Skip to content

Instantly share code, notes, and snippets.

@martpet

martpet/template.json

Created July 20, 2022 14:29
Show Gist options

  • Select an option

    Learn more about clone URLs
  • Save martpet/d7a81eb29280b4f2065fe26912544db0 to your computer and use it in GitHub Desktop.

Select an option

Learn more about clone URLs
Save martpet/d7a81eb29280b4f2065fe26912544db0 to your computer and use it in GitHub Desktop.
Download ZIP
Cfn template
Raw
template.json
{
"Resources": {
"ZoneHostedZoneB23BB523": {
"Type": "AWS::Route53::HostedZone",
"Properties": {
"Name": "martin.dev.trip.pictures."
},
"Metadata": {
"aws:cdk:path": "TripPics/Zone/HostedZone/Resource"
}
},
"ZoneZoneDelegationcrossaccountzonedelegationhandlerrolePolicy3DE652D3": {
"Type": "AWS::IAM::Policy",
"Properties": {
"PolicyDocument": {
"Statement": [
{
"Action": "sts:AssumeRole",
"Effect": "Allow",
"Resource": "arn:aws:iam::020463219829:role/DevAccountServiceRole"
}
],
"Version": "2012-10-17"
},
"PolicyName": "ZoneZoneDelegationcrossaccountzonedelegationhandlerrolePolicy3DE652D3",
"Roles": [
{
"Fn::Select": [
1,
{
"Fn::Split": [
"/",
{
"Fn::Select": [
5,
{
"Fn::Split": [
":",
{
"Fn::GetAtt": [
"CustomCrossAccountZoneDelegationCustomResourceProviderRoleED64687B",
"Arn"
]
}
]
}
]
}
]
}
]
}
]
},
"Metadata": {
"aws:cdk:path": "TripPics/Zone/ZoneDelegation/cross-account-zone-delegation-handler-role/Policy/Resource"
}
},
"ZoneZoneDelegationCrossAccountZoneDelegationCustomResource63BBCC7C": {
"Type": "Custom::CrossAccountZoneDelegation",
"Properties": {
"ServiceToken": {
"Fn::GetAtt": [
"CustomCrossAccountZoneDelegationCustomResourceProviderHandler44A84265",
"Arn"
]
},
"AssumeRoleArn": "arn:aws:iam::020463219829:role/DevAccountServiceRole",
"ParentZoneId": "Z01228832S4EGTRIOWEIT",
"DelegatedZoneName": "martin.dev.trip.pictures",
"DelegatedZoneNameServers": {
"Fn::GetAtt": [
"ZoneHostedZoneB23BB523",
"NameServers"
]
},
"TTL": 172800
},
"DependsOn": [
"ZoneZoneDelegationcrossaccountzonedelegationhandlerrolePolicy3DE652D3"
],
"UpdateReplacePolicy": "Delete",
"DeletionPolicy": "Delete",
"Metadata": {
"aws:cdk:path": "TripPics/Zone/ZoneDelegation/CrossAccountZoneDelegationCustomResource/Default"
}
},
"ZoneHealthChecksHealthCheck3314119B": {
"Type": "AWS::Route53::HealthCheck",
"Properties": {
"HealthCheckConfig": {
"FailureThreshold": 3,
"FullyQualifiedDomainName": "martin.dev.trip.pictures",
"RequestInterval": 30,
"Type": "HTTPS"
}
},
"Metadata": {
"aws:cdk:path": "TripPics/Zone/HealthChecks/HealthCheck"
}
},
"ZoneHealthChecksTopichandlerServiceRole27F73FC9": {
"Type": "AWS::IAM::Role",
"Properties": {
"AssumeRolePolicyDocument": {
"Statement": [
{
"Action": "sts:AssumeRole",
"Effect": "Allow",
"Principal": {
"Service": "lambda.amazonaws.com"
}
}
],
"Version": "2012-10-17"
},
"ManagedPolicyArns": [
{
"Fn::Join": [
"",
[
"arn:",
{
"Ref": "AWS::Partition"
},
":iam::aws:policy/service-role/AWSLambdaBasicExecutionRole"
]
]
}
]
},
"Metadata": {
"aws:cdk:path": "TripPics/Zone/HealthChecks/Topic/handler/ServiceRole/Resource"
}
},
"ZoneHealthChecksTopichandlerServiceRoleDefaultPolicyA7C32FE7": {
"Type": "AWS::IAM::Policy",
"Properties": {
"PolicyDocument": {
"Statement": [
{
"Action": [
"sns:CreateTopic",
"sns:DeleteTopic",
"sns:Subscribe"
],
"Effect": "Allow",
"Resource": "*"
}
],
"Version": "2012-10-17"
},
"PolicyName": "ZoneHealthChecksTopichandlerServiceRoleDefaultPolicyA7C32FE7",
"Roles": [
{
"Ref": "ZoneHealthChecksTopichandlerServiceRole27F73FC9"
}
]
},
"Metadata": {
"aws:cdk:path": "TripPics/Zone/HealthChecks/Topic/handler/ServiceRole/DefaultPolicy/Resource"
}
},
"ZoneHealthChecksTopichandler53EEC40B": {
"Type": "AWS::Lambda::Function",
"Properties": {
"Code": {
"S3Bucket": {
"Fn::Sub": "cdk-hnb659fds-assets-${AWS::AccountId}-${AWS::Region}"
},
"S3Key": "845ff5241445dd12f3038b8167d37970247b21e059af2d7b7f5318f90961ec04.zip"
},
"Role": {
"Fn::GetAtt": [
"ZoneHealthChecksTopichandlerServiceRole27F73FC9",
"Arn"
]
},
"Environment": {
"Variables": {
"AWS_NODEJS_CONNECTION_REUSE_ENABLED": "1"
}
},
"Handler": "index.handler",
"Runtime": "nodejs14.x"
},
"DependsOn": [
"ZoneHealthChecksTopichandlerServiceRoleDefaultPolicyA7C32FE7",
"ZoneHealthChecksTopichandlerServiceRole27F73FC9"
],
"Metadata": {
"aws:cdk:path": "TripPics/Zone/HealthChecks/Topic/handler/Resource",
"aws:asset:path": "asset.845ff5241445dd12f3038b8167d37970247b21e059af2d7b7f5318f90961ec04",
"aws:asset:is-bundled": true,
"aws:asset:property": "Code"
}
},
"ZoneHealthChecksTopicProviderframeworkonEventServiceRole6E7C2F68": {
"Type": "AWS::IAM::Role",
"Properties": {
"AssumeRolePolicyDocument": {
"Statement": [
{
"Action": "sts:AssumeRole",
"Effect": "Allow",
"Principal": {
"Service": "lambda.amazonaws.com"
}
}
],
"Version": "2012-10-17"
},
"ManagedPolicyArns": [
{
"Fn::Join": [
"",
[
"arn:",
{
"Ref": "AWS::Partition"
},
":iam::aws:policy/service-role/AWSLambdaBasicExecutionRole"
]
]
}
]
},
"Metadata": {
"aws:cdk:path": "TripPics/Zone/HealthChecks/Topic/Provider/framework-onEvent/ServiceRole/Resource"
}
},
"ZoneHealthChecksTopicProviderframeworkonEventServiceRoleDefaultPolicyA394011A": {
"Type": "AWS::IAM::Policy",
"Properties": {
"PolicyDocument": {
"Statement": [
{
"Action": "lambda:InvokeFunction",
"Effect": "Allow",
"Resource": [
{
"Fn::GetAtt": [
"ZoneHealthChecksTopichandler53EEC40B",
"Arn"
]
},
{
"Fn::Join": [
"",
[
{
"Fn::GetAtt": [
"ZoneHealthChecksTopichandler53EEC40B",
"Arn"
]
},
":*"
]
]
}
]
}
],
"Version": "2012-10-17"
},
"PolicyName": "ZoneHealthChecksTopicProviderframeworkonEventServiceRoleDefaultPolicyA394011A",
"Roles": [
{
"Ref": "ZoneHealthChecksTopicProviderframeworkonEventServiceRole6E7C2F68"
}
]
},
"Metadata": {
"aws:cdk:path": "TripPics/Zone/HealthChecks/Topic/Provider/framework-onEvent/ServiceRole/DefaultPolicy/Resource"
}
},
"ZoneHealthChecksTopicProviderframeworkonEvent6EB695C5": {
"Type": "AWS::Lambda::Function",
"Properties": {
"Code": {
"S3Bucket": {
"Fn::Sub": "cdk-hnb659fds-assets-${AWS::AccountId}-${AWS::Region}"
},
"S3Key": "e7c95e1a12d903d913ebdd526c735f1ac58b2024882a5562110221fe685ebe85.zip"
},
"Role": {
"Fn::GetAtt": [
"ZoneHealthChecksTopicProviderframeworkonEventServiceRole6E7C2F68",
"Arn"
]
},
"Description": "AWS CDK resource provider framework - onEvent (TripPics/Zone/HealthChecks/Topic/Provider)",
"Environment": {
"Variables": {
"USER_ON_EVENT_FUNCTION_ARN": {
"Fn::GetAtt": [
"ZoneHealthChecksTopichandler53EEC40B",
"Arn"
]
}
}
},
"Handler": "framework.onEvent",
"Runtime": "nodejs14.x",
"Timeout": 900
},
"DependsOn": [
"ZoneHealthChecksTopicProviderframeworkonEventServiceRoleDefaultPolicyA394011A",
"ZoneHealthChecksTopicProviderframeworkonEventServiceRole6E7C2F68"
],
"Metadata": {
"aws:cdk:path": "TripPics/Zone/HealthChecks/Topic/Provider/framework-onEvent/Resource",
"aws:asset:path": "asset.e7c95e1a12d903d913ebdd526c735f1ac58b2024882a5562110221fe685ebe85",
"aws:asset:is-bundled": false,
"aws:asset:property": "Code"
}
},
"ZoneHealthChecksTopicCrossRegionSNSTopic3A93B182": {
"Type": "AWS::CloudFormation::CustomResource",
"Properties": {
"ServiceToken": {
"Fn::GetAtt": [
"ZoneHealthChecksTopicProviderframeworkonEvent6EB695C5",
"Arn"
]
},
"region": "us-east-1",
"createTopicInput": {
"Name": "TripPics-Route53HealthCheck"
}
},
"UpdateReplacePolicy": "Delete",
"DeletionPolicy": "Delete",
"Metadata": {
"aws:cdk:path": "TripPics/Zone/HealthChecks/Topic/CrossRegionSNSTopic/Default"
}
},
"ZoneHealthChecksAlarmhandlerServiceRoleBEDD7AC4": {
"Type": "AWS::IAM::Role",
"Properties": {
"AssumeRolePolicyDocument": {
"Statement": [
{
"Action": "sts:AssumeRole",
"Effect": "Allow",
"Principal": {
"Service": "lambda.amazonaws.com"
}
}
],
"Version": "2012-10-17"
},
"ManagedPolicyArns": [
{
"Fn::Join": [
"",
[
"arn:",
{
"Ref": "AWS::Partition"
},
":iam::aws:policy/service-role/AWSLambdaBasicExecutionRole"
]
]
}
]
},
"Metadata": {
"aws:cdk:path": "TripPics/Zone/HealthChecks/Alarm/handler/ServiceRole/Resource"
}
},
"ZoneHealthChecksAlarmhandlerServiceRoleDefaultPolicyC33B5FB4": {
"Type": "AWS::IAM::Policy",
"Properties": {
"PolicyDocument": {
"Statement": [
{
"Action": [
"cloudwatch:DeleteAlarms",
"cloudwatch:PutMetricAlarm"
],
"Effect": "Allow",
"Resource": "*"
}
],
"Version": "2012-10-17"
},
"PolicyName": "ZoneHealthChecksAlarmhandlerServiceRoleDefaultPolicyC33B5FB4",
"Roles": [
{
"Ref": "ZoneHealthChecksAlarmhandlerServiceRoleBEDD7AC4"
}
]
},
"Metadata": {
"aws:cdk:path": "TripPics/Zone/HealthChecks/Alarm/handler/ServiceRole/DefaultPolicy/Resource"
}
},
"ZoneHealthChecksAlarmhandler7D2CD84A": {
"Type": "AWS::Lambda::Function",
"Properties": {
"Code": {
"S3Bucket": {
"Fn::Sub": "cdk-hnb659fds-assets-${AWS::AccountId}-${AWS::Region}"
},
"S3Key": "983f2f30c84d9dbf34e7f878b01003d293e31ca91404acc59689979fbd4460f4.zip"
},
"Role": {
"Fn::GetAtt": [
"ZoneHealthChecksAlarmhandlerServiceRoleBEDD7AC4",
"Arn"
]
},
"Environment": {
"Variables": {
"AWS_NODEJS_CONNECTION_REUSE_ENABLED": "1"
}
},
"Handler": "index.handler",
"Runtime": "nodejs14.x"
},
"DependsOn": [
"ZoneHealthChecksAlarmhandlerServiceRoleDefaultPolicyC33B5FB4",
"ZoneHealthChecksAlarmhandlerServiceRoleBEDD7AC4"
],
"Metadata": {
"aws:cdk:path": "TripPics/Zone/HealthChecks/Alarm/handler/Resource",
"aws:asset:path": "asset.983f2f30c84d9dbf34e7f878b01003d293e31ca91404acc59689979fbd4460f4",
"aws:asset:is-bundled": true,
"aws:asset:property": "Code"
}
},
"ZoneHealthChecksAlarmProviderframeworkonEventServiceRoleA14E480B": {
"Type": "AWS::IAM::Role",
"Properties": {
"AssumeRolePolicyDocument": {
"Statement": [
{
"Action": "sts:AssumeRole",
"Effect": "Allow",
"Principal": {
"Service": "lambda.amazonaws.com"
}
}
],
"Version": "2012-10-17"
},
"ManagedPolicyArns": [
{
"Fn::Join": [
"",
[
"arn:",
{
"Ref": "AWS::Partition"
},
":iam::aws:policy/service-role/AWSLambdaBasicExecutionRole"
]
]
}
]
},
"Metadata": {
"aws:cdk:path": "TripPics/Zone/HealthChecks/Alarm/Provider/framework-onEvent/ServiceRole/Resource"
}
},
"ZoneHealthChecksAlarmProviderframeworkonEventServiceRoleDefaultPolicy6FB2592A": {
"Type": "AWS::IAM::Policy",
"Properties": {
"PolicyDocument": {
"Statement": [
{
"Action": "lambda:InvokeFunction",
"Effect": "Allow",
"Resource": [
{
"Fn::GetAtt": [
"ZoneHealthChecksAlarmhandler7D2CD84A",
"Arn"
]
},
{
"Fn::Join": [
"",
[
{
"Fn::GetAtt": [
"ZoneHealthChecksAlarmhandler7D2CD84A",
"Arn"
]
},
":*"
]
]
}
]
}
],
"Version": "2012-10-17"
},
"PolicyName": "ZoneHealthChecksAlarmProviderframeworkonEventServiceRoleDefaultPolicy6FB2592A",
"Roles": [
{
"Ref": "ZoneHealthChecksAlarmProviderframeworkonEventServiceRoleA14E480B"
}
]
},
"Metadata": {
"aws:cdk:path": "TripPics/Zone/HealthChecks/Alarm/Provider/framework-onEvent/ServiceRole/DefaultPolicy/Resource"
}
},
"ZoneHealthChecksAlarmProviderframeworkonEventFA97170C": {
"Type": "AWS::Lambda::Function",
"Properties": {
"Code": {
"S3Bucket": {
"Fn::Sub": "cdk-hnb659fds-assets-${AWS::AccountId}-${AWS::Region}"
},
"S3Key": "e7c95e1a12d903d913ebdd526c735f1ac58b2024882a5562110221fe685ebe85.zip"
},
"Role": {
"Fn::GetAtt": [
"ZoneHealthChecksAlarmProviderframeworkonEventServiceRoleA14E480B",
"Arn"
]
},
"Description": "AWS CDK resource provider framework - onEvent (TripPics/Zone/HealthChecks/Alarm/Provider)",
"Environment": {
"Variables": {
"USER_ON_EVENT_FUNCTION_ARN": {
"Fn::GetAtt": [
"ZoneHealthChecksAlarmhandler7D2CD84A",
"Arn"
]
}
}
},
"Handler": "framework.onEvent",
"Runtime": "nodejs14.x",
"Timeout": 900
},
"DependsOn": [
"ZoneHealthChecksAlarmProviderframeworkonEventServiceRoleDefaultPolicy6FB2592A",
"ZoneHealthChecksAlarmProviderframeworkonEventServiceRoleA14E480B"
],
"Metadata": {
"aws:cdk:path": "TripPics/Zone/HealthChecks/Alarm/Provider/framework-onEvent/Resource",
"aws:asset:path": "asset.e7c95e1a12d903d913ebdd526c735f1ac58b2024882a5562110221fe685ebe85",
"aws:asset:is-bundled": false,
"aws:asset:property": "Code"
}
},
"ZoneHealthChecksAlarmCrossRegionAlarm166131C0": {
"Type": "AWS::CloudFormation::CustomResource",
"Properties": {
"ServiceToken": {
"Fn::GetAtt": [
"ZoneHealthChecksAlarmProviderframeworkonEventFA97170C",
"Arn"
]
},
"region": "us-east-1",
"putMetricAlarmInput": {
"AlarmName": "TripPics-Route53HealthCheck",
"Namespace": "AWS/Route53",
"MetricName": "HealthCheckStatus",
"Statistic": "Minimum",
"ComparisonOperator": "LessThanThreshold",
"Threshold": 1,
"Period": 60,
"EvaluationPeriods": 1,
"AlarmActions": [
{
"Fn::GetAtt": [
"ZoneHealthChecksTopicCrossRegionSNSTopic3A93B182",
"TopicArn"
]
}
],
"Dimensions": [
{
"Name": "HealthCheckId",
"Value": {
"Fn::GetAtt": [
"ZoneHealthChecksHealthCheck3314119B",
"HealthCheckId"
]
}
}
]
}
},
"UpdateReplacePolicy": "Delete",
"DeletionPolicy": "Delete",
"Metadata": {
"aws:cdk:path": "TripPics/Zone/HealthChecks/Alarm/CrossRegionAlarm/Default"
}
},
"ZoneCertificateCertificateRequestorFunctionServiceRole115C5E43": {
"Type": "AWS::IAM::Role",
"Properties": {
"AssumeRolePolicyDocument": {
"Statement": [
{
"Action": "sts:AssumeRole",
"Effect": "Allow",
"Principal": {
"Service": "lambda.amazonaws.com"
}
}
],
"Version": "2012-10-17"
},
"ManagedPolicyArns": [
{
"Fn::Join": [
"",
[
"arn:",
{
"Ref": "AWS::Partition"
},
":iam::aws:policy/service-role/AWSLambdaBasicExecutionRole"
]
]
}
]
},
"DependsOn": [
"ZoneHostedZoneB23BB523"
],
"Metadata": {
"aws:cdk:path": "TripPics/Zone/Certificate/CertificateRequestorFunction/ServiceRole/Resource"
}
},
"ZoneCertificateCertificateRequestorFunctionServiceRoleDefaultPolicy36ED9EA7": {
"Type": "AWS::IAM::Policy",
"Properties": {
"PolicyDocument": {
"Statement": [
{
"Action": [
"acm:AddTagsToCertificate",
"acm:DeleteCertificate",
"acm:DescribeCertificate",
"acm:RequestCertificate",
"route53:GetChange"
],
"Effect": "Allow",
"Resource": "*"
},
{
"Action": "route53:changeResourceRecordSets",
"Effect": "Allow",
"Resource": {
"Fn::Join": [
"",
[
"arn:",
{
"Ref": "AWS::Partition"
},
":route53:::hostedzone/",
{
"Ref": "ZoneHostedZoneB23BB523"
}
]
]
}
}
],
"Version": "2012-10-17"
},
"PolicyName": "ZoneCertificateCertificateRequestorFunctionServiceRoleDefaultPolicy36ED9EA7",
"Roles": [
{
"Ref": "ZoneCertificateCertificateRequestorFunctionServiceRole115C5E43"
}
]
},
"DependsOn": [
"ZoneHostedZoneB23BB523"
],
"Metadata": {
"aws:cdk:path": "TripPics/Zone/Certificate/CertificateRequestorFunction/ServiceRole/DefaultPolicy/Resource"
}
},
"ZoneCertificateCertificateRequestorFunction5DF3021B": {
"Type": "AWS::Lambda::Function",
"Properties": {
"Code": {
"S3Bucket": {
"Fn::Sub": "cdk-hnb659fds-assets-${AWS::AccountId}-${AWS::Region}"
},
"S3Key": "8ddf29ab619460567d3cda58de2ff1bf0f6e95d8822ff630ec58a4d52ed1fa67.zip"
},
"Role": {
"Fn::GetAtt": [
"ZoneCertificateCertificateRequestorFunctionServiceRole115C5E43",
"Arn"
]
},
"Handler": "index.certificateRequestHandler",
"Runtime": "nodejs14.x",
"Timeout": 900
},
"DependsOn": [
"ZoneCertificateCertificateRequestorFunctionServiceRoleDefaultPolicy36ED9EA7",
"ZoneCertificateCertificateRequestorFunctionServiceRole115C5E43",
"ZoneHostedZoneB23BB523"
],
"Metadata": {
"aws:cdk:path": "TripPics/Zone/Certificate/CertificateRequestorFunction/Resource",
"aws:asset:path": "asset.8ddf29ab619460567d3cda58de2ff1bf0f6e95d8822ff630ec58a4d52ed1fa67",
"aws:asset:is-bundled": false,
"aws:asset:property": "Code"
}
},
"ZoneCertificateCertificateRequestorResource1F2A0AC5": {
"Type": "AWS::CloudFormation::CustomResource",
"Properties": {
"ServiceToken": {
"Fn::GetAtt": [
"ZoneCertificateCertificateRequestorFunction5DF3021B",
"Arn"
]
},
"DomainName": "martin.dev.trip.pictures",
"SubjectAlternativeNames": [
"*.martin.dev.trip.pictures"
],
"HostedZoneId": {
"Ref": "ZoneHostedZoneB23BB523"
},
"Region": "us-east-1",
"CleanupRecords": "true"
},
"DependsOn": [
"ZoneHostedZoneB23BB523"
],
"UpdateReplacePolicy": "Delete",
"DeletionPolicy": "Delete",
"Metadata": {
"aws:cdk:path": "TripPics/Zone/Certificate/CertificateRequestorResource/Default"
}
},
"CustomCrossAccountZoneDelegationCustomResourceProviderRoleED64687B": {
"Type": "AWS::IAM::Role",
"Properties": {
"AssumeRolePolicyDocument": {
"Version": "2012-10-17",
"Statement": [
{
"Action": "sts:AssumeRole",
"Effect": "Allow",
"Principal": {
"Service": "lambda.amazonaws.com"
}
}
]
},
"ManagedPolicyArns": [
{
"Fn::Sub": "arn:${AWS::Partition}:iam::aws:policy/service-role/AWSLambdaBasicExecutionRole"
}
]
},
"Metadata": {
"aws:cdk:path": "TripPics/Custom::CrossAccountZoneDelegationCustomResourceProvider/Role"
}
},
"CustomCrossAccountZoneDelegationCustomResourceProviderHandler44A84265": {
"Type": "AWS::Lambda::Function",
"Properties": {
"Code": {
"S3Bucket": {
"Fn::Sub": "cdk-hnb659fds-assets-${AWS::AccountId}-${AWS::Region}"
},
"S3Key": "1bc4eea1c4c9078ab0a0c81fcb048c3930cb9bb86672dcfe49e9220f33e69f64.zip"
},
"Timeout": 900,
"MemorySize": 128,
"Handler": "__entrypoint__.handler",
"Role": {
"Fn::GetAtt": [
"CustomCrossAccountZoneDelegationCustomResourceProviderRoleED64687B",
"Arn"
]
},
"Runtime": "nodejs14.x"
},
"DependsOn": [
"CustomCrossAccountZoneDelegationCustomResourceProviderRoleED64687B"
],
"Metadata": {
"aws:cdk:path": "TripPics/Custom::CrossAccountZoneDelegationCustomResourceProvider/Handler",
"aws:asset:path": "asset.1bc4eea1c4c9078ab0a0c81fcb048c3930cb9bb86672dcfe49e9220f33e69f64",
"aws:asset:property": "Code"
}
},
"WebDistributionWebBucketFDD181A9": {
"Type": "AWS::S3::Bucket",
"Properties": {
"Tags": [
{
"Key": "aws-cdk:auto-delete-objects",
"Value": "true"
},
{
"Key": "aws-cdk:cr-owned:056f55d9",
"Value": "true"
}
]
},
"UpdateReplacePolicy": "Delete",
"DeletionPolicy": "Delete",
"Metadata": {
"aws:cdk:path": "TripPics/WebDistribution/WebBucket/Resource"
}
},
"WebDistributionWebBucketPolicy8B20CCA4": {
"Type": "AWS::S3::BucketPolicy",
"Properties": {
"Bucket": {
"Ref": "WebDistributionWebBucketFDD181A9"
},
"PolicyDocument": {
"Statement": [
{
"Action": [
"s3:DeleteObject*",
"s3:GetBucket*",
"s3:List*"
],
"Effect": "Allow",
"Principal": {
"AWS": {
"Fn::GetAtt": [
"CustomS3AutoDeleteObjectsCustomResourceProviderRole3B1BD092",
"Arn"
]
}
},
"Resource": [
{
"Fn::GetAtt": [
"WebDistributionWebBucketFDD181A9",
"Arn"
]
},
{
"Fn::Join": [
"",
[
{
"Fn::GetAtt": [
"WebDistributionWebBucketFDD181A9",
"Arn"
]
},
"/*"
]
]
}
]
},
{
"Action": "s3:GetObject",
"Effect": "Allow",
"Principal": {
"CanonicalUser": {
"Fn::GetAtt": [
"WebDistributionOrigin1S3OriginF25D5094",
"S3CanonicalUserId"
]
}
},
"Resource": {
"Fn::Join": [
"",
[
{
"Fn::GetAtt": [
"WebDistributionWebBucketFDD181A9",
"Arn"
]
},
"/*"
]
]
}
}
],
"Version": "2012-10-17"
}
},
"Metadata": {
"aws:cdk:path": "TripPics/WebDistribution/WebBucket/Policy/Resource"
}
},
"WebDistributionWebBucketAutoDeleteObjectsCustomResource26230F0B": {
"Type": "Custom::S3AutoDeleteObjects",
"Properties": {
"ServiceToken": {
"Fn::GetAtt": [
"CustomS3AutoDeleteObjectsCustomResourceProviderHandler9D90184F",
"Arn"
]
},
"BucketName": {
"Ref": "WebDistributionWebBucketFDD181A9"
}
},
"DependsOn": [
"WebDistributionWebBucketPolicy8B20CCA4"
],
"UpdateReplacePolicy": "Delete",
"DeletionPolicy": "Delete",
"Metadata": {
"aws:cdk:path": "TripPics/WebDistribution/WebBucket/AutoDeleteObjectsCustomResource/Default"
}
},
"WebDistributionCachePolicy1C1DF238": {
"Type": "AWS::CloudFront::CachePolicy",
"Properties": {
"CachePolicyConfig": {
"DefaultTTL": 31536000,
"MaxTTL": 31536000,
"MinTTL": 31536000,
"Name": {
"Fn::Join": [
"",
[
"TripPicsWebDistributionCachePolicy67B4E9E2-",
{
"Ref": "AWS::Region"
}
]
]
},
"ParametersInCacheKeyAndForwardedToOrigin": {
"CookiesConfig": {
"CookieBehavior": "none"
},
"EnableAcceptEncodingBrotli": false,
"EnableAcceptEncodingGzip": false,
"HeadersConfig": {
"HeaderBehavior": "none"
},
"QueryStringsConfig": {
"QueryStringBehavior": "none"
}
}
}
},
"Metadata": {
"aws:cdk:path": "TripPics/WebDistribution/CachePolicy/Resource"
}
},
"WebDistributionOrigin1S3OriginF25D5094": {
"Type": "AWS::CloudFront::CloudFrontOriginAccessIdentity",
"Properties": {
"CloudFrontOriginAccessIdentityConfig": {
"Comment": "Identity for TripPicsWebDistributionOrigin11AAE62BC"
}
},
"Metadata": {
"aws:cdk:path": "TripPics/WebDistribution/Distribution/Origin1/S3Origin/Resource"
}
},
"WebDistributionLoggingBucketAE98FCD1": {
"Type": "AWS::S3::Bucket",
"Properties": {
"BucketEncryption": {
"ServerSideEncryptionConfiguration": [
{
"ServerSideEncryptionByDefault": {
"SSEAlgorithm": "AES256"
}
}
]
}
},
"UpdateReplacePolicy": "Retain",
"DeletionPolicy": "Retain",
"Metadata": {
"aws:cdk:path": "TripPics/WebDistribution/Distribution/LoggingBucket/Resource"
}
},
"WebDistributionE0AD6497": {
"Type": "AWS::CloudFront::Distribution",
"Properties": {
"DistributionConfig": {
"Aliases": [
"martin.dev.trip.pictures"
],
"CustomErrorResponses": [
{
"ErrorCode": 403,
"ResponseCode": 200,
"ResponsePagePath": "/index.html"
},
{
"ErrorCode": 404,
"ResponseCode": 200,
"ResponsePagePath": "/index.html"
}
],
"DefaultCacheBehavior": {
"CachePolicyId": {
"Ref": "WebDistributionCachePolicy1C1DF238"
},
"Compress": true,
"TargetOriginId": "TripPicsWebDistributionOrigin11AAE62BC",
"ViewerProtocolPolicy": "redirect-to-https"
},
"DefaultRootObject": "index.html",
"Enabled": true,
"HttpVersion": "http2",
"IPV6Enabled": true,
"Logging": {
"Bucket": {
"Fn::GetAtt": [
"WebDistributionLoggingBucketAE98FCD1",
"RegionalDomainName"
]
},
"IncludeCookies": true
},
"Origins": [
{
"DomainName": {
"Fn::GetAtt": [
"WebDistributionWebBucketFDD181A9",
"RegionalDomainName"
]
},
"Id": "TripPicsWebDistributionOrigin11AAE62BC",
"S3OriginConfig": {
"OriginAccessIdentity": {
"Fn::Join": [
"",
[
"origin-access-identity/cloudfront/",
{
"Ref": "WebDistributionOrigin1S3OriginF25D5094"
}
]
]
}
}
}
],
"ViewerCertificate": {
"AcmCertificateArn": {
"Fn::GetAtt": [
"ZoneCertificateCertificateRequestorResource1F2A0AC5",
"Arn"
]
},
"MinimumProtocolVersion": "TLSv1.2_2021",
"SslSupportMethod": "sni-only"
}
}
},
"Metadata": {
"aws:cdk:path": "TripPics/WebDistribution/Distribution/Resource"
}
},
"WebDistributionAlias35CFAF43": {
"Type": "AWS::Route53::RecordSet",
"Properties": {
"Name": "martin.dev.trip.pictures.",
"Type": "A",
"AliasTarget": {
"DNSName": {
"Fn::GetAtt": [
"WebDistributionE0AD6497",
"DomainName"
]
},
"HostedZoneId": {
"Fn::FindInMap": [
"AWSCloudFrontPartitionHostedZoneIdMap",
{
"Ref": "AWS::Partition"
},
"zoneId"
]
}
},
"HostedZoneId": {
"Ref": "ZoneHostedZoneB23BB523"
}
},
"Metadata": {
"aws:cdk:path": "TripPics/WebDistribution/Alias/Resource"
}
},
"CustomS3AutoDeleteObjectsCustomResourceProviderRole3B1BD092": {
"Type": "AWS::IAM::Role",
"Properties": {
"AssumeRolePolicyDocument": {
"Version": "2012-10-17",
"Statement": [
{
"Action": "sts:AssumeRole",
"Effect": "Allow",
"Principal": {
"Service": "lambda.amazonaws.com"
}
}
]
},
"ManagedPolicyArns": [
{
"Fn::Sub": "arn:${AWS::Partition}:iam::aws:policy/service-role/AWSLambdaBasicExecutionRole"
}
]
},
"Metadata": {
"aws:cdk:path": "TripPics/Custom::S3AutoDeleteObjectsCustomResourceProvider/Role"
}
},
"CustomS3AutoDeleteObjectsCustomResourceProviderHandler9D90184F": {
"Type": "AWS::Lambda::Function",
"Properties": {
"Code": {
"S3Bucket": {
"Fn::Sub": "cdk-hnb659fds-assets-${AWS::AccountId}-${AWS::Region}"
},
"S3Key": "ac9d3642b3e0626d3a6d8c4f5f56507a478c329febdf1dcfbbf7c7db9812cd30.zip"
},
"Timeout": 900,
"MemorySize": 128,
"Handler": "__entrypoint__.handler",
"Role": {
"Fn::GetAtt": [
"CustomS3AutoDeleteObjectsCustomResourceProviderRole3B1BD092",
"Arn"
]
},
"Runtime": "nodejs14.x",
"Description": {
"Fn::Join": [
"",
[
"Lambda function for auto-deleting objects in ",
{
"Ref": "WebDistributionWebBucketFDD181A9"
},
" S3 bucket."
]
]
}
},
"DependsOn": [
"CustomS3AutoDeleteObjectsCustomResourceProviderRole3B1BD092"
],
"Metadata": {
"aws:cdk:path": "TripPics/Custom::S3AutoDeleteObjectsCustomResourceProvider/Handler",
"aws:asset:path": "asset.ac9d3642b3e0626d3a6d8c4f5f56507a478c329febdf1dcfbbf7c7db9812cd30",
"aws:asset:property": "Code"
}
},
"DbUsersTable904AA81C": {
"Type": "AWS::DynamoDB::Table",
"Properties": {
"KeySchema": [
{
"AttributeName": "username",
"KeyType": "HASH"
}
],
"AttributeDefinitions": [
{
"AttributeName": "username",
"AttributeType": "S"
}
],
"BillingMode": "PAY_PER_REQUEST"
},
"UpdateReplacePolicy": "Delete",
"DeletionPolicy": "Delete",
"Metadata": {
"aws:cdk:path": "TripPics/Db/UsersTable/Resource"
}
},
"CognitoOAuthSecretshandlerServiceRole3EBD2B30": {
"Type": "AWS::IAM::Role",
"Properties": {
"AssumeRolePolicyDocument": {
"Statement": [
{
"Action": "sts:AssumeRole",
"Effect": "Allow",
"Principal": {
"Service": "lambda.amazonaws.com"
}
}
],
"Version": "2012-10-17"
},
"ManagedPolicyArns": [
{
"Fn::Join": [
"",
[
"arn:",
{
"Ref": "AWS::Partition"
},
":iam::aws:policy/service-role/AWSLambdaBasicExecutionRole"
]
]
}
]
},
"DependsOn": [
"WebDistributionAlias35CFAF43",
"WebDistributionCachePolicy1C1DF238",
"WebDistributionLoggingBucketAE98FCD1",
"WebDistributionOrigin1S3OriginF25D5094",
"WebDistributionE0AD6497",
"WebDistributionWebBucketAutoDeleteObjectsCustomResource26230F0B",
"WebDistributionWebBucketPolicy8B20CCA4",
"WebDistributionWebBucketFDD181A9"
],
"Metadata": {
"aws:cdk:path": "TripPics/Cognito/OAuthSecrets/handler/ServiceRole/Resource"
}
},
"CognitoOAuthSecretshandlerServiceRoleDefaultPolicyCF544A3B": {
"Type": "AWS::IAM::Policy",
"Properties": {
"PolicyDocument": {
"Statement": [
{
"Action": "sts:AssumeRole",
"Effect": "Allow",
"Resource": "arn:aws:iam::020463219829:role/DevAccountServiceRole"
}
],
"Version": "2012-10-17"
},
"PolicyName": "CognitoOAuthSecretshandlerServiceRoleDefaultPolicyCF544A3B",
"Roles": [
{
"Ref": "CognitoOAuthSecretshandlerServiceRole3EBD2B30"
}
]
},
"DependsOn": [
"WebDistributionAlias35CFAF43",
"WebDistributionCachePolicy1C1DF238",
"WebDistributionLoggingBucketAE98FCD1",
"WebDistributionOrigin1S3OriginF25D5094",
"WebDistributionE0AD6497",
"WebDistributionWebBucketAutoDeleteObjectsCustomResource26230F0B",
"WebDistributionWebBucketPolicy8B20CCA4",
"WebDistributionWebBucketFDD181A9"
],
"Metadata": {
"aws:cdk:path": "TripPics/Cognito/OAuthSecrets/handler/ServiceRole/DefaultPolicy/Resource"
}
},
"CognitoOAuthSecretshandler77E1E2C3": {
"Type": "AWS::Lambda::Function",
"Properties": {
"Code": {
"S3Bucket": {
"Fn::Sub": "cdk-hnb659fds-assets-${AWS::AccountId}-${AWS::Region}"
},
"S3Key": "b7706dd61a2f7654770f019d1ad2ef5e06dd064c3e9305fb1f6f95a1a151e910.zip"
},
"Role": {
"Fn::GetAtt": [
"CognitoOAuthSecretshandlerServiceRole3EBD2B30",
"Arn"
]
},
"Environment": {
"Variables": {
"AWS_NODEJS_CONNECTION_REUSE_ENABLED": "1"
}
},
"Handler": "index.handler",
"Runtime": "nodejs14.x"
},
"DependsOn": [
"CognitoOAuthSecretshandlerServiceRoleDefaultPolicyCF544A3B",
"CognitoOAuthSecretshandlerServiceRole3EBD2B30",
"WebDistributionAlias35CFAF43",
"WebDistributionCachePolicy1C1DF238",
"WebDistributionLoggingBucketAE98FCD1",
"WebDistributionOrigin1S3OriginF25D5094",
"WebDistributionE0AD6497",
"WebDistributionWebBucketAutoDeleteObjectsCustomResource26230F0B",
"WebDistributionWebBucketPolicy8B20CCA4",
"WebDistributionWebBucketFDD181A9"
],
"Metadata": {
"aws:cdk:path": "TripPics/Cognito/OAuthSecrets/handler/Resource",
"aws:asset:path": "asset.b7706dd61a2f7654770f019d1ad2ef5e06dd064c3e9305fb1f6f95a1a151e910",
"aws:asset:is-bundled": true,
"aws:asset:property": "Code"
}
},
"CognitoOAuthSecretsProviderframeworkonEventServiceRole8071E5FB": {
"Type": "AWS::IAM::Role",
"Properties": {
"AssumeRolePolicyDocument": {
"Statement": [
{
"Action": "sts:AssumeRole",
"Effect": "Allow",
"Principal": {
"Service": "lambda.amazonaws.com"
}
}
],
"Version": "2012-10-17"
},
"ManagedPolicyArns": [
{
"Fn::Join": [
"",
[
"arn:",
{
"Ref": "AWS::Partition"
},
":iam::aws:policy/service-role/AWSLambdaBasicExecutionRole"
]
]
}
]
},
"DependsOn": [
"WebDistributionAlias35CFAF43",
"WebDistributionCachePolicy1C1DF238",
"WebDistributionLoggingBucketAE98FCD1",
"WebDistributionOrigin1S3OriginF25D5094",
"WebDistributionE0AD6497",
"WebDistributionWebBucketAutoDeleteObjectsCustomResource26230F0B",
"WebDistributionWebBucketPolicy8B20CCA4",
"WebDistributionWebBucketFDD181A9"
],
"Metadata": {
"aws:cdk:path": "TripPics/Cognito/OAuthSecrets/Provider/framework-onEvent/ServiceRole/Resource"
}
},
"CognitoOAuthSecretsProviderframeworkonEventServiceRoleDefaultPolicy0A0361D8": {
"Type": "AWS::IAM::Policy",
"Properties": {
"PolicyDocument": {
"Statement": [
{
"Action": "lambda:InvokeFunction",
"Effect": "Allow",
"Resource": [
{
"Fn::GetAtt": [
"CognitoOAuthSecretshandler77E1E2C3",
"Arn"
]
},
{
"Fn::Join": [
"",
[
{
"Fn::GetAtt": [
"CognitoOAuthSecretshandler77E1E2C3",
"Arn"
]
},
":*"
]
]
}
]
}
],
"Version": "2012-10-17"
},
"PolicyName": "CognitoOAuthSecretsProviderframeworkonEventServiceRoleDefaultPolicy0A0361D8",
"Roles": [
{
"Ref": "CognitoOAuthSecretsProviderframeworkonEventServiceRole8071E5FB"
}
]
},
"DependsOn": [
"WebDistributionAlias35CFAF43",
"WebDistributionCachePolicy1C1DF238",
"WebDistributionLoggingBucketAE98FCD1",
"WebDistributionOrigin1S3OriginF25D5094",
"WebDistributionE0AD6497",
"WebDistributionWebBucketAutoDeleteObjectsCustomResource26230F0B",
"WebDistributionWebBucketPolicy8B20CCA4",
"WebDistributionWebBucketFDD181A9"
],
"Metadata": {
"aws:cdk:path": "TripPics/Cognito/OAuthSecrets/Provider/framework-onEvent/ServiceRole/DefaultPolicy/Resource"
}
},
"CognitoOAuthSecretsProviderframeworkonEventA71094CC": {
"Type": "AWS::Lambda::Function",
"Properties": {
"Code": {
"S3Bucket": {
"Fn::Sub": "cdk-hnb659fds-assets-${AWS::AccountId}-${AWS::Region}"
},
"S3Key": "e7c95e1a12d903d913ebdd526c735f1ac58b2024882a5562110221fe685ebe85.zip"
},
"Role": {
"Fn::GetAtt": [
"CognitoOAuthSecretsProviderframeworkonEventServiceRole8071E5FB",
"Arn"
]
},
"Description": "AWS CDK resource provider framework - onEvent (TripPics/Cognito/OAuthSecrets/Provider)",
"Environment": {
"Variables": {
"USER_ON_EVENT_FUNCTION_ARN": {
"Fn::GetAtt": [
"CognitoOAuthSecretshandler77E1E2C3",
"Arn"
]
}
}
},
"Handler": "framework.onEvent",
"Runtime": "nodejs14.x",
"Timeout": 900
},
"DependsOn": [
"CognitoOAuthSecretsProviderframeworkonEventServiceRoleDefaultPolicy0A0361D8",
"CognitoOAuthSecretsProviderframeworkonEventServiceRole8071E5FB",
"WebDistributionAlias35CFAF43",
"WebDistributionCachePolicy1C1DF238",
"WebDistributionLoggingBucketAE98FCD1",
"WebDistributionOrigin1S3OriginF25D5094",
"WebDistributionE0AD6497",
"WebDistributionWebBucketAutoDeleteObjectsCustomResource26230F0B",
"WebDistributionWebBucketPolicy8B20CCA4",
"WebDistributionWebBucketFDD181A9"
],
"Metadata": {
"aws:cdk:path": "TripPics/Cognito/OAuthSecrets/Provider/framework-onEvent/Resource",
"aws:asset:path": "asset.e7c95e1a12d903d913ebdd526c735f1ac58b2024882a5562110221fe685ebe85",
"aws:asset:is-bundled": false,
"aws:asset:property": "Code"
}
},
"CognitoOAuthSecretsCrossAccountSSMCC343B4F": {
"Type": "AWS::CloudFormation::CustomResource",
"Properties": {
"ServiceToken": {
"Fn::GetAtt": [
"CognitoOAuthSecretsProviderframeworkonEventA71094CC",
"Arn"
]
},
"roleArn": "arn:aws:iam::020463219829:role/DevAccountServiceRole",
"getParametersInput": {
"Names": [
"/oauth/google/client-secret",
"/oauth/apple/key-secret"
],
"WithDecryption": true
}
},
"DependsOn": [
"WebDistributionAlias35CFAF43",
"WebDistributionCachePolicy1C1DF238",
"WebDistributionLoggingBucketAE98FCD1",
"WebDistributionOrigin1S3OriginF25D5094",
"WebDistributionE0AD6497",
"WebDistributionWebBucketAutoDeleteObjectsCustomResource26230F0B",
"WebDistributionWebBucketPolicy8B20CCA4",
"WebDistributionWebBucketFDD181A9"
],
"UpdateReplacePolicy": "Delete",
"DeletionPolicy": "Delete",
"Metadata": {
"aws:cdk:path": "TripPics/Cognito/OAuthSecrets/CrossAccountSSM/Default"
}
},
"CognitoPostConfirmLambdaServiceRoleF0AF468C": {
"Type": "AWS::IAM::Role",
"Properties": {
"AssumeRolePolicyDocument": {
"Statement": [
{
"Action": "sts:AssumeRole",
"Effect": "Allow",
"Principal": {
"Service": "lambda.amazonaws.com"
}
}
],
"Version": "2012-10-17"
},
"ManagedPolicyArns": [
{
"Fn::Join": [
"",
[
"arn:",
{
"Ref": "AWS::Partition"
},
":iam::aws:policy/service-role/AWSLambdaBasicExecutionRole"
]
]
}
]
},
"DependsOn": [
"WebDistributionAlias35CFAF43",
"WebDistributionCachePolicy1C1DF238",
"WebDistributionLoggingBucketAE98FCD1",
"WebDistributionOrigin1S3OriginF25D5094",
"WebDistributionE0AD6497",
"WebDistributionWebBucketAutoDeleteObjectsCustomResource26230F0B",
"WebDistributionWebBucketPolicy8B20CCA4",
"WebDistributionWebBucketFDD181A9"
],
"Metadata": {
"aws:cdk:path": "TripPics/Cognito/PostConfirmLambda/ServiceRole/Resource"
}
},
"CognitoPostConfirmLambdaServiceRoleDefaultPolicy8E31F12B": {
"Type": "AWS::IAM::Policy",
"Properties": {
"PolicyDocument": {
"Statement": [
{
"Action": [
"dynamodb:BatchGetItem",
"dynamodb:BatchWriteItem",
"dynamodb:ConditionCheckItem",
"dynamodb:DeleteItem",
"dynamodb:DescribeTable",
"dynamodb:GetItem",
"dynamodb:GetRecords",
"dynamodb:GetShardIterator",
"dynamodb:PutItem",
"dynamodb:Query",
"dynamodb:Scan",
"dynamodb:UpdateItem"
],
"Effect": "Allow",
"Resource": [
{
"Fn::GetAtt": [
"DbUsersTable904AA81C",
"Arn"
]
},
{
"Ref": "AWS::NoValue"
}
]
}
],
"Version": "2012-10-17"
},
"PolicyName": "CognitoPostConfirmLambdaServiceRoleDefaultPolicy8E31F12B",
"Roles": [
{
"Ref": "CognitoPostConfirmLambdaServiceRoleF0AF468C"
}
]
},
"DependsOn": [
"WebDistributionAlias35CFAF43",
"WebDistributionCachePolicy1C1DF238",
"WebDistributionLoggingBucketAE98FCD1",
"WebDistributionOrigin1S3OriginF25D5094",
"WebDistributionE0AD6497",
"WebDistributionWebBucketAutoDeleteObjectsCustomResource26230F0B",
"WebDistributionWebBucketPolicy8B20CCA4",
"WebDistributionWebBucketFDD181A9"
],
"Metadata": {
"aws:cdk:path": "TripPics/Cognito/PostConfirmLambda/ServiceRole/DefaultPolicy/Resource"
}
},
"CognitoPostConfirmLambda1DEF0F60": {
"Type": "AWS::Lambda::Function",
"Properties": {
"Code": {
"S3Bucket": {
"Fn::Sub": "cdk-hnb659fds-assets-${AWS::AccountId}-${AWS::Region}"
},
"S3Key": "e4b21b453ccdd361f45f8d3a54f22a32a4c665ae6a007d09ef0254a408047115.zip"
},
"Role": {
"Fn::GetAtt": [
"CognitoPostConfirmLambdaServiceRoleF0AF468C",
"Arn"
]
},
"Environment": {
"Variables": {
"usersTableName": {
"Ref": "DbUsersTable904AA81C"
},
"usersTableSchemaJson": "{\"partitionKey\":{\"name\":\"username\",\"type\":\"S\"}}",
"AWS_NODEJS_CONNECTION_REUSE_ENABLED": "1"
}
},
"Handler": "index.handler",
"Runtime": "nodejs14.x"
},
"DependsOn": [
"CognitoPostConfirmLambdaServiceRoleDefaultPolicy8E31F12B",
"CognitoPostConfirmLambdaServiceRoleF0AF468C",
"WebDistributionAlias35CFAF43",
"WebDistributionCachePolicy1C1DF238",
"WebDistributionLoggingBucketAE98FCD1",
"WebDistributionOrigin1S3OriginF25D5094",
"WebDistributionE0AD6497",
"WebDistributionWebBucketAutoDeleteObjectsCustomResource26230F0B",
"WebDistributionWebBucketPolicy8B20CCA4",
"WebDistributionWebBucketFDD181A9"
],
"Metadata": {
"aws:cdk:path": "TripPics/Cognito/PostConfirmLambda/Resource",
"aws:asset:path": "asset.e4b21b453ccdd361f45f8d3a54f22a32a4c665ae6a007d09ef0254a408047115",
"aws:asset:is-bundled": true,
"aws:asset:property": "Code"
}
},
"CognitoPostConfirmLambdaPostConfirmationLambdaCognito0CACC290": {
"Type": "AWS::Lambda::Permission",
"Properties": {
"Action": "lambda:InvokeFunction",
"FunctionName": {
"Fn::GetAtt": [
"CognitoPostConfirmLambda1DEF0F60",
"Arn"
]
},
"Principal": "cognito-idp.amazonaws.com",
"SourceArn": {
"Fn::GetAtt": [
"CognitoUserPool279BBD48",
"Arn"
]
}
},
"DependsOn": [
"WebDistributionAlias35CFAF43",
"WebDistributionCachePolicy1C1DF238",
"WebDistributionLoggingBucketAE98FCD1",
"WebDistributionOrigin1S3OriginF25D5094",
"WebDistributionE0AD6497",
"WebDistributionWebBucketAutoDeleteObjectsCustomResource26230F0B",
"WebDistributionWebBucketPolicy8B20CCA4",
"WebDistributionWebBucketFDD181A9"
],
"Metadata": {
"aws:cdk:path": "TripPics/Cognito/PostConfirmLambda/PostConfirmationLambdaCognito"
}
},
"CognitoPostAuthLambdaServiceRole087D30C2": {
"Type": "AWS::IAM::Role",
"Properties": {
"AssumeRolePolicyDocument": {
"Statement": [
{
"Action": "sts:AssumeRole",
"Effect": "Allow",
"Principal": {
"Service": "lambda.amazonaws.com"
}
}
],
"Version": "2012-10-17"
},
"ManagedPolicyArns": [
{
"Fn::Join": [
"",
[
"arn:",
{
"Ref": "AWS::Partition"
},
":iam::aws:policy/service-role/AWSLambdaBasicExecutionRole"
]
]
}
]
},
"DependsOn": [
"WebDistributionAlias35CFAF43",
"WebDistributionCachePolicy1C1DF238",
"WebDistributionLoggingBucketAE98FCD1",
"WebDistributionOrigin1S3OriginF25D5094",
"WebDistributionE0AD6497",
"WebDistributionWebBucketAutoDeleteObjectsCustomResource26230F0B",
"WebDistributionWebBucketPolicy8B20CCA4",
"WebDistributionWebBucketFDD181A9"
],
"Metadata": {
"aws:cdk:path": "TripPics/Cognito/PostAuthLambda/ServiceRole/Resource"
}
},
"CognitoPostAuthLambdaServiceRoleDefaultPolicy33367536": {
"Type": "AWS::IAM::Policy",
"Properties": {
"PolicyDocument": {
"Statement": [
{
"Action": [
"dynamodb:BatchGetItem",
"dynamodb:BatchWriteItem",
"dynamodb:ConditionCheckItem",
"dynamodb:DeleteItem",
"dynamodb:DescribeTable",
"dynamodb:GetItem",
"dynamodb:GetRecords",
"dynamodb:GetShardIterator",
"dynamodb:PutItem",
"dynamodb:Query",
"dynamodb:Scan",
"dynamodb:UpdateItem"
],
"Effect": "Allow",
"Resource": [
{
"Fn::GetAtt": [
"DbUsersTable904AA81C",
"Arn"
]
},
{
"Ref": "AWS::NoValue"
}
]
}
],
"Version": "2012-10-17"
},
"PolicyName": "CognitoPostAuthLambdaServiceRoleDefaultPolicy33367536",
"Roles": [
{
"Ref": "CognitoPostAuthLambdaServiceRole087D30C2"
}
]
},
"DependsOn": [
"WebDistributionAlias35CFAF43",
"WebDistributionCachePolicy1C1DF238",
"WebDistributionLoggingBucketAE98FCD1",
"WebDistributionOrigin1S3OriginF25D5094",
"WebDistributionE0AD6497",
"WebDistributionWebBucketAutoDeleteObjectsCustomResource26230F0B",
"WebDistributionWebBucketPolicy8B20CCA4",
"WebDistributionWebBucketFDD181A9"
],
"Metadata": {
"aws:cdk:path": "TripPics/Cognito/PostAuthLambda/ServiceRole/DefaultPolicy/Resource"
}
},
"CognitoPostAuthLambdaD53958F8": {
"Type": "AWS::Lambda::Function",
"Properties": {
"Code": {
"S3Bucket": {
"Fn::Sub": "cdk-hnb659fds-assets-${AWS::AccountId}-${AWS::Region}"
},
"S3Key": "4c1982b687599c8e8ee1b5465960410f7a529e0f2db34cbdeee825afc071c8f4.zip"
},
"Role": {
"Fn::GetAtt": [
"CognitoPostAuthLambdaServiceRole087D30C2",
"Arn"
]
},
"Environment": {
"Variables": {
"usersTableName": {
"Ref": "DbUsersTable904AA81C"
},
"usersTableSchemaJson": "{\"partitionKey\":{\"name\":\"username\",\"type\":\"S\"}}",
"AWS_NODEJS_CONNECTION_REUSE_ENABLED": "1"
}
},
"Handler": "index.handler",
"Runtime": "nodejs14.x"
},
"DependsOn": [
"CognitoPostAuthLambdaServiceRoleDefaultPolicy33367536",
"CognitoPostAuthLambdaServiceRole087D30C2",
"WebDistributionAlias35CFAF43",
"WebDistributionCachePolicy1C1DF238",
"WebDistributionLoggingBucketAE98FCD1",
"WebDistributionOrigin1S3OriginF25D5094",
"WebDistributionE0AD6497",
"WebDistributionWebBucketAutoDeleteObjectsCustomResource26230F0B",
"WebDistributionWebBucketPolicy8B20CCA4",
"WebDistributionWebBucketFDD181A9"
],
"Metadata": {
"aws:cdk:path": "TripPics/Cognito/PostAuthLambda/Resource",
"aws:asset:path": "asset.4c1982b687599c8e8ee1b5465960410f7a529e0f2db34cbdeee825afc071c8f4",
"aws:asset:is-bundled": true,
"aws:asset:property": "Code"
}
},
"CognitoPostAuthLambdaPostAuthenticationLambdaCognito556BEF3B": {
"Type": "AWS::Lambda::Permission",
"Properties": {
"Action": "lambda:InvokeFunction",
"FunctionName": {
"Fn::GetAtt": [
"CognitoPostAuthLambdaD53958F8",
"Arn"
]
},
"Principal": "cognito-idp.amazonaws.com",
"SourceArn": {
"Fn::GetAtt": [
"CognitoUserPool279BBD48",
"Arn"
]
}
},
"DependsOn": [
"WebDistributionAlias35CFAF43",
"WebDistributionCachePolicy1C1DF238",
"WebDistributionLoggingBucketAE98FCD1",
"WebDistributionOrigin1S3OriginF25D5094",
"WebDistributionE0AD6497",
"WebDistributionWebBucketAutoDeleteObjectsCustomResource26230F0B",
"WebDistributionWebBucketPolicy8B20CCA4",
"WebDistributionWebBucketFDD181A9"
],
"Metadata": {
"aws:cdk:path": "TripPics/Cognito/PostAuthLambda/PostAuthenticationLambdaCognito"
}
},
"CognitoUserPool279BBD48": {
"Type": "AWS::Cognito::UserPool",
"Properties": {
"AccountRecoverySetting": {
"RecoveryMechanisms": [
{
"Name": "verified_phone_number",
"Priority": 1
},
{
"Name": "verified_email",
"Priority": 2
}
]
},
"AdminCreateUserConfig": {
"AllowAdminCreateUserOnly": true
},
"EmailVerificationMessage": "The verification code to your new account is {####}",
"EmailVerificationSubject": "Verify your new account",
"LambdaConfig": {},
"SmsVerificationMessage": "The verification code to your new account is {####}",
"VerificationMessageTemplate": {
"DefaultEmailOption": "CONFIRM_WITH_CODE",
"EmailMessage": "The verification code to your new account is {####}",
"EmailSubject": "Verify your new account",
"SmsMessage": "The verification code to your new account is {####}"
}
},
"DependsOn": [
"WebDistributionAlias35CFAF43",
"WebDistributionCachePolicy1C1DF238",
"WebDistributionLoggingBucketAE98FCD1",
"WebDistributionOrigin1S3OriginF25D5094",
"WebDistributionE0AD6497",
"WebDistributionWebBucketAutoDeleteObjectsCustomResource26230F0B",
"WebDistributionWebBucketPolicy8B20CCA4",
"WebDistributionWebBucketFDD181A9"
],
"UpdateReplacePolicy": "Delete",
"DeletionPolicy": "Delete",
"Metadata": {
"aws:cdk:path": "TripPics/Cognito/UserPool/Resource"
}
},
"CognitoUserPoolUserPoolDomainC12FFA2B": {
"Type": "AWS::Cognito::UserPoolDomain",
"Properties": {
"Domain": "auth.martin.dev.trip.pictures",
"UserPoolId": {
"Ref": "CognitoUserPool279BBD48"
},
"CustomDomainConfig": {
"CertificateArn": {
"Fn::GetAtt": [
"ZoneCertificateCertificateRequestorResource1F2A0AC5",
"Arn"
]
}
}
},
"DependsOn": [
"WebDistributionAlias35CFAF43",
"WebDistributionCachePolicy1C1DF238",
"WebDistributionLoggingBucketAE98FCD1",
"WebDistributionOrigin1S3OriginF25D5094",
"WebDistributionE0AD6497",
"WebDistributionWebBucketAutoDeleteObjectsCustomResource26230F0B",
"WebDistributionWebBucketPolicy8B20CCA4",
"WebDistributionWebBucketFDD181A9"
],
"Metadata": {
"aws:cdk:path": "TripPics/Cognito/UserPool/UserPoolDomain/Resource"
}
},
"CognitoUserPoolUserPoolDomainCloudFrontDomainNameCustomResourcePolicy7B24E350": {
"Type": "AWS::IAM::Policy",
"Properties": {
"PolicyDocument": {
"Statement": [
{
"Action": "cognito-idp:DescribeUserPoolDomain",
"Effect": "Allow",
"Resource": "*"
}
],
"Version": "2012-10-17"
},
"PolicyName": "CognitoUserPoolUserPoolDomainCloudFrontDomainNameCustomResourcePolicy7B24E350",
"Roles": [
{
"Ref": "AWS679f53fac002430cb0da5b7982bd2287ServiceRoleC1EA0FF2"
}
]
},
"DependsOn": [
"WebDistributionAlias35CFAF43",
"WebDistributionCachePolicy1C1DF238",
"WebDistributionLoggingBucketAE98FCD1",
"WebDistributionOrigin1S3OriginF25D5094",
"WebDistributionE0AD6497",
"WebDistributionWebBucketAutoDeleteObjectsCustomResource26230F0B",
"WebDistributionWebBucketPolicy8B20CCA4",
"WebDistributionWebBucketFDD181A9"
],
"Metadata": {
"aws:cdk:path": "TripPics/Cognito/UserPool/UserPoolDomain/CloudFrontDomainName/CustomResourcePolicy/Resource"
}
},
"CognitoUserPoolUserPoolDomainCloudFrontDomainNameC2D33DEA": {
"Type": "Custom::UserPoolCloudFrontDomainName",
"Properties": {
"ServiceToken": {
"Fn::GetAtt": [
"AWS679f53fac002430cb0da5b7982bd22872D164C4C",
"Arn"
]
},
"Create": {
"Fn::Join": [
"",
[
"{\"service\":\"CognitoIdentityServiceProvider\",\"action\":\"describeUserPoolDomain\",\"parameters\":{\"Domain\":\"",
{
"Ref": "CognitoUserPoolUserPoolDomainC12FFA2B"
},
"\"},\"physicalResourceId\":{\"id\":\"",
{
"Ref": "CognitoUserPoolUserPoolDomainC12FFA2B"
},
"\"}}"
]
]
},
"Update": {
"Fn::Join": [
"",
[
"{\"service\":\"CognitoIdentityServiceProvider\",\"action\":\"describeUserPoolDomain\",\"parameters\":{\"Domain\":\"",
{
"Ref": "CognitoUserPoolUserPoolDomainC12FFA2B"
},
"\"},\"physicalResourceId\":{\"id\":\"",
{
"Ref": "CognitoUserPoolUserPoolDomainC12FFA2B"
},
"\"}}"
]
]
},
"InstallLatestAwsSdk": true
},
"DependsOn": [
"CognitoUserPoolUserPoolDomainCloudFrontDomainNameCustomResourcePolicy7B24E350",
"WebDistributionAlias35CFAF43",
"WebDistributionCachePolicy1C1DF238",
"WebDistributionLoggingBucketAE98FCD1",
"WebDistributionOrigin1S3OriginF25D5094",
"WebDistributionE0AD6497",
"WebDistributionWebBucketAutoDeleteObjectsCustomResource26230F0B",
"WebDistributionWebBucketPolicy8B20CCA4",
"WebDistributionWebBucketFDD181A9"
],
"UpdateReplacePolicy": "Delete",
"DeletionPolicy": "Delete",
"Metadata": {
"aws:cdk:path": "TripPics/Cognito/UserPool/UserPoolDomain/CloudFrontDomainName/Resource/Default"
}
},
"CognitoARecordC85F6773": {
"Type": "AWS::Route53::RecordSet",
"Properties": {
"Name": "auth.martin.dev.trip.pictures.",
"Type": "A",
"AliasTarget": {
"DNSName": {
"Fn::GetAtt": [
"CognitoUserPoolUserPoolDomainCloudFrontDomainNameC2D33DEA",
"DomainDescription.CloudFrontDistribution"
]
},
"HostedZoneId": {
"Fn::FindInMap": [
"AWSCloudFrontPartitionHostedZoneIdMap",
{
"Ref": "AWS::Partition"
},
"zoneId"
]
}
},
"HostedZoneId": {
"Ref": "ZoneHostedZoneB23BB523"
}
},
"DependsOn": [
"WebDistributionAlias35CFAF43",
"WebDistributionCachePolicy1C1DF238",
"WebDistributionLoggingBucketAE98FCD1",
"WebDistributionOrigin1S3OriginF25D5094",
"WebDistributionE0AD6497",
"WebDistributionWebBucketAutoDeleteObjectsCustomResource26230F0B",
"WebDistributionWebBucketPolicy8B20CCA4",
"WebDistributionWebBucketFDD181A9"
],
"Metadata": {
"aws:cdk:path": "TripPics/Cognito/ARecord/Resource"
}
},
"CognitoGoogleIdentityProvider2A82F430": {
"Type": "AWS::Cognito::UserPoolIdentityProvider",
"Properties": {
"ProviderName": "Google",
"ProviderType": "Google",
"UserPoolId": {
"Ref": "CognitoUserPool279BBD48"
},
"AttributeMapping": {
"email": "email",
"given_name": "given_name",
"family_name": "family_name",
"picture": "picture"
},
"ProviderDetails": {
"client_id": "276806659709-6lap8v4ekmsqqrdaosb3tmiq6j24fvgv.apps.googleusercontent.com",
"client_secret": {
"Fn::Select": [
0,
{
"Fn::GetAtt": [
"CognitoOAuthSecretsCrossAccountSSMCC343B4F",
"values"
]
}
]
},
"authorize_scopes": "email profile"
}
},
"DependsOn": [
"WebDistributionAlias35CFAF43",
"WebDistributionCachePolicy1C1DF238",
"WebDistributionLoggingBucketAE98FCD1",
"WebDistributionOrigin1S3OriginF25D5094",
"WebDistributionE0AD6497",
"WebDistributionWebBucketAutoDeleteObjectsCustomResource26230F0B",
"WebDistributionWebBucketPolicy8B20CCA4",
"WebDistributionWebBucketFDD181A9"
],
"Metadata": {
"aws:cdk:path": "TripPics/Cognito/GoogleIdentityProvider/Resource"
}
},
"CognitoAppleIdentityProvider473188A3": {
"Type": "AWS::Cognito::UserPoolIdentityProvider",
"Properties": {
"ProviderName": "SignInWithApple",
"ProviderType": "SignInWithApple",
"UserPoolId": {
"Ref": "CognitoUserPool279BBD48"
},
"AttributeMapping": {
"email": "email",
"given_name": "firstName",
"family_name": "lastName"
},
"ProviderDetails": {
"client_id": "TripPicsWebsiteDev",
"team_id": "HJ6Q44MPBD",
"key_id": "CWS2D262UY",
"private_key": {
"Fn::Select": [
1,
{
"Fn::GetAtt": [
"CognitoOAuthSecretsCrossAccountSSMCC343B4F",
"values"
]
}
]
},
"authorize_scopes": "email name"
}
},
"DependsOn": [
"WebDistributionAlias35CFAF43",
"WebDistributionCachePolicy1C1DF238",
"WebDistributionLoggingBucketAE98FCD1",
"WebDistributionOrigin1S3OriginF25D5094",
"WebDistributionE0AD6497",
"WebDistributionWebBucketAutoDeleteObjectsCustomResource26230F0B",
"WebDistributionWebBucketPolicy8B20CCA4",
"WebDistributionWebBucketFDD181A9"
],
"Metadata": {
"aws:cdk:path": "TripPics/Cognito/AppleIdentityProvider/Resource"
}
},
"CognitoUserPoolClientEF2538C4": {
"Type": "AWS::Cognito::UserPoolClient",
"Properties": {
"UserPoolId": {
"Ref": "CognitoUserPool279BBD48"
},
"AllowedOAuthFlows": [
"implicit",
"code"
],
"AllowedOAuthFlowsUserPoolClient": true,
"AllowedOAuthScopes": [
"profile",
"phone",
"email",
"openid",
"aws.cognito.signin.user.admin"
],
"CallbackURLs": [
"https://martin.dev.trip.pictures",
"http://localhost:3000"
],
"SupportedIdentityProviders": [
"SignInWithApple",
"Google"
]
},
"DependsOn": [
"CognitoAppleIdentityProvider473188A3",
"CognitoGoogleIdentityProvider2A82F430",
"WebDistributionAlias35CFAF43",
"WebDistributionCachePolicy1C1DF238",
"WebDistributionLoggingBucketAE98FCD1",
"WebDistributionOrigin1S3OriginF25D5094",
"WebDistributionE0AD6497",
"WebDistributionWebBucketAutoDeleteObjectsCustomResource26230F0B",
"WebDistributionWebBucketPolicy8B20CCA4",
"WebDistributionWebBucketFDD181A9"
],
"Metadata": {
"aws:cdk:path": "TripPics/Cognito/UserPoolClient/Resource"
}
},
"AWS679f53fac002430cb0da5b7982bd2287ServiceRoleC1EA0FF2": {
"Type": "AWS::IAM::Role",
"Properties": {
"AssumeRolePolicyDocument": {
"Statement": [
{
"Action": "sts:AssumeRole",
"Effect": "Allow",
"Principal": {
"Service": "lambda.amazonaws.com"
}
}
],
"Version": "2012-10-17"
},
"ManagedPolicyArns": [
{
"Fn::Join": [
"",
[
"arn:",
{
"Ref": "AWS::Partition"
},
":iam::aws:policy/service-role/AWSLambdaBasicExecutionRole"
]
]
}
]
},
"Metadata": {
"aws:cdk:path": "TripPics/AWS679f53fac002430cb0da5b7982bd2287/ServiceRole/Resource"
}
},
"AWS679f53fac002430cb0da5b7982bd22872D164C4C": {
"Type": "AWS::Lambda::Function",
"Properties": {
"Code": {
"S3Bucket": {
"Fn::Sub": "cdk-hnb659fds-assets-${AWS::AccountId}-${AWS::Region}"
},
"S3Key": "6dbd112fe448437b3438da4382c72fccbb7d2ee1543db222620d7447fffebc50.zip"
},
"Role": {
"Fn::GetAtt": [
"AWS679f53fac002430cb0da5b7982bd2287ServiceRoleC1EA0FF2",
"Arn"
]
},
"Handler": "index.handler",
"Runtime": "nodejs14.x",
"Timeout": 120
},
"DependsOn": [
"AWS679f53fac002430cb0da5b7982bd2287ServiceRoleC1EA0FF2"
],
"Metadata": {
"aws:cdk:path": "TripPics/AWS679f53fac002430cb0da5b7982bd2287/Resource",
"aws:asset:path": "asset.6dbd112fe448437b3438da4382c72fccbb7d2ee1543db222620d7447fffebc50",
"aws:asset:is-bundled": false,
"aws:asset:property": "Code"
}
},
"StaticSiteWebDeploymentAwsCliLayer01BB3209": {
"Type": "AWS::Lambda::LayerVersion",
"Properties": {
"Content": {
"S3Bucket": {
"Fn::Sub": "cdk-hnb659fds-assets-${AWS::AccountId}-${AWS::Region}"
},
"S3Key": "672cee2a3bc0f6f95dc287bbbcfca917f657efdac3d5cea83e0ceec6f1cdc262.zip"
},
"Description": "/opt/awscli/aws"
},
"Metadata": {
"aws:cdk:path": "TripPics/StaticSite/WebDeployment/AwsCliLayer/Resource",
"aws:asset:path": "asset.672cee2a3bc0f6f95dc287bbbcfca917f657efdac3d5cea83e0ceec6f1cdc262.zip",
"aws:asset:is-bundled": false,
"aws:asset:property": "Content"
}
},
"StaticSiteWebDeploymentCustomResource17C6B8BE": {
"Type": "Custom::CDKBucketDeployment",
"Properties": {
"ServiceToken": {
"Fn::GetAtt": [
"CustomCDKBucketDeployment8693BB64968944B69AAFB0CC9EB8756C81C01536",
"Arn"
]
},
"SourceBucketNames": [
{
"Fn::Sub": "cdk-hnb659fds-assets-${AWS::AccountId}-${AWS::Region}"
},
{
"Fn::Sub": "cdk-hnb659fds-assets-${AWS::AccountId}-${AWS::Region}"
}
],
"SourceObjectKeys": [
"e729034ba7eebe35633e0884f605d4da5e0eb7fe6411d0ef0d748d00abca127c.zip",
"d1dc0eb7e6df501ea0d9a6222b028c6f7d3fde6fa1c407365333ccc0635fcffd.zip"
],
"SourceMarkers": [
{},
{
"<<marker:0xbaba:0>>": {
"Ref": "CognitoUserPoolClientEF2538C4"
}
}
],
"DestinationBucketName": {
"Ref": "WebDistributionWebBucketFDD181A9"
},
"Prune": true,
"DistributionId": {
"Ref": "WebDistributionE0AD6497"
}
},
"UpdateReplacePolicy": "Delete",
"DeletionPolicy": "Delete",
"Metadata": {
"aws:cdk:path": "TripPics/StaticSite/WebDeployment/CustomResource/Default"
}
},
"CustomCDKBucketDeployment8693BB64968944B69AAFB0CC9EB8756CServiceRole89A01265": {
"Type": "AWS::IAM::Role",
"Properties": {
"AssumeRolePolicyDocument": {
"Statement": [
{
"Action": "sts:AssumeRole",
"Effect": "Allow",
"Principal": {
"Service": "lambda.amazonaws.com"
}
}
],
"Version": "2012-10-17"
},
"ManagedPolicyArns": [
{
"Fn::Join": [
"",
[
"arn:",
{
"Ref": "AWS::Partition"
},
":iam::aws:policy/service-role/AWSLambdaBasicExecutionRole"
]
]
}
]
},
"Metadata": {
"aws:cdk:path": "TripPics/Custom::CDKBucketDeployment8693BB64968944B69AAFB0CC9EB8756C/ServiceRole/Resource"
}
},
"CustomCDKBucketDeployment8693BB64968944B69AAFB0CC9EB8756CServiceRoleDefaultPolicy88902FDF": {
"Type": "AWS::IAM::Policy",
"Properties": {
"PolicyDocument": {
"Statement": [
{
"Action": [
"s3:GetBucket*",
"s3:GetObject*",
"s3:List*"
],
"Effect": "Allow",
"Resource": [
{
"Fn::Join": [
"",
[
"arn:",
{
"Ref": "AWS::Partition"
},
":s3:::",
{
"Fn::Sub": "cdk-hnb659fds-assets-${AWS::AccountId}-${AWS::Region}"
},
"/*"
]
]
},
{
"Fn::Join": [
"",
[
"arn:",
{
"Ref": "AWS::Partition"
},
":s3:::",
{
"Fn::Sub": "cdk-hnb659fds-assets-${AWS::AccountId}-${AWS::Region}"
}
]
]
}
]
},
{
"Action": [
"s3:Abort*",
"s3:DeleteObject*",
"s3:GetBucket*",
"s3:GetObject*",
"s3:List*",
"s3:PutObject",
"s3:PutObjectLegalHold",
"s3:PutObjectRetention",
"s3:PutObjectTagging",
"s3:PutObjectVersionTagging"
],
"Effect": "Allow",
"Resource": [
{
"Fn::GetAtt": [
"WebDistributionWebBucketFDD181A9",
"Arn"
]
},
{
"Fn::Join": [
"",
[
{
"Fn::GetAtt": [
"WebDistributionWebBucketFDD181A9",
"Arn"
]
},
"/*"
]
]
}
]
},
{
"Action": [
"cloudfront:CreateInvalidation",
"cloudfront:GetInvalidation"
],
"Effect": "Allow",
"Resource": "*"
}
],
"Version": "2012-10-17"
},
"PolicyName": "CustomCDKBucketDeployment8693BB64968944B69AAFB0CC9EB8756CServiceRoleDefaultPolicy88902FDF",
"Roles": [
{
"Ref": "CustomCDKBucketDeployment8693BB64968944B69AAFB0CC9EB8756CServiceRole89A01265"
}
]
},
"Metadata": {
"aws:cdk:path": "TripPics/Custom::CDKBucketDeployment8693BB64968944B69AAFB0CC9EB8756C/ServiceRole/DefaultPolicy/Resource"
}
},
"CustomCDKBucketDeployment8693BB64968944B69AAFB0CC9EB8756C81C01536": {
"Type": "AWS::Lambda::Function",
"Properties": {
"Code": {
"S3Bucket": {
"Fn::Sub": "cdk-hnb659fds-assets-${AWS::AccountId}-${AWS::Region}"
},
"S3Key": "f98b78092dcdd31f5e6d47489beb5f804d4835ef86a8085d0a2053cb9ae711da.zip"
},
"Role": {
"Fn::GetAtt": [
"CustomCDKBucketDeployment8693BB64968944B69AAFB0CC9EB8756CServiceRole89A01265",
"Arn"
]
},
"Handler": "index.handler",
"Layers": [
{
"Ref": "StaticSiteWebDeploymentAwsCliLayer01BB3209"
}
],
"Runtime": "python3.7",
"Timeout": 900
},
"DependsOn": [
"CustomCDKBucketDeployment8693BB64968944B69AAFB0CC9EB8756CServiceRoleDefaultPolicy88902FDF",
"CustomCDKBucketDeployment8693BB64968944B69AAFB0CC9EB8756CServiceRole89A01265"
],
"Metadata": {
"aws:cdk:path": "TripPics/Custom::CDKBucketDeployment8693BB64968944B69AAFB0CC9EB8756C/Resource",
"aws:asset:path": "asset.f98b78092dcdd31f5e6d47489beb5f804d4835ef86a8085d0a2053cb9ae711da",
"aws:asset:is-bundled": false,
"aws:asset:property": "Code"
}
},
"CDKMetadata": {
"Type": "AWS::CDK::Metadata",
"Properties": {
"Analytics": "v2:deflate64:H4sIAAAAAAAA/3VT227bMAz9lr4rWtdge08ddCvQrUGy9WEvgSIxDhNZNESpRWD43yf5kngDAhjg5VDnUBb5IOcP8v5OffBMm9PM4k42m6D0SaTUtvEUA3yZy2YVdxb1d+IA5g85EMXeTSNPzAutKbqQE0uwUKqA5NagyZuuHJQNh+IAiXxxTffeBkIrUFVJiZLQOSODtybbyWXbCquqnVFbRwaOLH925ik6nbUEz7eNYobAcpGNMFBbOlfggnyM+gRheUm0qVo2ffZRMYjezUqD15trP9N4bEQ2CbjoX5zcPfgKmXO0QVdaCOSm+Is6g38DnytaocEH3KNWASrlVAleLh2/KYsmpUxxhYW2FM3eU7pTUyh9gGuH03CJHDzuYqf36rFElx4ImJ9Nuj2G/kDmespctyqmNK0wZ6cqMmlIfqld/yydky5ApcNAsvnN4FdENmMXf3SWVCl0U2jIjOEovfL0jgb8N6Ky17lVcfPooq7TyREtLCZ4StRn2lasgSl6nVQiB6quYR7Owe/GKS1G+kel0F3d1g8gp6Edm1l88L8s7X+sl8rE/kPVdeYbZtrmidimvdMWZSay2A1JLn2NoY5d+wU5g/1r5CWQR/70/vmrTN/93ZERZz7tIFYg1739CwurJnfiAwAA"
},
"Metadata": {
"aws:cdk:path": "TripPics/CDKMetadata/Default"
},
"Condition": "CDKMetadataAvailable"
}
},
"Mappings": {
"AWSCloudFrontPartitionHostedZoneIdMap": {
"aws": {
"zoneId": "Z2FDTNDATAQYW2"
},
"aws-cn": {
"zoneId": "Z3RFFRIM2A3IF5"
}
}
},
"Outputs": {
"userPoolClientId": {
"Value": {
"Ref": "CognitoUserPoolClientEF2538C4"
}
},
"authDomain": {
"Value": "auth.martin.dev.trip.pictures"
}
},
"Conditions": {
"CDKMetadataAvailable": {
"Fn::Or": [
{
"Fn::Or": [
{
"Fn::Equals": [
{
"Ref": "AWS::Region"
},
"af-south-1"
]
},
{
"Fn::Equals": [
{
"Ref": "AWS::Region"
},
"ap-east-1"
]
},
{
"Fn::Equals": [
{
"Ref": "AWS::Region"
},
"ap-northeast-1"
]
},
{
"Fn::Equals": [
{
"Ref": "AWS::Region"
},
"ap-northeast-2"
]
},
{
"Fn::Equals": [
{
"Ref": "AWS::Region"
},
"ap-south-1"
]
},
{
"Fn::Equals": [
{
"Ref": "AWS::Region"
},
"ap-southeast-1"
]
},
{
"Fn::Equals": [
{
"Ref": "AWS::Region"
},
"ap-southeast-2"
]
},
{
"Fn::Equals": [
{
"Ref": "AWS::Region"
},
"ca-central-1"
]
},
{
"Fn::Equals": [
{
"Ref": "AWS::Region"
},
"cn-north-1"
]
},
{
"Fn::Equals": [
{
"Ref": "AWS::Region"
},
"cn-northwest-1"
]
}
]
},
{
"Fn::Or": [
{
"Fn::Equals": [
{
"Ref": "AWS::Region"
},
"eu-central-1"
]
},
{
"Fn::Equals": [
{
"Ref": "AWS::Region"
},
"eu-north-1"
]
},
{
"Fn::Equals": [
{
"Ref": "AWS::Region"
},
"eu-south-1"
]
},
{
"Fn::Equals": [
{
"Ref": "AWS::Region"
},
"eu-west-1"
]
},
{
"Fn::Equals": [
{
"Ref": "AWS::Region"
},
"eu-west-2"
]
},
{
"Fn::Equals": [
{
"Ref": "AWS::Region"
},
"eu-west-3"
]
},
{
"Fn::Equals": [
{
"Ref": "AWS::Region"
},
"me-south-1"
]
},
{
"Fn::Equals": [
{
"Ref": "AWS::Region"
},
"sa-east-1"
]
},
{
"Fn::Equals": [
{
"Ref": "AWS::Region"
},
"us-east-1"
]
},
{
"Fn::Equals": [
{
"Ref": "AWS::Region"
},
"us-east-2"
]
}
]
},
{
"Fn::Or": [
{
"Fn::Equals": [
{
"Ref": "AWS::Region"
},
"us-west-1"
]
},
{
"Fn::Equals": [
{
"Ref": "AWS::Region"
},
"us-west-2"
]
}
]
}
]
}
},
"Parameters": {
"BootstrapVersion": {
"Type": "AWS::SSM::Parameter::Value<String>",
"Default": "/cdk-bootstrap/hnb659fds/version",
"Description": "Version of the CDK Bootstrap resources in this environment, automatically retrieved from SSM Parameter Store. [cdk:skip]"
}
},
"Rules": {
"CheckBootstrapVersion": {
"Assertions": [
{
"Assert": {
"Fn::Not": [
{
"Fn::Contains": [
[
"1",
"2",
"3",
"4",
"5"
],
{
"Ref": "BootstrapVersion"
}
]
}
]
},
"AssertDescription": "CDK bootstrap stack version 6 required. Please run 'cdk bootstrap' with a recent version of the CDK CLI."
}
]
}
}
}
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment