-
Notifications
You must be signed in to change notification settings - Fork 2
/
Copy pathcdk.json
74 lines (74 loc) · 3.39 KB
/
cdk.json
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
{
"app": "python3 app.py",
"context": {
"Prod": {
"resource_tags": {
"ProjectName": "TREProject",
"ProjectCode": "NA",
"Owner": "NA"
},
"dataset": {
"InformationClassification": "NA",
"IGLead": "NA",
"DataSource": "NA",
"OriginDate": "NA",
"ReviewDate": "NA"
},
"__powertools_comment": "We are using the AWS managed lambda layer as described in https://awslabs.github.io/aws-lambda-powertools-python/latest/#install",
"powertools_layer_version": "29",
"egress_reviewer_roles": ["InformationGovernance", "TREAdmin"],
"swb_egress_store_arn": "<<SWB_STACK_EGRESS_STORE_S3_BUCKET_ARN>>",
"swb_egress_notification_topic": "<<SWB_STACK_EGRESS_STORE_NOTIFICATION_SNS_TOPIC_ARN>>",
"swb_egress_notification_bucket_arn": "<<SWB_STACK_EGRESS_STORE_NOTIFICATION_S3_BUCKET_ARN>>",
"swb_egress_notification_bucket_kms_arn": "<<SWB_STACK_EGRESS_STORE_NOTIFICATION_S3_BUCKET_KMS_KEY_ARN>>",
"swb_egress_store_db_table": "<<SWB_STACK_EGRESS_STORE_DYNAMODB_TABLE>>",
"datalake_target_bucket_arn": "<<DATALAKE_STACK_TARGET_S3_BUCKET_ARN>>",
"datalake_target_bucket_kms_arn": "<<DATALAKE_STACK_TARGET_S3_BUCKET_KMS_KEY_ARN>>",
"efs_mount_path": "/mnt/egress",
"cognito_userpool_domain": "<<COGNITO_DOMAIN_TO_BE_CREATED>>",
"max_downloads_allowed": "1",
"tre_admin_email_address": "<<TRE_ADMIN_EMAIL_TO_BE_VERIFIED>>",
"enable_single_approval": "<<true or false>>",
"download_expiry_seconds": "3600",
"ig_workspaces_account": "",
"use_s3_access_points": "false",
"max_request_age_days": "0",
"global_web_acl_arn": "<<WAF_ADDON_GLOBAL_WEBACL_ARN>>",
"regional_web_acl_arn": "<<WAF_ADDON_REGIONAL_WEBACL_ARN>>",
"custom_domain": {
"is_enabled": false,
"domain_name": "<<EGRESS_APP_DOMAIN_NAME>>",
"cert_arn": "<<ACM_CERTIFICATE_ARN_FOR_PROJECT>>",
"hosted_zone_id": "<<ROUTE53_PUBLIC_HOSTED_ZONE_ID>>",
"hosted_zone_name": "<<ROUTE53_PUBLIC_ZONE_NAME>>"
},
"custom_idp": {
"is_enabled": false,
"name": "<<NAME OF IDP",
"metadata_url": "<<SAML_METADATA_URL_FROM_IDP"
}
},
"base": {
"ses_configuration_set_name": "egress_app_configuration_set_"
},
"@aws-cdk/aws-apigateway:usagePlanKeyOrderInsensitiveId": true,
"@aws-cdk/core:stackRelativeExports": true,
"@aws-cdk/aws-rds:lowercaseDbIdentifier": true,
"@aws-cdk/aws-lambda:recognizeVersionProps": true,
"@aws-cdk/aws-lambda:recognizeLayerVersion": true,
"@aws-cdk/aws-cloudfront:defaultSecurityPolicyTLSv1.2_2021": true,
"@aws-cdk-containers/ecs-service-extensions:enableDefaultLogDriver": true,
"@aws-cdk/aws-ec2:uniqueImdsv2TemplateName": true,
"@aws-cdk/core:checkSecretUsage": true,
"@aws-cdk/aws-iam:minimizePolicies": true,
"@aws-cdk/aws-ecs:arnFormatIncludesClusterName": true,
"@aws-cdk/core:validateSnapshotRemovalPolicy": true,
"@aws-cdk/aws-codepipeline:crossAccountKeyAliasStackSafeResourceName": true,
"@aws-cdk/aws-s3:createDefaultLoggingPolicy": true,
"@aws-cdk/aws-sns-subscriptions:restrictSqsDescryption": true,
"@aws-cdk/aws-apigateway:disableCloudWatchRole": true,
"@aws-cdk/core:enablePartitionLiterals": true,
"@aws-cdk/customresources:installLatestAwsSdkDefault": false,
"@aws-cdk/core:target-partitions": ["aws"]
}
}