initial commit

CoreySchnedl · CoreySchnedl · commit f746a8d82f24 · 2024-07-23T15:20:05.000-04:00
diff --git a/.gitignore b/.gitignore
@@ -0,0 +1,8 @@
+*.js
+!jest.config.js
+*.d.ts
+node_modules
+
+# CDK asset staging directory
+.cdk.staging
+cdk.out
diff --git a/.npmignore b/.npmignore
@@ -0,0 +1,6 @@
+*.ts
+!*.d.ts
+
+# CDK asset staging directory
+.cdk.staging
+cdk.out
diff --git a/README.md b/README.md
@@ -0,0 +1,14 @@
+# Welcome to your CDK TypeScript project
+
+This is a blank project for CDK development with TypeScript.
+
+The `cdk.json` file tells the CDK Toolkit how to execute your app.
+
+## Useful commands
+
+* `npm run build`   compile typescript to js
+* `npm run watch`   watch for changes and compile
+* `npm run test`    perform the jest unit tests
+* `npx cdk deploy`  deploy this stack to your default AWS account/region
+* `npx cdk diff`    compare deployed stack with current state
+* `npx cdk synth`   emits the synthesized CloudFormation template
diff --git a/bin/amazon-api-gateway-versioning-custom-domain.ts b/bin/amazon-api-gateway-versioning-custom-domain.ts
@@ -0,0 +1,21 @@
+#!/usr/bin/env node
+import "source-map-support/register";
+import { AwsSolutionsChecks } from "cdk-nag";
+import { App, Aspects } from "aws-cdk-lib";
+import { ApiStackV1 } from "../lib/apiStackV1";
+import { ApiStackV2 } from "../lib/apiStackV2";
+import { CustomDomainRouterStack } from "../lib/customDomainRouterStack";
+
+const app = new App();
+const customDomainRouterStack = new CustomDomainRouterStack(
+  app,
+  "CustomDomainRouterStack"
+);
+new ApiStackV1(app, "ApiStackV1", {
+  customDomainName: customDomainRouterStack.apiGatewayCustomDomainName,
+});
+new ApiStackV2(app, "ApiStackV2", {
+  customDomainName: customDomainRouterStack.apiGatewayCustomDomainName,
+});
+
+// Aspects.of(app).add(new AwsSolutionsChecks());
diff --git a/cdk.json b/cdk.json
@@ -0,0 +1,73 @@
+{
+  "app": "npx ts-node --prefer-ts-exts bin/amazon-api-gateway-versioning-custom-domain.ts",
+  "watch": {
+    "include": [
+      "**"
+    ],
+    "exclude": [
+      "README.md",
+      "cdk*.json",
+      "**/*.d.ts",
+      "**/*.js",
+      "tsconfig.json",
+      "package*.json",
+      "yarn.lock",
+      "node_modules",
+      "test"
+    ]
+  },
+  "context": {
+    "@aws-cdk/aws-lambda:recognizeLayerVersion": true,
+    "@aws-cdk/core:checkSecretUsage": true,
+    "@aws-cdk/core:target-partitions": [
+      "aws",
+      "aws-cn"
+    ],
+    "@aws-cdk-containers/ecs-service-extensions:enableDefaultLogDriver": true,
+    "@aws-cdk/aws-ec2:uniqueImdsv2TemplateName": true,
+    "@aws-cdk/aws-ecs:arnFormatIncludesClusterName": true,
+    "@aws-cdk/aws-iam:minimizePolicies": true,
+    "@aws-cdk/core:validateSnapshotRemovalPolicy": true,
+    "@aws-cdk/aws-codepipeline:crossAccountKeyAliasStackSafeResourceName": true,
+    "@aws-cdk/aws-s3:createDefaultLoggingPolicy": true,
+    "@aws-cdk/aws-sns-subscriptions:restrictSqsDescryption": true,
+    "@aws-cdk/aws-apigateway:disableCloudWatchRole": true,
+    "@aws-cdk/core:enablePartitionLiterals": true,
+    "@aws-cdk/aws-events:eventsTargetQueueSameAccount": true,
+    "@aws-cdk/aws-iam:standardizedServicePrincipals": true,
+    "@aws-cdk/aws-ecs:disableExplicitDeploymentControllerForCircuitBreaker": true,
+    "@aws-cdk/aws-iam:importedRoleStackSafeDefaultPolicyName": true,
+    "@aws-cdk/aws-s3:serverAccessLogsUseBucketPolicy": true,
+    "@aws-cdk/aws-route53-patters:useCertificate": true,
+    "@aws-cdk/customresources:installLatestAwsSdkDefault": false,
+    "@aws-cdk/aws-rds:databaseProxyUniqueResourceName": true,
+    "@aws-cdk/aws-codedeploy:removeAlarmsFromDeploymentGroup": true,
+    "@aws-cdk/aws-apigateway:authorizerChangeDeploymentLogicalId": true,
+    "@aws-cdk/aws-ec2:launchTemplateDefaultUserData": true,
+    "@aws-cdk/aws-secretsmanager:useAttachedSecretResourcePolicyForSecretTargetAttachments": true,
+    "@aws-cdk/aws-redshift:columnId": true,
+    "@aws-cdk/aws-stepfunctions-tasks:enableEmrServicePolicyV2": true,
+    "@aws-cdk/aws-ec2:restrictDefaultSecurityGroup": true,
+    "@aws-cdk/aws-apigateway:requestValidatorUniqueId": true,
+    "@aws-cdk/aws-kms:aliasNameRef": true,
+    "@aws-cdk/aws-autoscaling:generateLaunchTemplateInsteadOfLaunchConfig": true,
+    "@aws-cdk/core:includePrefixInUniqueNameGeneration": true,
+    "@aws-cdk/aws-efs:denyAnonymousAccess": true,
+    "@aws-cdk/aws-opensearchservice:enableOpensearchMultiAzWithStandby": true,
+    "@aws-cdk/aws-lambda-nodejs:useLatestRuntimeVersion": true,
+    "@aws-cdk/aws-efs:mountTargetOrderInsensitiveLogicalId": true,
+    "@aws-cdk/aws-rds:auroraClusterChangeScopeOfInstanceParameterGroupWithEachParameters": true,
+    "@aws-cdk/aws-appsync:useArnForSourceApiAssociationIdentifier": true,
+    "@aws-cdk/aws-rds:preventRenderingDeprecatedCredentials": true,
+    "@aws-cdk/aws-codepipeline-actions:useNewDefaultBranchForCodeCommitSource": true,
+    "@aws-cdk/aws-cloudwatch-actions:changeLambdaPermissionLogicalIdForLambdaAction": true,
+    "@aws-cdk/aws-codepipeline:crossAccountKeysDefaultValueToFalse": true,
+    "@aws-cdk/aws-codepipeline:defaultPipelineTypeToV2": true,
+    "@aws-cdk/aws-kms:reduceCrossAccountRegionPolicyScope": true,
+    "@aws-cdk/aws-eks:nodegroupNameAttribute": true,
+    "@aws-cdk/aws-ec2:ebsDefaultGp3Volume": true,
+    "@aws-cdk/aws-ecs:removeDefaultDeploymentAlarm": true,
+    "@aws-cdk/custom-resources:logApiResponseDataPropertyTrueDefault": false,
+    "@aws-cdk/aws-stepfunctions-tasks:ecsReduceRunTaskPermissions": true
+  }
+}
diff --git a/jest.config.js b/jest.config.js
@@ -0,0 +1,8 @@
+module.exports = {
+  testEnvironment: 'node',
+  roots: ['<rootDir>/test'],
+  testMatch: ['**/*.test.ts'],
+  transform: {
+    '^.+\\.tsx?$': 'ts-jest'
+  }
+};
diff --git a/lambdas/v1/add-numbers-v1/index.ts b/lambdas/v1/add-numbers-v1/index.ts
@@ -0,0 +1,45 @@
+import { Logger } from "@aws-lambda-powertools/logger";
+import { Tracer } from "@aws-lambda-powertools/tracer";
+import type { LambdaInterface } from "@aws-lambda-powertools/commons/types";
+import {
+  APIGatewayProxyEvent,
+  APIGatewayProxyResult,
+  Context,
+} from "aws-lambda";
+
+const logger = new Logger();
+const tracer = new Tracer();
+
+class Lambda implements LambdaInterface {
+  @logger.injectLambdaContext({ logEvent: true })
+  @tracer.captureLambdaHandler()
+  public async handler(
+    event: APIGatewayProxyEvent,
+    _context: Context
+  ): Promise<APIGatewayProxyResult> {
+    var body = JSON.parse(event.body ?? "");
+
+    const num1 = body.num1;
+    const num2 = body.num2;
+
+    logger.info(
+      `--- SumRequest received --- num1: ${num1} --- num2: ${num2} ---`
+    );
+
+    const sumResult = num1 + num2;
+
+    logger.debug(`--- Calculation result: ${sumResult} ---`);
+
+    const apiResponse = {
+      result: sumResult,
+    };
+
+    return {
+      statusCode: 200,
+      body: JSON.stringify(apiResponse),
+    };
+  }
+}
+
+const addNumbersV1 = new Lambda();
+export const handler = addNumbersV1.handler.bind(addNumbersV1);
diff --git a/lambdas/v2/add-numbers-v2/index.ts b/lambdas/v2/add-numbers-v2/index.ts
@@ -0,0 +1,66 @@
+import { Logger } from "@aws-lambda-powertools/logger";
+import { parser } from "@aws-lambda-powertools/parser";
+import { Tracer } from "@aws-lambda-powertools/tracer";
+import type { LambdaInterface } from "@aws-lambda-powertools/commons/types";
+import { APIGatewayProxyResult, Context } from "aws-lambda";
+import { z } from "zod";
+import { ApiGatewayEnvelope } from "@aws-lambda-powertools/parser/envelopes";
+import { ParsedResult } from "@aws-lambda-powertools/parser/types";
+
+const logger = new Logger();
+const tracer = new Tracer();
+
+const sumRequestSchema = z.object({
+  num1: z.number(),
+  num2: z.number(),
+});
+
+type SumRequest = z.infer<typeof sumRequestSchema>;
+
+class Lambda implements LambdaInterface {
+  @logger.injectLambdaContext({ logEvent: true })
+  @tracer.captureLambdaHandler()
+  @parser({
+    schema: sumRequestSchema,
+    envelope: ApiGatewayEnvelope,
+    safeParse: true,
+  })
+  public async handler(
+    event: ParsedResult<SumRequest>,
+    _context: Context
+  ): Promise<APIGatewayProxyResult> {
+    if (event.success) {
+      var validatedEvent = event.data as SumRequest;
+
+      const num1 = validatedEvent.num1;
+      const num2 = validatedEvent.num2;
+
+      logger.info(
+        `--- SumRequest received --- num1: ${num1} --- num2: ${num2} ---`
+      );
+
+      const sumResult = num1 + num2;
+
+      logger.debug(`--- Calculation result: ${sumResult} ---`);
+
+      const apiResponse = {
+        result: sumResult,
+      };
+
+      return {
+        statusCode: 200,
+        body: JSON.stringify(apiResponse),
+      };
+    } else {
+      logger.error(`--- Validation Error --- ${event.error.message} ---`);
+
+      return {
+        statusCode: 400,
+        body: JSON.stringify({ error: event.error.message }),
+      };
+    }
+  }
+}
+
+const addNumbersV2 = new Lambda();
+export const handler = addNumbersV2.handler.bind(addNumbersV2);
diff --git a/lib/apiStackV1.ts b/lib/apiStackV1.ts
@@ -0,0 +1,50 @@
+import { CfnOutput, Stack, StackProps } from "aws-cdk-lib";
+import {
+  IDomainName,
+  LambdaRestApi,
+  MethodLoggingLevel,
+} from "aws-cdk-lib/aws-apigateway";
+import { Construct } from "constructs";
+import { NodejsFunctionWithRole } from "./constructs/nodejsFunctionWithRole";
+import path = require("path");
+import { CfnApiMapping } from "aws-cdk-lib/aws-apigatewayv2";
+
+export interface ApiStackV1StackProps extends StackProps {
+  customDomainName: IDomainName;
+}
+
+export class ApiStackV1 extends Stack {
+  lambdaRestApi: LambdaRestApi;
+
+  constructor(scope: Construct, id: string, props: ApiStackV1StackProps) {
+    super(scope, id);
+
+    const addNumbersV1 = new NodejsFunctionWithRole(this, "AddNumbersV1", {
+      entry: `${path.resolve(__dirname)}/../lambdas/v1/add-numbers-v1/index.ts`,
+      environment: {},
+    });
+
+    this.lambdaRestApi = new LambdaRestApi(this, "LambdaRestApiV1", {
+      handler: addNumbersV1.function,
+      deployOptions: {
+        stageName: "api",
+        tracingEnabled: true,
+        loggingLevel: MethodLoggingLevel.INFO,
+      },
+      proxy: true,
+    });
+
+    var apiMapping = new CfnApiMapping(this, "ApiMapping", {
+      apiId: this.lambdaRestApi.restApiId,
+      domainName: props.customDomainName.domainName,
+      stage: "api",
+      apiMappingKey: "api/v1",
+    });
+
+    apiMapping.node.addDependency(this.lambdaRestApi);
+
+    new CfnOutput(this, "ApiV1URL", {
+      value: `https://${this.lambdaRestApi.url}`,
+    });
+  }
+}
diff --git a/lib/apiStackV2.ts b/lib/apiStackV2.ts
@@ -0,0 +1,50 @@
+import { CfnOutput, Stack, StackProps } from "aws-cdk-lib";
+import {
+  IDomainName,
+  LambdaRestApi,
+  MethodLoggingLevel,
+} from "aws-cdk-lib/aws-apigateway";
+import { Construct } from "constructs";
+import { NodejsFunctionWithRole } from "./constructs/nodejsFunctionWithRole";
+import path = require("path");
+import { CfnApiMapping } from "aws-cdk-lib/aws-apigatewayv2";
+
+export interface ApiStackV2StackProps extends StackProps {
+  customDomainName: IDomainName;
+}
+
+export class ApiStackV2 extends Stack {
+  lambdaRestApi: LambdaRestApi;
+
+  constructor(scope: Construct, id: string, props: ApiStackV2StackProps) {
+    super(scope, id);
+
+    const addNumbersV2 = new NodejsFunctionWithRole(this, "AddNumbersV2", {
+      entry: `${path.resolve(__dirname)}/../lambdas/v2/add-numbers-v2/index.ts`,
+      environment: {},
+    });
+
+    this.lambdaRestApi = new LambdaRestApi(this, "LambdaRestApiV2", {
+      handler: addNumbersV2.function,
+      deployOptions: {
+        stageName: "api",
+        tracingEnabled: true,
+        loggingLevel: MethodLoggingLevel.INFO,
+      },
+      proxy: true,
+    });
+
+    var apiMapping = new CfnApiMapping(this, "ApiMapping", {
+      apiId: this.lambdaRestApi.restApiId,
+      domainName: props.customDomainName.domainName,
+      stage: "api",
+      apiMappingKey: "api/v2",
+    });
+
+    apiMapping.node.addDependency(this.lambdaRestApi);
+
+    new CfnOutput(this, "ApiV2URL", {
+      value: `https://${this.lambdaRestApi.url}`,
+    });
+  }
+}
diff --git a/lib/constructs/nodejsFunctionWithRole.ts b/lib/constructs/nodejsFunctionWithRole.ts
diff --git a/lib/customDomainRouterStack.ts b/lib/customDomainRouterStack.ts
diff --git a/package-lock.json b/package-lock.json
diff --git a/package.json b/package.json
diff --git a/tsconfig.json b/tsconfig.json

-Original file line number
+Diff line change
 +import { Aws, Duration } from "aws-cdk-lib";
 +import {
 +  Effect,
 +  IRole,
 +  ManagedPolicy,
 +  PolicyStatement,
 +  Role,
 +  ServicePrincipal,
 +} from "aws-cdk-lib/aws-iam";
 +import {
 +  IFunction,
 +  Runtime,
 +  Tracing,
 +  Architecture,
 +  LayerVersion,
 +} from "aws-cdk-lib/aws-lambda";
 +import { NodejsFunction } from "aws-cdk-lib/aws-lambda-nodejs";
 +import { Construct } from "constructs";
++
 +export interface NodejsFunctionWithRoleProps {
 +  entry: string;
 +  environment?: { [key: string]: string };
 +  timeout?: Duration;
 +  memorySize?: number;
 +  retryAttempts?: number;
 +}
++
 +export class NodejsFunctionWithRole extends Construct {
 +  role: IRole;
 +  function: IFunction;
++
 +  constructor(
 +    scope: Construct,
 +    id: string,
 +    props: NodejsFunctionWithRoleProps
 +  ) {
 +    super(scope, id);
++
 +    this.role = new Role(this, "Role", {
 +      assumedBy: new ServicePrincipal("lambda.amazonaws.com"),
 +    });
++
 +    // Add Cloudwatch Logging Permissions
 +    this.role.addManagedPolicy(
 +      new ManagedPolicy(this, "FunctionBasePolicy", {
 +        statements: [
 +          new PolicyStatement({
 +            sid: "AllowCloudWatchLogs",
 +            effect: Effect.ALLOW,
 +            resources: ["*"],
 +            actions: [
 +              "logs:CreateLogGroup",
 +              "logs:CreateLogStream",
 +              "logs:PutLogEvents",
 +            ],
 +          }),
 +          new PolicyStatement({
 +            sid: "AllowXRayAccess",
 +            effect: Effect.ALLOW,
 +            actions: [
 +              "xray:PutTraceSegments",
 +              "xray:PutTelemetryRecords",
 +              "xray:GetSamplingRules",
 +              "xray:GetSamplingTargets",
 +              "xray:GetSamplingStatisticSummaries",
 +            ],
 +            resources: ["*"],
 +          }),
 +        ],
 +      })
 +    );
++
 +    this.function = new NodejsFunction(this, "Function", {
 +      entry: props.entry,
 +      runtime: Runtime.NODEJS_20_X,
 +      architecture: Architecture.X86_64,
 +      role: this.role,
 +      tracing: Tracing.ACTIVE,
 +      timeout: props.timeout ?? Duration.seconds(4),
 +      memorySize: props.memorySize ?? 128,
 +      environment: {
 +        POWERTOOLS_SERVICE_NAME: id,
 +        POWERTOOLS_TRACER_CAPTURE_HTTPS_REQUESTS: "true",
 +        POWERTOOLS_LOGGER_LOG_EVENT: "true",
 +        LOG_LEVEL: "INFO",
 +        ...props.environment,
 +      },
 +      layers: [
 +        LayerVersion.fromLayerVersionArn(
 +          this,
 +          "PowerToolsLayer",
 +          `arn:aws:lambda:${Aws.REGION}:094274105915:layer:AWSLambdaPowertoolsTypeScriptV2:10`
 +        ),
 +      ],
 +      bundling: {
 +        minify: true,
 +        // Exclude @aws-sdk v3 since it's included in the NODEJS_20 runtime
 +        // Powertools will be provided via a layer
 +        externalModules: [
 +          "@aws-sdk/*",
 +          "@aws-lambda-powertools/logger",
 +          "@aws-lambda-powertools/tracer",
 +        ],
 +      },
 +    });
 +  }
 +}
-Original file line number
+Diff line change
 +import { CfnOutput, CfnParameter, Stack, StackProps } from "aws-cdk-lib";
 +import {
 +  DomainName,
 +  EndpointType,
 +  IDomainName,
 +} from "aws-cdk-lib/aws-apigateway";
 +import {
 +  Certificate,
 +  CertificateValidation,
 +} from "aws-cdk-lib/aws-certificatemanager";
 +import { Construct } from "constructs";
++
 +export class CustomDomainRouterStack extends Stack {
 +  apiGatewayCustomDomainName: IDomainName;
++
 +  constructor(scope: Construct, id: string, props?: StackProps) {
 +    super(scope, id, props);
++
 +    const prerequisiteDomainName = new CfnParameter(
 +      this,
 +      "PrerequisiteDomainName",
 +      {
 +        type: "String",
 +        description: "A domain name that you own.",
 +      }
 +    );
++
 +    const domainNameValue = `demo.api-gateway-custom-domain-versioning.${prerequisiteDomainName.valueAsString}`;
++
 +    const certificate = new Certificate(this, "Certificate", {
 +      domainName: domainNameValue,
 +      validation: CertificateValidation.fromDns(),
 +    });
++
 +    this.apiGatewayCustomDomainName = new DomainName(this, "DomainName", {
 +      certificate: certificate,
 +      endpointType: EndpointType.REGIONAL,
 +      domainName: domainNameValue,
 +      basePath: "api",
 +    });
++
 +    new CfnOutput(this, "ApiGatewayCustomDomainName", {
 +      value: `https://${domainNameValue}/api`,
 +    });
 +  }
 +}
-Original file line number
+Diff line change
 +{
 +  "name": "amazon-api-gateway-versioning-custom-domain",
 +  "version": "0.1.0",
 +  "bin": {
 +    "amazon-api-gateway-versioning-custom-domain": "bin/amazon-api-gateway-versioning-custom-domain.js"
 +  },
 +  "scripts": {
 +    "build": "tsc",
 +    "watch": "tsc -w",
 +    "test": "jest",
 +    "cdk": "cdk",
 +    "deploy-routing": "npx cdk deploy CustomDomainRouterStack --parameters PrerequisiteDomainName=coreyschnedl.com",
 +    "deploy-v1": "npx cdk -a \"npx ts-node --prefer-ts-exts bin/amazon-api-gateway-versioning-custom-domain.ts\" deploy ApiStackV1",
 +    "deploy-v2": "npx cdk -a \"npx ts-node --prefer-ts-exts bin/amazon-api-gateway-versioning-custom-domain.ts\" deploy ApiStackV2"
 +  },
 +  "devDependencies": {
 +    "@types/aws-lambda": "^8.10.141",
 +    "@types/jest": "^29.5.12",
 +    "@types/node": "20.14.9",
 +    "aws-cdk": "2.149.0",
 +    "jest": "^29.7.0",
 +    "ts-jest": "^29.1.5",
 +    "ts-node": "^10.9.2",
 +    "typescript": "~5.5.3"
 +  },
 +  "dependencies": {
 +    "@aws-lambda-powertools/logger": "^2.5.0",
 +    "@aws-lambda-powertools/parser": "^2.5.0-beta",
 +    "@aws-lambda-powertools/tracer": "^2.5.0",
 +    "@middy/core": "^5.4.5",
 +    "aws-cdk-lib": "2.149.0",
 +    "cdk-nag": "^2.28.163",
 +    "constructs": "^10.0.0",
 +    "source-map-support": "^0.5.21",
 +    "zod": "^3.23.8"
 +  }
 +}
-Original file line number
+Diff line change
 +{
 +  "compilerOptions": {
 +    "target": "ES2020",
 +    "module": "commonjs",
 +    "lib": [
 +      "es2020",
 +      "dom"
 +    ],
 +    "declaration": true,
 +    "strict": true,
 +    "noImplicitAny": true,
 +    "strictNullChecks": true,
 +    "noImplicitThis": true,
 +    "alwaysStrict": true,
 +    "noUnusedLocals": false,
 +    "noUnusedParameters": false,
 +    "noImplicitReturns": true,
 +    "noFallthroughCasesInSwitch": false,
 +    "inlineSourceMap": true,
 +    "inlineSources": true,
 +    "experimentalDecorators": true,
 +    "strictPropertyInitialization": false,
 +    "typeRoots": [
 +      "./node_modules/@types"
 +    ]
 +  },
 +  "exclude": [
 +    "node_modules",
 +    "cdk.out"
 +  ]
 +}