    stage: string
    diff --git a/interfaces/constructs_core.StackStageIdentity.html b/interfaces/constructs_core.StackStageIdentity.html index e8c8e575e..c6235dc8b 100644 --- a/interfaces/constructs_core.StackStageIdentity.html +++ b/interfaces/constructs_core.StackStageIdentity.html @@ -1,3 +1,3 @@ -StackStageIdentity | @guardian/cdk
    interface StackStageIdentity {
        stack: string;
        stage: string;
    }

    Hierarchy (View Summary)

    Implemented by

    Properties

    stack +StackStageIdentity | @guardian/cdk
    interface StackStageIdentity {
        stack: string;
        stage: string;
    }

    Hierarchy (View Summary)

    Implemented by

    Properties

    Properties

    stack: string
    stage: string
    +

    Properties

    stack: string
    stage: string
    diff --git a/interfaces/constructs_dns.GuCnameProps.html b/interfaces/constructs_dns.GuCnameProps.html index 89755a074..7daafc8b1 100644 --- a/interfaces/constructs_dns.GuCnameProps.html +++ b/interfaces/constructs_dns.GuCnameProps.html @@ -1,14 +1,14 @@ -GuCnameProps | @guardian/cdk
    interface GuCnameProps {
        app: string;
        domainName: string;
        hostedZoneId?: string;
        resourceRecord: string;
        ttl: Duration;
    }

    Hierarchy (View Summary)

    Properties

    app +GuCnameProps | @guardian/cdk
    interface GuCnameProps {
        app: string;
        domainName: string;
        hostedZoneId?: string;
        resourceRecord: string;
        ttl: Duration;
    }

    Hierarchy (View Summary)

    Properties

    app: string
    domainName: string

    The Fully Qualified Domain Name.

    +

    Properties

    app: string
    domainName: string

    The Fully Qualified Domain Name.

    "riff-raff.gutools.co.uk"
     
    -
    hostedZoneId?: string

    Route53 Zone ID.

    +
    hostedZoneId?: string

    Route53 Zone ID.

    To be provided only if the zone for domainName is managed by Route53.

    -
    resourceRecord: string

    The record your CNAME should point to, for example your Load Balancer DNS name

    -
    ttl: Duration

    The time to live for the DNS record

    -
    +
    resourceRecord: string

    The record your CNAME should point to, for example your Load Balancer DNS name

    +
    ttl: Duration

    The time to live for the DNS record

    +
    diff --git a/interfaces/constructs_dns.GuDnsRecordSetProps.html b/interfaces/constructs_dns.GuDnsRecordSetProps.html index fa16e1c18..11e230c75 100644 --- a/interfaces/constructs_dns.GuDnsRecordSetProps.html +++ b/interfaces/constructs_dns.GuDnsRecordSetProps.html @@ -1,5 +1,5 @@ -GuDnsRecordSetProps | @guardian/cdk
    interface GuDnsRecordSetProps {
        name: string;
        recordType: CNAME;
        resourceRecords: string[];
        ttl: Duration;
    }

    Properties

    name +GuDnsRecordSetProps | @guardian/cdk
    interface GuDnsRecordSetProps {
        name: string;
        recordType: CNAME;
        resourceRecords: string[];
        ttl: Duration;
    }

    Properties

    name: string
    recordType: CNAME
    resourceRecords: string[]
    ttl: Duration
    +

    Properties

    name: string
    recordType: CNAME
    resourceRecords: string[]
    ttl: Duration
    diff --git a/interfaces/constructs_dynamodb.GuDynamoTableProps.html b/interfaces/constructs_dynamodb.GuDynamoTableProps.html index 612bed709..e9bbb6b4b 100644 --- a/interfaces/constructs_dynamodb.GuDynamoTableProps.html +++ b/interfaces/constructs_dynamodb.GuDynamoTableProps.html @@ -1,4 +1,4 @@ -GuDynamoTableProps | @guardian/cdk
    interface GuDynamoTableProps {
        billingMode?: BillingMode;
        contributorInsightsEnabled?: boolean;
        deletionProtection?: boolean;
        devXBackups: OptIn | OptOut;
        encryption?: TableEncryption;
        encryptionKey?: IKey;
        importSource?: ImportSourceSpecification;
        kinesisStream?: IStream;
        maxReadRequestUnits?: number;
        maxWriteRequestUnits?: number;
        partitionKey: Attribute;
        pointInTimeRecovery?: boolean;
        readCapacity?: number;
        removalPolicy?: RemovalPolicy;
        replicationRegions?: string[];
        replicationTimeout?: Duration;
        resourcePolicy?: PolicyDocument;
        sortKey?: Attribute;
        stream?: StreamViewType;
        tableClass?: TableClass;
        tableName?: string;
        timeToLiveAttribute?: string;
        waitForReplicationToFinish?: boolean;
        writeCapacity?: number;
    }

    Hierarchy

    • TableProps
      • GuDynamoTableProps

    Properties

    billingMode? +GuDynamoTableProps | @guardian/cdk
    interface GuDynamoTableProps {
        billingMode?: BillingMode;
        contributorInsightsEnabled?: boolean;
        deletionProtection?: boolean;
        devXBackups: OptIn | OptOut;
        encryption?: TableEncryption;
        encryptionKey?: IKey;
        importSource?: ImportSourceSpecification;
        kinesisStream?: IStream;
        maxReadRequestUnits?: number;
        maxWriteRequestUnits?: number;
        partitionKey: Attribute;
        pointInTimeRecovery?: boolean;
        readCapacity?: number;
        removalPolicy?: RemovalPolicy;
        replicationRegions?: string[];
        replicationTimeout?: Duration;
        resourcePolicy?: PolicyDocument;
        sortKey?: Attribute;
        stream?: StreamViewType;
        tableClass?: TableClass;
        tableName?: string;
        timeToLiveAttribute?: string;
        waitForReplicationToFinish?: boolean;
        writeCapacity?: number;
    }

    Hierarchy

    • TableProps
      • GuDynamoTableProps
    devXBackups: OptIn | OptOut

    We recommend using DevX Backups to protect your DynamoDB table's backups. For more details on this feature, see the documentation.

    -
    encryption?: TableEncryption

    Whether server-side encryption with an AWS managed customer master key is enabled.

    +
    encryption?: TableEncryption

    Whether server-side encryption with an AWS managed customer master key is enabled.

    This property cannot be set if serverSideEncryption is set.

    NOTE: if you set this to CUSTOMER_MANAGED and encryptionKey is not diff --git a/interfaces/constructs_dynamodb.OptIn.html b/interfaces/constructs_dynamodb.OptIn.html index 4d9cf5e4e..b2f29ff81 100644 --- a/interfaces/constructs_dynamodb.OptIn.html +++ b/interfaces/constructs_dynamodb.OptIn.html @@ -1,2 +1,2 @@ -OptIn | @guardian/cdk

    interface OptIn {
        enabled: true;
    }

    Properties

    Properties

    enabled: true
    +OptIn | @guardian/cdk
    interface OptIn {
        enabled: true;
    }

    Properties

    Properties

    enabled: true
    diff --git a/interfaces/constructs_dynamodb.OptOut.html b/interfaces/constructs_dynamodb.OptOut.html index 6e16a0fb0..bdc7bdf5c 100644 --- a/interfaces/constructs_dynamodb.OptOut.html +++ b/interfaces/constructs_dynamodb.OptOut.html @@ -1,5 +1,5 @@ -OptOut | @guardian/cdk
    interface OptOut {
        enabled: false;
        optOutReason: string;
    }

    Properties

    enabled +OptOut | @guardian/cdk
    interface OptOut {
        enabled: false;
        optOutReason: string;
    }

    Properties

    Properties

    enabled: false
    optOutReason: string

    We recommend using DevX Backups where possible. If it is not suitable for your use-case please document +

    Properties

    enabled: false
    optOutReason: string

    We recommend using DevX Backups where possible. If it is not suitable for your use-case please document this here so that we can understand why this is switched off when performing security audits.

    -
    +
    diff --git a/interfaces/constructs_ec2.GuBaseSecurityGroupProps.html b/interfaces/constructs_ec2.GuBaseSecurityGroupProps.html index d5576cd01..bc10df75a 100644 --- a/interfaces/constructs_ec2.GuBaseSecurityGroupProps.html +++ b/interfaces/constructs_ec2.GuBaseSecurityGroupProps.html @@ -1,4 +1,4 @@ -GuBaseSecurityGroupProps | @guardian/cdk

    Interface GuBaseSecurityGroupProps

    interface GuBaseSecurityGroupProps {
        allowAllIpv6Outbound?: boolean;
        allowAllOutbound?: boolean;
        description?: string;
        disableInlineRules?: boolean;
        egresses?: SecurityGroupAccessRule[];
        ingresses?: SecurityGroupAccessRule[];
        securityGroupName?: string;
        vpc: IVpc;
    }

    Hierarchy (View Summary)

    Properties

    allowAllIpv6Outbound? +GuBaseSecurityGroupProps | @guardian/cdk

    Interface GuBaseSecurityGroupProps

    interface GuBaseSecurityGroupProps {
        allowAllIpv6Outbound?: boolean;
        allowAllOutbound?: boolean;
        description?: string;
        disableInlineRules?: boolean;
        egresses?: SecurityGroupAccessRule[];
        ingresses?: SecurityGroupAccessRule[];
        securityGroupName?: string;
        vpc: IVpc;
    }

    Hierarchy (View Summary)

    Properties

    false
     
    -
    securityGroupName?: string

    The name of the security group. For valid values, see the GroupName +

    securityGroupName?: string

    The name of the security group. For valid values, see the GroupName parameter of the CreateSecurityGroup action in the Amazon EC2 API Reference.

    It is not recommended to use an explicit group name.

    diff --git a/interfaces/constructs_ec2.GuSecurityGroupProps.html b/interfaces/constructs_ec2.GuSecurityGroupProps.html index 7bb5ada84..2602161e3 100644 --- a/interfaces/constructs_ec2.GuSecurityGroupProps.html +++ b/interfaces/constructs_ec2.GuSecurityGroupProps.html @@ -1,4 +1,4 @@ -GuSecurityGroupProps | @guardian/cdk
    interface GuSecurityGroupProps {
        allowAllIpv6Outbound?: boolean;
        allowAllOutbound?: boolean;
        app: string;
        description?: string;
        disableInlineRules?: boolean;
        egresses?: SecurityGroupAccessRule[];
        ingresses?: SecurityGroupAccessRule[];
        securityGroupName?: string;
        vpc: IVpc;
    }

    Hierarchy (View Summary)

    Properties

    allowAllIpv6Outbound? +GuSecurityGroupProps | @guardian/cdk
    interface GuSecurityGroupProps {
        allowAllIpv6Outbound?: boolean;
        allowAllOutbound?: boolean;
        app: string;
        description?: string;
        disableInlineRules?: boolean;
        egresses?: SecurityGroupAccessRule[];
        ingresses?: SecurityGroupAccessRule[];
        securityGroupName?: string;
        vpc: IVpc;
    }

    Hierarchy (View Summary)

    Properties

    true
     
    -
    app: string
    description?: string

    A description of the security group.

    +
    app: string
    description?: string

    A description of the security group.

    The default name will be the construct's CDK path.
     
    @@ -37,7 +37,7 @@
    false
     
    -
    securityGroupName?: string

    The name of the security group. For valid values, see the GroupName +

    securityGroupName?: string

    The name of the security group. For valid values, see the GroupName parameter of the CreateSecurityGroup action in the Amazon EC2 API Reference.

    It is not recommended to use an explicit group name.

    diff --git a/interfaces/constructs_ec2.GuSubnetProps.html b/interfaces/constructs_ec2.GuSubnetProps.html index f771fd853..2037dc29d 100644 --- a/interfaces/constructs_ec2.GuSubnetProps.html +++ b/interfaces/constructs_ec2.GuSubnetProps.html @@ -1,3 +1,3 @@ -GuSubnetProps | @guardian/cdk
    interface GuSubnetProps {
        app?: string;
        type?: SubnetType;
    }

    Properties

    app? +GuSubnetProps | @guardian/cdk
    interface GuSubnetProps {
        app?: string;
        type?: SubnetType;
    }

    Properties

    Properties

    app?: string
    type?: SubnetType
    +

    Properties

    app?: string
    type?: SubnetType
    diff --git a/interfaces/constructs_ec2.SecurityGroupAccessRule.html b/interfaces/constructs_ec2.SecurityGroupAccessRule.html index 30b97a3d1..445840858 100644 --- a/interfaces/constructs_ec2.SecurityGroupAccessRule.html +++ b/interfaces/constructs_ec2.SecurityGroupAccessRule.html @@ -1,12 +1,12 @@ SecurityGroupAccessRule | @guardian/cdk

    A way to describe an ingress or egress rule for a security group.

    See [[transformToSecurityGroupAccessRule]] for a handy helper function.

    -
    interface SecurityGroupAccessRule {
        description: string;
        port: number | Port;
        range: IPeer;
    }

    Properties

    interface SecurityGroupAccessRule {
        description: string;
        port: number | Port;
        range: IPeer;
    }

    Properties

    description: string

    A short explanation for this rule.

    -
    port: number | Port

    The port to open in a security group. +

    port: number | Port

    The port to open in a security group. The default protocol is TCP. Use Port.udp(port) for the UDP protocol.

    -
    range: IPeer

    The CIDR address for this rule. +

    range: IPeer

    The CIDR address for this rule. Use Peer.anyIpv4() for global access.

    -
    +
    diff --git a/interfaces/constructs_ecs.GuEcsTaskProps.html b/interfaces/constructs_ecs.GuEcsTaskProps.html index 2839e80c5..61514c9e8 100644 --- a/interfaces/constructs_ecs.GuEcsTaskProps.html +++ b/interfaces/constructs_ecs.GuEcsTaskProps.html @@ -29,7 +29,7 @@ VERSION environment variable. Alternatively, you could hard code a value for the variable in CDK. See https://docs.aws.amazon.com/step-functions/latest/dg/connect-ecs.html for further detail and other override options - this construct currently only supports environment variables.

    -
    interface GuEcsTaskProps {
        app: string;
        assignPublicIp?: boolean;
        containerConfiguration: ContainerConfiguration;
        containerInsights?: boolean;
        cpu?: number;
        customTaskPolicies?: PolicyStatement[];
        enableDistributablePolicy?: boolean;
        environmentOverrides?: TaskEnvironmentVariable[];
        memory?: number;
        monitoringConfiguration: NoMonitoring | GuEcsTaskMonitoringProps;
        securityGroups?: ISecurityGroup[];
        storage?: number;
        subnets: ISubnet[];
        taskCommand?: string;
        taskTimeoutInMinutes?: number;
        vpc: IVpc;
    }

    Hierarchy (View Summary)

    Properties

    app +
    interface GuEcsTaskProps {
        app: string;
        assignPublicIp?: boolean;
        containerConfiguration: ContainerConfiguration;
        containerInsights?: boolean;
        cpu?: number;
        customTaskPolicies?: PolicyStatement[];
        enableDistributablePolicy?: boolean;
        environmentOverrides?: TaskEnvironmentVariable[];
        memory?: number;
        monitoringConfiguration: NoMonitoring | GuEcsTaskMonitoringProps;
        securityGroups?: ISecurityGroup[];
        storage?: number;
        subnets: ISubnet[];
        taskCommand?: string;
        taskTimeoutInMinutes?: number;
        vpc: IVpc;
    }

    Hierarchy (View Summary)

    Properties

    app: string
    assignPublicIp?: boolean
    containerConfiguration: ContainerConfiguration
    containerInsights?: boolean

    If true, CloudWatch Container Insights will be enabled for the cluster

    +

    Properties

    app: string
    assignPublicIp?: boolean
    containerConfiguration: ContainerConfiguration
    containerInsights?: boolean

    If true, CloudWatch Container Insights will be enabled for the cluster

    false
     
    -
    cpu?: number
    customTaskPolicies?: PolicyStatement[]
    enableDistributablePolicy?: boolean

    Whether to give the task IAM role access to the account's dist bucket. +

    cpu?: number
    customTaskPolicies?: PolicyStatement[]
    enableDistributablePolicy?: boolean

    Whether to give the task IAM role access to the account's dist bucket. This is enabled by default to avoid breaking changes, but consumers of this pattern that pull a container image that doesn't need extra dependencies from S3 shoud set this value to false.

    -
    environmentOverrides?: TaskEnvironmentVariable[]
    memory?: number
    monitoringConfiguration: NoMonitoring | GuEcsTaskMonitoringProps
    securityGroups?: ISecurityGroup[]
    storage?: number
    subnets: ISubnet[]
    taskCommand?: string
    taskTimeoutInMinutes?: number
    vpc: IVpc
    +
    environmentOverrides?: TaskEnvironmentVariable[]
    memory?: number
    monitoringConfiguration: NoMonitoring | GuEcsTaskMonitoringProps
    securityGroups?: ISecurityGroup[]
    storage?: number
    subnets: ISubnet[]
    taskCommand?: string
    taskTimeoutInMinutes?: number
    vpc: IVpc
    diff --git a/interfaces/constructs_iam.GuAllowPolicyProps.html b/interfaces/constructs_iam.GuAllowPolicyProps.html index 59ceb077b..501ffdfbb 100644 --- a/interfaces/constructs_iam.GuAllowPolicyProps.html +++ b/interfaces/constructs_iam.GuAllowPolicyProps.html @@ -1,4 +1,4 @@ -GuAllowPolicyProps | @guardian/cdk
    interface GuAllowPolicyProps {
        actions: string[];
        document?: PolicyDocument;
        force?: boolean;
        groups?: IGroup[];
        policyName?: string;
        resources: string[];
        roles?: IRole[];
        users?: IUser[];
    }

    Hierarchy (View Summary)

    Properties

    actions +GuAllowPolicyProps | @guardian/cdk
    interface GuAllowPolicyProps {
        actions: string[];
        document?: PolicyDocument;
        force?: boolean;
        groups?: IGroup[];
        policyName?: string;
        resources: string[];
        roles?: IRole[];
        users?: IUser[];
    }

    Hierarchy (View Summary)

    Properties

    Properties

    actions: string[]
    document?: PolicyDocument

    Initial PolicyDocument to use for this Policy. If omited, any +

    Properties

    actions: string[]
    document?: PolicyDocument

    Initial PolicyDocument to use for this Policy. If omited, any PolicyStatement provided in the statements property will be applied against the empty default PolicyDocument.

    - An empty policy.
    @@ -35,7 +35,7 @@
     
    - Uses the logical ID of the policy resource, which is ensured
    to be unique within the stack.
    -
    resources: string[]
    roles?: IRole[]

    Roles to attach this policy to. +

    resources: string[]
    roles?: IRole[]

    Roles to attach this policy to. You can also use attachToRole(role) to attach this policy to a role.

    - No roles.
     
    diff --git a/interfaces/constructs_iam.GuAssumeRolePolicyProps.html b/interfaces/constructs_iam.GuAssumeRolePolicyProps.html index 8d65cc526..ba9313182 100644 --- a/interfaces/constructs_iam.GuAssumeRolePolicyProps.html +++ b/interfaces/constructs_iam.GuAssumeRolePolicyProps.html @@ -1,4 +1,4 @@ -GuAssumeRolePolicyProps | @guardian/cdk
    interface GuAssumeRolePolicyProps {
        document?: PolicyDocument;
        force?: boolean;
        groups?: IGroup[];
        policyName?: string;
        resources: string[];
        roles?: IRole[];
        users?: IUser[];
    }

    Hierarchy (View Summary)

    Properties

    document? +GuAssumeRolePolicyProps | @guardian/cdk
    interface GuAssumeRolePolicyProps {
        document?: PolicyDocument;
        force?: boolean;
        groups?: IGroup[];
        policyName?: string;
        resources: string[];
        roles?: IRole[];
        users?: IUser[];
    }

    Hierarchy (View Summary)

    Properties

    document? force? groups? policyName? @@ -34,7 +34,7 @@
    - Uses the logical ID of the policy resource, which is ensured
    to be unique within the stack.
    -
    resources: string[]
    roles?: IRole[]

    Roles to attach this policy to. +

    resources: string[]
    roles?: IRole[]

    Roles to attach this policy to. You can also use attachToRole(role) to attach this policy to a role.

    - No roles.
     
    diff --git a/interfaces/constructs_iam.GuFastlyLogsIamRoleProps.html b/interfaces/constructs_iam.GuFastlyLogsIamRoleProps.html index a75ad1e62..213c23790 100644 --- a/interfaces/constructs_iam.GuFastlyLogsIamRoleProps.html +++ b/interfaces/constructs_iam.GuFastlyLogsIamRoleProps.html @@ -1,8 +1,8 @@ -GuFastlyLogsIamRoleProps | @guardian/cdk

    Interface GuFastlyLogsIamRoleProps

    interface GuFastlyLogsIamRoleProps {
        bucketName: string;
        path?: string;
    }

    Properties

    bucketName +GuFastlyLogsIamRoleProps | @guardian/cdk

    Interface GuFastlyLogsIamRoleProps

    interface GuFastlyLogsIamRoleProps {
        bucketName: string;
        path?: string;
    }

    Properties

    Properties

    bucketName: string

    S3 bucket name that Fastly will ship logs

    -
    path?: string

    Path within the S3 bucket where Fastly will ship logs.

    +
    path?: string

    Path within the S3 bucket where Fastly will ship logs.

    - '*'
    If path is not specified, access will be granted to the entire S3 bucket.
    -
    +
    diff --git a/interfaces/constructs_iam.GuGetS3ObjectPolicyProps.html b/interfaces/constructs_iam.GuGetS3ObjectPolicyProps.html index 9fee75aae..a61fb91e2 100644 --- a/interfaces/constructs_iam.GuGetS3ObjectPolicyProps.html +++ b/interfaces/constructs_iam.GuGetS3ObjectPolicyProps.html @@ -1,4 +1,4 @@ -GuGetS3ObjectPolicyProps | @guardian/cdk

    Interface GuGetS3ObjectPolicyProps

    interface GuGetS3ObjectPolicyProps {
        bucketName: string;
        document?: PolicyDocument;
        force?: boolean;
        groups?: IGroup[];
        paths?: string[];
        policyName?: string;
        roles?: IRole[];
        users?: IUser[];
    }

    Hierarchy (View Summary)

    Properties

    bucketName +GuGetS3ObjectPolicyProps | @guardian/cdk

    Interface GuGetS3ObjectPolicyProps

    interface GuGetS3ObjectPolicyProps {
        bucketName: string;
        document?: PolicyDocument;
        force?: boolean;
        groups?: IGroup[];
        paths?: string[];
        policyName?: string;
        roles?: IRole[];
        users?: IUser[];
    }

    Hierarchy (View Summary)

    Properties

    bucketName: string
    document?: PolicyDocument

    Initial PolicyDocument to use for this Policy. If omited, any +

    Properties

    bucketName: string
    document?: PolicyDocument

    Initial PolicyDocument to use for this Policy. If omited, any PolicyStatement provided in the statements property will be applied against the empty default PolicyDocument.

    - An empty policy.
    @@ -29,7 +29,7 @@
     
    - No groups.
     
    -
    paths?: string[]
    policyName?: string

    The name of the policy. If you specify multiple policies for an entity, +

    paths?: string[]
    policyName?: string

    The name of the policy. If you specify multiple policies for an entity, specify unique names. For example, if you specify a list of policies for an IAM role, each policy must have a unique name.

    - Uses the logical ID of the policy resource, which is ensured
    to be unique within the stack. diff --git a/interfaces/constructs_iam.GuGithubActionsRepositoryCondition.html b/interfaces/constructs_iam.GuGithubActionsRepositoryCondition.html index 1645eede4..d396841fd 100644 --- a/interfaces/constructs_iam.GuGithubActionsRepositoryCondition.html +++ b/interfaces/constructs_iam.GuGithubActionsRepositoryCondition.html @@ -1,5 +1,5 @@ -GuGithubActionsRepositoryCondition | @guardian/cdk

    Interface GuGithubActionsRepositoryCondition

    interface GuGithubActionsRepositoryCondition {
        githubOrganisation: string;
        repositories?: string;
    }

    Properties

    githubOrganisation +GuGithubActionsRepositoryCondition | @guardian/cdk

    Interface GuGithubActionsRepositoryCondition

    interface GuGithubActionsRepositoryCondition {
        githubOrganisation: string;
        repositories?: string;
    }

    Properties

    githubOrganisation: string

    The GitHub organisation/user to constrain the IAM Role to.

    -
    repositories?: string

    Repositories to constrain the IAM Role to.

    -
    +
    repositories?: string

    Repositories to constrain the IAM Role to.

    +
    diff --git a/interfaces/constructs_iam.GuGithubActionsRoleProps.html b/interfaces/constructs_iam.GuGithubActionsRoleProps.html index 91c766591..dfb5be3e3 100644 --- a/interfaces/constructs_iam.GuGithubActionsRoleProps.html +++ b/interfaces/constructs_iam.GuGithubActionsRoleProps.html @@ -1,6 +1,6 @@ -GuGithubActionsRoleProps | @guardian/cdk

    Interface GuGithubActionsRoleProps

    interface GuGithubActionsRoleProps {
        condition?: GuGithubActionsRepositoryCondition;
        policies: GuPolicy[];
    }

    Properties

    condition? +GuGithubActionsRoleProps | @guardian/cdk

    Interface GuGithubActionsRoleProps

    interface GuGithubActionsRoleProps {
        condition?: GuGithubActionsRepositoryCondition;
        policies: GuPolicy[];
    }

    Properties

    Properties

    Repositories where GitHub Actions can assumes this role. Defaults to [[ALL_GUARDIAN_REPOSITORIES]].

    -
    policies: GuPolicy[]

    A list of IAM Policies for the GitHub Action.

    -
    +
    policies: GuPolicy[]

    A list of IAM Policies for the GitHub Action.

    +
    diff --git a/interfaces/constructs_iam.GuInstanceRoleProps.html b/interfaces/constructs_iam.GuInstanceRoleProps.html index 9d466e693..fc337cc26 100644 --- a/interfaces/constructs_iam.GuInstanceRoleProps.html +++ b/interfaces/constructs_iam.GuInstanceRoleProps.html @@ -1,7 +1,7 @@ -GuInstanceRoleProps | @guardian/cdk
    interface GuInstanceRoleProps {
        additionalPolicies?: GuPolicy[];
        withoutLogShipping?: boolean;
    }

    Properties

    additionalPolicies? +GuInstanceRoleProps | @guardian/cdk
    interface GuInstanceRoleProps {
        additionalPolicies?: GuPolicy[];
        withoutLogShipping?: boolean;
    }

    Properties

    additionalPolicies?: GuPolicy[]
    withoutLogShipping?: boolean

    By default, instances are given permissions to write to Kinesis. Set to +

    Properties

    additionalPolicies?: GuPolicy[]
    withoutLogShipping?: boolean

    By default, instances are given permissions to write to Kinesis. Set to 'true' to prevent this. Note, disabling will prevent not just application logs being shipped but also anything else - for example, automatic log shipping of Cloud Init and other logs by the cdk-base role in your AMI.

    -
    +
    diff --git a/interfaces/constructs_iam.GuPutS3ObjectPolicyProps.html b/interfaces/constructs_iam.GuPutS3ObjectPolicyProps.html index a3e37d716..f704e3034 100644 --- a/interfaces/constructs_iam.GuPutS3ObjectPolicyProps.html +++ b/interfaces/constructs_iam.GuPutS3ObjectPolicyProps.html @@ -1,4 +1,4 @@ -GuPutS3ObjectPolicyProps | @guardian/cdk

    Interface GuPutS3ObjectPolicyProps

    interface GuPutS3ObjectPolicyProps {
        bucketName: string;
        document?: PolicyDocument;
        force?: boolean;
        groups?: IGroup[];
        paths?: string[];
        policyName?: string;
        roles?: IRole[];
        users?: IUser[];
    }

    Hierarchy (View Summary)

    Properties

    bucketName +GuPutS3ObjectPolicyProps | @guardian/cdk

    Interface GuPutS3ObjectPolicyProps

    interface GuPutS3ObjectPolicyProps {
        bucketName: string;
        document?: PolicyDocument;
        force?: boolean;
        groups?: IGroup[];
        paths?: string[];
        policyName?: string;
        roles?: IRole[];
        users?: IUser[];
    }

    Hierarchy (View Summary)

    Properties

    bucketName: string
    document?: PolicyDocument

    Initial PolicyDocument to use for this Policy. If omited, any +

    Properties

    bucketName: string
    document?: PolicyDocument

    Initial PolicyDocument to use for this Policy. If omited, any PolicyStatement provided in the statements property will be applied against the empty default PolicyDocument.

    - An empty policy.
    @@ -29,7 +29,7 @@
     
    - No groups.
     
    -
    paths?: string[]
    policyName?: string

    The name of the policy. If you specify multiple policies for an entity, +

    paths?: string[]
    policyName?: string

    The name of the policy. If you specify multiple policies for an entity, specify unique names. For example, if you specify a list of policies for an IAM role, each policy must have a unique name.

    - Uses the logical ID of the policy resource, which is ensured
    to be unique within the stack. diff --git a/interfaces/constructs_lambda.GuFunctionProps.html b/interfaces/constructs_lambda.GuFunctionProps.html index 1791d6ef4..a49ac2548 100644 --- a/interfaces/constructs_lambda.GuFunctionProps.html +++ b/interfaces/constructs_lambda.GuFunctionProps.html @@ -1,4 +1,4 @@ -GuFunctionProps | @guardian/cdk
    interface GuFunctionProps {
        adotInstrumentation?: AdotInstrumentationConfig;
        allowAllIpv6Outbound?: boolean;
        allowAllOutbound?: boolean;
        allowPublicSubnet?: boolean;
        app: string;
        applicationLogLevel?: string;
        applicationLogLevelV2?: ApplicationLogLevel;
        architecture?: Architecture;
        bucketNamePath?: string;
        codeSigningConfig?: ICodeSigningConfig;
        currentVersionOptions?: VersionOptions;
        deadLetterQueue?: IQueue;
        deadLetterQueueEnabled?: boolean;
        deadLetterTopic?: ITopic;
        description?: string;
        enableVersioning?: boolean;
        environment?: { [key: string]: string };
        environmentEncryption?: IKey;
        ephemeralStorageSize?: Size;
        errorPercentageMonitoring?: GuLambdaErrorPercentageMonitoringProps;
        events?: IEventSource[];
        fileName: string;
        filesystem?: FileSystem;
        functionName?: string;
        handler: string;
        initialPolicy?: PolicyStatement[];
        insightsVersion?: LambdaInsightsVersion;
        ipv6AllowedForDualStack?: boolean;
        layers?: ILayerVersion[];
        logFormat?: string;
        loggingFormat?: LoggingFormat;
        logGroup?: ILogGroup;
        logRetention?: RetentionDays;
        logRetentionRetryOptions?: LogRetentionRetryOptions;
        logRetentionRole?: IRole;
        maxEventAge?: Duration;
        memorySize?: number;
        onFailure?: IDestination;
        onSuccess?: IDestination;
        paramsAndSecrets?: ParamsAndSecretsLayerVersion;
        profiling?: boolean;
        profilingGroup?: IProfilingGroup;
        recursiveLoop?: RecursiveLoop;
        reservedConcurrentExecutions?: number;
        retryAttempts?: number;
        role?: IRole;
        runtime: Runtime;
        runtimeManagementMode?: RuntimeManagementMode;
        securityGroups?: ISecurityGroup[];
        snapStart?: SnapStartConf;
        systemLogLevel?: string;
        systemLogLevelV2?: SystemLogLevel;
        throttlingMonitoring?: GuLambdaThrottlingMonitoringProps;
        timeout?: Duration;
        tracing?: Tracing;
        vpc?: IVpc;
        vpcSubnets?: SubnetSelection;
        withoutArtifactUpload?: boolean;
        withoutFilePrefix?: boolean;
    }

    Hierarchy (View Summary)

    Properties

    adotInstrumentation? +GuFunctionProps | @guardian/cdk
    interface GuFunctionProps {
        adotInstrumentation?: AdotInstrumentationConfig;
        allowAllIpv6Outbound?: boolean;
        allowAllOutbound?: boolean;
        allowPublicSubnet?: boolean;
        app: string;
        applicationLogLevel?: string;
        applicationLogLevelV2?: ApplicationLogLevel;
        architecture?: Architecture;
        bucketNamePath?: string;
        codeSigningConfig?: ICodeSigningConfig;
        currentVersionOptions?: VersionOptions;
        deadLetterQueue?: IQueue;
        deadLetterQueueEnabled?: boolean;
        deadLetterTopic?: ITopic;
        description?: string;
        enableVersioning?: boolean;
        environment?: { [key: string]: string };
        environmentEncryption?: IKey;
        ephemeralStorageSize?: Size;
        errorPercentageMonitoring?: GuLambdaErrorPercentageMonitoringProps;
        events?: IEventSource[];
        fileName: string;
        filesystem?: FileSystem;
        functionName?: string;
        handler: string;
        initialPolicy?: PolicyStatement[];
        insightsVersion?: LambdaInsightsVersion;
        ipv6AllowedForDualStack?: boolean;
        layers?: ILayerVersion[];
        logFormat?: string;
        loggingFormat?: LoggingFormat;
        logGroup?: ILogGroup;
        logRetention?: RetentionDays;
        logRetentionRetryOptions?: LogRetentionRetryOptions;
        logRetentionRole?: IRole;
        maxEventAge?: Duration;
        memorySize?: number;
        onFailure?: IDestination;
        onSuccess?: IDestination;
        paramsAndSecrets?: ParamsAndSecretsLayerVersion;
        profiling?: boolean;
        profilingGroup?: IProfilingGroup;
        recursiveLoop?: RecursiveLoop;
        reservedConcurrentExecutions?: number;
        retryAttempts?: number;
        role?: IRole;
        runtime: Runtime;
        runtimeManagementMode?: RuntimeManagementMode;
        securityGroups?: ISecurityGroup[];
        snapStart?: SnapStartConf;
        systemLogLevel?: string;
        systemLogLevelV2?: SystemLogLevel;
        throttlingMonitoring?: GuLambdaThrottlingMonitoringProps;
        timeout?: Duration;
        tracing?: Tracing;
        vpc?: IVpc;
        vpcSubnets?: SubnetSelection;
        withoutArtifactUpload?: boolean;
        withoutFilePrefix?: boolean;
    }

    Hierarchy (View Summary)

    Properties

    false
     
    -
    app: string
    applicationLogLevel?: string

    Sets the application log level for the function.

    +
    app: string
    applicationLogLevel?: string

    Sets the application log level for the function.

    Use applicationLogLevelV2 as a property instead.

    "INFO"
     
    @@ -103,7 +103,7 @@ you are referencing a file that is shared across many apps and/or AWS accounts.

    [[GuDistributionBucketParameter]]

    -
    codeSigningConfig?: ICodeSigningConfig

    Code signing config associated with this function

    +
    codeSigningConfig?: ICodeSigningConfig

    Code signing config associated with this function

    - Not Sign the Code
     
    @@ -136,7 +136,7 @@ on versioning (e.g. SnapStart or Provisioned Concurrency).

    If you enable versioning you must ensure that your Lambda function is updated whenever a new build is deployed via CloudFormation. The simplest way to do this is to include the build number in the fileName prop.

    -
    environment?: { [key: string]: string }

    Key-value pairs that Lambda caches and makes available for your Lambda +

    environment?: { [key: string]: string }

    Key-value pairs that Lambda caches and makes available for your Lambda functions. Use environment variables to apply configuration changes, such as test and production environment configurations, without changing your Lambda function source code.

    @@ -152,14 +152,14 @@
    errorPercentageMonitoring?: GuLambdaErrorPercentageMonitoringProps

    Alarm if error percentage exceeds a threshold.

    -
    events?: IEventSource[]

    Event sources for this function.

    +
    events?: IEventSource[]

    Event sources for this function.

    You can also add event sources using addEventSource.

    - No event sources.
     
    fileName: string

    The filename for an executable package within the bucket [[GuDistributionBucketParameter]]. We'll look for fileName on the path "bucket/stack/stage/app/".

    -
    filesystem?: FileSystem

    The filesystem configuration for the lambda function

    +
    filesystem?: FileSystem

    The filesystem configuration for the lambda function

    - will not mount any filesystem
     
    @@ -347,7 +347,7 @@ concurrency limit (the reservedConcurrentExecutions prop) if you are concerned about throttling.

    timeout?: Duration

    The function execution time (in seconds) after which Lambda terminates +

    timeout?: Duration

    The function execution time (in seconds) after which Lambda terminates the function. Because the execution time affects cost, set this value based on the function's expected execution time.

    Duration.seconds(3)
    @@ -375,8 +375,8 @@
     managed elsewhere by DevX.

    This is used by RiffRaffYamlFileExperimental to skip generating an uploadLambda step.

    -
    withoutFilePrefix?: boolean

    Set to true to use the filename without the stage/stack/app prefix.

    +
    withoutFilePrefix?: boolean

    Set to true to use the filename without the stage/stack/app prefix.

    Typically you should not override this but you may need to if, for example, you are referencing a file that is shared across many apps and/or AWS accounts.

    -
    +
    diff --git a/interfaces/constructs_loadbalancing.GuApplicationListenerProps.html b/interfaces/constructs_loadbalancing.GuApplicationListenerProps.html index b0235f775..a8f2b3dbf 100644 --- a/interfaces/constructs_loadbalancing.GuApplicationListenerProps.html +++ b/interfaces/constructs_loadbalancing.GuApplicationListenerProps.html @@ -1,4 +1,4 @@ -GuApplicationListenerProps | @guardian/cdk
    interface GuApplicationListenerProps {
        app: string;
        certificates?: IListenerCertificate[];
        defaultAction?: ListenerAction;
        defaultTargetGroups?: IApplicationTargetGroup[];
        loadBalancer: IApplicationLoadBalancer;
        mutualAuthentication?: MutualAuthentication;
        open?: boolean;
        port?: number;
        protocol?: ApplicationProtocol;
        sslPolicy?: SslPolicy;
    }

    Hierarchy (View Summary)

    • ApplicationListenerProps
    • AppIdentity
      • GuApplicationListenerProps

    Properties

    app +GuApplicationListenerProps | @guardian/cdk
    interface GuApplicationListenerProps {
        app: string;
        certificates?: IListenerCertificate[];
        defaultAction?: ListenerAction;
        defaultTargetGroups?: IApplicationTargetGroup[];
        loadBalancer: IApplicationLoadBalancer;
        mutualAuthentication?: MutualAuthentication;
        open?: boolean;
        port?: number;
        protocol?: ApplicationProtocol;
        sslPolicy?: SslPolicy;
    }

    Hierarchy (View Summary)

    • ApplicationListenerProps
    • AppIdentity
      • GuApplicationListenerProps

    Properties

    app: string
    certificates?: IListenerCertificate[]

    Certificate list of ACM cert ARNs. You must provide exactly one certificate if the listener protocol is HTTPS or TLS.

    +

    Properties

    app: string
    certificates?: IListenerCertificate[]

    Certificate list of ACM cert ARNs. You must provide exactly one certificate if the listener protocol is HTTPS or TLS.

    - No certificates.
     
    diff --git a/interfaces/constructs_loadbalancing.GuApplicationTargetGroupProps.html b/interfaces/constructs_loadbalancing.GuApplicationTargetGroupProps.html index 859f663f9..85fca4690 100644 --- a/interfaces/constructs_loadbalancing.GuApplicationTargetGroupProps.html +++ b/interfaces/constructs_loadbalancing.GuApplicationTargetGroupProps.html @@ -1,4 +1,4 @@ -GuApplicationTargetGroupProps | @guardian/cdk
    interface GuApplicationTargetGroupProps {
        app: string;
        crossZoneEnabled?: boolean;
        deregistrationDelay?: Duration;
        enableAnomalyMitigation?: boolean;
        healthCheck?: HealthCheck;
        ipAddressType?: TargetGroupIpAddressType;
        loadBalancingAlgorithmType?: TargetGroupLoadBalancingAlgorithmType;
        port?: number;
        protocol?: ApplicationProtocol;
        protocolVersion?: ApplicationProtocolVersion;
        slowStart?: Duration;
        stickinessCookieDuration?: Duration;
        stickinessCookieName?: string;
        targetGroupName?: string;
        targets?: IApplicationLoadBalancerTarget[];
        targetType?: TargetType;
        vpc?: IVpc;
    }

    Hierarchy (View Summary)

    • ApplicationTargetGroupProps
    • AppIdentity
      • GuApplicationTargetGroupProps

    Properties

    app +GuApplicationTargetGroupProps | @guardian/cdk
    interface GuApplicationTargetGroupProps {
        app: string;
        crossZoneEnabled?: boolean;
        deregistrationDelay?: Duration;
        enableAnomalyMitigation?: boolean;
        healthCheck?: HealthCheck;
        ipAddressType?: TargetGroupIpAddressType;
        loadBalancingAlgorithmType?: TargetGroupLoadBalancingAlgorithmType;
        port?: number;
        protocol?: ApplicationProtocol;
        protocolVersion?: ApplicationProtocolVersion;
        slowStart?: Duration;
        stickinessCookieDuration?: Duration;
        stickinessCookieName?: string;
        targetGroupName?: string;
        targets?: IApplicationLoadBalancerTarget[];
        targetType?: TargetType;
        vpc?: IVpc;
    }

    Hierarchy (View Summary)

    • ApplicationTargetGroupProps
    • AppIdentity
      • GuApplicationTargetGroupProps

    Properties

    app: string
    crossZoneEnabled?: boolean

    Indicates whether cross zone load balancing is enabled.

    +

    Properties

    app: string
    crossZoneEnabled?: boolean

    Indicates whether cross zone load balancing is enabled.

    - use load balancer configuration
     
    diff --git a/interfaces/constructs_loadbalancing.GuHttpsApplicationListenerProps.html b/interfaces/constructs_loadbalancing.GuHttpsApplicationListenerProps.html index f2021f7f7..7bc67fd31 100644 --- a/interfaces/constructs_loadbalancing.GuHttpsApplicationListenerProps.html +++ b/interfaces/constructs_loadbalancing.GuHttpsApplicationListenerProps.html @@ -1,4 +1,4 @@ -GuHttpsApplicationListenerProps | @guardian/cdk
    interface GuHttpsApplicationListenerProps {
        app: string;
        certificate?: GuCertificate;
        defaultTargetGroups?: IApplicationTargetGroup[];
        loadBalancer: IApplicationLoadBalancer;
        mutualAuthentication?: MutualAuthentication;
        open?: boolean;
        port?: number;
        protocol?: ApplicationProtocol;
        sslPolicy?: SslPolicy;
        targetGroup: GuApplicationTargetGroup;
    }

    Hierarchy (View Summary)

    Properties

    app +GuHttpsApplicationListenerProps | @guardian/cdk
    interface GuHttpsApplicationListenerProps {
        app: string;
        certificate?: GuCertificate;
        defaultTargetGroups?: IApplicationTargetGroup[];
        loadBalancer: IApplicationLoadBalancer;
        mutualAuthentication?: MutualAuthentication;
        open?: boolean;
        port?: number;
        protocol?: ApplicationProtocol;
        sslPolicy?: SslPolicy;
        targetGroup: GuApplicationTargetGroup;
    }

    Hierarchy (View Summary)

    Properties

    app: string
    certificate?: GuCertificate
    defaultTargetGroups?: IApplicationTargetGroup[]

    Default target groups to load balance to

    +

    Properties

    app: string
    certificate?: GuCertificate
    defaultTargetGroups?: IApplicationTargetGroup[]

    Default target groups to load balance to

    All target groups will be load balanced to with equal weight and without stickiness. For a more complex configuration than that, use either defaultAction or addAction().

    @@ -44,4 +44,4 @@
    - The current predefined security policy.
     
    -
    +
    diff --git a/interfaces/constructs_rds.GuDatabaseInstanceProps.html b/interfaces/constructs_rds.GuDatabaseInstanceProps.html index 507b1036a..d6cefc9b2 100644 --- a/interfaces/constructs_rds.GuDatabaseInstanceProps.html +++ b/interfaces/constructs_rds.GuDatabaseInstanceProps.html @@ -1,4 +1,4 @@ -GuDatabaseInstanceProps | @guardian/cdk
    interface GuDatabaseInstanceProps {
        allocatedStorage?: number;
        allowMajorVersionUpgrade?: boolean;
        app: string;
        autoMinorVersionUpgrade?: boolean;
        availabilityZone?: string;
        caCertificate?: CaCertificate;
        characterSetName?: string;
        cloudwatchLogsExports?: string[];
        cloudwatchLogsRetention?: RetentionDays;
        cloudwatchLogsRetentionRole?: IRole;
        copyTagsToSnapshot?: boolean;
        credentials?: Credentials;
        databaseName?: string;
        deleteAutomatedBackups?: boolean;
        deletionProtection?: boolean;
        devXBackups: OptIn | OptOut;
        domain?: string;
        domainRole?: IRole;
        enablePerformanceInsights?: boolean;
        engine: IInstanceEngine;
        iamAuthentication?: boolean;
        instanceIdentifier?: string;
        instanceType: string;
        iops?: number;
        licenseModel?: LicenseModel;
        maxAllocatedStorage?: number;
        monitoringInterval?: Duration;
        monitoringRole?: IRole;
        multiAz?: boolean;
        networkType?: NetworkType;
        optionGroup?: IOptionGroup;
        parameterGroup?: IParameterGroup;
        parameters?: { [key: string]: string };
        performanceInsightEncryptionKey?: IKey;
        performanceInsightRetention?: PerformanceInsightRetention;
        port?: number;
        preferredMaintenanceWindow?: string;
        processorFeatures?: ProcessorFeatures;
        publiclyAccessible?: boolean;
        removalPolicy?: RemovalPolicy;
        s3ExportBuckets?: IBucket[];
        s3ExportRole?: IRole;
        s3ImportBuckets?: IBucket[];
        s3ImportRole?: IRole;
        securityGroups?: ISecurityGroup[];
        storageEncrypted?: boolean;
        storageEncryptionKey?: IKey;
        storageThroughput?: number;
        storageType?: StorageType;
        subnetGroup?: ISubnetGroup;
        timezone?: string;
        vpc: IVpc;
        vpcSubnets?: SubnetSelection;
    }

    Hierarchy (View Summary)

    • Omit<
          DatabaseInstanceProps,
          "instanceType"
          | "backupRetention"
          | "preferredBackupWindow",
      >
    • AppIdentity
      • GuDatabaseInstanceProps

    Properties

    allocatedStorage? +GuDatabaseInstanceProps | @guardian/cdk
    interface GuDatabaseInstanceProps {
        allocatedStorage?: number;
        allowMajorVersionUpgrade?: boolean;
        app: string;
        autoMinorVersionUpgrade?: boolean;
        availabilityZone?: string;
        caCertificate?: CaCertificate;
        characterSetName?: string;
        cloudwatchLogsExports?: string[];
        cloudwatchLogsRetention?: RetentionDays;
        cloudwatchLogsRetentionRole?: IRole;
        copyTagsToSnapshot?: boolean;
        credentials?: Credentials;
        databaseName?: string;
        deleteAutomatedBackups?: boolean;
        deletionProtection?: boolean;
        devXBackups: OptIn | OptOut;
        domain?: string;
        domainRole?: IRole;
        enablePerformanceInsights?: boolean;
        engine: IInstanceEngine;
        iamAuthentication?: boolean;
        instanceIdentifier?: string;
        instanceType: string;
        iops?: number;
        licenseModel?: LicenseModel;
        maxAllocatedStorage?: number;
        monitoringInterval?: Duration;
        monitoringRole?: IRole;
        multiAz?: boolean;
        networkType?: NetworkType;
        optionGroup?: IOptionGroup;
        parameterGroup?: IParameterGroup;
        parameters?: { [key: string]: string };
        performanceInsightEncryptionKey?: IKey;
        performanceInsightRetention?: PerformanceInsightRetention;
        port?: number;
        preferredMaintenanceWindow?: string;
        processorFeatures?: ProcessorFeatures;
        publiclyAccessible?: boolean;
        removalPolicy?: RemovalPolicy;
        s3ExportBuckets?: IBucket[];
        s3ExportRole?: IRole;
        s3ImportBuckets?: IBucket[];
        s3ImportRole?: IRole;
        securityGroups?: ISecurityGroup[];
        storageEncrypted?: boolean;
        storageEncryptionKey?: IKey;
        storageThroughput?: number;
        storageType?: StorageType;
        subnetGroup?: ISubnetGroup;
        timezone?: string;
        vpc: IVpc;
        vpcSubnets?: SubnetSelection;
    }

    Hierarchy (View Summary)

    • Omit<
          DatabaseInstanceProps,
          "instanceType"
          | "backupRetention"
          | "preferredBackupWindow",
      >
    • AppIdentity
      • GuDatabaseInstanceProps

    Properties

    false
     
    -
    app: string
    autoMinorVersionUpgrade?: boolean

    Indicates that minor engine upgrades are applied automatically to the +

    app: string
    autoMinorVersionUpgrade?: boolean

    Indicates that minor engine upgrades are applied automatically to the DB instance during the maintenance window.

    true
     
    @@ -125,7 +125,7 @@
    devXBackups: OptIn | OptOut

    We recommend using DevX Backups to protect your RDS instance's backups. For more details on this feature, see the documentation.

    -
    domain?: string

    The Active Directory directory ID to create the DB instance in.

    +
    domain?: string

    The Active Directory directory ID to create the DB instance in.

    - Do not join domain
     
    @@ -149,7 +149,7 @@
    - a CloudFormation generated name
     
    -
    instanceType: string
    iops?: number

    The number of I/O operations per second (IOPS) that the database provisions. +

    instanceType: string
    iops?: number

    The number of I/O operations per second (IOPS) that the database provisions. The value must be equal to or greater than 1000.

    - no provisioned iops if storage type is not specified. For GP3: 3,000 IOPS if allocated
    storage is less than 400 GiB for MariaDB, MySQL, and PostgreSQL, less than 200 GiB for Oracle and
    less than 20 GiB for SQL Server. 12,000 IOPS otherwise (except for SQL Server where the default is
    always 3,000 IOPS).
    diff --git a/interfaces/constructs_rds.OptIn.html b/interfaces/constructs_rds.OptIn.html index 0dc5fa9d3..1f601cc48 100644 --- a/interfaces/constructs_rds.OptIn.html +++ b/interfaces/constructs_rds.OptIn.html @@ -1,2 +1,2 @@ -OptIn | @guardian/cdk
    interface OptIn {
        enabled: true;
    }

    Properties

    Properties

    enabled: true
    +OptIn | @guardian/cdk
    interface OptIn {
        enabled: true;
    }

    Properties

    Properties

    enabled: true
    diff --git a/interfaces/constructs_rds.OptOut.html b/interfaces/constructs_rds.OptOut.html index 28568002c..ed7dfd157 100644 --- a/interfaces/constructs_rds.OptOut.html +++ b/interfaces/constructs_rds.OptOut.html @@ -1,4 +1,4 @@ -OptOut | @guardian/cdk
    interface OptOut {
        backupRetention?: Duration;
        enabled: false;
        optOutReason: string;
        preferredBackupWindow?: string;
    }

    Hierarchy

    • Pick<DatabaseInstanceProps, "backupRetention" | "preferredBackupWindow">
      • OptOut

    Properties

    backupRetention? +OptOut | @guardian/cdk
    interface OptOut {
        backupRetention?: Duration;
        enabled: false;
        optOutReason: string;
        preferredBackupWindow?: string;
    }

    Hierarchy

    • Pick<DatabaseInstanceProps, "backupRetention" | "preferredBackupWindow">
      • OptOut

    Properties

    - Duration.days(1) for source instances, disabled for read replicas
     
    -
    enabled: false
    optOutReason: string

    We recommend using DevX Backups where possible. If it is not suitable for your use-case please document +

    enabled: false
    optOutReason: string

    We recommend using DevX Backups where possible. If it is not suitable for your use-case please document this here so that we can understand why this is switched off when performing security audits.

    -
    preferredBackupWindow?: string

    The daily time range during which automated backups are performed.

    +
    preferredBackupWindow?: string

    The daily time range during which automated backups are performed.

    Constraints:

    domainName: string
    feedbackForwarding?: boolean

    Whether to receive email notifications when bounce or complaint events occur. These notifications are sent to the address that you specified in the Return-Path header of the original email.

    You're required to have a method of tracking bounces and complaints. If you haven't set diff --git a/interfaces/experimental_patterns.ExistingKinesisStream.html b/interfaces/experimental_patterns.ExistingKinesisStream.html index 6a53e8cd3..37af5d6fb 100644 --- a/interfaces/experimental_patterns.ExistingKinesisStream.html +++ b/interfaces/experimental_patterns.ExistingKinesisStream.html @@ -1,5 +1,5 @@ ExistingKinesisStream | @guardian/cdk

    Used to provide information about an existing Kinesis stream to the [[GuKinesisLambda]] pattern.

    Specify an externalKinesisStreamName to link the lambda to a Kinesis stream owned by a different stack (or created outside of version control).

    -
    interface ExistingKinesisStream {
        externalKinesisStreamName: string;
    }

    Properties

    externalKinesisStreamName: string
    +
    interface ExistingKinesisStream {
        externalKinesisStreamName: string;
    }

    Properties

    externalKinesisStreamName: string
    diff --git a/interfaces/experimental_patterns.ExistingSnsTopic.html b/interfaces/experimental_patterns.ExistingSnsTopic.html index b3fa06090..07a7cb7a0 100644 --- a/interfaces/experimental_patterns.ExistingSnsTopic.html +++ b/interfaces/experimental_patterns.ExistingSnsTopic.html @@ -1,5 +1,5 @@ ExistingSnsTopic | @guardian/cdk

    Used to provide information about an existing SNS topic to the [[GuSnsLambda]] pattern.

    Specify an externalTopicName to link the lambda to an SNS topic owned by a different stack (or created outside of version control).

    -
    interface ExistingSnsTopic {
        externalTopicName: string;
    }

    Properties

    Properties

    externalTopicName: string
    +
    interface ExistingSnsTopic {
        externalTopicName: string;
    }

    Properties

    Properties

    externalTopicName: string
    diff --git a/interfaces/experimental_patterns.GuKinesisLambdaProps.html b/interfaces/experimental_patterns.GuKinesisLambdaProps.html index f2bbd9038..74c6a4913 100644 --- a/interfaces/experimental_patterns.GuKinesisLambdaProps.html +++ b/interfaces/experimental_patterns.GuKinesisLambdaProps.html @@ -20,7 +20,7 @@
     monitoringConfiguration: { noMonitoring: true } as NoMonitoring
     
    -
    interface GuKinesisLambdaProps {
        adotInstrumentation?: AdotInstrumentationConfig;
        allowAllIpv6Outbound?: boolean;
        allowAllOutbound?: boolean;
        allowPublicSubnet?: boolean;
        app: string;
        applicationLogLevel?: string;
        applicationLogLevelV2?: ApplicationLogLevel;
        architecture?: Architecture;
        bucketNamePath?: string;
        codeSigningConfig?: ICodeSigningConfig;
        currentVersionOptions?: VersionOptions;
        deadLetterQueue?: IQueue;
        deadLetterQueueEnabled?: boolean;
        deadLetterTopic?: ITopic;
        description?: string;
        enableVersioning?: boolean;
        environment?: { [key: string]: string };
        environmentEncryption?: IKey;
        ephemeralStorageSize?: Size;
        errorHandlingConfiguration: StreamErrorHandlingProps;
        events?: IEventSource[];
        existingKinesisStream?: ExistingKinesisStream;
        fileName: string;
        filesystem?: FileSystem;
        functionName?: string;
        handler: string;
        initialPolicy?: PolicyStatement[];
        insightsVersion?: LambdaInsightsVersion;
        ipv6AllowedForDualStack?: boolean;
        kinesisStreamProps?: StreamProps;
        layers?: ILayerVersion[];
        logFormat?: string;
        loggingFormat?: LoggingFormat;
        logGroup?: ILogGroup;
        logRetention?: RetentionDays;
        logRetentionRetryOptions?: LogRetentionRetryOptions;
        logRetentionRole?: IRole;
        maxEventAge?: Duration;
        memorySize?: number;
        monitoringConfiguration:
            | GuLambdaErrorPercentageMonitoringProps
            | NoMonitoring;
        onFailure?: IDestination;
        onSuccess?: IDestination;
        paramsAndSecrets?: ParamsAndSecretsLayerVersion;
        processingProps?: StreamProcessingProps;
        profiling?: boolean;
        profilingGroup?: IProfilingGroup;
        recursiveLoop?: RecursiveLoop;
        reservedConcurrentExecutions?: number;
        retryAttempts?: number;
        role?: IRole;
        runtime: Runtime;
        runtimeManagementMode?: RuntimeManagementMode;
        securityGroups?: ISecurityGroup[];
        snapStart?: SnapStartConf;
        systemLogLevel?: string;
        systemLogLevelV2?: SystemLogLevel;
        throttlingMonitoring?: GuLambdaThrottlingMonitoringProps;
        timeout?: Duration;
        tracing?: Tracing;
        vpc?: IVpc;
        vpcSubnets?: SubnetSelection;
        withoutArtifactUpload?: boolean;
        withoutFilePrefix?: boolean;
    }

    Hierarchy

    Properties

    interface GuKinesisLambdaProps {
        adotInstrumentation?: AdotInstrumentationConfig;
        allowAllIpv6Outbound?: boolean;
        allowAllOutbound?: boolean;
        allowPublicSubnet?: boolean;
        app: string;
        applicationLogLevel?: string;
        applicationLogLevelV2?: ApplicationLogLevel;
        architecture?: Architecture;
        bucketNamePath?: string;
        codeSigningConfig?: ICodeSigningConfig;
        currentVersionOptions?: VersionOptions;
        deadLetterQueue?: IQueue;
        deadLetterQueueEnabled?: boolean;
        deadLetterTopic?: ITopic;
        description?: string;
        enableVersioning?: boolean;
        environment?: { [key: string]: string };
        environmentEncryption?: IKey;
        ephemeralStorageSize?: Size;
        errorHandlingConfiguration: StreamErrorHandlingProps;
        events?: IEventSource[];
        existingKinesisStream?: ExistingKinesisStream;
        fileName: string;
        filesystem?: FileSystem;
        functionName?: string;
        handler: string;
        initialPolicy?: PolicyStatement[];
        insightsVersion?: LambdaInsightsVersion;
        ipv6AllowedForDualStack?: boolean;
        kinesisStreamProps?: StreamProps;
        layers?: ILayerVersion[];
        logFormat?: string;
        loggingFormat?: LoggingFormat;
        logGroup?: ILogGroup;
        logRetention?: RetentionDays;
        logRetentionRetryOptions?: LogRetentionRetryOptions;
        logRetentionRole?: IRole;
        maxEventAge?: Duration;
        memorySize?: number;
        monitoringConfiguration:
            | GuLambdaErrorPercentageMonitoringProps
            | NoMonitoring;
        onFailure?: IDestination;
        onSuccess?: IDestination;
        paramsAndSecrets?: ParamsAndSecretsLayerVersion;
        processingProps?: StreamProcessingProps;
        profiling?: boolean;
        profilingGroup?: IProfilingGroup;
        recursiveLoop?: RecursiveLoop;
        reservedConcurrentExecutions?: number;
        retryAttempts?: number;
        role?: IRole;
        runtime: Runtime;
        runtimeManagementMode?: RuntimeManagementMode;
        securityGroups?: ISecurityGroup[];
        snapStart?: SnapStartConf;
        systemLogLevel?: string;
        systemLogLevelV2?: SystemLogLevel;
        throttlingMonitoring?: GuLambdaThrottlingMonitoringProps;
        timeout?: Duration;
        tracing?: Tracing;
        vpc?: IVpc;
        vpcSubnets?: SubnetSelection;
        withoutArtifactUpload?: boolean;
        withoutFilePrefix?: boolean;
    }

    Hierarchy

    Properties

    false
     
    -
    app: string
    applicationLogLevel?: string

    Sets the application log level for the function.

    +
    app: string
    applicationLogLevel?: string

    Sets the application log level for the function.

    Use applicationLogLevelV2 as a property instead.

    "INFO"
     
    @@ -129,7 +129,7 @@ you are referencing a file that is shared across many apps and/or AWS accounts.

    [[GuDistributionBucketParameter]]

    -
    codeSigningConfig?: ICodeSigningConfig

    Code signing config associated with this function

    +
    codeSigningConfig?: ICodeSigningConfig

    Code signing config associated with this function

    - Not Sign the Code
     
    @@ -162,7 +162,7 @@ on versioning (e.g. SnapStart or Provisioned Concurrency).

    If you enable versioning you must ensure that your Lambda function is updated whenever a new build is deployed via CloudFormation. The simplest way to do this is to include the build number in the fileName prop.

    -
    environment?: { [key: string]: string }

    Key-value pairs that Lambda caches and makes available for your Lambda +

    environment?: { [key: string]: string }

    Key-value pairs that Lambda caches and makes available for your Lambda functions. Use environment variables to apply configuration changes, such as test and production environment configurations, without changing your Lambda function source code.

    @@ -177,14 +177,14 @@
    512 MiB
     
    -
    errorHandlingConfiguration: StreamErrorHandlingProps
    events?: IEventSource[]

    Event sources for this function.

    +
    errorHandlingConfiguration: StreamErrorHandlingProps
    events?: IEventSource[]

    Event sources for this function.

    You can also add event sources using addEventSource.

    - No event sources.
     
    -
    existingKinesisStream?: ExistingKinesisStream
    fileName: string

    The filename for an executable package within the bucket [[GuDistributionBucketParameter]]. +

    existingKinesisStream?: ExistingKinesisStream
    fileName: string

    The filename for an executable package within the bucket [[GuDistributionBucketParameter]]. We'll look for fileName on the path "bucket/stack/stage/app/".

    -
    filesystem?: FileSystem

    The filesystem configuration for the lambda function

    +
    filesystem?: FileSystem

    The filesystem configuration for the lambda function

    - will not mount any filesystem
     
    @@ -222,7 +222,7 @@
    false
     
    -
    kinesisStreamProps?: StreamProps
    layers?: ILayerVersion[]

    A list of layers to add to the function's execution environment. You can configure your Lambda function to pull in +

    kinesisStreamProps?: StreamProps
    layers?: ILayerVersion[]

    A list of layers to add to the function's execution environment. You can configure your Lambda function to pull in additional code during initialization in the form of layers. Layers are packages of libraries or other dependencies that can be used by multiple functions.

    - No layers.
    @@ -287,7 +287,7 @@
     
    128
     
    -
    onFailure?: IDestination

    The destination for failed invocations.

    +
    onFailure?: IDestination

    The destination for failed invocations.

    - no destination
     
    @@ -303,7 +303,7 @@
    - No Parameters and Secrets Extension
     
    -
    processingProps?: StreamProcessingProps
    profiling?: boolean

    Enable profiling.

    +
    processingProps?: StreamProcessingProps
    profiling?: boolean

    Enable profiling.

    - No profiling.
     
    @@ -372,7 +372,7 @@ concurrency limit (the reservedConcurrentExecutions prop) if you are concerned about throttling.

    timeout?: Duration

    The function execution time (in seconds) after which Lambda terminates +

    timeout?: Duration

    The function execution time (in seconds) after which Lambda terminates the function. Because the execution time affects cost, set this value based on the function's expected execution time.

    Duration.seconds(3)
    @@ -400,8 +400,8 @@
     managed elsewhere by DevX.

    This is used by RiffRaffYamlFileExperimental to skip generating an uploadLambda step.

    -
    withoutFilePrefix?: boolean

    Set to true to use the filename without the stage/stack/app prefix.

    +
    withoutFilePrefix?: boolean

    Set to true to use the filename without the stage/stack/app prefix.

    Typically you should not override this but you may need to if, for example, you are referencing a file that is shared across many apps and/or AWS accounts.

    -
    +
    diff --git a/interfaces/experimental_patterns.GuSnsLambdaProps.html b/interfaces/experimental_patterns.GuSnsLambdaProps.html index 4ef47b8c8..f18b37ab7 100644 --- a/interfaces/experimental_patterns.GuSnsLambdaProps.html +++ b/interfaces/experimental_patterns.GuSnsLambdaProps.html @@ -14,7 +14,7 @@
     monitoringConfiguration: { noMonitoring: true } as NoMonitoring
     
    -
    interface GuSnsLambdaProps {
        adotInstrumentation?: AdotInstrumentationConfig;
        allowAllIpv6Outbound?: boolean;
        allowAllOutbound?: boolean;
        allowPublicSubnet?: boolean;
        app: string;
        applicationLogLevel?: string;
        applicationLogLevelV2?: ApplicationLogLevel;
        architecture?: Architecture;
        bucketNamePath?: string;
        codeSigningConfig?: ICodeSigningConfig;
        currentVersionOptions?: VersionOptions;
        deadLetterQueue?: IQueue;
        deadLetterQueueEnabled?: boolean;
        deadLetterTopic?: ITopic;
        description?: string;
        enableVersioning?: boolean;
        environment?: { [key: string]: string };
        environmentEncryption?: IKey;
        ephemeralStorageSize?: Size;
        events?: IEventSource[];
        existingSnsTopic?: ExistingSnsTopic;
        fileName: string;
        filesystem?: FileSystem;
        functionName?: string;
        handler: string;
        initialPolicy?: PolicyStatement[];
        insightsVersion?: LambdaInsightsVersion;
        ipv6AllowedForDualStack?: boolean;
        layers?: ILayerVersion[];
        logFormat?: string;
        loggingFormat?: LoggingFormat;
        logGroup?: ILogGroup;
        logRetention?: RetentionDays;
        logRetentionRetryOptions?: LogRetentionRetryOptions;
        logRetentionRole?: IRole;
        maxEventAge?: Duration;
        memorySize?: number;
        monitoringConfiguration:
            | GuLambdaErrorPercentageMonitoringProps
            | NoMonitoring;
        onFailure?: IDestination;
        onSuccess?: IDestination;
        paramsAndSecrets?: ParamsAndSecretsLayerVersion;
        profiling?: boolean;
        profilingGroup?: IProfilingGroup;
        recursiveLoop?: RecursiveLoop;
        reservedConcurrentExecutions?: number;
        retryAttempts?: number;
        role?: IRole;
        runtime: Runtime;
        runtimeManagementMode?: RuntimeManagementMode;
        securityGroups?: ISecurityGroup[];
        snapStart?: SnapStartConf;
        systemLogLevel?: string;
        systemLogLevelV2?: SystemLogLevel;
        throttlingMonitoring?: GuLambdaThrottlingMonitoringProps;
        timeout?: Duration;
        tracing?: Tracing;
        vpc?: IVpc;
        vpcSubnets?: SubnetSelection;
        withoutArtifactUpload?: boolean;
        withoutFilePrefix?: boolean;
    }

    Hierarchy

    Properties

    interface GuSnsLambdaProps {
        adotInstrumentation?: AdotInstrumentationConfig;
        allowAllIpv6Outbound?: boolean;
        allowAllOutbound?: boolean;
        allowPublicSubnet?: boolean;
        app: string;
        applicationLogLevel?: string;
        applicationLogLevelV2?: ApplicationLogLevel;
        architecture?: Architecture;
        bucketNamePath?: string;
        codeSigningConfig?: ICodeSigningConfig;
        currentVersionOptions?: VersionOptions;
        deadLetterQueue?: IQueue;
        deadLetterQueueEnabled?: boolean;
        deadLetterTopic?: ITopic;
        description?: string;
        enableVersioning?: boolean;
        environment?: { [key: string]: string };
        environmentEncryption?: IKey;
        ephemeralStorageSize?: Size;
        events?: IEventSource[];
        existingSnsTopic?: ExistingSnsTopic;
        fileName: string;
        filesystem?: FileSystem;
        functionName?: string;
        handler: string;
        initialPolicy?: PolicyStatement[];
        insightsVersion?: LambdaInsightsVersion;
        ipv6AllowedForDualStack?: boolean;
        layers?: ILayerVersion[];
        logFormat?: string;
        loggingFormat?: LoggingFormat;
        logGroup?: ILogGroup;
        logRetention?: RetentionDays;
        logRetentionRetryOptions?: LogRetentionRetryOptions;
        logRetentionRole?: IRole;
        maxEventAge?: Duration;
        memorySize?: number;
        monitoringConfiguration:
            | GuLambdaErrorPercentageMonitoringProps
            | NoMonitoring;
        onFailure?: IDestination;
        onSuccess?: IDestination;
        paramsAndSecrets?: ParamsAndSecretsLayerVersion;
        profiling?: boolean;
        profilingGroup?: IProfilingGroup;
        recursiveLoop?: RecursiveLoop;
        reservedConcurrentExecutions?: number;
        retryAttempts?: number;
        role?: IRole;
        runtime: Runtime;
        runtimeManagementMode?: RuntimeManagementMode;
        securityGroups?: ISecurityGroup[];
        snapStart?: SnapStartConf;
        systemLogLevel?: string;
        systemLogLevelV2?: SystemLogLevel;
        throttlingMonitoring?: GuLambdaThrottlingMonitoringProps;
        timeout?: Duration;
        tracing?: Tracing;
        vpc?: IVpc;
        vpcSubnets?: SubnetSelection;
        withoutArtifactUpload?: boolean;
        withoutFilePrefix?: boolean;
    }

    Hierarchy

    Properties

    false
     
    -
    app: string
    applicationLogLevel?: string

    Sets the application log level for the function.

    +
    app: string
    applicationLogLevel?: string

    Sets the application log level for the function.

    Use applicationLogLevelV2 as a property instead.

    "INFO"
     
    @@ -120,7 +120,7 @@ you are referencing a file that is shared across many apps and/or AWS accounts.

    [[GuDistributionBucketParameter]]

    -
    codeSigningConfig?: ICodeSigningConfig

    Code signing config associated with this function

    +
    codeSigningConfig?: ICodeSigningConfig

    Code signing config associated with this function

    - Not Sign the Code
     
    @@ -153,7 +153,7 @@ on versioning (e.g. SnapStart or Provisioned Concurrency).

    If you enable versioning you must ensure that your Lambda function is updated whenever a new build is deployed via CloudFormation. The simplest way to do this is to include the build number in the fileName prop.

    -
    environment?: { [key: string]: string }

    Key-value pairs that Lambda caches and makes available for your Lambda +

    environment?: { [key: string]: string }

    Key-value pairs that Lambda caches and makes available for your Lambda functions. Use environment variables to apply configuration changes, such as test and production environment configurations, without changing your Lambda function source code.

    @@ -173,9 +173,9 @@
    - No event sources.
     
    -
    existingSnsTopic?: ExistingSnsTopic
    fileName: string

    The filename for an executable package within the bucket [[GuDistributionBucketParameter]]. +

    existingSnsTopic?: ExistingSnsTopic
    fileName: string

    The filename for an executable package within the bucket [[GuDistributionBucketParameter]]. We'll look for fileName on the path "bucket/stack/stage/app/".

    -
    filesystem?: FileSystem

    The filesystem configuration for the lambda function

    +
    filesystem?: FileSystem

    The filesystem configuration for the lambda function

    - will not mount any filesystem
     
    @@ -278,7 +278,7 @@
    128
     
    -
    onFailure?: IDestination

    The destination for failed invocations.

    +
    onFailure?: IDestination

    The destination for failed invocations.

    - no destination
     
    @@ -363,7 +363,7 @@ concurrency limit (the reservedConcurrentExecutions prop) if you are concerned about throttling.

    timeout?: Duration

    The function execution time (in seconds) after which Lambda terminates +

    timeout?: Duration

    The function execution time (in seconds) after which Lambda terminates the function. Because the execution time affects cost, set this value based on the function's expected execution time.

    Duration.seconds(3)
    @@ -391,8 +391,8 @@
     managed elsewhere by DevX.

    This is used by RiffRaffYamlFileExperimental to skip generating an uploadLambda step.

    -
    withoutFilePrefix?: boolean

    Set to true to use the filename without the stage/stack/app prefix.

    +
    withoutFilePrefix?: boolean

    Set to true to use the filename without the stage/stack/app prefix.

    Typically you should not override this but you may need to if, for example, you are referencing a file that is shared across many apps and/or AWS accounts.

    -
    +
    diff --git a/interfaces/patterns.AccessLoggingProps.html b/interfaces/patterns.AccessLoggingProps.html index a32898762..c3a7e3135 100644 --- a/interfaces/patterns.AccessLoggingProps.html +++ b/interfaces/patterns.AccessLoggingProps.html @@ -1,11 +1,11 @@ -AccessLoggingProps | @guardian/cdk

    Interface AccessLoggingProps

    interface AccessLoggingProps {
        enabled: boolean;
        prefix?: string;
    }

    Properties

    enabled +AccessLoggingProps | @guardian/cdk

    Interface AccessLoggingProps

    interface AccessLoggingProps {
        enabled: boolean;
        prefix?: string;
    }

    Properties

    Properties

    enabled: boolean

    Enable (load balancer) access logs.

    Note, you will need to specify a region in your stack declaration to use this. Seehttps://docs.aws.amazon.com/cdk/api/latest/docs/@aws-cdk_aws-elasticloadbalancingv2.ApplicationLoadBalancer.html#logwbraccesswbrlogsbucket-prefix

    -
    prefix?: string

    S3 prefix for the logs.

    +
    prefix?: string

    S3 prefix for the logs.

    no prefix
     
    -
    +
    diff --git a/interfaces/patterns.Alarms.html b/interfaces/patterns.Alarms.html index 95e4942fa..e97d98f46 100644 --- a/interfaces/patterns.Alarms.html +++ b/interfaces/patterns.Alarms.html @@ -1,11 +1,11 @@ -Alarms | @guardian/cdk
    interface Alarms {
        http4xxAlarm?: false | Http4xxAlarmProps;
        http5xxAlarm: false | Http5xxAlarmProps;
        noMonitoring?: false;
        snsTopicName: string;
        unhealthyInstancesAlarm: boolean;
    }

    Properties

    http4xxAlarm? +Alarms | @guardian/cdk
    interface Alarms {
        http4xxAlarm?: false | Http4xxAlarmProps;
        http5xxAlarm: false | Http5xxAlarmProps;
        noMonitoring?: false;
        snsTopicName: string;
        unhealthyInstancesAlarm: boolean;
    }

    Properties

    http4xxAlarm?: false | Http4xxAlarmProps

    Enable the 4xx alarm with settings.

    -
    http5xxAlarm: false | Http5xxAlarmProps

    Enable the 5xx alarm with settings.

    -
    noMonitoring?: false

    Internal flag - users of this library should ignore this setting.

    -
    snsTopicName: string

    Name of the target (SNS Topic) for alarm notifications.

    -
    unhealthyInstancesAlarm: boolean

    Enable the unhealthy instances alarm.

    -
    +
    http5xxAlarm: false | Http5xxAlarmProps

    Enable the 5xx alarm with settings.

    +
    noMonitoring?: false

    Internal flag - users of this library should ignore this setting.

    +
    snsTopicName: string

    Name of the target (SNS Topic) for alarm notifications.

    +
    unhealthyInstancesAlarm: boolean

    Enable the unhealthy instances alarm.

    +
    diff --git a/interfaces/patterns.ApiGatewayAlarms.html b/interfaces/patterns.ApiGatewayAlarms.html index 08da7a6d1..2b2ba311e 100644 --- a/interfaces/patterns.ApiGatewayAlarms.html +++ b/interfaces/patterns.ApiGatewayAlarms.html @@ -1,8 +1,8 @@ ApiGatewayAlarms | @guardian/cdk

    Interface ApiGatewayAlarms

    Alarm props.

    -
    interface ApiGatewayAlarms {
        http5xxAlarm: Http5xxAlarmProps;
        noMonitoring?: false;
        snsTopicName: string;
    }

    Properties

    interface ApiGatewayAlarms {
        http5xxAlarm: Http5xxAlarmProps;
        noMonitoring?: false;
        snsTopicName: string;
    }

    Properties

    http5xxAlarm: Http5xxAlarmProps

    Configuration the 5xx alarm.

    -
    noMonitoring?: false

    Internal flag - users of this library should ignore this setting.

    -
    snsTopicName: string

    (SNS) Topic name where alarm notifications will be sent.

    -
    +
    noMonitoring?: false

    Internal flag - users of this library should ignore this setting.

    +
    snsTopicName: string

    (SNS) Topic name where alarm notifications will be sent.

    +
    diff --git a/interfaces/patterns.ApiTarget.html b/interfaces/patterns.ApiTarget.html index 1e9ebf78d..04e4a1af9 100644 --- a/interfaces/patterns.ApiTarget.html +++ b/interfaces/patterns.ApiTarget.html @@ -1,10 +1,10 @@ ApiTarget | @guardian/cdk

    API target props.

    -
    interface ApiTarget {
        apiKeyRequired?: true;
        httpMethod: HttpMethod;
        lambda: GuLambdaFunction;
        path: string;
    }

    Properties

    interface ApiTarget {
        apiKeyRequired?: true;
        httpMethod: HttpMethod;
        lambda: GuLambdaFunction;
        path: string;
    }

    Properties

    apiKeyRequired?: true

    Whether an apiKey is required for this method.

    -
    httpMethod: HttpMethod

    The [[HttpMethod]] for the target (e.g. GET, POST, PUT).

    -

    The Lambda function responsible for handling the request.

    -
    path: string

    The path for the request (e.g. /test).

    -
    +
    httpMethod: HttpMethod

    The [[HttpMethod]] for the target (e.g. GET, POST, PUT).

    +

    The Lambda function responsible for handling the request.

    +
    path: string

    The path for the request (e.g. /test).

    +
    diff --git a/interfaces/patterns.ApplicationLoggingProps.html b/interfaces/patterns.ApplicationLoggingProps.html index dc5988ec2..c830d9ebc 100644 --- a/interfaces/patterns.ApplicationLoggingProps.html +++ b/interfaces/patterns.ApplicationLoggingProps.html @@ -8,7 +8,7 @@

    Unless you have explicitly opted-out, appropriate IAM permissions for logging to Kinesis will be configured automatically via the [[GuEc2App]] pattern.

    -
    interface ApplicationLoggingProps {
        enabled: boolean;
        systemdUnitName?: string;
    }

    Properties

    interface ApplicationLoggingProps {
        enabled: boolean;
        systemdUnitName?: string;
    }

    Properties

    enabled: boolean

    Enables forwarding of application logs to the Guardian ELK stack.

    Note, to work, you will need to also do the following non-CDK things:

    @@ -22,7 +22,7 @@ logging to Kinesis will be configured automatically via the [[GuEc2App]] pattern.

    systemdUnitName?: string

    This needs to match the name of your SystemD unit.

    +
    systemdUnitName?: string

    This needs to match the name of your SystemD unit.

    If your systemd unit is not <app>.service set this value.

    <app>.service

    -
    +
    diff --git a/interfaces/patterns.GuApiGatewayWithLambdaByPathProps.html b/interfaces/patterns.GuApiGatewayWithLambdaByPathProps.html index 4d8d70229..7ef358bd1 100644 --- a/interfaces/patterns.GuApiGatewayWithLambdaByPathProps.html +++ b/interfaces/patterns.GuApiGatewayWithLambdaByPathProps.html @@ -1,4 +1,4 @@ -GuApiGatewayWithLambdaByPathProps | @guardian/cdk

    Interface GuApiGatewayWithLambdaByPathProps

    interface GuApiGatewayWithLambdaByPathProps {
        apiKeySourceType?: ApiKeySourceType;
        app: string;
        binaryMediaTypes?: string[];
        cloneFrom?: IRestApi;
        cloudWatchRole?: boolean;
        cloudWatchRoleRemovalPolicy?: RemovalPolicy;
        defaultCorsPreflightOptions?: CorsOptions;
        defaultIntegration?: Integration;
        defaultMethodOptions?: MethodOptions;
        deploy?: boolean;
        deployOptions?: StageOptions;
        description?: string;
        disableExecuteApiEndpoint?: boolean;
        domainName?: DomainNameOptions;
        endpointConfiguration?: EndpointConfiguration;
        endpointExportName?: string;
        endpointTypes?: EndpointType[];
        failOnWarnings?: boolean;
        minCompressionSize?: Size;
        minimumCompressionSize?: number;
        monitoringConfiguration: NoMonitoring | ApiGatewayAlarms;
        parameters?: { [key: string]: string };
        policy?: PolicyDocument;
        restApiName?: string;
        retainDeployments?: boolean;
        targets: ApiTarget[];
    }

    Hierarchy (View Summary)

    • RestApiProps
    • AppIdentity
      • GuApiGatewayWithLambdaByPathProps

    Properties

    apiKeySourceType? +GuApiGatewayWithLambdaByPathProps | @guardian/cdk

    Interface GuApiGatewayWithLambdaByPathProps

    interface GuApiGatewayWithLambdaByPathProps {
        apiKeySourceType?: ApiKeySourceType;
        app: string;
        binaryMediaTypes?: string[];
        cloneFrom?: IRestApi;
        cloudWatchRole?: boolean;
        cloudWatchRoleRemovalPolicy?: RemovalPolicy;
        defaultCorsPreflightOptions?: CorsOptions;
        defaultIntegration?: Integration;
        defaultMethodOptions?: MethodOptions;
        deploy?: boolean;
        deployOptions?: StageOptions;
        description?: string;
        disableExecuteApiEndpoint?: boolean;
        domainName?: DomainNameOptions;
        endpointConfiguration?: EndpointConfiguration;
        endpointExportName?: string;
        endpointTypes?: EndpointType[];
        failOnWarnings?: boolean;
        minCompressionSize?: Size;
        minimumCompressionSize?: number;
        monitoringConfiguration: NoMonitoring | ApiGatewayAlarms;
        parameters?: { [key: string]: string };
        policy?: PolicyDocument;
        restApiName?: string;
        retainDeployments?: boolean;
        targets: ApiTarget[];
    }

    Hierarchy (View Summary)

    • RestApiProps
    • AppIdentity
      • GuApiGatewayWithLambdaByPathProps

    Properties

    - Metering is disabled.
     
    -
    app: string
    binaryMediaTypes?: string[]

    The list of binary media mime-types that are supported by the RestApi +

    app: string
    binaryMediaTypes?: string[]

    The list of binary media mime-types that are supported by the RestApi resource, such as "image/png" or "application/octet-stream"

    - RestApi supports only UTF-8-encoded text payloads.
     
    @@ -147,7 +147,7 @@
     monitoringConfiguration: { noMonitoring: true }
     
    -
    parameters?: { [key: string]: string }

    Custom header parameters for the request.

    +
    parameters?: { [key: string]: string }

    Custom header parameters for the request.

    - No parameters.
     
    @@ -167,4 +167,4 @@
    targets: ApiTarget[]

    A list of [[ApiTarget]]s to configure for the API Gateway instance.

    -
    +
    diff --git a/interfaces/patterns.GuApiLambdaProps.html b/interfaces/patterns.GuApiLambdaProps.html index 4a4507aea..c982861c0 100644 --- a/interfaces/patterns.GuApiLambdaProps.html +++ b/interfaces/patterns.GuApiLambdaProps.html @@ -1,4 +1,4 @@ -GuApiLambdaProps | @guardian/cdk

    Interface GuApiLambdaProps

    interface GuApiLambdaProps {
        adotInstrumentation?: AdotInstrumentationConfig;
        allowAllIpv6Outbound?: boolean;
        allowAllOutbound?: boolean;
        allowPublicSubnet?: boolean;
        api: ApiProps;
        app: string;
        applicationLogLevel?: string;
        applicationLogLevelV2?: ApplicationLogLevel;
        architecture?: Architecture;
        bucketNamePath?: string;
        codeSigningConfig?: ICodeSigningConfig;
        currentVersionOptions?: VersionOptions;
        deadLetterQueue?: IQueue;
        deadLetterQueueEnabled?: boolean;
        deadLetterTopic?: ITopic;
        description?: string;
        enableVersioning?: boolean;
        environment?: { [key: string]: string };
        environmentEncryption?: IKey;
        ephemeralStorageSize?: Size;
        events?: IEventSource[];
        fileName: string;
        filesystem?: FileSystem;
        functionName?: string;
        handler: string;
        initialPolicy?: PolicyStatement[];
        insightsVersion?: LambdaInsightsVersion;
        ipv6AllowedForDualStack?: boolean;
        layers?: ILayerVersion[];
        logFormat?: string;
        loggingFormat?: LoggingFormat;
        logGroup?: ILogGroup;
        logRetention?: RetentionDays;
        logRetentionRetryOptions?: LogRetentionRetryOptions;
        logRetentionRole?: IRole;
        maxEventAge?: Duration;
        memorySize?: number;
        monitoringConfiguration: NoMonitoring | ApiGatewayAlarms;
        onFailure?: IDestination;
        onSuccess?: IDestination;
        paramsAndSecrets?: ParamsAndSecretsLayerVersion;
        profiling?: boolean;
        profilingGroup?: IProfilingGroup;
        recursiveLoop?: RecursiveLoop;
        reservedConcurrentExecutions?: number;
        retryAttempts?: number;
        role?: IRole;
        runtime: Runtime;
        runtimeManagementMode?: RuntimeManagementMode;
        securityGroups?: ISecurityGroup[];
        snapStart?: SnapStartConf;
        systemLogLevel?: string;
        systemLogLevelV2?: SystemLogLevel;
        throttlingMonitoring?: GuLambdaThrottlingMonitoringProps;
        timeout?: Duration;
        tracing?: Tracing;
        vpc?: IVpc;
        vpcSubnets?: SubnetSelection;
        withoutArtifactUpload?: boolean;
        withoutFilePrefix?: boolean;
    }

    Hierarchy

    Properties

    adotInstrumentation? +GuApiLambdaProps | @guardian/cdk

    Interface GuApiLambdaProps

    interface GuApiLambdaProps {
        adotInstrumentation?: AdotInstrumentationConfig;
        allowAllIpv6Outbound?: boolean;
        allowAllOutbound?: boolean;
        allowPublicSubnet?: boolean;
        api: ApiProps;
        app: string;
        applicationLogLevel?: string;
        applicationLogLevelV2?: ApplicationLogLevel;
        architecture?: Architecture;
        bucketNamePath?: string;
        codeSigningConfig?: ICodeSigningConfig;
        currentVersionOptions?: VersionOptions;
        deadLetterQueue?: IQueue;
        deadLetterQueueEnabled?: boolean;
        deadLetterTopic?: ITopic;
        description?: string;
        enableVersioning?: boolean;
        environment?: { [key: string]: string };
        environmentEncryption?: IKey;
        ephemeralStorageSize?: Size;
        events?: IEventSource[];
        fileName: string;
        filesystem?: FileSystem;
        functionName?: string;
        handler: string;
        initialPolicy?: PolicyStatement[];
        insightsVersion?: LambdaInsightsVersion;
        ipv6AllowedForDualStack?: boolean;
        layers?: ILayerVersion[];
        logFormat?: string;
        loggingFormat?: LoggingFormat;
        logGroup?: ILogGroup;
        logRetention?: RetentionDays;
        logRetentionRetryOptions?: LogRetentionRetryOptions;
        logRetentionRole?: IRole;
        maxEventAge?: Duration;
        memorySize?: number;
        monitoringConfiguration: NoMonitoring | ApiGatewayAlarms;
        onFailure?: IDestination;
        onSuccess?: IDestination;
        paramsAndSecrets?: ParamsAndSecretsLayerVersion;
        profiling?: boolean;
        profilingGroup?: IProfilingGroup;
        recursiveLoop?: RecursiveLoop;
        reservedConcurrentExecutions?: number;
        retryAttempts?: number;
        role?: IRole;
        runtime: Runtime;
        runtimeManagementMode?: RuntimeManagementMode;
        securityGroups?: ISecurityGroup[];
        snapStart?: SnapStartConf;
        systemLogLevel?: string;
        systemLogLevelV2?: SystemLogLevel;
        throttlingMonitoring?: GuLambdaThrottlingMonitoringProps;
        timeout?: Duration;
        tracing?: Tracing;
        vpc?: IVpc;
        vpcSubnets?: SubnetSelection;
        withoutArtifactUpload?: boolean;
        withoutFilePrefix?: boolean;
    }

    Hierarchy

    api: ApiProps

    [[LambdaRestApiProps]] to configure for the lambda.

    -
    app: string
    applicationLogLevel?: string

    Sets the application log level for the function.

    +
    app: string
    applicationLogLevel?: string

    Sets the application log level for the function.

    Use applicationLogLevelV2 as a property instead.

    "INFO"
     
    @@ -105,7 +105,7 @@ you are referencing a file that is shared across many apps and/or AWS accounts.

    [[GuDistributionBucketParameter]]

    -
    codeSigningConfig?: ICodeSigningConfig

    Code signing config associated with this function

    +
    codeSigningConfig?: ICodeSigningConfig

    Code signing config associated with this function

    - Not Sign the Code
     
    @@ -138,7 +138,7 @@ on versioning (e.g. SnapStart or Provisioned Concurrency).

    If you enable versioning you must ensure that your Lambda function is updated whenever a new build is deployed via CloudFormation. The simplest way to do this is to include the build number in the fileName prop.

    -
    environment?: { [key: string]: string }

    Key-value pairs that Lambda caches and makes available for your Lambda +

    environment?: { [key: string]: string }

    Key-value pairs that Lambda caches and makes available for your Lambda functions. Use environment variables to apply configuration changes, such as test and production environment configurations, without changing your Lambda function source code.

    @@ -160,7 +160,7 @@
    fileName: string

    The filename for an executable package within the bucket [[GuDistributionBucketParameter]]. We'll look for fileName on the path "bucket/stack/stage/app/".

    -
    filesystem?: FileSystem

    The filesystem configuration for the lambda function

    +
    filesystem?: FileSystem

    The filesystem configuration for the lambda function

    - will not mount any filesystem
     
    @@ -268,7 +268,7 @@
     monitoringConfiguration: { noMonitoring: true }
     
    -
    onFailure?: IDestination

    The destination for failed invocations.

    +
    onFailure?: IDestination

    The destination for failed invocations.

    - no destination
     
    @@ -353,7 +353,7 @@ concurrency limit (the reservedConcurrentExecutions prop) if you are concerned about throttling.

    timeout?: Duration

    The function execution time (in seconds) after which Lambda terminates +

    timeout?: Duration

    The function execution time (in seconds) after which Lambda terminates the function. Because the execution time affects cost, set this value based on the function's expected execution time.

    Duration.seconds(3)
    @@ -381,8 +381,8 @@
     managed elsewhere by DevX.

    This is used by RiffRaffYamlFileExperimental to skip generating an uploadLambda step.

    -
    withoutFilePrefix?: boolean

    Set to true to use the filename without the stage/stack/app prefix.

    +
    withoutFilePrefix?: boolean

    Set to true to use the filename without the stage/stack/app prefix.

    Typically you should not override this but you may need to if, for example, you are referencing a file that is shared across many apps and/or AWS accounts.

    -
    +
    diff --git a/interfaces/patterns.GuEc2AppProps.html b/interfaces/patterns.GuEc2AppProps.html index ce39d7df9..2bc0bf029 100644 --- a/interfaces/patterns.GuEc2AppProps.html +++ b/interfaces/patterns.GuEc2AppProps.html @@ -1,4 +1,4 @@ -GuEc2AppProps | @guardian/cdk

    Interface GuEc2AppProps

    interface GuEc2AppProps {
        access: AppAccess;
        accessLogging?: AccessLoggingProps;
        app: string;
        applicationLogging?: ApplicationLoggingProps;
        applicationPort: number;
        blockDevices?: BlockDevice[];
        certificateProps?: GuDomainName;
        defaultInstanceWarmup?: Duration;
        enabledDetailedInstanceMonitoring?: boolean;
        googleAuth?: {
            allowedGroups?: string[];
            cognitoAuthStage?: string;
            credentialsSecretsManagerPath?: string;
            domain: string;
            enabled: true;
            sessionTimeoutInMinutes?: number;
        };
        healthcheck?: HealthCheck;
        imageRecipe?: string
        | AmigoProps;
        instanceMetadataHopLimit?: number;
        instanceType: InstanceType;
        monitoringConfiguration: NoMonitoring | Alarms;
        privateSubnets?: ISubnet[];
        publicSubnets?: ISubnet[];
        roleConfiguration?: GuInstanceRoleProps;
        scaling: GuAsgCapacity;
        updatePolicy?: UpdatePolicy;
        userData: UserData | GuUserDataProps;
        vpc?: IVpc;
        withoutImdsv2?: boolean;
    }

    Hierarchy (View Summary)

    Properties

    access +GuEc2AppProps | @guardian/cdk

    Interface GuEc2AppProps

    interface GuEc2AppProps {
        access: AppAccess;
        accessLogging?: AccessLoggingProps;
        app: string;
        applicationLogging?: ApplicationLoggingProps;
        applicationPort: number;
        blockDevices?: BlockDevice[];
        certificateProps?: GuDomainName;
        defaultInstanceWarmup?: Duration;
        enabledDetailedInstanceMonitoring?: boolean;
        googleAuth?: {
            allowedGroups?: string[];
            cognitoAuthStage?: string;
            credentialsSecretsManagerPath?: string;
            domain: string;
            enabled: true;
            sessionTimeoutInMinutes?: number;
        };
        healthcheck?: HealthCheck;
        imageRecipe?: string
        | AmigoProps;
        instanceMetadataHopLimit?: number;
        instanceType: InstanceType;
        monitoringConfiguration: NoMonitoring | Alarms;
        privateSubnets?: ISubnet[];
        publicSubnets?: ISubnet[];
        roleConfiguration?: GuInstanceRoleProps;
        scaling: GuAsgCapacity;
        updatePolicy?: UpdatePolicy;
        userData: UserData | GuUserDataProps;
        vpc?: IVpc;
        withoutImdsv2?: boolean;
    }

    Hierarchy (View Summary)

    Properties

    access accessLogging? app applicationLogging? @@ -25,19 +25,19 @@

    Note, this merely provides defence in depth; you should, for example, limit access to the VPN and then treat that as sufficient. Instead, use Google Auth for human access, or a suitable machine auth mechanism.

    -
    accessLogging?: AccessLoggingProps

    Enable and configures access logs.

    -
    app: string
    applicationLogging?: ApplicationLoggingProps

    Enable and configures application logs.

    -
    applicationPort: number

    The port your application runs on.

    -
    blockDevices?: BlockDevice[]

    Add block devices (additional storage).

    -
    certificateProps?: GuDomainName

    Specify certificate for the load balancer.

    -
    defaultInstanceWarmup?: Duration

    You can specify how long after an instance reaches the InService state it waits before contributing +

    accessLogging?: AccessLoggingProps

    Enable and configures access logs.

    +
    app: string
    applicationLogging?: ApplicationLoggingProps

    Enable and configures application logs.

    +
    applicationPort: number

    The port your application runs on.

    +
    blockDevices?: BlockDevice[]

    Add block devices (additional storage).

    +
    certificateProps?: GuDomainName

    Specify certificate for the load balancer.

    +
    defaultInstanceWarmup?: Duration

    You can specify how long after an instance reaches the InService state it waits before contributing usage data to the aggregated metrics. This specified time is called the default instance warmup. This keeps dynamic scaling from being affected by metrics for individual instances that aren't yet handling application traffic and that might be experiencing temporarily high usage of compute resources.

    enabledDetailedInstanceMonitoring?: boolean

    This setting configures the launch template to enable or disable detailed monitoring on instances.

    +
    enabledDetailedInstanceMonitoring?: boolean

    This setting configures the launch template to enable or disable detailed monitoring on instances.

    googleAuth?: {
        allowedGroups?: string[];
        cognitoAuthStage?: string;
        credentialsSecretsManagerPath?: string;
        domain: string;
        enabled: true;
        sessionTimeoutInMinutes?: number;
    }

    Configure Google Auth.

    +
    googleAuth?: {
        allowedGroups?: string[];
        cognitoAuthStage?: string;
        credentialsSecretsManagerPath?: string;
        domain: string;
        enabled: true;
        sessionTimeoutInMinutes?: number;
    }

    Configure Google Auth.

    Type declaration

    • OptionalallowedGroups?: string[]

      Groups used for membership checks.

      If specified, cannot be empty. Users must be a member of at least one group to gain access.

      @@ -79,28 +79,28 @@
      15
       
      -
    healthcheck?: HealthCheck

    Specify custom healthcheck

    -
    imageRecipe?: string | AmigoProps

    Configure AMIgo image recipe. This is only necessary if you are using GuCDK to generate your riff-raff.yaml file.

    -
    instanceMetadataHopLimit?: number

    Set http put response hop limit for the launch template. +

    healthcheck?: HealthCheck

    Specify custom healthcheck

    +
    imageRecipe?: string | AmigoProps

    Configure AMIgo image recipe. This is only necessary if you are using GuCDK to generate your riff-raff.yaml file.

    +
    instanceMetadataHopLimit?: number

    Set http put response hop limit for the launch template. It can be necessary to raise this value from the default of 1 for example when sharing the instance profile with a docker container running on the instance.

    -
    instanceType: InstanceType

    EC2 instance type. Note, ensure your code is built for the same +

    instanceType: InstanceType

    EC2 instance type. Note, ensure your code is built for the same architecture family (arm64 - 'Graviton' instances - or x64).

    -
    monitoringConfiguration: NoMonitoring | Alarms

    Enable and configure alarms.

    -
    privateSubnets?: ISubnet[]

    Specify private subnets if using a non-default VPC or (generally +

    monitoringConfiguration: NoMonitoring | Alarms

    Enable and configure alarms.

    +
    privateSubnets?: ISubnet[]

    Specify private subnets if using a non-default VPC or (generally discouraged) to limit to a subset of the available subnets.

    -
    publicSubnets?: ISubnet[]

    Specify private subnets if using a non-default VPC or (generally +

    publicSubnets?: ISubnet[]

    Specify private subnets if using a non-default VPC or (generally discouraged) to limit to a subset of the available subnets.

    -
    roleConfiguration?: GuInstanceRoleProps

    Configure IAM roles for autoscaling group EC2 instances.

    -
    scaling: GuAsgCapacity

    Autoscaling group min and max sizes.

    -
    updatePolicy?: UpdatePolicy

    Specify an update policy for the ASG created by this pattern.

    +
    roleConfiguration?: GuInstanceRoleProps

    Configure IAM roles for autoscaling group EC2 instances.

    +
    scaling: GuAsgCapacity

    Autoscaling group min and max sizes.

    +
    updatePolicy?: UpdatePolicy

    Specify an update policy for the ASG created by this pattern.

    UpdatePolicy.none() - Cloudformation does not attempt to rotate instances in the ASG
    and must rely on riffraff to do so.
    -
    userData: UserData | GuUserDataProps

    User data for the autoscaling group.

    -
    vpc?: IVpc

    Specify the VPC to use.

    +
    userData: UserData | GuUserDataProps

    User data for the autoscaling group.

    +
    vpc?: IVpc

    Specify the VPC to use.

    withoutImdsv2?: boolean

    Disable imdsv2. Most of the time you should not set this.

    +
    withoutImdsv2?: boolean

    Disable imdsv2. Most of the time you should not set this.

    +
    diff --git a/interfaces/patterns.GuScheduledEcsTaskProps.html b/interfaces/patterns.GuScheduledEcsTaskProps.html index ea70fcaed..9a56a38a4 100644 --- a/interfaces/patterns.GuScheduledEcsTaskProps.html +++ b/interfaces/patterns.GuScheduledEcsTaskProps.html @@ -29,7 +29,7 @@ VERSION environment variable. Alternatively, you could hard code a value for the variable in CDK. See https://docs.aws.amazon.com/step-functions/latest/dg/connect-ecs.html for further detail and other override options - this construct currently only supports environment variables.

    -
    interface GuScheduledEcsTaskProps {
        app: string;
        assignPublicIp?: boolean;
        containerConfiguration: ContainerConfiguration;
        containerInsights?: boolean;
        cpu?: number;
        customTaskPolicies?: PolicyStatement[];
        enableDistributablePolicy?: boolean;
        environmentOverrides?: TaskEnvironmentVariable[];
        memory?: number;
        monitoringConfiguration: NoMonitoring | GuEcsTaskMonitoringProps;
        schedule: Schedule;
        securityGroups?: ISecurityGroup[];
        storage?: number;
        subnets: ISubnet[];
        taskCommand?: string;
        taskTimeoutInMinutes?: number;
        vpc: IVpc;
    }

    Hierarchy (View Summary)

    Properties

    app +
    interface GuScheduledEcsTaskProps {
        app: string;
        assignPublicIp?: boolean;
        containerConfiguration: ContainerConfiguration;
        containerInsights?: boolean;
        cpu?: number;
        customTaskPolicies?: PolicyStatement[];
        enableDistributablePolicy?: boolean;
        environmentOverrides?: TaskEnvironmentVariable[];
        memory?: number;
        monitoringConfiguration: NoMonitoring | GuEcsTaskMonitoringProps;
        schedule: Schedule;
        securityGroups?: ISecurityGroup[];
        storage?: number;
        subnets: ISubnet[];
        taskCommand?: string;
        taskTimeoutInMinutes?: number;
        vpc: IVpc;
    }

    Hierarchy (View Summary)

    Properties

    app: string
    assignPublicIp?: boolean
    containerConfiguration: ContainerConfiguration
    containerInsights?: boolean

    If true, CloudWatch Container Insights will be enabled for the cluster

    +

    Properties

    app: string
    assignPublicIp?: boolean
    containerConfiguration: ContainerConfiguration
    containerInsights?: boolean

    If true, CloudWatch Container Insights will be enabled for the cluster

    false
     
    -
    cpu?: number
    customTaskPolicies?: PolicyStatement[]
    enableDistributablePolicy?: boolean

    Whether to give the task IAM role access to the account's dist bucket. +

    cpu?: number
    customTaskPolicies?: PolicyStatement[]
    enableDistributablePolicy?: boolean

    Whether to give the task IAM role access to the account's dist bucket. This is enabled by default to avoid breaking changes, but consumers of this pattern that pull a container image that doesn't need extra dependencies from S3 shoud set this value to false.

    -
    environmentOverrides?: TaskEnvironmentVariable[]
    memory?: number
    monitoringConfiguration: NoMonitoring | GuEcsTaskMonitoringProps
    schedule: Schedule

    Schedule for the task.

    +
    environmentOverrides?: TaskEnvironmentVariable[]
    memory?: number
    monitoringConfiguration: NoMonitoring | GuEcsTaskMonitoringProps
    schedule: Schedule

    Schedule for the task.

    E.g.:

    • Schedule.expression("cron(0 8 ? * MON-FRI *)")
    • Schedule.rate(Duration.minutes(5))
    -
    securityGroups?: ISecurityGroup[]
    storage?: number
    subnets: ISubnet[]
    taskCommand?: string
    taskTimeoutInMinutes?: number
    vpc: IVpc
    +
    securityGroups?: ISecurityGroup[]
    storage?: number
    subnets: ISubnet[]
    taskCommand?: string
    taskTimeoutInMinutes?: number
    vpc: IVpc
    diff --git a/interfaces/patterns.GuScheduledLambdaProps.html b/interfaces/patterns.GuScheduledLambdaProps.html index f26917ad4..b40957b8c 100644 --- a/interfaces/patterns.GuScheduledLambdaProps.html +++ b/interfaces/patterns.GuScheduledLambdaProps.html @@ -1,4 +1,4 @@ -GuScheduledLambdaProps | @guardian/cdk

    Interface GuScheduledLambdaProps

    interface GuScheduledLambdaProps {
        adotInstrumentation?: AdotInstrumentationConfig;
        allowAllIpv6Outbound?: boolean;
        allowAllOutbound?: boolean;
        allowPublicSubnet?: boolean;
        app: string;
        applicationLogLevel?: string;
        applicationLogLevelV2?: ApplicationLogLevel;
        architecture?: Architecture;
        bucketNamePath?: string;
        codeSigningConfig?: ICodeSigningConfig;
        currentVersionOptions?: VersionOptions;
        deadLetterQueue?: IQueue;
        deadLetterQueueEnabled?: boolean;
        deadLetterTopic?: ITopic;
        description?: string;
        enableVersioning?: boolean;
        environment?: { [key: string]: string };
        environmentEncryption?: IKey;
        ephemeralStorageSize?: Size;
        events?: IEventSource[];
        fileName: string;
        filesystem?: FileSystem;
        functionName?: string;
        handler: string;
        initialPolicy?: PolicyStatement[];
        insightsVersion?: LambdaInsightsVersion;
        ipv6AllowedForDualStack?: boolean;
        layers?: ILayerVersion[];
        logFormat?: string;
        loggingFormat?: LoggingFormat;
        logGroup?: ILogGroup;
        logRetention?: RetentionDays;
        logRetentionRetryOptions?: LogRetentionRetryOptions;
        logRetentionRole?: IRole;
        maxEventAge?: Duration;
        memorySize?: number;
        monitoringConfiguration:
            | GuLambdaErrorPercentageMonitoringProps
            | NoMonitoring;
        onFailure?: IDestination;
        onSuccess?: IDestination;
        paramsAndSecrets?: ParamsAndSecretsLayerVersion;
        profiling?: boolean;
        profilingGroup?: IProfilingGroup;
        recursiveLoop?: RecursiveLoop;
        reservedConcurrentExecutions?: number;
        retryAttempts?: number;
        role?: IRole;
        rules: {
            description?: string;
            input?: RuleTargetInput;
            schedule: Schedule;
        }[];
        runtime: Runtime;
        runtimeManagementMode?: RuntimeManagementMode;
        securityGroups?: ISecurityGroup[];
        snapStart?: SnapStartConf;
        systemLogLevel?: string;
        systemLogLevelV2?: SystemLogLevel;
        throttlingMonitoring?: GuLambdaThrottlingMonitoringProps;
        timeout?: Duration;
        tracing?: Tracing;
        vpc?: IVpc;
        vpcSubnets?: SubnetSelection;
        withoutArtifactUpload?: boolean;
        withoutFilePrefix?: boolean;
    }

    Hierarchy

    Properties

    adotInstrumentation? +GuScheduledLambdaProps | @guardian/cdk

    Interface GuScheduledLambdaProps

    interface GuScheduledLambdaProps {
        adotInstrumentation?: AdotInstrumentationConfig;
        allowAllIpv6Outbound?: boolean;
        allowAllOutbound?: boolean;
        allowPublicSubnet?: boolean;
        app: string;
        applicationLogLevel?: string;
        applicationLogLevelV2?: ApplicationLogLevel;
        architecture?: Architecture;
        bucketNamePath?: string;
        codeSigningConfig?: ICodeSigningConfig;
        currentVersionOptions?: VersionOptions;
        deadLetterQueue?: IQueue;
        deadLetterQueueEnabled?: boolean;
        deadLetterTopic?: ITopic;
        description?: string;
        enableVersioning?: boolean;
        environment?: { [key: string]: string };
        environmentEncryption?: IKey;
        ephemeralStorageSize?: Size;
        events?: IEventSource[];
        fileName: string;
        filesystem?: FileSystem;
        functionName?: string;
        handler: string;
        initialPolicy?: PolicyStatement[];
        insightsVersion?: LambdaInsightsVersion;
        ipv6AllowedForDualStack?: boolean;
        layers?: ILayerVersion[];
        logFormat?: string;
        loggingFormat?: LoggingFormat;
        logGroup?: ILogGroup;
        logRetention?: RetentionDays;
        logRetentionRetryOptions?: LogRetentionRetryOptions;
        logRetentionRole?: IRole;
        maxEventAge?: Duration;
        memorySize?: number;
        monitoringConfiguration:
            | GuLambdaErrorPercentageMonitoringProps
            | NoMonitoring;
        onFailure?: IDestination;
        onSuccess?: IDestination;
        paramsAndSecrets?: ParamsAndSecretsLayerVersion;
        profiling?: boolean;
        profilingGroup?: IProfilingGroup;
        recursiveLoop?: RecursiveLoop;
        reservedConcurrentExecutions?: number;
        retryAttempts?: number;
        role?: IRole;
        rules: {
            description?: string;
            input?: RuleTargetInput;
            schedule: Schedule;
        }[];
        runtime: Runtime;
        runtimeManagementMode?: RuntimeManagementMode;
        securityGroups?: ISecurityGroup[];
        snapStart?: SnapStartConf;
        systemLogLevel?: string;
        systemLogLevelV2?: SystemLogLevel;
        throttlingMonitoring?: GuLambdaThrottlingMonitoringProps;
        timeout?: Duration;
        tracing?: Tracing;
        vpc?: IVpc;
        vpcSubnets?: SubnetSelection;
        withoutArtifactUpload?: boolean;
        withoutFilePrefix?: boolean;
    }

    Hierarchy

    Properties

    false
     
    -
    app: string
    applicationLogLevel?: string

    Sets the application log level for the function.

    +
    app: string
    applicationLogLevel?: string

    Sets the application log level for the function.

    Use applicationLogLevelV2 as a property instead.

    "INFO"
     
    @@ -104,7 +104,7 @@ you are referencing a file that is shared across many apps and/or AWS accounts.

    [[GuDistributionBucketParameter]]

    -
    codeSigningConfig?: ICodeSigningConfig

    Code signing config associated with this function

    +
    codeSigningConfig?: ICodeSigningConfig

    Code signing config associated with this function

    - Not Sign the Code
     
    @@ -137,7 +137,7 @@ on versioning (e.g. SnapStart or Provisioned Concurrency).

    If you enable versioning you must ensure that your Lambda function is updated whenever a new build is deployed via CloudFormation. The simplest way to do this is to include the build number in the fileName prop.

    -
    environment?: { [key: string]: string }

    Key-value pairs that Lambda caches and makes available for your Lambda +

    environment?: { [key: string]: string }

    Key-value pairs that Lambda caches and makes available for your Lambda functions. Use environment variables to apply configuration changes, such as test and production environment configurations, without changing your Lambda function source code.

    @@ -159,7 +159,7 @@
    fileName: string

    The filename for an executable package within the bucket [[GuDistributionBucketParameter]]. We'll look for fileName on the path "bucket/stack/stage/app/".

    -
    filesystem?: FileSystem

    The filesystem configuration for the lambda function

    +
    filesystem?: FileSystem

    The filesystem configuration for the lambda function

    - will not mount any filesystem
     
    @@ -264,7 +264,7 @@

    Monitoring configuration for the lambda.

    Opting-out via the NoMonitoring type is supported but discouraged.

    -
    onFailure?: IDestination

    The destination for failed invocations.

    +
    onFailure?: IDestination

    The destination for failed invocations.

    - no destination
     
    @@ -326,7 +326,7 @@
  • Schedule.expression("cron(0 8 ? * MON-FRI *)")
  • Schedule.rate(Duration.minutes(5))
  • -
    runtime: Runtime

    The runtime environment for the Lambda function that you are uploading. +

    runtime: Runtime

    The runtime environment for the Lambda function that you are uploading. For valid values, see the Runtime property in the AWS Lambda Developer Guide.

    Use Runtime.FROM_IMAGE when defining a function from a Docker image.

    @@ -357,7 +357,7 @@ concurrency limit (the reservedConcurrentExecutions prop) if you are concerned about throttling.

    timeout?: Duration

    The function execution time (in seconds) after which Lambda terminates +

    timeout?: Duration

    The function execution time (in seconds) after which Lambda terminates the function. Because the execution time affects cost, set this value based on the function's expected execution time.

    Duration.seconds(3)
    @@ -385,8 +385,8 @@
     managed elsewhere by DevX.

    This is used by RiffRaffYamlFileExperimental to skip generating an uploadLambda step.

    -
    withoutFilePrefix?: boolean

    Set to true to use the filename without the stage/stack/app prefix.

    +
    withoutFilePrefix?: boolean

    Set to true to use the filename without the stage/stack/app prefix.

    Typically you should not override this but you may need to if, for example, you are referencing a file that is shared across many apps and/or AWS accounts.

    -
    +
    diff --git a/interfaces/types.Access.html b/interfaces/types.Access.html index f98277914..b575b29f5 100644 --- a/interfaces/types.Access.html +++ b/interfaces/types.Access.html @@ -1,2 +1,2 @@ -Access | @guardian/cdk

    Interface Access

    interface Access {
        scope: AccessScope;
    }

    Hierarchy (View Summary)

    Properties

    Properties

    +Access | @guardian/cdk

    Interface Access

    interface Access {
        scope: AccessScope;
    }

    Hierarchy (View Summary)

    Properties

    Properties

    diff --git a/interfaces/types.GuAsgCapacity.html b/interfaces/types.GuAsgCapacity.html index 6975a3df5..8aab053a3 100644 --- a/interfaces/types.GuAsgCapacity.html +++ b/interfaces/types.GuAsgCapacity.html @@ -1,4 +1,4 @@ -GuAsgCapacity | @guardian/cdk

    Interface GuAsgCapacity

    interface GuAsgCapacity {
        maximumInstances?: number;
        minimumInstances: number;
    }

    Hierarchy (View Summary)

    Properties

    maximumInstances? +GuAsgCapacity | @guardian/cdk

    Interface GuAsgCapacity

    interface GuAsgCapacity {
        maximumInstances?: number;
        minimumInstances: number;
    }

    Hierarchy (View Summary)

    Properties

    maximumInstances?: number

    The maximum number of EC2 instances. If omitted, this will be set to minimumInstances * 2. @@ -6,6 +6,6 @@

    Should only be set if you need to scale beyond the default limit (e.g. due to heavy traffic), or restrict scaling for a specific reason.

    Note: If minimumInstances is defined with a Mapping maximumInstances must also be defined as a Mapping.

    -
    minimumInstances: number

    The number of EC2 instances running under normal circumstances, +

    minimumInstances: number

    The number of EC2 instances running under normal circumstances, i.e. when there are no deployment or scaling events in progress.

    -
    +
    diff --git a/interfaces/types.GuDistributable.html b/interfaces/types.GuDistributable.html index 83f4100f8..39d92aadd 100644 --- a/interfaces/types.GuDistributable.html +++ b/interfaces/types.GuDistributable.html @@ -1,4 +1,4 @@ -GuDistributable | @guardian/cdk

    Interface GuDistributable

    interface GuDistributable {
        fileName: string;
    }

    Hierarchy (View Summary)

    Properties

    fileName +GuDistributable | @guardian/cdk

    Interface GuDistributable

    interface GuDistributable {
        fileName: string;
    }

    Hierarchy (View Summary)

    Properties

    Properties

    fileName: string

    The filename for an executable package within the bucket [[GuDistributionBucketParameter]]. We'll look for fileName on the path "bucket/stack/stage/app/".

    -
    +
    diff --git a/interfaces/types.GuDistributableForEc2.html b/interfaces/types.GuDistributableForEc2.html index ad7ba493d..65dc551bb 100644 --- a/interfaces/types.GuDistributableForEc2.html +++ b/interfaces/types.GuDistributableForEc2.html @@ -1,7 +1,7 @@ -GuDistributableForEc2 | @guardian/cdk

    Interface GuDistributableForEc2

    interface GuDistributableForEc2 {
        executionStatement: string;
        fileName: string;
    }

    Hierarchy (View Summary)

    Properties

    executionStatement +GuDistributableForEc2 | @guardian/cdk

    Interface GuDistributableForEc2

    interface GuDistributableForEc2 {
        executionStatement: string;
        fileName: string;
    }

    Hierarchy (View Summary)

    Properties

    executionStatement: string

    The command to run fileName. For example dpkg -i application.deb or service foo start.

    -
    fileName: string

    The filename for an executable package within the bucket [[GuDistributionBucketParameter]]. +

    fileName: string

    The filename for an executable package within the bucket [[GuDistributionBucketParameter]]. We'll look for fileName on the path "bucket/stack/stage/app/".

    -
    +
    diff --git a/interfaces/types.GuDomainName.html b/interfaces/types.GuDomainName.html index 36a5f3046..503226a29 100644 --- a/interfaces/types.GuDomainName.html +++ b/interfaces/types.GuDomainName.html @@ -1,9 +1,9 @@ -GuDomainName | @guardian/cdk

    Interface GuDomainName

    interface GuDomainName {
        domainName: string;
        hostedZoneId?: string;
    }

    Hierarchy (View Summary)

    Properties

    domainName +GuDomainName | @guardian/cdk

    Interface GuDomainName

    interface GuDomainName {
        domainName: string;
        hostedZoneId?: string;
    }

    Hierarchy (View Summary)

    Properties

    domainName: string

    The Fully Qualified Domain Name.

    "riff-raff.gutools.co.uk"
     
    -
    hostedZoneId?: string

    Route53 Zone ID.

    +
    hostedZoneId?: string

    Route53 Zone ID.

    To be provided only if the zone for domainName is managed by Route53.

    -
    +
    diff --git a/interfaces/types.InternalAccess.html b/interfaces/types.InternalAccess.html index fbd7a8023..d1c26ccbd 100644 --- a/interfaces/types.InternalAccess.html +++ b/interfaces/types.InternalAccess.html @@ -5,6 +5,6 @@
    {
    scope: AccessScope.INTERNAL,
    cidrRanges: [Peer.ipv4("10.0.0.0/8")]
    }
    -
    interface InternalAccess {
        cidrRanges: IPeer[];
        scope: INTERNAL;
    }

    Hierarchy (View Summary)

    Properties

    interface InternalAccess {
        cidrRanges: IPeer[];
        scope: INTERNAL;
    }

    Hierarchy (View Summary)

    Properties

    Properties

    cidrRanges: IPeer[]
    scope: INTERNAL
    +

    Properties

    cidrRanges: IPeer[]
    scope: INTERNAL
    diff --git a/interfaces/types.PublicAccess.html b/interfaces/types.PublicAccess.html index df75da429..e0839cf83 100644 --- a/interfaces/types.PublicAccess.html +++ b/interfaces/types.PublicAccess.html @@ -5,5 +5,5 @@
    { scope: AccessScope.PUBLIC }
     
    -
    interface PublicAccess {
        scope: PUBLIC;
    }

    Hierarchy (View Summary)

    Properties

    Properties

    scope: PUBLIC
    +
    interface PublicAccess {
        scope: PUBLIC;
    }

    Hierarchy (View Summary)

    Properties

    Properties

    scope: PUBLIC
    diff --git a/interfaces/types.RestrictedAccess.html b/interfaces/types.RestrictedAccess.html index c1d84b830..eaa2d4fc8 100644 --- a/interfaces/types.RestrictedAccess.html +++ b/interfaces/types.RestrictedAccess.html @@ -4,6 +4,6 @@
    {
    scope: AccessScope.RESTRICTED,
    cidrRanges: [Peer.ipv4("192.168.1.1/32"), Peer.ipv4("8.8.8.8/32")]
    }
    -
    interface RestrictedAccess {
        cidrRanges: IPeer[];
        scope: RESTRICTED;
    }

    Hierarchy (View Summary)

    Properties

    interface RestrictedAccess {
        cidrRanges: IPeer[];
        scope: RESTRICTED;
    }

    Hierarchy (View Summary)

    Properties

    Properties

    cidrRanges: IPeer[]
    scope: RESTRICTED
    +

    Properties

    cidrRanges: IPeer[]
    scope: RESTRICTED
    diff --git a/interfaces/utils_ec2.GuPrivateS3ConfigurationProps.html b/interfaces/utils_ec2.GuPrivateS3ConfigurationProps.html index 6aa485399..a8cf13d23 100644 --- a/interfaces/utils_ec2.GuPrivateS3ConfigurationProps.html +++ b/interfaces/utils_ec2.GuPrivateS3ConfigurationProps.html @@ -1,6 +1,6 @@ GuPrivateS3ConfigurationProps | @guardian/cdk

    Interface GuPrivateS3ConfigurationProps

    Information about an ec2 app's private configuration. files are paths from the root of the bucket. TODO change this once we have defined best practice for configuration.

    -
    interface GuPrivateS3ConfigurationProps {
        bucket: GuPrivateConfigBucketParameter;
        files: string[];
    }

    Properties

    interface GuPrivateS3ConfigurationProps {
        bucket: GuPrivateConfigBucketParameter;
        files: string[];
    }

    Properties

    Properties

    files: string[]
    +

    Properties

    files: string[]
    diff --git a/interfaces/utils_lambda.StreamErrorHandlingProps.html b/interfaces/utils_lambda.StreamErrorHandlingProps.html index 071096eb0..63152fe57 100644 --- a/interfaces/utils_lambda.StreamErrorHandlingProps.html +++ b/interfaces/utils_lambda.StreamErrorHandlingProps.html @@ -8,8 +8,8 @@

    Records which could not be processed successfully can (optionally) be sent to a dead letter queue via deadLetterQueueForSkippedRecords.

    -
    interface StreamErrorHandlingProps {
        bisectBatchOnError: boolean;
        blockProcessingAndRetryIndefinitely?: false;
        deadLetterQueueForSkippedRecords?: IEventSourceDlq;
        retryBehaviour: StreamRetry;
    }

    Properties

    interface StreamErrorHandlingProps {
        bisectBatchOnError: boolean;
        blockProcessingAndRetryIndefinitely?: false;
        deadLetterQueueForSkippedRecords?: IEventSourceDlq;
        retryBehaviour: StreamRetry;
    }

    Properties

    bisectBatchOnError: boolean
    blockProcessingAndRetryIndefinitely?: false
    deadLetterQueueForSkippedRecords?: IEventSourceDlq
    retryBehaviour: StreamRetry
    +

    Properties

    bisectBatchOnError: boolean
    blockProcessingAndRetryIndefinitely?: false
    deadLetterQueueForSkippedRecords?: IEventSourceDlq
    retryBehaviour: StreamRetry
    diff --git a/types/constructs_acm.GuCertificatePropsWithApp.html b/types/constructs_acm.GuCertificatePropsWithApp.html index 9d8eac15c..6cfc36dac 100644 --- a/types/constructs_acm.GuCertificatePropsWithApp.html +++ b/types/constructs_acm.GuCertificatePropsWithApp.html @@ -1 +1 @@ -GuCertificatePropsWithApp | @guardian/cdk

    Type Alias GuCertificatePropsWithApp

    GuCertificatePropsWithApp: GuDomainName & AppIdentity
    +GuCertificatePropsWithApp | @guardian/cdk

    Type Alias GuCertificatePropsWithApp

    GuCertificatePropsWithApp: GuDomainName & AppIdentity
    diff --git a/types/constructs_autoscaling.GuUserDataPropsWithApp.html b/types/constructs_autoscaling.GuUserDataPropsWithApp.html index a9f7c01a5..21b1768da 100644 --- a/types/constructs_autoscaling.GuUserDataPropsWithApp.html +++ b/types/constructs_autoscaling.GuUserDataPropsWithApp.html @@ -1 +1 @@ -GuUserDataPropsWithApp | @guardian/cdk
    +GuUserDataPropsWithApp | @guardian/cdk
    diff --git a/types/constructs_core.GuNoTypeParameterProps.html b/types/constructs_core.GuNoTypeParameterProps.html index 03f3c30be..7e8aafacb 100644 --- a/types/constructs_core.GuNoTypeParameterProps.html +++ b/types/constructs_core.GuNoTypeParameterProps.html @@ -1 +1 @@ -GuNoTypeParameterProps | @guardian/cdk
    GuNoTypeParameterProps: Omit<GuParameterProps, "type">
    +GuNoTypeParameterProps | @guardian/cdk
    GuNoTypeParameterProps: Omit<GuParameterProps, "type">
    diff --git a/types/constructs_core.GuNoTypeParameterPropsWithAppIdentity.html b/types/constructs_core.GuNoTypeParameterPropsWithAppIdentity.html index c9d8fffde..65a1e829e 100644 --- a/types/constructs_core.GuNoTypeParameterPropsWithAppIdentity.html +++ b/types/constructs_core.GuNoTypeParameterPropsWithAppIdentity.html @@ -1 +1 @@ -GuNoTypeParameterPropsWithAppIdentity | @guardian/cdk

    Type Alias GuNoTypeParameterPropsWithAppIdentity

    GuNoTypeParameterPropsWithAppIdentity: Omit<GuParameterProps, "type"> & AppIdentity
    +GuNoTypeParameterPropsWithAppIdentity | @guardian/cdk

    Type Alias GuNoTypeParameterPropsWithAppIdentity

    GuNoTypeParameterPropsWithAppIdentity: Omit<GuParameterProps, "type"> & AppIdentity
    diff --git a/types/constructs_ecs.ContainerConfiguration.html b/types/constructs_ecs.ContainerConfiguration.html index 7a6937825..a72a2d678 100644 --- a/types/constructs_ecs.ContainerConfiguration.html +++ b/types/constructs_ecs.ContainerConfiguration.html @@ -1 +1 @@ -ContainerConfiguration | @guardian/cdk
    +ContainerConfiguration | @guardian/cdk
    diff --git a/types/constructs_ecs.GuEcsTaskMonitoringProps.html b/types/constructs_ecs.GuEcsTaskMonitoringProps.html index ecc295a76..eb336b41e 100644 --- a/types/constructs_ecs.GuEcsTaskMonitoringProps.html +++ b/types/constructs_ecs.GuEcsTaskMonitoringProps.html @@ -1 +1 @@ -GuEcsTaskMonitoringProps | @guardian/cdk

    Type Alias GuEcsTaskMonitoringProps

    GuEcsTaskMonitoringProps: { noMonitoring: false; snsTopicArn: string }

    Type declaration

    • noMonitoring: false
    • snsTopicArn: string
    +GuEcsTaskMonitoringProps | @guardian/cdk

    Type Alias GuEcsTaskMonitoringProps

    GuEcsTaskMonitoringProps: { noMonitoring: false; snsTopicArn: string }

    Type declaration

    • noMonitoring: false
    • snsTopicArn: string
    diff --git a/types/constructs_ecs.RegistryContainer.html b/types/constructs_ecs.RegistryContainer.html index 8238f632a..129126307 100644 --- a/types/constructs_ecs.RegistryContainer.html +++ b/types/constructs_ecs.RegistryContainer.html @@ -1 +1 @@ -RegistryContainer | @guardian/cdk
    RegistryContainer: {
        id?: string;
        imageProps?: RepositoryImageProps;
        type: "registry";
    }

    Type declaration

    • Optionalid?: string
    • OptionalimageProps?: RepositoryImageProps
    • type: "registry"
    +RegistryContainer | @guardian/cdk
    RegistryContainer: {
        id?: string;
        imageProps?: RepositoryImageProps;
        type: "registry";
    }

    Type declaration

    • Optionalid?: string
    • OptionalimageProps?: RepositoryImageProps
    • type: "registry"
    diff --git a/types/constructs_ecs.RepositoryContainer.html b/types/constructs_ecs.RepositoryContainer.html index 111270bb9..64ebe65bb 100644 --- a/types/constructs_ecs.RepositoryContainer.html +++ b/types/constructs_ecs.RepositoryContainer.html @@ -7,4 +7,4 @@
    import { Repository } from "aws-cdk-lib/aws-ecr";
    const repository = new Repository(scope, `${app}-repository`, {
    repositoryName: app,
    });
    const containerConfiguration = {
    repository: Repository.fromRepositoryArn("<repository arn>"),
    version: '1'
    }
    -

    Type declaration

    • repository: IRepository
    • type: "repository"
    • version: string
    +

    Type declaration

    • repository: IRepository
    • type: "repository"
    • version: string
    diff --git a/types/constructs_iam.GuDenyPolicyProps.html b/types/constructs_iam.GuDenyPolicyProps.html index 43d78f231..12618fe6a 100644 --- a/types/constructs_iam.GuDenyPolicyProps.html +++ b/types/constructs_iam.GuDenyPolicyProps.html @@ -1 +1 @@ -GuDenyPolicyProps | @guardian/cdk
    +GuDenyPolicyProps | @guardian/cdk
    diff --git a/types/constructs_iam.GuInstanceRolePropsWithApp.html b/types/constructs_iam.GuInstanceRolePropsWithApp.html index ca2129e1e..dcb954826 100644 --- a/types/constructs_iam.GuInstanceRolePropsWithApp.html +++ b/types/constructs_iam.GuInstanceRolePropsWithApp.html @@ -1 +1 @@ -GuInstanceRolePropsWithApp | @guardian/cdk
    +GuInstanceRolePropsWithApp | @guardian/cdk
    diff --git a/types/constructs_iam.GuNoStatementsPolicyProps.html b/types/constructs_iam.GuNoStatementsPolicyProps.html index 62bf2ed02..537069090 100644 --- a/types/constructs_iam.GuNoStatementsPolicyProps.html +++ b/types/constructs_iam.GuNoStatementsPolicyProps.html @@ -1 +1 @@ -GuNoStatementsPolicyProps | @guardian/cdk

    Type Alias GuNoStatementsPolicyProps

    GuNoStatementsPolicyProps: Omit<GuPolicyProps, "statements">
    +GuNoStatementsPolicyProps | @guardian/cdk

    Type Alias GuNoStatementsPolicyProps

    GuNoStatementsPolicyProps: Omit<GuPolicyProps, "statements">
    diff --git a/types/constructs_iam.GuPolicyProps.html b/types/constructs_iam.GuPolicyProps.html index 5bef79906..9b866ad96 100644 --- a/types/constructs_iam.GuPolicyProps.html +++ b/types/constructs_iam.GuPolicyProps.html @@ -1 +1 @@ -GuPolicyProps | @guardian/cdk
    GuPolicyProps: PolicyProps
    +GuPolicyProps | @guardian/cdk
    GuPolicyProps: PolicyProps
    diff --git a/types/constructs_iam.GuRoleProps.html b/types/constructs_iam.GuRoleProps.html index b09348f18..180104014 100644 --- a/types/constructs_iam.GuRoleProps.html +++ b/types/constructs_iam.GuRoleProps.html @@ -1 +1 @@ -GuRoleProps | @guardian/cdk
    GuRoleProps: RoleProps
    +GuRoleProps | @guardian/cdk
    GuRoleProps: RoleProps
    diff --git a/types/constructs_kinesis.GuKinesisStreamProps.html b/types/constructs_kinesis.GuKinesisStreamProps.html index 3c9e049fa..288ea3a40 100644 --- a/types/constructs_kinesis.GuKinesisStreamProps.html +++ b/types/constructs_kinesis.GuKinesisStreamProps.html @@ -1 +1 @@ -GuKinesisStreamProps | @guardian/cdk
    GuKinesisStreamProps: StreamProps
    +GuKinesisStreamProps | @guardian/cdk
    GuKinesisStreamProps: StreamProps
    diff --git a/types/constructs_vpc.GuVpcProps.html b/types/constructs_vpc.GuVpcProps.html index 8417ed62d..0d81b89cf 100644 --- a/types/constructs_vpc.GuVpcProps.html +++ b/types/constructs_vpc.GuVpcProps.html @@ -1 +1 @@ -GuVpcProps | @guardian/cdk
    GuVpcProps: VpcProps
    +GuVpcProps | @guardian/cdk
    GuVpcProps: VpcProps
    diff --git a/types/patterns.HttpMethod.html b/types/patterns.HttpMethod.html index ad9470def..91de0eb75 100644 --- a/types/patterns.HttpMethod.html +++ b/types/patterns.HttpMethod.html @@ -1,2 +1,2 @@ HttpMethod | @guardian/cdk

    Type Alias HttpMethod

    HttpMethod:
        | "GET"
        | "HEAD"
        | "POST"
        | "PUT"
        | "DELETE"
        | "CONNECT"
        | "OPTIONS"
        | "TRACE"
        | "PATCH"
    +
    diff --git a/types/types.AppAccess.html b/types/types.AppAccess.html index d7e255619..dc34d4b82 100644 --- a/types/types.AppAccess.html +++ b/types/types.AppAccess.html @@ -1 +1 @@ -AppAccess | @guardian/cdk
    +AppAccess | @guardian/cdk
    diff --git a/types/utils_lambda.StreamProcessingProps.html b/types/utils_lambda.StreamProcessingProps.html index dbfd78477..bf3448493 100644 --- a/types/utils_lambda.StreamProcessingProps.html +++ b/types/utils_lambda.StreamProcessingProps.html @@ -1 +1 @@ -StreamProcessingProps | @guardian/cdk

    Type Alias StreamProcessingProps

    StreamProcessingProps: Omit<
        KinesisEventSourceProps,
        "bisectBatchOnError"
        | "maxRecordAge"
        | "onFailure"
        | "retryAttempts",
    >
    +StreamProcessingProps | @guardian/cdk

    Type Alias StreamProcessingProps

    StreamProcessingProps: Omit<
        KinesisEventSourceProps,
        "bisectBatchOnError"
        | "maxRecordAge"
        | "onFailure"
        | "retryAttempts",
    >
    diff --git a/variables/constants.ALL_SSM_PARAMETER_PATHS.html b/variables/constants.ALL_SSM_PARAMETER_PATHS.html index bc2719cd5..d63357900 100644 --- a/variables/constants.ALL_SSM_PARAMETER_PATHS.html +++ b/variables/constants.ALL_SSM_PARAMETER_PATHS.html @@ -1 +1 @@ -ALL_SSM_PARAMETER_PATHS | @guardian/cdk

    Variable ALL_SSM_PARAMETER_PATHSConst

    ALL_SSM_PARAMETER_PATHS: SsmParameterPath[] = ...
    +ALL_SSM_PARAMETER_PATHS | @guardian/cdk

    Variable ALL_SSM_PARAMETER_PATHSConst

    ALL_SSM_PARAMETER_PATHS: SsmParameterPath[] = ...
    diff --git a/variables/constants.ContextKeys.html b/variables/constants.ContextKeys.html index e85eff44c..314560bb8 100644 --- a/variables/constants.ContextKeys.html +++ b/variables/constants.ContextKeys.html @@ -1,2 +1,2 @@ ContextKeys | @guardian/cdk

    Variable ContextKeysConst

    ContextKeys: { REPOSITORY_URL: string } = ...

    A list of items we will read from the CDK context

    -

    Type declaration

    • REPOSITORY_URL: string
    +

    Type declaration

    • REPOSITORY_URL: string
    diff --git a/variables/constants.FASTLY_AWS_ACCOUNT_ID.html b/variables/constants.FASTLY_AWS_ACCOUNT_ID.html index 7396e983a..5464d7654 100644 --- a/variables/constants.FASTLY_AWS_ACCOUNT_ID.html +++ b/variables/constants.FASTLY_AWS_ACCOUNT_ID.html @@ -2,4 +2,4 @@ This is needed by IAM roles assumed by Fastly in order to write into an S3 bucket or a Kinesis stream. See https://docs.fastly.com/en/guides/creating-an-aws-iam-role-for-fastly-logging

    -
    +
    diff --git a/variables/constants.LibraryInfo.html b/variables/constants.LibraryInfo.html index 51530a817..145a691f5 100644 --- a/variables/constants.LibraryInfo.html +++ b/variables/constants.LibraryInfo.html @@ -4,4 +4,4 @@ You need to match this version exactly.

  • NAME: string

    The name of this package

  • VERSION: string

    The current version of @guardian/cdk.

    -
  • +
    diff --git a/variables/constants.MetadataKeys.html b/variables/constants.MetadataKeys.html index 6df220a19..5f85b50f0 100644 --- a/variables/constants.MetadataKeys.html +++ b/variables/constants.MetadataKeys.html @@ -1 +1 @@ -MetadataKeys | @guardian/cdk

    Variable MetadataKeysConst

    MetadataKeys: {
        BUILD_IDENTIFIER: string;
        CONSTRUCTS_KEY: string;
        LOG_KINESIS_STREAM_NAME: string;
        REPOSITORY_NAME: string;
        SYSTEMD_UNIT: string;
        VERSION: string;
    } = ...

    Type declaration

    • BUILD_IDENTIFIER: string
    • CONSTRUCTS_KEY: string
    • LOG_KINESIS_STREAM_NAME: string
    • REPOSITORY_NAME: string
    • SYSTEMD_UNIT: string
    • VERSION: string
    +MetadataKeys | @guardian/cdk

    Variable MetadataKeysConst

    MetadataKeys: {
        BUILD_IDENTIFIER: string;
        CONSTRUCTS_KEY: string;
        LOG_KINESIS_STREAM_NAME: string;
        REPOSITORY_NAME: string;
        SYSTEMD_UNIT: string;
        VERSION: string;
    } = ...

    Type declaration

    • BUILD_IDENTIFIER: string
    • CONSTRUCTS_KEY: string
    • LOG_KINESIS_STREAM_NAME: string
    • REPOSITORY_NAME: string
    • SYSTEMD_UNIT: string
    • VERSION: string
    diff --git a/variables/constants.NAMED_SSM_PARAMETER_PATHS.html b/variables/constants.NAMED_SSM_PARAMETER_PATHS.html index e9b5c6ed6..7bc5056e7 100644 --- a/variables/constants.NAMED_SSM_PARAMETER_PATHS.html +++ b/variables/constants.NAMED_SSM_PARAMETER_PATHS.html @@ -1 +1 @@ -NAMED_SSM_PARAMETER_PATHS | @guardian/cdk

    Variable NAMED_SSM_PARAMETER_PATHSConst

    NAMED_SSM_PARAMETER_PATHS: NamedSsmParameterPaths = ...
    +NAMED_SSM_PARAMETER_PATHS | @guardian/cdk

    Variable NAMED_SSM_PARAMETER_PATHSConst

    NAMED_SSM_PARAMETER_PATHS: NamedSsmParameterPaths = ...
    diff --git a/variables/constants.RegexPattern.html b/variables/constants.RegexPattern.html index 99e40c359..b70d6076e 100644 --- a/variables/constants.RegexPattern.html +++ b/variables/constants.RegexPattern.html @@ -1 +1 @@ -RegexPattern | @guardian/cdk

    Variable RegexPatternConst

    RegexPattern: { ACM_ARN: string; ARN: string; S3ARN: string } = ...

    Type declaration

    • ACM_ARN: string
    • ARN: string
    • S3ARN: string
    +RegexPattern | @guardian/cdk

    Variable RegexPatternConst

    RegexPattern: { ACM_ARN: string; ARN: string; S3ARN: string } = ...

    Type declaration

    • ACM_ARN: string
    • ARN: string
    • S3ARN: string
    diff --git a/variables/constants.TrackingTag.html b/variables/constants.TrackingTag.html index b24e484dc..4aba8cbb7 100644 --- a/variables/constants.TrackingTag.html +++ b/variables/constants.TrackingTag.html @@ -1 +1 @@ -TrackingTag | @guardian/cdk

    Variable TrackingTagConst

    TrackingTag: { Key: string; Value: string } = ...

    Type declaration

    • Key: string
    • Value: string
    +TrackingTag | @guardian/cdk

    Variable TrackingTagConst

    TrackingTag: { Key: string; Value: string } = ...

    Type declaration

    • Key: string
    • Value: string
    diff --git a/variables/constants.VPC_SSM_PARAMETER_PREFIX.html b/variables/constants.VPC_SSM_PARAMETER_PREFIX.html index a367bfeea..a5c300dcd 100644 --- a/variables/constants.VPC_SSM_PARAMETER_PREFIX.html +++ b/variables/constants.VPC_SSM_PARAMETER_PREFIX.html @@ -1 +1 @@ -VPC_SSM_PARAMETER_PREFIX | @guardian/cdk

    Variable VPC_SSM_PARAMETER_PREFIXConst

    VPC_SSM_PARAMETER_PREFIX: "/account/vpc"
    +VPC_SSM_PARAMETER_PREFIX | @guardian/cdk

    Variable VPC_SSM_PARAMETER_PREFIXConst

    VPC_SSM_PARAMETER_PREFIX: "/account/vpc"
    diff --git a/variables/constructs_core.AppIdentity-1.html b/variables/constructs_core.AppIdentity-1.html index ed3739517..04acdfabb 100644 --- a/variables/constructs_core.AppIdentity-1.html +++ b/variables/constructs_core.AppIdentity-1.html @@ -1 +1 @@ -AppIdentity | @guardian/cdk
    AppIdentity: {
        isAppIdentity(props: any): props is AppIdentity;
        suffixText(appIdentity: AppIdentity, text: string): string;
        taggedConstruct<T extends IConstruct>(
            appIdentity: AppIdentity,
            construct: T,
        ): T;
    }

    Type declaration

    +AppIdentity | @guardian/cdk
    AppIdentity: {
        isAppIdentity(props: any): props is AppIdentity;
        suffixText(appIdentity: AppIdentity, text: string): string;
        taggedConstruct<T extends IConstruct>(
            appIdentity: AppIdentity,
            construct: T,
        ): T;
    }

    Type declaration

    diff --git a/variables/constructs_loadbalancing.DROP_INVALID_HEADER_FIELDS_ENABLED.html b/variables/constructs_loadbalancing.DROP_INVALID_HEADER_FIELDS_ENABLED.html index a72a14d21..7de2b657f 100644 --- a/variables/constructs_loadbalancing.DROP_INVALID_HEADER_FIELDS_ENABLED.html +++ b/variables/constructs_loadbalancing.DROP_INVALID_HEADER_FIELDS_ENABLED.html @@ -1,3 +1,3 @@ DROP_INVALID_HEADER_FIELDS_ENABLED | @guardian/cdk

    Variable DROP_INVALID_HEADER_FIELDS_ENABLEDConst

    DROP_INVALID_HEADER_FIELDS_ENABLED: "routing.http.drop_invalid_header_fields.enabled"

    Indicates whether HTTP headers with invalid header fields are removed by the load balancer. Invalid headers are described as HTTP header names that do not conform to the regular expression [-A-Za-z0-9]+

    -
    +
    diff --git a/variables/constructs_loadbalancing.TLS_VERSION_AND_CIPHER_SUITE_HEADERS_ENABLED.html b/variables/constructs_loadbalancing.TLS_VERSION_AND_CIPHER_SUITE_HEADERS_ENABLED.html index 87e608aca..78af8e846 100644 --- a/variables/constructs_loadbalancing.TLS_VERSION_AND_CIPHER_SUITE_HEADERS_ENABLED.html +++ b/variables/constructs_loadbalancing.TLS_VERSION_AND_CIPHER_SUITE_HEADERS_ENABLED.html @@ -4,4 +4,4 @@
  • x-amzn-tls-cipher-suite, which has information about the cipher suite negotiated with the client
  • Both headers are in OpenSSL format.

    -
    +
    diff --git a/variables/types.AppAccess-1.html b/variables/types.AppAccess-1.html index 8ca077113..cfb7130f3 100644 --- a/variables/types.AppAccess-1.html +++ b/variables/types.AppAccess-1.html @@ -3,4 +3,4 @@ Restricted - Must not include global CIDR ranges as doing so makes other listed CIDR ranges redundant Internal - All CIDR ranges must start 10.

    Error when CIDR rules are invalid

    -
    +
    diff --git a/variables/types.GuDistributable-1.html b/variables/types.GuDistributable-1.html index 09ff6523e..c056c25b8 100644 --- a/variables/types.GuDistributable-1.html +++ b/variables/types.GuDistributable-1.html @@ -1 +1 @@ -GuDistributable | @guardian/cdk

    Variable GuDistributable

    GuDistributable: {
        getObjectKey(
            __namedParameters: GuStack,
            __namedParameters: AppIdentity,
            __namedParameters: GuDistributable,
        ): string;
    }

    Type declaration

    +GuDistributable | @guardian/cdk

    Variable GuDistributable

    GuDistributable: {
        getObjectKey(
            __namedParameters: GuStack,
            __namedParameters: AppIdentity,
            __namedParameters: GuDistributable,
        ): string;
    }

    Type declaration