Created
December 22, 2019 16:13
-
-
Save petrabarus/39153972b153c96a69fc579dd534f6e5 to your computer and use it in GitHub Desktop.
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Resources: | |
| ecsCluster15812518: | |
| Type: AWS::ECS::Cluster | |
| Metadata: | |
| aws:cdk:path: WebStack/ecsCluster/Resource | |
| ecsClusterVpcFF32B42F: | |
| Type: AWS::EC2::VPC | |
| Properties: | |
| CidrBlock: 10.0.0.0/16 | |
| EnableDnsHostnames: true | |
| EnableDnsSupport: true | |
| InstanceTenancy: default | |
| Tags: | |
| - Key: Name | |
| Value: WebStack/ecsCluster/Vpc | |
| Metadata: | |
| aws:cdk:path: WebStack/ecsCluster/Vpc/Resource | |
| ecsClusterVpcPublicSubnet1SubnetFA20C685: | |
| Type: AWS::EC2::Subnet | |
| Properties: | |
| CidrBlock: 10.0.0.0/18 | |
| VpcId: | |
| Ref: ecsClusterVpcFF32B42F | |
| AvailabilityZone: | |
| Fn::Select: | |
| - 0 | |
| - Fn::GetAZs: "" | |
| MapPublicIpOnLaunch: true | |
| Tags: | |
| - Key: Name | |
| Value: WebStack/ecsCluster/Vpc/PublicSubnet1 | |
| - Key: aws-cdk:subnet-name | |
| Value: Public | |
| - Key: aws-cdk:subnet-type | |
| Value: Public | |
| Metadata: | |
| aws:cdk:path: WebStack/ecsCluster/Vpc/PublicSubnet1/Subnet | |
| ecsClusterVpcPublicSubnet1RouteTable81B0A4EB: | |
| Type: AWS::EC2::RouteTable | |
| Properties: | |
| VpcId: | |
| Ref: ecsClusterVpcFF32B42F | |
| Tags: | |
| - Key: Name | |
| Value: WebStack/ecsCluster/Vpc/PublicSubnet1 | |
| Metadata: | |
| aws:cdk:path: WebStack/ecsCluster/Vpc/PublicSubnet1/RouteTable | |
| ecsClusterVpcPublicSubnet1RouteTableAssociationF3300B48: | |
| Type: AWS::EC2::SubnetRouteTableAssociation | |
| Properties: | |
| RouteTableId: | |
| Ref: ecsClusterVpcPublicSubnet1RouteTable81B0A4EB | |
| SubnetId: | |
| Ref: ecsClusterVpcPublicSubnet1SubnetFA20C685 | |
| Metadata: | |
| aws:cdk:path: WebStack/ecsCluster/Vpc/PublicSubnet1/RouteTableAssociation | |
| ecsClusterVpcPublicSubnet1DefaultRoute9AF73418: | |
| Type: AWS::EC2::Route | |
| Properties: | |
| RouteTableId: | |
| Ref: ecsClusterVpcPublicSubnet1RouteTable81B0A4EB | |
| DestinationCidrBlock: 0.0.0.0/0 | |
| GatewayId: | |
| Ref: ecsClusterVpcIGW210EEE06 | |
| DependsOn: | |
| - ecsClusterVpcVPCGWF4B1ABA7 | |
| Metadata: | |
| aws:cdk:path: WebStack/ecsCluster/Vpc/PublicSubnet1/DefaultRoute | |
| ecsClusterVpcPublicSubnet1EIPB362E83F: | |
| Type: AWS::EC2::EIP | |
| Properties: | |
| Domain: vpc | |
| Tags: | |
| - Key: Name | |
| Value: WebStack/ecsCluster/Vpc/PublicSubnet1 | |
| Metadata: | |
| aws:cdk:path: WebStack/ecsCluster/Vpc/PublicSubnet1/EIP | |
| ecsClusterVpcPublicSubnet1NATGateway2884D33D: | |
| Type: AWS::EC2::NatGateway | |
| Properties: | |
| AllocationId: | |
| Fn::GetAtt: | |
| - ecsClusterVpcPublicSubnet1EIPB362E83F | |
| - AllocationId | |
| SubnetId: | |
| Ref: ecsClusterVpcPublicSubnet1SubnetFA20C685 | |
| Tags: | |
| - Key: Name | |
| Value: WebStack/ecsCluster/Vpc/PublicSubnet1 | |
| Metadata: | |
| aws:cdk:path: WebStack/ecsCluster/Vpc/PublicSubnet1/NATGateway | |
| ecsClusterVpcPublicSubnet2Subnet0EC50B2A: | |
| Type: AWS::EC2::Subnet | |
| Properties: | |
| CidrBlock: 10.0.64.0/18 | |
| VpcId: | |
| Ref: ecsClusterVpcFF32B42F | |
| AvailabilityZone: | |
| Fn::Select: | |
| - 1 | |
| - Fn::GetAZs: "" | |
| MapPublicIpOnLaunch: true | |
| Tags: | |
| - Key: Name | |
| Value: WebStack/ecsCluster/Vpc/PublicSubnet2 | |
| - Key: aws-cdk:subnet-name | |
| Value: Public | |
| - Key: aws-cdk:subnet-type | |
| Value: Public | |
| Metadata: | |
| aws:cdk:path: WebStack/ecsCluster/Vpc/PublicSubnet2/Subnet | |
| ecsClusterVpcPublicSubnet2RouteTable277C5484: | |
| Type: AWS::EC2::RouteTable | |
| Properties: | |
| VpcId: | |
| Ref: ecsClusterVpcFF32B42F | |
| Tags: | |
| - Key: Name | |
| Value: WebStack/ecsCluster/Vpc/PublicSubnet2 | |
| Metadata: | |
| aws:cdk:path: WebStack/ecsCluster/Vpc/PublicSubnet2/RouteTable | |
| ecsClusterVpcPublicSubnet2RouteTableAssociationCBD6D909: | |
| Type: AWS::EC2::SubnetRouteTableAssociation | |
| Properties: | |
| RouteTableId: | |
| Ref: ecsClusterVpcPublicSubnet2RouteTable277C5484 | |
| SubnetId: | |
| Ref: ecsClusterVpcPublicSubnet2Subnet0EC50B2A | |
| Metadata: | |
| aws:cdk:path: WebStack/ecsCluster/Vpc/PublicSubnet2/RouteTableAssociation | |
| ecsClusterVpcPublicSubnet2DefaultRoute93E60DDC: | |
| Type: AWS::EC2::Route | |
| Properties: | |
| RouteTableId: | |
| Ref: ecsClusterVpcPublicSubnet2RouteTable277C5484 | |
| DestinationCidrBlock: 0.0.0.0/0 | |
| GatewayId: | |
| Ref: ecsClusterVpcIGW210EEE06 | |
| DependsOn: | |
| - ecsClusterVpcVPCGWF4B1ABA7 | |
| Metadata: | |
| aws:cdk:path: WebStack/ecsCluster/Vpc/PublicSubnet2/DefaultRoute | |
| ecsClusterVpcPublicSubnet2EIP047CA06C: | |
| Type: AWS::EC2::EIP | |
| Properties: | |
| Domain: vpc | |
| Tags: | |
| - Key: Name | |
| Value: WebStack/ecsCluster/Vpc/PublicSubnet2 | |
| Metadata: | |
| aws:cdk:path: WebStack/ecsCluster/Vpc/PublicSubnet2/EIP | |
| ecsClusterVpcPublicSubnet2NATGateway0D554A0A: | |
| Type: AWS::EC2::NatGateway | |
| Properties: | |
| AllocationId: | |
| Fn::GetAtt: | |
| - ecsClusterVpcPublicSubnet2EIP047CA06C | |
| - AllocationId | |
| SubnetId: | |
| Ref: ecsClusterVpcPublicSubnet2Subnet0EC50B2A | |
| Tags: | |
| - Key: Name | |
| Value: WebStack/ecsCluster/Vpc/PublicSubnet2 | |
| Metadata: | |
| aws:cdk:path: WebStack/ecsCluster/Vpc/PublicSubnet2/NATGateway | |
| ecsClusterVpcPrivateSubnet1Subnet0D52016B: | |
| Type: AWS::EC2::Subnet | |
| Properties: | |
| CidrBlock: 10.0.128.0/18 | |
| VpcId: | |
| Ref: ecsClusterVpcFF32B42F | |
| AvailabilityZone: | |
| Fn::Select: | |
| - 0 | |
| - Fn::GetAZs: "" | |
| MapPublicIpOnLaunch: false | |
| Tags: | |
| - Key: Name | |
| Value: WebStack/ecsCluster/Vpc/PrivateSubnet1 | |
| - Key: aws-cdk:subnet-name | |
| Value: Private | |
| - Key: aws-cdk:subnet-type | |
| Value: Private | |
| Metadata: | |
| aws:cdk:path: WebStack/ecsCluster/Vpc/PrivateSubnet1/Subnet | |
| ecsClusterVpcPrivateSubnet1RouteTable7FE5C328: | |
| Type: AWS::EC2::RouteTable | |
| Properties: | |
| VpcId: | |
| Ref: ecsClusterVpcFF32B42F | |
| Tags: | |
| - Key: Name | |
| Value: WebStack/ecsCluster/Vpc/PrivateSubnet1 | |
| Metadata: | |
| aws:cdk:path: WebStack/ecsCluster/Vpc/PrivateSubnet1/RouteTable | |
| ecsClusterVpcPrivateSubnet1RouteTableAssociationB0E057AD: | |
| Type: AWS::EC2::SubnetRouteTableAssociation | |
| Properties: | |
| RouteTableId: | |
| Ref: ecsClusterVpcPrivateSubnet1RouteTable7FE5C328 | |
| SubnetId: | |
| Ref: ecsClusterVpcPrivateSubnet1Subnet0D52016B | |
| Metadata: | |
| aws:cdk:path: WebStack/ecsCluster/Vpc/PrivateSubnet1/RouteTableAssociation | |
| ecsClusterVpcPrivateSubnet1DefaultRoute2CFE13F7: | |
| Type: AWS::EC2::Route | |
| Properties: | |
| RouteTableId: | |
| Ref: ecsClusterVpcPrivateSubnet1RouteTable7FE5C328 | |
| DestinationCidrBlock: 0.0.0.0/0 | |
| NatGatewayId: | |
| Ref: ecsClusterVpcPublicSubnet1NATGateway2884D33D | |
| Metadata: | |
| aws:cdk:path: WebStack/ecsCluster/Vpc/PrivateSubnet1/DefaultRoute | |
| ecsClusterVpcPrivateSubnet2SubnetCC95712A: | |
| Type: AWS::EC2::Subnet | |
| Properties: | |
| CidrBlock: 10.0.192.0/18 | |
| VpcId: | |
| Ref: ecsClusterVpcFF32B42F | |
| AvailabilityZone: | |
| Fn::Select: | |
| - 1 | |
| - Fn::GetAZs: "" | |
| MapPublicIpOnLaunch: false | |
| Tags: | |
| - Key: Name | |
| Value: WebStack/ecsCluster/Vpc/PrivateSubnet2 | |
| - Key: aws-cdk:subnet-name | |
| Value: Private | |
| - Key: aws-cdk:subnet-type | |
| Value: Private | |
| Metadata: | |
| aws:cdk:path: WebStack/ecsCluster/Vpc/PrivateSubnet2/Subnet | |
| ecsClusterVpcPrivateSubnet2RouteTableAF1F62AF: | |
| Type: AWS::EC2::RouteTable | |
| Properties: | |
| VpcId: | |
| Ref: ecsClusterVpcFF32B42F | |
| Tags: | |
| - Key: Name | |
| Value: WebStack/ecsCluster/Vpc/PrivateSubnet2 | |
| Metadata: | |
| aws:cdk:path: WebStack/ecsCluster/Vpc/PrivateSubnet2/RouteTable | |
| ecsClusterVpcPrivateSubnet2RouteTableAssociation749BAF72: | |
| Type: AWS::EC2::SubnetRouteTableAssociation | |
| Properties: | |
| RouteTableId: | |
| Ref: ecsClusterVpcPrivateSubnet2RouteTableAF1F62AF | |
| SubnetId: | |
| Ref: ecsClusterVpcPrivateSubnet2SubnetCC95712A | |
| Metadata: | |
| aws:cdk:path: WebStack/ecsCluster/Vpc/PrivateSubnet2/RouteTableAssociation | |
| ecsClusterVpcPrivateSubnet2DefaultRoute0FDC643B: | |
| Type: AWS::EC2::Route | |
| Properties: | |
| RouteTableId: | |
| Ref: ecsClusterVpcPrivateSubnet2RouteTableAF1F62AF | |
| DestinationCidrBlock: 0.0.0.0/0 | |
| NatGatewayId: | |
| Ref: ecsClusterVpcPublicSubnet2NATGateway0D554A0A | |
| Metadata: | |
| aws:cdk:path: WebStack/ecsCluster/Vpc/PrivateSubnet2/DefaultRoute | |
| ecsClusterVpcIGW210EEE06: | |
| Type: AWS::EC2::InternetGateway | |
| Properties: | |
| Tags: | |
| - Key: Name | |
| Value: WebStack/ecsCluster/Vpc | |
| Metadata: | |
| aws:cdk:path: WebStack/ecsCluster/Vpc/IGW | |
| ecsClusterVpcVPCGWF4B1ABA7: | |
| Type: AWS::EC2::VPCGatewayAttachment | |
| Properties: | |
| VpcId: | |
| Ref: ecsClusterVpcFF32B42F | |
| InternetGatewayId: | |
| Ref: ecsClusterVpcIGW210EEE06 | |
| Metadata: | |
| aws:cdk:path: WebStack/ecsCluster/Vpc/VPCGW | |
| ServiceLBE9A1ADBC: | |
| Type: AWS::ElasticLoadBalancingV2::LoadBalancer | |
| Properties: | |
| Scheme: internet-facing | |
| SecurityGroups: | |
| - Fn::GetAtt: | |
| - ServiceLBSecurityGroupF7435A5C | |
| - GroupId | |
| Subnets: | |
| - Ref: ecsClusterVpcPublicSubnet1SubnetFA20C685 | |
| - Ref: ecsClusterVpcPublicSubnet2Subnet0EC50B2A | |
| Type: application | |
| DependsOn: | |
| - ecsClusterVpcPublicSubnet1DefaultRoute9AF73418 | |
| - ecsClusterVpcPublicSubnet2DefaultRoute93E60DDC | |
| Metadata: | |
| aws:cdk:path: WebStack/Service/LB/Resource | |
| ServiceLBSecurityGroupF7435A5C: | |
| Type: AWS::EC2::SecurityGroup | |
| Properties: | |
| GroupDescription: Automatically created Security Group for ELB WebStackServiceLBB3242C0C | |
| SecurityGroupIngress: | |
| - CidrIp: 0.0.0.0/0 | |
| Description: Allow from anyone on port 80 | |
| FromPort: 80 | |
| IpProtocol: tcp | |
| ToPort: 80 | |
| VpcId: | |
| Ref: ecsClusterVpcFF32B42F | |
| Metadata: | |
| aws:cdk:path: WebStack/Service/LB/SecurityGroup/Resource | |
| ServiceLBSecurityGrouptoWebStackServiceSecurityGroup3CEB32B680A65A3315: | |
| Type: AWS::EC2::SecurityGroupEgress | |
| Properties: | |
| GroupId: | |
| Fn::GetAtt: | |
| - ServiceLBSecurityGroupF7435A5C | |
| - GroupId | |
| IpProtocol: tcp | |
| Description: Load balancer to target | |
| DestinationSecurityGroupId: | |
| Fn::GetAtt: | |
| - ServiceSecurityGroupEEA09B68 | |
| - GroupId | |
| FromPort: 80 | |
| ToPort: 80 | |
| Metadata: | |
| aws:cdk:path: WebStack/Service/LB/SecurityGroup/to WebStackServiceSecurityGroup3CEB32B6:80 | |
| ServiceLBPublicListener46709EAA: | |
| Type: AWS::ElasticLoadBalancingV2::Listener | |
| Properties: | |
| DefaultActions: | |
| - TargetGroupArn: | |
| Ref: ServiceLBPublicListenerECSGroup0CC8688C | |
| Type: forward | |
| LoadBalancerArn: | |
| Ref: ServiceLBE9A1ADBC | |
| Port: 80 | |
| Protocol: HTTP | |
| Metadata: | |
| aws:cdk:path: WebStack/Service/LB/PublicListener/Resource | |
| ServiceLBPublicListenerECSGroup0CC8688C: | |
| Type: AWS::ElasticLoadBalancingV2::TargetGroup | |
| Properties: | |
| Port: 80 | |
| Protocol: HTTP | |
| TargetType: ip | |
| VpcId: | |
| Ref: ecsClusterVpcFF32B42F | |
| Metadata: | |
| aws:cdk:path: WebStack/Service/LB/PublicListener/ECSGroup/Resource | |
| ServiceTaskDefTaskRole0CFE2F57: | |
| Type: AWS::IAM::Role | |
| Properties: | |
| AssumeRolePolicyDocument: | |
| Statement: | |
| - Action: sts:AssumeRole | |
| Effect: Allow | |
| Principal: | |
| Service: ecs-tasks.amazonaws.com | |
| Version: "2012-10-17" | |
| Metadata: | |
| aws:cdk:path: WebStack/Service/TaskDef/TaskRole/Resource | |
| ServiceTaskDef1922A00F: | |
| Type: AWS::ECS::TaskDefinition | |
| Properties: | |
| ContainerDefinitions: | |
| - Essential: true | |
| Image: | |
| Fn::Join: | |
| - "" | |
| - - Ref: AWS::AccountId | |
| - .dkr.ecr. | |
| - Ref: AWS::Region | |
| - "." | |
| - Ref: AWS::URLSuffix | |
| - / | |
| - Fn::Select: | |
| - 0 | |
| - Fn::Split: | |
| - "@sha256:" | |
| - Ref: AssetParameters5dec6c295ad8cb0f504b9a9e175046fbaf50e2a1d44387c9f26dc1221c236d54ImageName7C9E9DB7 | |
| - "@sha256:" | |
| - Fn::Select: | |
| - 1 | |
| - Fn::Split: | |
| - "@sha256:" | |
| - Ref: AssetParameters5dec6c295ad8cb0f504b9a9e175046fbaf50e2a1d44387c9f26dc1221c236d54ImageName7C9E9DB7 | |
| LogConfiguration: | |
| LogDriver: awslogs | |
| Options: | |
| awslogs-group: | |
| Ref: ServiceTaskDefwebLogGroup2A898F61 | |
| awslogs-stream-prefix: Service | |
| awslogs-region: | |
| Ref: AWS::Region | |
| Name: web | |
| PortMappings: | |
| - ContainerPort: 80 | |
| Protocol: tcp | |
| Cpu: "512" | |
| ExecutionRoleArn: | |
| Fn::GetAtt: | |
| - ServiceTaskDefExecutionRole919F7BE3 | |
| - Arn | |
| Family: WebStackServiceTaskDefC21468A7 | |
| Memory: "1024" | |
| NetworkMode: awsvpc | |
| RequiresCompatibilities: | |
| - FARGATE | |
| TaskRoleArn: | |
| Fn::GetAtt: | |
| - ServiceTaskDefTaskRole0CFE2F57 | |
| - Arn | |
| Metadata: | |
| aws:cdk:path: WebStack/Service/TaskDef/Resource | |
| ServiceTaskDefwebAssetImageAdoptRepositoryFCF50BEE: | |
| Type: Custom::ECRAdoptedRepository | |
| Properties: | |
| ServiceToken: | |
| Fn::GetAtt: | |
| - AdoptEcrRepositorydbc60defc59544bcaa5c28c95d68f62c52BE89E9 | |
| - Arn | |
| RepositoryName: | |
| Fn::Select: | |
| - 0 | |
| - Fn::Split: | |
| - "@sha256:" | |
| - Ref: AssetParameters5dec6c295ad8cb0f504b9a9e175046fbaf50e2a1d44387c9f26dc1221c236d54ImageName7C9E9DB7 | |
| DependsOn: | |
| - AdoptEcrRepositorydbc60defc59544bcaa5c28c95d68f62cServiceRoleDefaultPolicy6BC8737C | |
| - AdoptEcrRepositorydbc60defc59544bcaa5c28c95d68f62cServiceRoleD788AA17 | |
| UpdateReplacePolicy: Delete | |
| DeletionPolicy: Delete | |
| Metadata: | |
| aws:cdk:path: WebStack/Service/TaskDef/web/AssetImage/AdoptRepository/Resource/Default | |
| ServiceTaskDefwebLogGroup2A898F61: | |
| Type: AWS::Logs::LogGroup | |
| UpdateReplacePolicy: Retain | |
| DeletionPolicy: Retain | |
| Metadata: | |
| aws:cdk:path: WebStack/Service/TaskDef/web/LogGroup/Resource | |
| ServiceTaskDefExecutionRole919F7BE3: | |
| Type: AWS::IAM::Role | |
| Properties: | |
| AssumeRolePolicyDocument: | |
| Statement: | |
| - Action: sts:AssumeRole | |
| Effect: Allow | |
| Principal: | |
| Service: ecs-tasks.amazonaws.com | |
| Version: "2012-10-17" | |
| Metadata: | |
| aws:cdk:path: WebStack/Service/TaskDef/ExecutionRole/Resource | |
| ServiceTaskDefExecutionRoleDefaultPolicy3073559D: | |
| Type: AWS::IAM::Policy | |
| Properties: | |
| PolicyDocument: | |
| Statement: | |
| - Action: | |
| - ecr:BatchCheckLayerAvailability | |
| - ecr:GetDownloadUrlForLayer | |
| - ecr:BatchGetImage | |
| Effect: Allow | |
| Resource: | |
| Fn::Join: | |
| - "" | |
| - - "arn:" | |
| - Ref: AWS::Partition | |
| - ":ecr:" | |
| - Ref: AWS::Region | |
| - ":" | |
| - Ref: AWS::AccountId | |
| - :repository/ | |
| - Fn::GetAtt: | |
| - ServiceTaskDefwebAssetImageAdoptRepositoryFCF50BEE | |
| - RepositoryName | |
| - Action: ecr:GetAuthorizationToken | |
| Effect: Allow | |
| Resource: "*" | |
| - Action: | |
| - logs:CreateLogStream | |
| - logs:PutLogEvents | |
| Effect: Allow | |
| Resource: | |
| Fn::GetAtt: | |
| - ServiceTaskDefwebLogGroup2A898F61 | |
| - Arn | |
| Version: "2012-10-17" | |
| PolicyName: ServiceTaskDefExecutionRoleDefaultPolicy3073559D | |
| Roles: | |
| - Ref: ServiceTaskDefExecutionRole919F7BE3 | |
| Metadata: | |
| aws:cdk:path: WebStack/Service/TaskDef/ExecutionRole/DefaultPolicy/Resource | |
| Service9571FDD8: | |
| Type: AWS::ECS::Service | |
| Properties: | |
| Cluster: | |
| Ref: ecsCluster15812518 | |
| DeploymentConfiguration: | |
| MaximumPercent: 200 | |
| MinimumHealthyPercent: 50 | |
| DesiredCount: 1 | |
| EnableECSManagedTags: false | |
| HealthCheckGracePeriodSeconds: 60 | |
| LaunchType: FARGATE | |
| LoadBalancers: | |
| - ContainerName: web | |
| ContainerPort: 80 | |
| TargetGroupArn: | |
| Ref: ServiceLBPublicListenerECSGroup0CC8688C | |
| NetworkConfiguration: | |
| AwsvpcConfiguration: | |
| AssignPublicIp: DISABLED | |
| SecurityGroups: | |
| - Fn::GetAtt: | |
| - ServiceSecurityGroupEEA09B68 | |
| - GroupId | |
| Subnets: | |
| - Ref: ecsClusterVpcPrivateSubnet1Subnet0D52016B | |
| - Ref: ecsClusterVpcPrivateSubnet2SubnetCC95712A | |
| TaskDefinition: | |
| Ref: ServiceTaskDef1922A00F | |
| DependsOn: | |
| - ServiceLBPublicListenerECSGroup0CC8688C | |
| - ServiceLBPublicListener46709EAA | |
| Metadata: | |
| aws:cdk:path: WebStack/Service/Service/Service | |
| ServiceSecurityGroupEEA09B68: | |
| Type: AWS::EC2::SecurityGroup | |
| Properties: | |
| GroupDescription: WebStack/Service/Service/SecurityGroup | |
| SecurityGroupEgress: | |
| - CidrIp: 0.0.0.0/0 | |
| Description: Allow all outbound traffic by default | |
| IpProtocol: "-1" | |
| VpcId: | |
| Ref: ecsClusterVpcFF32B42F | |
| Metadata: | |
| aws:cdk:path: WebStack/Service/Service/SecurityGroup/Resource | |
| ServiceSecurityGroupfromWebStackServiceLBSecurityGroup6C2EF30780A69FEC5B: | |
| Type: AWS::EC2::SecurityGroupIngress | |
| Properties: | |
| IpProtocol: tcp | |
| Description: Load balancer to target | |
| FromPort: 80 | |
| GroupId: | |
| Fn::GetAtt: | |
| - ServiceSecurityGroupEEA09B68 | |
| - GroupId | |
| SourceSecurityGroupId: | |
| Fn::GetAtt: | |
| - ServiceLBSecurityGroupF7435A5C | |
| - GroupId | |
| ToPort: 80 | |
| Metadata: | |
| aws:cdk:path: WebStack/Service/Service/SecurityGroup/from WebStackServiceLBSecurityGroup6C2EF307:80 | |
| AdoptEcrRepositorydbc60defc59544bcaa5c28c95d68f62cServiceRoleD788AA17: | |
| Type: AWS::IAM::Role | |
| Properties: | |
| AssumeRolePolicyDocument: | |
| Statement: | |
| - Action: sts:AssumeRole | |
| Effect: Allow | |
| Principal: | |
| Service: lambda.amazonaws.com | |
| Version: "2012-10-17" | |
| ManagedPolicyArns: | |
| - Fn::Join: | |
| - "" | |
| - - "arn:" | |
| - Ref: AWS::Partition | |
| - :iam::aws:policy/service-role/AWSLambdaBasicExecutionRole | |
| Metadata: | |
| aws:cdk:path: WebStack/AdoptEcrRepositorydbc60defc59544bcaa5c28c95d68f62c/ServiceRole/Resource | |
| AdoptEcrRepositorydbc60defc59544bcaa5c28c95d68f62cServiceRoleDefaultPolicy6BC8737C: | |
| Type: AWS::IAM::Policy | |
| Properties: | |
| PolicyDocument: | |
| Statement: | |
| - Action: | |
| - ecr:GetRepositoryPolicy | |
| - ecr:SetRepositoryPolicy | |
| - ecr:DeleteRepository | |
| - ecr:ListImages | |
| - ecr:BatchDeleteImage | |
| Effect: Allow | |
| Resource: | |
| Fn::Join: | |
| - "" | |
| - - "arn:" | |
| - Ref: AWS::Partition | |
| - ":ecr:" | |
| - Ref: AWS::Region | |
| - ":" | |
| - Ref: AWS::AccountId | |
| - :repository/ | |
| - Fn::Select: | |
| - 0 | |
| - Fn::Split: | |
| - "@sha256:" | |
| - Ref: AssetParameters5dec6c295ad8cb0f504b9a9e175046fbaf50e2a1d44387c9f26dc1221c236d54ImageName7C9E9DB7 | |
| Version: "2012-10-17" | |
| PolicyName: AdoptEcrRepositorydbc60defc59544bcaa5c28c95d68f62cServiceRoleDefaultPolicy6BC8737C | |
| Roles: | |
| - Ref: AdoptEcrRepositorydbc60defc59544bcaa5c28c95d68f62cServiceRoleD788AA17 | |
| Metadata: | |
| aws:cdk:path: WebStack/AdoptEcrRepositorydbc60defc59544bcaa5c28c95d68f62c/ServiceRole/DefaultPolicy/Resource | |
| AdoptEcrRepositorydbc60defc59544bcaa5c28c95d68f62c52BE89E9: | |
| Type: AWS::Lambda::Function | |
| Properties: | |
| Code: | |
| S3Bucket: | |
| Ref: AssetParametersa65ac4beaa2b5a7b20eebf3b7c5c1c886b71428afa377e02dab0d10ab3be57e7S3Bucket7CBBD48C | |
| S3Key: | |
| Fn::Join: | |
| - "" | |
| - - Fn::Select: | |
| - 0 | |
| - Fn::Split: | |
| - "||" | |
| - Ref: AssetParametersa65ac4beaa2b5a7b20eebf3b7c5c1c886b71428afa377e02dab0d10ab3be57e7S3VersionKey87E3D057 | |
| - Fn::Select: | |
| - 1 | |
| - Fn::Split: | |
| - "||" | |
| - Ref: AssetParametersa65ac4beaa2b5a7b20eebf3b7c5c1c886b71428afa377e02dab0d10ab3be57e7S3VersionKey87E3D057 | |
| Handler: handler.handler | |
| Role: | |
| Fn::GetAtt: | |
| - AdoptEcrRepositorydbc60defc59544bcaa5c28c95d68f62cServiceRoleD788AA17 | |
| - Arn | |
| Runtime: nodejs10.x | |
| Timeout: 300 | |
| DependsOn: | |
| - AdoptEcrRepositorydbc60defc59544bcaa5c28c95d68f62cServiceRoleDefaultPolicy6BC8737C | |
| - AdoptEcrRepositorydbc60defc59544bcaa5c28c95d68f62cServiceRoleD788AA17 | |
| Metadata: | |
| aws:cdk:path: WebStack/AdoptEcrRepositorydbc60defc59544bcaa5c28c95d68f62c/Resource | |
| aws:asset:path: asset.a65ac4beaa2b5a7b20eebf3b7c5c1c886b71428afa377e02dab0d10ab3be57e7 | |
| aws:asset:property: Code | |
| CDKMetadata: | |
| Type: AWS::CDK::Metadata | |
| Properties: | |
| Modules: aws-cdk=1.19.0,@aws-cdk/assets=1.19.0,@aws-cdk/aws-applicationautoscaling=1.19.0,@aws-cdk/aws-autoscaling=1.19.0,@aws-cdk/aws-autoscaling-common=1.19.0,@aws-cdk/aws-autoscaling-hooktargets=1.19.0,@aws-cdk/aws-certificatemanager=1.19.0,@aws-cdk/aws-cloudformation=1.19.0,@aws-cdk/aws-cloudwatch=1.19.0,@aws-cdk/aws-ec2=1.19.0,@aws-cdk/aws-ecr=1.19.0,@aws-cdk/aws-ecr-assets=1.19.0,@aws-cdk/aws-ecs=1.19.0,@aws-cdk/aws-ecs-patterns=1.19.0,@aws-cdk/aws-elasticloadbalancingv2=1.19.0,@aws-cdk/aws-events=1.19.0,@aws-cdk/aws-events-targets=1.19.0,@aws-cdk/aws-iam=1.19.0,@aws-cdk/aws-kms=1.19.0,@aws-cdk/aws-lambda=1.19.0,@aws-cdk/aws-logs=1.19.0,@aws-cdk/aws-route53=1.19.0,@aws-cdk/aws-route53-targets=1.19.0,@aws-cdk/aws-s3=1.19.0,@aws-cdk/aws-s3-assets=1.19.0,@aws-cdk/aws-servicediscovery=1.19.0,@aws-cdk/aws-sns=1.19.0,@aws-cdk/aws-sns-subscriptions=1.19.0,@aws-cdk/aws-sqs=1.19.0,@aws-cdk/aws-ssm=1.19.0,@aws-cdk/core=1.19.0,@aws-cdk/cx-api=1.19.0,@aws-cdk/region-info=1.19.0,jsii-runtime=node.js/v10.16.3 | |
| Condition: CDKMetadataAvailable | |
| Outputs: | |
| ServiceLoadBalancerDNSEC5B149E: | |
| Value: | |
| Fn::GetAtt: | |
| - ServiceLBE9A1ADBC | |
| - DNSName | |
| ServiceServiceURL250C0FB6: | |
| Value: | |
| Fn::Join: | |
| - "" | |
| - - http:// | |
| - Fn::GetAtt: | |
| - ServiceLBE9A1ADBC | |
| - DNSName | |
| Parameters: | |
| AssetParameters5dec6c295ad8cb0f504b9a9e175046fbaf50e2a1d44387c9f26dc1221c236d54ImageName7C9E9DB7: | |
| Type: String | |
| Description: ECR repository name and tag for asset "5dec6c295ad8cb0f504b9a9e175046fbaf50e2a1d44387c9f26dc1221c236d54" | |
| AssetParametersa65ac4beaa2b5a7b20eebf3b7c5c1c886b71428afa377e02dab0d10ab3be57e7S3Bucket7CBBD48C: | |
| Type: String | |
| Description: S3 bucket for asset "a65ac4beaa2b5a7b20eebf3b7c5c1c886b71428afa377e02dab0d10ab3be57e7" | |
| AssetParametersa65ac4beaa2b5a7b20eebf3b7c5c1c886b71428afa377e02dab0d10ab3be57e7S3VersionKey87E3D057: | |
| Type: String | |
| Description: S3 key for asset version "a65ac4beaa2b5a7b20eebf3b7c5c1c886b71428afa377e02dab0d10ab3be57e7" | |
| AssetParametersa65ac4beaa2b5a7b20eebf3b7c5c1c886b71428afa377e02dab0d10ab3be57e7ArtifactHash3E217B68: | |
| Type: String | |
| Description: Artifact hash for asset "a65ac4beaa2b5a7b20eebf3b7c5c1c886b71428afa377e02dab0d10ab3be57e7" | |
| Conditions: | |
| CDKMetadataAvailable: | |
| Fn::Or: | |
| - Fn::Or: | |
| - Fn::Equals: | |
| - Ref: AWS::Region | |
| - ap-east-1 | |
| - Fn::Equals: | |
| - Ref: AWS::Region | |
| - ap-northeast-1 | |
| - Fn::Equals: | |
| - Ref: AWS::Region | |
| - ap-northeast-2 | |
| - Fn::Equals: | |
| - Ref: AWS::Region | |
| - ap-south-1 | |
| - Fn::Equals: | |
| - Ref: AWS::Region | |
| - ap-southeast-1 | |
| - Fn::Equals: | |
| - Ref: AWS::Region | |
| - ap-southeast-2 | |
| - Fn::Equals: | |
| - Ref: AWS::Region | |
| - ca-central-1 | |
| - Fn::Equals: | |
| - Ref: AWS::Region | |
| - cn-north-1 | |
| - Fn::Equals: | |
| - Ref: AWS::Region | |
| - cn-northwest-1 | |
| - Fn::Equals: | |
| - Ref: AWS::Region | |
| - eu-central-1 | |
| - Fn::Or: | |
| - Fn::Equals: | |
| - Ref: AWS::Region | |
| - eu-north-1 | |
| - Fn::Equals: | |
| - Ref: AWS::Region | |
| - eu-west-1 | |
| - Fn::Equals: | |
| - Ref: AWS::Region | |
| - eu-west-2 | |
| - Fn::Equals: | |
| - Ref: AWS::Region | |
| - eu-west-3 | |
| - Fn::Equals: | |
| - Ref: AWS::Region | |
| - me-south-1 | |
| - Fn::Equals: | |
| - Ref: AWS::Region | |
| - sa-east-1 | |
| - Fn::Equals: | |
| - Ref: AWS::Region | |
| - us-east-1 | |
| - Fn::Equals: | |
| - Ref: AWS::Region | |
| - us-east-2 | |
| - Fn::Equals: | |
| - Ref: AWS::Region | |
| - us-west-1 | |
| - Fn::Equals: | |
| - Ref: AWS::Region | |
| - us-west-2 |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment