// Jest Snapshot v1, https://goo.gl/fbAQLP exports[`Snapshot test for BLEAGovABaseCtPipeline Stack 1`] = ` Object { "Parameters": Object { "BootstrapVersion": Object { "Default": "/cdk-bootstrap/hnb659fds/version", "Description": "Version of the CDK Bootstrap resources in this environment, automatically retrieved from SSM Parameter Store. [cdk:skip]", "Type": "AWS::SSM::Parameter::Value", }, }, "Resources": Object { "Pipeline9850B417": Object { "DependsOn": Array [ "PipelineRoleDefaultPolicy7BDC1ABB", "PipelineRoleB27FAA37", ], "Properties": Object { "ArtifactStore": Object { "Location": Object { "Ref": "PipelineArtifactsBucketAEA9A052", }, "Type": "S3", }, "RestartExecutionOnUpdate": true, "RoleArn": Object { "Fn::GetAtt": Array [ "PipelineRoleB27FAA37", "Arn", ], }, "Stages": Array [ Object { "Actions": Array [ Object { "ActionTypeId": Object { "Category": "Source", "Owner": "AWS", "Provider": "CodeStarSourceConnection", "Version": "1", }, "Configuration": Object { "BranchName": "main", "ConnectionArn": "arn:aws:codestar-connections:ap-northeast-1:xxxxxxxxxxxx:connection/example", "FullRepositoryId": "aws-samples/baseline-environment-on-aws", }, "Name": "aws-samples_baseline-environment-on-aws", "OutputArtifacts": Array [ Object { "Name": "aws_samples_baseline_environment_on_aws_Source", }, ], "RoleArn": Object { "Fn::GetAtt": Array [ "PipelineSourceawssamplesbaselineenvironmentonawsCodePipelineActionRole1BD37B19", "Arn", ], }, "RunOrder": 1, }, ], "Name": "Source", }, Object { "Actions": Array [ Object { "ActionTypeId": Object { "Category": "Build", "Owner": "AWS", "Provider": "CodeBuild", "Version": "1", }, "Configuration": Object { "EnvironmentVariables": "[{\\"name\\":\\"_PROJECT_CONFIG_HASH\\",\\"type\\":\\"PLAINTEXT\\",\\"value\\":\\"e94c841cdbb89a42d615fa2e3c04d988012ccd1baa3ab150b346d254ec6d6b1f\\"}]", "ProjectName": Object { "Ref": "PipelineBuildSynthCdkBuildProject6BEFA8E6", }, }, "InputArtifacts": Array [ Object { "Name": "aws_samples_baseline_environment_on_aws_Source", }, ], "Name": "Synth", "OutputArtifacts": Array [ Object { "Name": "Synth_Output", }, ], "RoleArn": Object { "Fn::GetAtt": Array [ "PipelineCodeBuildActionRole226DB0CB", "Arn", ], }, "RunOrder": 1, }, ], "Name": "Build", }, Object { "Actions": Array [ Object { "ActionTypeId": Object { "Category": "Build", "Owner": "AWS", "Provider": "CodeBuild", "Version": "1", }, "Configuration": Object { "EnvironmentVariables": "[{\\"name\\":\\"_PROJECT_CONFIG_HASH\\",\\"type\\":\\"PLAINTEXT\\",\\"value\\":\\"685ee3453127134e4fd0bcd277fa53ca0f0d612b8970c5a9f096167f35bd3823\\"}]", "ProjectName": Object { "Ref": "PipelineUpdatePipelineSelfMutationDAA41400", }, }, "InputArtifacts": Array [ Object { "Name": "Synth_Output", }, ], "Name": "SelfMutate", "RoleArn": Object { "Fn::GetAtt": Array [ "PipelineCodeBuildActionRole226DB0CB", "Arn", ], }, "RunOrder": 1, }, ], "Name": "UpdatePipeline", }, Object { "Actions": Array [ Object { "ActionTypeId": Object { "Category": "Deploy", "Owner": "AWS", "Provider": "CloudFormation", "Version": "1", }, "Configuration": Object { "ActionMode": "CHANGE_SET_REPLACE", "Capabilities": "CAPABILITY_NAMED_IAM,CAPABILITY_AUTO_EXPAND", "ChangeSetName": "PipelineChange", "RoleArn": Object { "Fn::Join": Array [ "", Array [ "arn:", Object { "Ref": "AWS::Partition", }, ":iam::", Object { "Ref": "AWS::AccountId", }, ":role/cdk-hnb659fds-cfn-exec-role-", Object { "Ref": "AWS::AccountId", }, "-", Object { "Ref": "AWS::Region", }, ], ], }, "StackName": "Dev-BLEAGovBaseCt", "TemplateConfiguration": "Synth_Output::assembly-Dev-BLEAGovBaseCtPipeilne-Dev/DevBLEAGovBaseCtPipeilneDevBLEAGovBaseCt843AF7BA.template.json.config.json", "TemplatePath": "Synth_Output::assembly-Dev-BLEAGovBaseCtPipeilne-Dev/DevBLEAGovBaseCtPipeilneDevBLEAGovBaseCt843AF7BA.template.json", }, "InputArtifacts": Array [ Object { "Name": "Synth_Output", }, ], "Name": "Prepare", "RoleArn": Object { "Fn::Join": Array [ "", Array [ "arn:", Object { "Ref": "AWS::Partition", }, ":iam::", Object { "Ref": "AWS::AccountId", }, ":role/cdk-hnb659fds-deploy-role-", Object { "Ref": "AWS::AccountId", }, "-", Object { "Ref": "AWS::Region", }, ], ], }, "RunOrder": 1, }, Object { "ActionTypeId": Object { "Category": "Deploy", "Owner": "AWS", "Provider": "CloudFormation", "Version": "1", }, "Configuration": Object { "ActionMode": "CHANGE_SET_EXECUTE", "ChangeSetName": "PipelineChange", "StackName": "Dev-BLEAGovBaseCt", }, "Name": "Deploy", "RoleArn": Object { "Fn::Join": Array [ "", Array [ "arn:", Object { "Ref": "AWS::Partition", }, ":iam::", Object { "Ref": "AWS::AccountId", }, ":role/cdk-hnb659fds-deploy-role-", Object { "Ref": "AWS::AccountId", }, "-", Object { "Ref": "AWS::Region", }, ], ], }, "RunOrder": 2, }, ], "Name": "Dev", }, ], }, "Type": "AWS::CodePipeline::Pipeline", }, "PipelineArtifactsBucketAEA9A052": Object { "DeletionPolicy": "Retain", "Properties": Object { "BucketEncryption": Object { "ServerSideEncryptionConfiguration": Array [ Object { "ServerSideEncryptionByDefault": Object { "SSEAlgorithm": "aws:kms", }, }, ], }, "PublicAccessBlockConfiguration": Object { "BlockPublicAcls": true, "BlockPublicPolicy": true, "IgnorePublicAcls": true, "RestrictPublicBuckets": true, }, }, "Type": "AWS::S3::Bucket", "UpdateReplacePolicy": "Retain", }, "PipelineArtifactsBucketPolicyF53CCC52": Object { "Properties": Object { "Bucket": Object { "Ref": "PipelineArtifactsBucketAEA9A052", }, "PolicyDocument": Object { "Statement": Array [ Object { "Action": "s3:*", "Condition": Object { "Bool": Object { "aws:SecureTransport": "false", }, }, "Effect": "Deny", "Principal": Object { "AWS": "*", }, "Resource": Array [ Object { "Fn::GetAtt": Array [ "PipelineArtifactsBucketAEA9A052", "Arn", ], }, Object { "Fn::Join": Array [ "", Array [ Object { "Fn::GetAtt": Array [ "PipelineArtifactsBucketAEA9A052", "Arn", ], }, "/*", ], ], }, ], }, Object { "Action": Array [ "s3:GetObject*", "s3:GetBucket*", "s3:List*", ], "Effect": "Allow", "Principal": Object { "AWS": Object { "Fn::Join": Array [ "", Array [ "arn:", Object { "Ref": "AWS::Partition", }, ":iam::", Object { "Ref": "AWS::AccountId", }, ":role/cdk-hnb659fds-deploy-role-", Object { "Ref": "AWS::AccountId", }, "-", Object { "Ref": "AWS::Region", }, ], ], }, }, "Resource": Array [ Object { "Fn::GetAtt": Array [ "PipelineArtifactsBucketAEA9A052", "Arn", ], }, Object { "Fn::Join": Array [ "", Array [ Object { "Fn::GetAtt": Array [ "PipelineArtifactsBucketAEA9A052", "Arn", ], }, "/*", ], ], }, ], }, ], "Version": "2012-10-17", }, }, "Type": "AWS::S3::BucketPolicy", }, "PipelineBuildSynthCdkBuildProject6BEFA8E6": Object { "Properties": Object { "Artifacts": Object { "Type": "CODEPIPELINE", }, "Cache": Object { "Type": "NO_CACHE", }, "Description": "Pipeline step Dev-BLEAGovBaseCtPipeilne/Pipeline/Build/Synth", "EncryptionKey": "alias/aws/s3", "Environment": Object { "ComputeType": "BUILD_GENERAL1_SMALL", "Image": "aws/codebuild/standard:6.0", "ImagePullCredentialsType": "CODEBUILD", "PrivilegedMode": false, "Type": "LINUX_CONTAINER", }, "ServiceRole": Object { "Fn::GetAtt": Array [ "PipelineBuildSynthCdkBuildProjectRole231EEA2A", "Arn", ], }, "Source": Object { "BuildSpec": "{ \\"version\\": \\"0.2\\", \\"phases\\": { \\"install\\": { \\"commands\\": [ \\"n stable\\", \\"node --version\\", \\"npm i -g npm\\", \\"npm --version\\" ] }, \\"build\\": { \\"commands\\": [ \\"npm ci --workspaces\\", \\"cd usecases/blea-gov-base-ct\\", \\"npx cdk synth --app \\\\\\"npx ts-node --prefer-ts-exts bin/blea-gov-base-ct-via-cdk-pipelines.ts\\\\\\" --all\\" ] } }, \\"artifacts\\": { \\"base-directory\\": \\"./usecases/blea-gov-base-ct/cdk.out\\", \\"files\\": \\"**/*\\" } }", "Type": "CODEPIPELINE", }, }, "Type": "AWS::CodeBuild::Project", }, "PipelineBuildSynthCdkBuildProjectRole231EEA2A": Object { "Properties": Object { "AssumeRolePolicyDocument": Object { "Statement": Array [ Object { "Action": "sts:AssumeRole", "Effect": "Allow", "Principal": Object { "Service": "codebuild.amazonaws.com", }, }, ], "Version": "2012-10-17", }, }, "Type": "AWS::IAM::Role", }, "PipelineBuildSynthCdkBuildProjectRoleDefaultPolicyFB6C941C": Object { "Properties": Object { "PolicyDocument": Object { "Statement": Array [ Object { "Action": Array [ "logs:CreateLogGroup", "logs:CreateLogStream", "logs:PutLogEvents", ], "Effect": "Allow", "Resource": Array [ Object { "Fn::Join": Array [ "", Array [ "arn:", Object { "Ref": "AWS::Partition", }, ":logs:ap-northeast-1:123456789012:log-group:/aws/codebuild/", Object { "Ref": "PipelineBuildSynthCdkBuildProject6BEFA8E6", }, ], ], }, Object { "Fn::Join": Array [ "", Array [ "arn:", Object { "Ref": "AWS::Partition", }, ":logs:ap-northeast-1:123456789012:log-group:/aws/codebuild/", Object { "Ref": "PipelineBuildSynthCdkBuildProject6BEFA8E6", }, ":*", ], ], }, ], }, Object { "Action": Array [ "codebuild:CreateReportGroup", "codebuild:CreateReport", "codebuild:UpdateReport", "codebuild:BatchPutTestCases", "codebuild:BatchPutCodeCoverages", ], "Effect": "Allow", "Resource": Object { "Fn::Join": Array [ "", Array [ "arn:", Object { "Ref": "AWS::Partition", }, ":codebuild:ap-northeast-1:123456789012:report-group/", Object { "Ref": "PipelineBuildSynthCdkBuildProject6BEFA8E6", }, "-*", ], ], }, }, Object { "Action": Array [ "s3:GetObject*", "s3:GetBucket*", "s3:List*", "s3:DeleteObject*", "s3:PutObject", "s3:PutObjectLegalHold", "s3:PutObjectRetention", "s3:PutObjectTagging", "s3:PutObjectVersionTagging", "s3:Abort*", ], "Effect": "Allow", "Resource": Array [ Object { "Fn::GetAtt": Array [ "PipelineArtifactsBucketAEA9A052", "Arn", ], }, Object { "Fn::Join": Array [ "", Array [ Object { "Fn::GetAtt": Array [ "PipelineArtifactsBucketAEA9A052", "Arn", ], }, "/*", ], ], }, ], }, ], "Version": "2012-10-17", }, "PolicyName": "PipelineBuildSynthCdkBuildProjectRoleDefaultPolicyFB6C941C", "Roles": Array [ Object { "Ref": "PipelineBuildSynthCdkBuildProjectRole231EEA2A", }, ], }, "Type": "AWS::IAM::Policy", }, "PipelineCodeBuildActionRole226DB0CB": Object { "Properties": Object { "AssumeRolePolicyDocument": Object { "Statement": Array [ Object { "Action": "sts:AssumeRole", "Effect": "Allow", "Principal": Object { "AWS": Object { "Fn::GetAtt": Array [ "PipelineRoleB27FAA37", "Arn", ], }, }, }, ], "Version": "2012-10-17", }, }, "Type": "AWS::IAM::Role", }, "PipelineCodeBuildActionRoleDefaultPolicy1D62A6FE": Object { "Properties": Object { "PolicyDocument": Object { "Statement": Array [ Object { "Action": Array [ "codebuild:BatchGetBuilds", "codebuild:StartBuild", "codebuild:StopBuild", ], "Effect": "Allow", "Resource": Object { "Fn::GetAtt": Array [ "PipelineBuildSynthCdkBuildProject6BEFA8E6", "Arn", ], }, }, Object { "Action": Array [ "codebuild:BatchGetBuilds", "codebuild:StartBuild", "codebuild:StopBuild", ], "Effect": "Allow", "Resource": Object { "Fn::GetAtt": Array [ "PipelineUpdatePipelineSelfMutationDAA41400", "Arn", ], }, }, ], "Version": "2012-10-17", }, "PolicyName": "PipelineCodeBuildActionRoleDefaultPolicy1D62A6FE", "Roles": Array [ Object { "Ref": "PipelineCodeBuildActionRole226DB0CB", }, ], }, "Type": "AWS::IAM::Policy", }, "PipelineRoleB27FAA37": Object { "Properties": Object { "AssumeRolePolicyDocument": Object { "Statement": Array [ Object { "Action": "sts:AssumeRole", "Effect": "Allow", "Principal": Object { "Service": "codepipeline.amazonaws.com", }, }, ], "Version": "2012-10-17", }, }, "Type": "AWS::IAM::Role", }, "PipelineRoleDefaultPolicy7BDC1ABB": Object { "Properties": Object { "PolicyDocument": Object { "Statement": Array [ Object { "Action": Array [ "s3:GetObject*", "s3:GetBucket*", "s3:List*", "s3:DeleteObject*", "s3:PutObject", "s3:PutObjectLegalHold", "s3:PutObjectRetention", "s3:PutObjectTagging", "s3:PutObjectVersionTagging", "s3:Abort*", ], "Effect": "Allow", "Resource": Array [ Object { "Fn::GetAtt": Array [ "PipelineArtifactsBucketAEA9A052", "Arn", ], }, Object { "Fn::Join": Array [ "", Array [ Object { "Fn::GetAtt": Array [ "PipelineArtifactsBucketAEA9A052", "Arn", ], }, "/*", ], ], }, ], }, Object { "Action": "sts:AssumeRole", "Effect": "Allow", "Resource": Object { "Fn::GetAtt": Array [ "PipelineSourceawssamplesbaselineenvironmentonawsCodePipelineActionRole1BD37B19", "Arn", ], }, }, Object { "Action": "sts:AssumeRole", "Effect": "Allow", "Resource": Object { "Fn::GetAtt": Array [ "PipelineCodeBuildActionRole226DB0CB", "Arn", ], }, }, Object { "Action": "sts:AssumeRole", "Effect": "Allow", "Resource": Object { "Fn::Join": Array [ "", Array [ "arn:", Object { "Ref": "AWS::Partition", }, ":iam::", Object { "Ref": "AWS::AccountId", }, ":role/cdk-hnb659fds-deploy-role-", Object { "Ref": "AWS::AccountId", }, "-", Object { "Ref": "AWS::Region", }, ], ], }, }, ], "Version": "2012-10-17", }, "PolicyName": "PipelineRoleDefaultPolicy7BDC1ABB", "Roles": Array [ Object { "Ref": "PipelineRoleB27FAA37", }, ], }, "Type": "AWS::IAM::Policy", }, "PipelineSourceawssamplesbaselineenvironmentonawsCodePipelineActionRole1BD37B19": Object { "Properties": Object { "AssumeRolePolicyDocument": Object { "Statement": Array [ Object { "Action": "sts:AssumeRole", "Effect": "Allow", "Principal": Object { "AWS": Object { "Fn::Join": Array [ "", Array [ "arn:", Object { "Ref": "AWS::Partition", }, ":iam::123456789012:root", ], ], }, }, }, ], "Version": "2012-10-17", }, }, "Type": "AWS::IAM::Role", }, "PipelineSourceawssamplesbaselineenvironmentonawsCodePipelineActionRoleDefaultPolicy51E7124E": Object { "Properties": Object { "PolicyDocument": Object { "Statement": Array [ Object { "Action": "codestar-connections:UseConnection", "Effect": "Allow", "Resource": "arn:aws:codestar-connections:ap-northeast-1:xxxxxxxxxxxx:connection/example", }, Object { "Action": Array [ "s3:GetObject*", "s3:GetBucket*", "s3:List*", "s3:DeleteObject*", "s3:PutObject", "s3:PutObjectLegalHold", "s3:PutObjectRetention", "s3:PutObjectTagging", "s3:PutObjectVersionTagging", "s3:Abort*", ], "Effect": "Allow", "Resource": Array [ Object { "Fn::GetAtt": Array [ "PipelineArtifactsBucketAEA9A052", "Arn", ], }, Object { "Fn::Join": Array [ "", Array [ Object { "Fn::GetAtt": Array [ "PipelineArtifactsBucketAEA9A052", "Arn", ], }, "/*", ], ], }, ], }, Object { "Action": Array [ "s3:PutObjectAcl", "s3:PutObjectVersionAcl", ], "Effect": "Allow", "Resource": Object { "Fn::Join": Array [ "", Array [ Object { "Fn::GetAtt": Array [ "PipelineArtifactsBucketAEA9A052", "Arn", ], }, "/*", ], ], }, }, ], "Version": "2012-10-17", }, "PolicyName": "PipelineSourceawssamplesbaselineenvironmentonawsCodePipelineActionRoleDefaultPolicy51E7124E", "Roles": Array [ Object { "Ref": "PipelineSourceawssamplesbaselineenvironmentonawsCodePipelineActionRole1BD37B19", }, ], }, "Type": "AWS::IAM::Policy", }, "PipelineUpdatePipelineSelfMutationDAA41400": Object { "Properties": Object { "Artifacts": Object { "Type": "CODEPIPELINE", }, "Cache": Object { "Type": "NO_CACHE", }, "Description": "Pipeline step Dev-BLEAGovBaseCtPipeilne/Pipeline/UpdatePipeline/SelfMutate", "EncryptionKey": "alias/aws/s3", "Environment": Object { "ComputeType": "BUILD_GENERAL1_SMALL", "Image": "aws/codebuild/standard:6.0", "ImagePullCredentialsType": "CODEBUILD", "PrivilegedMode": false, "Type": "LINUX_CONTAINER", }, "ServiceRole": Object { "Fn::GetAtt": Array [ "PipelineUpdatePipelineSelfMutationRole57E559E8", "Arn", ], }, "Source": Object { "BuildSpec": "{ \\"version\\": \\"0.2\\", \\"phases\\": { \\"install\\": { \\"commands\\": [ \\"npm install -g aws-cdk@2\\" ] }, \\"build\\": { \\"commands\\": [ \\"cdk -a . deploy Dev-BLEAGovBaseCtPipeilne --require-approval=never --verbose\\" ] } } }", "Type": "CODEPIPELINE", }, }, "Type": "AWS::CodeBuild::Project", }, "PipelineUpdatePipelineSelfMutationRole57E559E8": Object { "Properties": Object { "AssumeRolePolicyDocument": Object { "Statement": Array [ Object { "Action": "sts:AssumeRole", "Effect": "Allow", "Principal": Object { "Service": "codebuild.amazonaws.com", }, }, ], "Version": "2012-10-17", }, }, "Type": "AWS::IAM::Role", }, "PipelineUpdatePipelineSelfMutationRoleDefaultPolicyA225DA4E": Object { "Properties": Object { "PolicyDocument": Object { "Statement": Array [ Object { "Action": Array [ "logs:CreateLogGroup", "logs:CreateLogStream", "logs:PutLogEvents", ], "Effect": "Allow", "Resource": Array [ Object { "Fn::Join": Array [ "", Array [ "arn:", Object { "Ref": "AWS::Partition", }, ":logs:ap-northeast-1:123456789012:log-group:/aws/codebuild/", Object { "Ref": "PipelineUpdatePipelineSelfMutationDAA41400", }, ], ], }, Object { "Fn::Join": Array [ "", Array [ "arn:", Object { "Ref": "AWS::Partition", }, ":logs:ap-northeast-1:123456789012:log-group:/aws/codebuild/", Object { "Ref": "PipelineUpdatePipelineSelfMutationDAA41400", }, ":*", ], ], }, ], }, Object { "Action": Array [ "codebuild:CreateReportGroup", "codebuild:CreateReport", "codebuild:UpdateReport", "codebuild:BatchPutTestCases", "codebuild:BatchPutCodeCoverages", ], "Effect": "Allow", "Resource": Object { "Fn::Join": Array [ "", Array [ "arn:", Object { "Ref": "AWS::Partition", }, ":codebuild:ap-northeast-1:123456789012:report-group/", Object { "Ref": "PipelineUpdatePipelineSelfMutationDAA41400", }, "-*", ], ], }, }, Object { "Action": "sts:AssumeRole", "Condition": Object { "ForAnyValue:StringEquals": Object { "iam:ResourceTag/aws-cdk:bootstrap-role": Array [ "image-publishing", "file-publishing", "deploy", ], }, }, "Effect": "Allow", "Resource": "arn:*:iam::123456789012:role/*", }, Object { "Action": "cloudformation:DescribeStacks", "Effect": "Allow", "Resource": "*", }, Object { "Action": "s3:ListBucket", "Effect": "Allow", "Resource": "*", }, Object { "Action": Array [ "s3:GetObject*", "s3:GetBucket*", "s3:List*", ], "Effect": "Allow", "Resource": Array [ Object { "Fn::GetAtt": Array [ "PipelineArtifactsBucketAEA9A052", "Arn", ], }, Object { "Fn::Join": Array [ "", Array [ Object { "Fn::GetAtt": Array [ "PipelineArtifactsBucketAEA9A052", "Arn", ], }, "/*", ], ], }, ], }, ], "Version": "2012-10-17", }, "PolicyName": "PipelineUpdatePipelineSelfMutationRoleDefaultPolicyA225DA4E", "Roles": Array [ Object { "Ref": "PipelineUpdatePipelineSelfMutationRole57E559E8", }, ], }, "Type": "AWS::IAM::Policy", }, }, "Rules": Object { "CheckBootstrapVersion": Object { "Assertions": Array [ Object { "Assert": Object { "Fn::Not": Array [ Object { "Fn::Contains": Array [ Array [ "1", "2", "3", "4", "5", ], Object { "Ref": "BootstrapVersion", }, ], }, ], }, "AssertDescription": "CDK bootstrap stack version 6 required. Please run 'cdk bootstrap' with a recent version of the CDK CLI.", }, ], }, }, } `;