chore(mixins-preview): integration test for Events

Author: gasolima

packages/@aws-cdk/mixins-preview/test/services/aws-kms/integ.events.test.ts

@@ -0,0 +1,79 @@
+
+import * as cdk from 'aws-cdk-lib/core';
+import { Rule } from 'aws-cdk-lib/aws-events';
+import * as integ from '@aws-cdk/integ-tests-alpha';
+import { LambdaFunction } from 'aws-cdk-lib/aws-events-targets';
+import { Code, Function, Runtime } from 'aws-cdk-lib/aws-lambda';
+import type { Construct } from 'constructs';
+import { CfnKey, Key } from 'aws-cdk-lib/aws-kms';
+import { KeyEvents } from '../../../lib/services/aws-kms/events.generated';
+
+class L1L2KeyWithL2Rule extends cdk.Stack {
+  public constructor(scope: Construct, id: string, props: cdk.StackProps) {
+    super(scope, id, props);
+
+    const l1Key = new CfnKey(this, 'KeyL1', {});
+    const l1KeyWithEvent = KeyEvents.fromKey(l1Key);
+
+    const l2Key = new Key(this, 'KeyL2', {});
+    const l2KeyWithEvent = KeyEvents.fromKey(l2Key);
+
+    const fn = new Function(this, 'MyFuncA', {
+      runtime: Runtime.NODEJS_LATEST,
+      handler: 'index.handler',
+      code: Code.fromInline(`
+exports.handler = async (event) => {
+  console.log("New Project event:", JSON.stringify(event, null, 2));
+  return {};
+};
+`),
+    });
+
+    const rule = new Rule(this, 'L2RuleForL1', {
+      targets: [new LambdaFunction(fn)],
+    });
+
+    rule.addEventPattern(l1KeyWithEvent.awsAPICallViaCloudTrailPattern({}));
+    rule.addEventPattern(l2KeyWithEvent.awsAPICallViaCloudTrailPattern({ eventName: ['RotateKeyOnDemand'] }));
+  }
+}
+
+class L2KeyOtherEventsWithL2Rule extends cdk.Stack {
+  public constructor(scope: Construct, id: string, props: cdk.StackProps) {
+    super(scope, id, props);
+
+    const l2Key = new Key(this, 'Key', {});
+    const l2KeyWithEvent = KeyEvents.fromKey(l2Key);
+
+    const fn = new Function(this, 'MyFuncA', {
+      runtime: Runtime.NODEJS_LATEST,
+      handler: 'index.handler',
+      code: Code.fromInline(`
+exports.handler = async (event) => {
+  console.log("New Project event:", JSON.stringify(event, null, 2));
+  return {};
+};
+`),
+    });
+
+    const rule = new Rule(this, 'L2RuleForL1', {
+      targets: [new LambdaFunction(fn)],
+    });
+
+    rule.addEventPattern(l2KeyWithEvent.kMSCMKDeletionPattern({}));
+    rule.addEventPattern(l2KeyWithEvent.kMSCMKRotationPattern({}));
+  }
+}
+
+const app = new cdk.App();
+
+const testStack1 = new L1L2KeyWithL2Rule(app, 'L1L2KeyWithL2Rule', { env: { region: 'us-east-1' } });
+const testStack2 = new L2KeyOtherEventsWithL2Rule(app, 'L2KeyOtherEventsWithL2Rule', { env: { region: 'us-east-1' } });
+
+new integ.IntegTest(app, 'Key-Test', {
+  testCases: [
+    testStack1,
+    testStack2,
+  ],
+});
+

packages/@aws-cdk/mixins-preview/test/services/aws-kms/integ.events.test.ts.snapshot/KeyTestDefaultTestDeployAssert2D3BFAA3.assets.json

@@ -0,0 +1,200 @@
+{
+ "Resources": {
+  "KeyL1": {
+   "Type": "AWS::KMS::Key"
+  },
+  "KeyL25E747C61": {
+   "Type": "AWS::KMS::Key",
+   "Properties": {
+    "KeyPolicy": {
+     "Statement": [
+      {
+       "Action": "kms:*",
+       "Effect": "Allow",
+       "Principal": {
+        "AWS": {
+         "Fn::Join": [
+          "",
+          [
+           "arn:aws:iam::",
+           {
+            "Ref": "AWS::AccountId"
+           },
+           ":root"
+          ]
+         ]
+        }
+       },
+       "Resource": "*"
+      }
+     ],
+     "Version": "2012-10-17"
+    }
+   },
+   "UpdateReplacePolicy": "Retain",
+   "DeletionPolicy": "Retain"
+  },
+  "MyFuncAServiceRole9A674AAA": {
+   "Type": "AWS::IAM::Role",
+   "Properties": {
+    "AssumeRolePolicyDocument": {
+     "Statement": [
+      {
+       "Action": "sts:AssumeRole",
+       "Effect": "Allow",
+       "Principal": {
+        "Service": "lambda.amazonaws.com"
+       }
+      }
+     ],
+     "Version": "2012-10-17"
+    },
+    "ManagedPolicyArns": [
+     {
+      "Fn::Join": [
+       "",
+       [
+        "arn:",
+        {
+         "Ref": "AWS::Partition"
+        },
+        ":iam::aws:policy/service-role/AWSLambdaBasicExecutionRole"
+       ]
+      ]
+     }
+    ]
+   }
+  },
+  "MyFuncAAF5F3089": {
+   "Type": "AWS::Lambda::Function",
+   "Properties": {
+    "Code": {
+     "ZipFile": "\nexports.handler = async (event) => {\n  console.log(\"New Project event:\", JSON.stringify(event, null, 2));\n  return {};\n};\n"
+    },
+    "Handler": "index.handler",
+    "Role": {
+     "Fn::GetAtt": [
+      "MyFuncAServiceRole9A674AAA",
+      "Arn"
+     ]
+    },
+    "Runtime": "nodejs22.x"
+   },
+   "DependsOn": [
+    "MyFuncAServiceRole9A674AAA"
+   ]
+  },
+  "MyFuncALogGroupD7C330A5": {
+   "Type": "AWS::Logs::LogGroup",
+   "Properties": {
+    "LogGroupName": {
+     "Fn::Join": [
+      "",
+      [
+       "/aws/lambda/",
+       {
+        "Ref": "MyFuncAAF5F3089"
+       }
+      ]
+     ]
+    },
+    "RetentionInDays": 731
+   },
+   "UpdateReplacePolicy": "Retain",
+   "DeletionPolicy": "Retain"
+  },
+  "L2RuleForL13AA6354B": {
+   "Type": "AWS::Events::Rule",
+   "Properties": {
+    "EventPattern": {
+     "source": [
+      "aws.kms"
+     ],
+     "detail-type": [
+      "AWS API Call via CloudTrail"
+     ],
+     "detail": {
+      "requestParameters": {
+       "keyId": [
+        {
+         "Ref": "KeyL1"
+        },
+        {
+         "Ref": "KeyL25E747C61"
+        }
+       ]
+      },
+      "eventName": [
+       "RotateKeyOnDemand"
+      ]
+     }
+    },
+    "State": "ENABLED",
+    "Targets": [
+     {
+      "Arn": {
+       "Fn::GetAtt": [
+        "MyFuncAAF5F3089",
+        "Arn"
+       ]
+      },
+      "Id": "Target0"
+     }
+    ]
+   }
+  },
+  "L2RuleForL1AllowEventRuleL1L2KeyWithL2RuleMyFuncAA680479253AB68ED": {
+   "Type": "AWS::Lambda::Permission",
+   "Properties": {
+    "Action": "lambda:InvokeFunction",
+    "FunctionName": {
+     "Fn::GetAtt": [
+      "MyFuncAAF5F3089",
+      "Arn"
+     ]
+    },
+    "Principal": "events.amazonaws.com",
+    "SourceArn": {
+     "Fn::GetAtt": [
+      "L2RuleForL13AA6354B",
+      "Arn"
+     ]
+    }
+   }
+  }
+ },
+ "Parameters": {
+  "BootstrapVersion": {
+   "Type": "AWS::SSM::Parameter::Value<String>",
+   "Default": "/cdk-bootstrap/hnb659fds/version",
+   "Description": "Version of the CDK Bootstrap resources in this environment, automatically retrieved from SSM Parameter Store. [cdk:skip]"
+  }
+ },
+ "Rules": {
+  "CheckBootstrapVersion": {
+   "Assertions": [
+    {
+     "Assert": {
+      "Fn::Not": [
+       {
+        "Fn::Contains": [
+         [
+          "1",
+          "2",
+          "3",
+          "4",
+          "5"
+         ],
+         {
+          "Ref": "BootstrapVersion"
+         }
+        ]
+       }
+      ]
+     },
+     "AssertDescription": "CDK bootstrap stack version 6 required. Please run 'cdk bootstrap' with a recent version of the CDK CLI."
+    }
+   ]
+  }
+ }
+}