Many resources are needed to download a project. Please understand that we have to compensate our server costs. Thank you in advance.
Project price only 1 $
You can buy this project and download/modify it how often you want.
com.pulumi.aws.codepipeline.kotlin.Pipeline.kt Maven / Gradle / Ivy
@file:Suppress("NAME_SHADOWING", "DEPRECATION")
package com.pulumi.aws.codepipeline.kotlin
import com.pulumi.aws.codepipeline.kotlin.outputs.PipelineArtifactStore
import com.pulumi.aws.codepipeline.kotlin.outputs.PipelineStage
import com.pulumi.aws.codepipeline.kotlin.outputs.PipelineTrigger
import com.pulumi.aws.codepipeline.kotlin.outputs.PipelineVariable
import com.pulumi.core.Output
import com.pulumi.kotlin.KotlinCustomResource
import com.pulumi.kotlin.PulumiTagMarker
import com.pulumi.kotlin.ResourceMapper
import com.pulumi.kotlin.options.CustomResourceOptions
import com.pulumi.kotlin.options.CustomResourceOptionsBuilder
import com.pulumi.resources.Resource
import kotlin.Boolean
import kotlin.Deprecated
import kotlin.String
import kotlin.Suppress
import kotlin.Unit
import kotlin.collections.List
import kotlin.collections.Map
import com.pulumi.aws.codepipeline.kotlin.outputs.PipelineArtifactStore.Companion.toKotlin as pipelineArtifactStoreToKotlin
import com.pulumi.aws.codepipeline.kotlin.outputs.PipelineStage.Companion.toKotlin as pipelineStageToKotlin
import com.pulumi.aws.codepipeline.kotlin.outputs.PipelineTrigger.Companion.toKotlin as pipelineTriggerToKotlin
import com.pulumi.aws.codepipeline.kotlin.outputs.PipelineVariable.Companion.toKotlin as pipelineVariableToKotlin
/**
* Builder for [Pipeline].
*/
@PulumiTagMarker
public class PipelineResourceBuilder internal constructor() {
public var name: String? = null
public var args: PipelineArgs = PipelineArgs()
public var opts: CustomResourceOptions = CustomResourceOptions()
/**
* @param name The _unique_ name of the resulting resource.
*/
public fun name(`value`: String) {
this.name = value
}
/**
* @param block The arguments to use to populate this resource's properties.
*/
public suspend fun args(block: suspend PipelineArgsBuilder.() -> Unit) {
val builder = PipelineArgsBuilder()
block(builder)
this.args = builder.build()
}
/**
* @param block A bag of options that control this resource's behavior.
*/
public suspend fun opts(block: suspend CustomResourceOptionsBuilder.() -> Unit) {
this.opts = com.pulumi.kotlin.options.CustomResourceOptions.opts(block)
}
internal fun build(): Pipeline {
val builtJavaResource = com.pulumi.aws.codepipeline.Pipeline(
this.name,
this.args.toJava(),
this.opts.toJava(),
)
return Pipeline(builtJavaResource)
}
}
/**
* Provides a CodePipeline.
* ## Example Usage
*
* ```typescript
* import * as pulumi from "@pulumi/pulumi";
* import * as aws from "@pulumi/aws";
* const example = new aws.codestarconnections.Connection("example", {
* name: "example-connection",
* providerType: "GitHub",
* });
* const codepipelineBucket = new aws.s3.BucketV2("codepipeline_bucket", {bucket: "test-bucket"});
* const assumeRole = aws.iam.getPolicyDocument({
* statements: [{
* effect: "Allow",
* principals: [{
* type: "Service",
* identifiers: ["codepipeline.amazonaws.com"],
* }],
* actions: ["sts:AssumeRole"],
* }],
* });
* const codepipelineRole = new aws.iam.Role("codepipeline_role", {
* name: "test-role",
* assumeRolePolicy: assumeRole.then(assumeRole => assumeRole.json),
* });
* const s3kmskey = aws.kms.getAlias({
* name: "alias/myKmsKey",
* });
* const codepipeline = new aws.codepipeline.Pipeline("codepipeline", {
* name: "tf-test-pipeline",
* roleArn: codepipelineRole.arn,
* artifactStores: [{
* location: codepipelineBucket.bucket,
* type: "S3",
* encryptionKey: {
* id: s3kmskey.then(s3kmskey => s3kmskey.arn),
* type: "KMS",
* },
* }],
* stages: [
* {
* name: "Source",
* actions: [{
* name: "Source",
* category: "Source",
* owner: "AWS",
* provider: "CodeStarSourceConnection",
* version: "1",
* outputArtifacts: ["source_output"],
* configuration: {
* ConnectionArn: example.arn,
* FullRepositoryId: "my-organization/example",
* BranchName: "main",
* },
* }],
* },
* {
* name: "Build",
* actions: [{
* name: "Build",
* category: "Build",
* owner: "AWS",
* provider: "CodeBuild",
* inputArtifacts: ["source_output"],
* outputArtifacts: ["build_output"],
* version: "1",
* configuration: {
* ProjectName: "test",
* },
* }],
* },
* {
* name: "Deploy",
* actions: [{
* name: "Deploy",
* category: "Deploy",
* owner: "AWS",
* provider: "CloudFormation",
* inputArtifacts: ["build_output"],
* version: "1",
* configuration: {
* ActionMode: "REPLACE_ON_FAILURE",
* Capabilities: "CAPABILITY_AUTO_EXPAND,CAPABILITY_IAM",
* OutputFileName: "CreateStackOutput.json",
* StackName: "MyStack",
* TemplatePath: "build_output::sam-templated.yaml",
* },
* }],
* },
* ],
* });
* const codepipelineBucketPab = new aws.s3.BucketPublicAccessBlock("codepipeline_bucket_pab", {
* bucket: codepipelineBucket.id,
* blockPublicAcls: true,
* blockPublicPolicy: true,
* ignorePublicAcls: true,
* restrictPublicBuckets: true,
* });
* const codepipelinePolicy = aws.iam.getPolicyDocumentOutput({
* statements: [
* {
* effect: "Allow",
* actions: [
* "s3:GetObject",
* "s3:GetObjectVersion",
* "s3:GetBucketVersioning",
* "s3:PutObjectAcl",
* "s3:PutObject",
* ],
* resources: [
* codepipelineBucket.arn,
* pulumi.interpolate`${codepipelineBucket.arn}/*`,
* ],
* },
* {
* effect: "Allow",
* actions: ["codestar-connections:UseConnection"],
* resources: [example.arn],
* },
* {
* effect: "Allow",
* actions: [
* "codebuild:BatchGetBuilds",
* "codebuild:StartBuild",
* ],
* resources: ["*"],
* },
* ],
* });
* const codepipelinePolicyRolePolicy = new aws.iam.RolePolicy("codepipeline_policy", {
* name: "codepipeline_policy",
* role: codepipelineRole.id,
* policy: codepipelinePolicy.apply(codepipelinePolicy => codepipelinePolicy.json),
* });
* ```
* ```python
* import pulumi
* import pulumi_aws as aws
* example = aws.codestarconnections.Connection("example",
* name="example-connection",
* provider_type="GitHub")
* codepipeline_bucket = aws.s3.BucketV2("codepipeline_bucket", bucket="test-bucket")
* assume_role = aws.iam.get_policy_document(statements=[{
* "effect": "Allow",
* "principals": [{
* "type": "Service",
* "identifiers": ["codepipeline.amazonaws.com"],
* }],
* "actions": ["sts:AssumeRole"],
* }])
* codepipeline_role = aws.iam.Role("codepipeline_role",
* name="test-role",
* assume_role_policy=assume_role.json)
* s3kmskey = aws.kms.get_alias(name="alias/myKmsKey")
* codepipeline = aws.codepipeline.Pipeline("codepipeline",
* name="tf-test-pipeline",
* role_arn=codepipeline_role.arn,
* artifact_stores=[{
* "location": codepipeline_bucket.bucket,
* "type": "S3",
* "encryption_key": {
* "id": s3kmskey.arn,
* "type": "KMS",
* },
* }],
* stages=[
* {
* "name": "Source",
* "actions": [{
* "name": "Source",
* "category": "Source",
* "owner": "AWS",
* "provider": "CodeStarSourceConnection",
* "version": "1",
* "output_artifacts": ["source_output"],
* "configuration": {
* "connection_arn": example.arn,
* "full_repository_id": "my-organization/example",
* "branch_name": "main",
* },
* }],
* },
* {
* "name": "Build",
* "actions": [{
* "name": "Build",
* "category": "Build",
* "owner": "AWS",
* "provider": "CodeBuild",
* "input_artifacts": ["source_output"],
* "output_artifacts": ["build_output"],
* "version": "1",
* "configuration": {
* "project_name": "test",
* },
* }],
* },
* {
* "name": "Deploy",
* "actions": [{
* "name": "Deploy",
* "category": "Deploy",
* "owner": "AWS",
* "provider": "CloudFormation",
* "input_artifacts": ["build_output"],
* "version": "1",
* "configuration": {
* "action_mode": "REPLACE_ON_FAILURE",
* "capabilities": "CAPABILITY_AUTO_EXPAND,CAPABILITY_IAM",
* "output_file_name": "CreateStackOutput.json",
* "stack_name": "MyStack",
* "template_path": "build_output::sam-templated.yaml",
* },
* }],
* },
* ])
* codepipeline_bucket_pab = aws.s3.BucketPublicAccessBlock("codepipeline_bucket_pab",
* bucket=codepipeline_bucket.id,
* block_public_acls=True,
* block_public_policy=True,
* ignore_public_acls=True,
* restrict_public_buckets=True)
* codepipeline_policy = aws.iam.get_policy_document_output(statements=[
* {
* "effect": "Allow",
* "actions": [
* "s3:GetObject",
* "s3:GetObjectVersion",
* "s3:GetBucketVersioning",
* "s3:PutObjectAcl",
* "s3:PutObject",
* ],
* "resources": [
* codepipeline_bucket.arn,
* codepipeline_bucket.arn.apply(lambda arn: f"{arn}/*"),
* ],
* },
* {
* "effect": "Allow",
* "actions": ["codestar-connections:UseConnection"],
* "resources": [example.arn],
* },
* {
* "effect": "Allow",
* "actions": [
* "codebuild:BatchGetBuilds",
* "codebuild:StartBuild",
* ],
* "resources": ["*"],
* },
* ])
* codepipeline_policy_role_policy = aws.iam.RolePolicy("codepipeline_policy",
* name="codepipeline_policy",
* role=codepipeline_role.id,
* policy=codepipeline_policy.json)
* ```
* ```csharp
* using System.Collections.Generic;
* using System.Linq;
* using Pulumi;
* using Aws = Pulumi.Aws;
* return await Deployment.RunAsync(() =>
* {
* var example = new Aws.CodeStarConnections.Connection("example", new()
* {
* Name = "example-connection",
* ProviderType = "GitHub",
* });
* var codepipelineBucket = new Aws.S3.BucketV2("codepipeline_bucket", new()
* {
* Bucket = "test-bucket",
* });
* var assumeRole = Aws.Iam.GetPolicyDocument.Invoke(new()
* {
* Statements = new[]
* {
* new Aws.Iam.Inputs.GetPolicyDocumentStatementInputArgs
* {
* Effect = "Allow",
* Principals = new[]
* {
* new Aws.Iam.Inputs.GetPolicyDocumentStatementPrincipalInputArgs
* {
* Type = "Service",
* Identifiers = new[]
* {
* "codepipeline.amazonaws.com",
* },
* },
* },
* Actions = new[]
* {
* "sts:AssumeRole",
* },
* },
* },
* });
* var codepipelineRole = new Aws.Iam.Role("codepipeline_role", new()
* {
* Name = "test-role",
* AssumeRolePolicy = assumeRole.Apply(getPolicyDocumentResult => getPolicyDocumentResult.Json),
* });
* var s3kmskey = Aws.Kms.GetAlias.Invoke(new()
* {
* Name = "alias/myKmsKey",
* });
* var codepipeline = new Aws.CodePipeline.Pipeline("codepipeline", new()
* {
* Name = "tf-test-pipeline",
* RoleArn = codepipelineRole.Arn,
* ArtifactStores = new[]
* {
* new Aws.CodePipeline.Inputs.PipelineArtifactStoreArgs
* {
* Location = codepipelineBucket.Bucket,
* Type = "S3",
* EncryptionKey = new Aws.CodePipeline.Inputs.PipelineArtifactStoreEncryptionKeyArgs
* {
* Id = s3kmskey.Apply(getAliasResult => getAliasResult.Arn),
* Type = "KMS",
* },
* },
* },
* Stages = new[]
* {
* new Aws.CodePipeline.Inputs.PipelineStageArgs
* {
* Name = "Source",
* Actions = new[]
* {
* new Aws.CodePipeline.Inputs.PipelineStageActionArgs
* {
* Name = "Source",
* Category = "Source",
* Owner = "AWS",
* Provider = "CodeStarSourceConnection",
* Version = "1",
* OutputArtifacts = new[]
* {
* "source_output",
* },
* Configuration =
* {
* { "ConnectionArn", example.Arn },
* { "FullRepositoryId", "my-organization/example" },
* { "BranchName", "main" },
* },
* },
* },
* },
* new Aws.CodePipeline.Inputs.PipelineStageArgs
* {
* Name = "Build",
* Actions = new[]
* {
* new Aws.CodePipeline.Inputs.PipelineStageActionArgs
* {
* Name = "Build",
* Category = "Build",
* Owner = "AWS",
* Provider = "CodeBuild",
* InputArtifacts = new[]
* {
* "source_output",
* },
* OutputArtifacts = new[]
* {
* "build_output",
* },
* Version = "1",
* Configuration =
* {
* { "ProjectName", "test" },
* },
* },
* },
* },
* new Aws.CodePipeline.Inputs.PipelineStageArgs
* {
* Name = "Deploy",
* Actions = new[]
* {
* new Aws.CodePipeline.Inputs.PipelineStageActionArgs
* {
* Name = "Deploy",
* Category = "Deploy",
* Owner = "AWS",
* Provider = "CloudFormation",
* InputArtifacts = new[]
* {
* "build_output",
* },
* Version = "1",
* Configuration =
* {
* { "ActionMode", "REPLACE_ON_FAILURE" },
* { "Capabilities", "CAPABILITY_AUTO_EXPAND,CAPABILITY_IAM" },
* { "OutputFileName", "CreateStackOutput.json" },
* { "StackName", "MyStack" },
* { "TemplatePath", "build_output::sam-templated.yaml" },
* },
* },
* },
* },
* },
* });
* var codepipelineBucketPab = new Aws.S3.BucketPublicAccessBlock("codepipeline_bucket_pab", new()
* {
* Bucket = codepipelineBucket.Id,
* BlockPublicAcls = true,
* BlockPublicPolicy = true,
* IgnorePublicAcls = true,
* RestrictPublicBuckets = true,
* });
* var codepipelinePolicy = Aws.Iam.GetPolicyDocument.Invoke(new()
* {
* Statements = new[]
* {
* new Aws.Iam.Inputs.GetPolicyDocumentStatementInputArgs
* {
* Effect = "Allow",
* Actions = new[]
* {
* "s3:GetObject",
* "s3:GetObjectVersion",
* "s3:GetBucketVersioning",
* "s3:PutObjectAcl",
* "s3:PutObject",
* },
* Resources = new[]
* {
* codepipelineBucket.Arn,
* $"{codepipelineBucket.Arn}/*",
* },
* },
* new Aws.Iam.Inputs.GetPolicyDocumentStatementInputArgs
* {
* Effect = "Allow",
* Actions = new[]
* {
* "codestar-connections:UseConnection",
* },
* Resources = new[]
* {
* example.Arn,
* },
* },
* new Aws.Iam.Inputs.GetPolicyDocumentStatementInputArgs
* {
* Effect = "Allow",
* Actions = new[]
* {
* "codebuild:BatchGetBuilds",
* "codebuild:StartBuild",
* },
* Resources = new[]
* {
* "*",
* },
* },
* },
* });
* var codepipelinePolicyRolePolicy = new Aws.Iam.RolePolicy("codepipeline_policy", new()
* {
* Name = "codepipeline_policy",
* Role = codepipelineRole.Id,
* Policy = codepipelinePolicy.Apply(getPolicyDocumentResult => getPolicyDocumentResult.Json),
* });
* });
* ```
* ```go
* package main
* import (
* "fmt"
* "github.com/pulumi/pulumi-aws/sdk/v6/go/aws/codepipeline"
* "github.com/pulumi/pulumi-aws/sdk/v6/go/aws/codestarconnections"
* "github.com/pulumi/pulumi-aws/sdk/v6/go/aws/iam"
* "github.com/pulumi/pulumi-aws/sdk/v6/go/aws/kms"
* "github.com/pulumi/pulumi-aws/sdk/v6/go/aws/s3"
* "github.com/pulumi/pulumi/sdk/v3/go/pulumi"
* )
* func main() {
* pulumi.Run(func(ctx *pulumi.Context) error {
* example, err := codestarconnections.NewConnection(ctx, "example", &codestarconnections.ConnectionArgs{
* Name: pulumi.String("example-connection"),
* ProviderType: pulumi.String("GitHub"),
* })
* if err != nil {
* return err
* }
* codepipelineBucket, err := s3.NewBucketV2(ctx, "codepipeline_bucket", &s3.BucketV2Args{
* Bucket: pulumi.String("test-bucket"),
* })
* if err != nil {
* return err
* }
* assumeRole, err := iam.GetPolicyDocument(ctx, &iam.GetPolicyDocumentArgs{
* Statements: []iam.GetPolicyDocumentStatement{
* {
* Effect: pulumi.StringRef("Allow"),
* Principals: []iam.GetPolicyDocumentStatementPrincipal{
* {
* Type: "Service",
* Identifiers: []string{
* "codepipeline.amazonaws.com",
* },
* },
* },
* Actions: []string{
* "sts:AssumeRole",
* },
* },
* },
* }, nil)
* if err != nil {
* return err
* }
* codepipelineRole, err := iam.NewRole(ctx, "codepipeline_role", &iam.RoleArgs{
* Name: pulumi.String("test-role"),
* AssumeRolePolicy: pulumi.String(assumeRole.Json),
* })
* if err != nil {
* return err
* }
* s3kmskey, err := kms.LookupAlias(ctx, &kms.LookupAliasArgs{
* Name: "alias/myKmsKey",
* }, nil)
* if err != nil {
* return err
* }
* _, err = codepipeline.NewPipeline(ctx, "codepipeline", &codepipeline.PipelineArgs{
* Name: pulumi.String("tf-test-pipeline"),
* RoleArn: codepipelineRole.Arn,
* ArtifactStores: codepipeline.PipelineArtifactStoreArray{
* &codepipeline.PipelineArtifactStoreArgs{
* Location: codepipelineBucket.Bucket,
* Type: pulumi.String("S3"),
* EncryptionKey: &codepipeline.PipelineArtifactStoreEncryptionKeyArgs{
* Id: pulumi.String(s3kmskey.Arn),
* Type: pulumi.String("KMS"),
* },
* },
* },
* Stages: codepipeline.PipelineStageArray{
* &codepipeline.PipelineStageArgs{
* Name: pulumi.String("Source"),
* Actions: codepipeline.PipelineStageActionArray{
* &codepipeline.PipelineStageActionArgs{
* Name: pulumi.String("Source"),
* Category: pulumi.String("Source"),
* Owner: pulumi.String("AWS"),
* Provider: pulumi.String("CodeStarSourceConnection"),
* Version: pulumi.String("1"),
* OutputArtifacts: pulumi.StringArray{
* pulumi.String("source_output"),
* },
* Configuration: pulumi.StringMap{
* "ConnectionArn": example.Arn,
* "FullRepositoryId": pulumi.String("my-organization/example"),
* "BranchName": pulumi.String("main"),
* },
* },
* },
* },
* &codepipeline.PipelineStageArgs{
* Name: pulumi.String("Build"),
* Actions: codepipeline.PipelineStageActionArray{
* &codepipeline.PipelineStageActionArgs{
* Name: pulumi.String("Build"),
* Category: pulumi.String("Build"),
* Owner: pulumi.String("AWS"),
* Provider: pulumi.String("CodeBuild"),
* InputArtifacts: pulumi.StringArray{
* pulumi.String("source_output"),
* },
* OutputArtifacts: pulumi.StringArray{
* pulumi.String("build_output"),
* },
* Version: pulumi.String("1"),
* Configuration: pulumi.StringMap{
* "ProjectName": pulumi.String("test"),
* },
* },
* },
* },
* &codepipeline.PipelineStageArgs{
* Name: pulumi.String("Deploy"),
* Actions: codepipeline.PipelineStageActionArray{
* &codepipeline.PipelineStageActionArgs{
* Name: pulumi.String("Deploy"),
* Category: pulumi.String("Deploy"),
* Owner: pulumi.String("AWS"),
* Provider: pulumi.String("CloudFormation"),
* InputArtifacts: pulumi.StringArray{
* pulumi.String("build_output"),
* },
* Version: pulumi.String("1"),
* Configuration: pulumi.StringMap{
* "ActionMode": pulumi.String("REPLACE_ON_FAILURE"),
* "Capabilities": pulumi.String("CAPABILITY_AUTO_EXPAND,CAPABILITY_IAM"),
* "OutputFileName": pulumi.String("CreateStackOutput.json"),
* "StackName": pulumi.String("MyStack"),
* "TemplatePath": pulumi.String("build_output::sam-templated.yaml"),
* },
* },
* },
* },
* },
* })
* if err != nil {
* return err
* }
* _, err = s3.NewBucketPublicAccessBlock(ctx, "codepipeline_bucket_pab", &s3.BucketPublicAccessBlockArgs{
* Bucket: codepipelineBucket.ID(),
* BlockPublicAcls: pulumi.Bool(true),
* BlockPublicPolicy: pulumi.Bool(true),
* IgnorePublicAcls: pulumi.Bool(true),
* RestrictPublicBuckets: pulumi.Bool(true),
* })
* if err != nil {
* return err
* }
* codepipelinePolicy := iam.GetPolicyDocumentOutput(ctx, iam.GetPolicyDocumentOutputArgs{
* Statements: iam.GetPolicyDocumentStatementArray{
* &iam.GetPolicyDocumentStatementArgs{
* Effect: pulumi.String("Allow"),
* Actions: pulumi.StringArray{
* pulumi.String("s3:GetObject"),
* pulumi.String("s3:GetObjectVersion"),
* pulumi.String("s3:GetBucketVersioning"),
* pulumi.String("s3:PutObjectAcl"),
* pulumi.String("s3:PutObject"),
* },
* Resources: pulumi.StringArray{
* codepipelineBucket.Arn,
* codepipelineBucket.Arn.ApplyT(func(arn string) (string, error) {
* return fmt.Sprintf("%v/*", arn), nil
* }).(pulumi.StringOutput),
* },
* },
* &iam.GetPolicyDocumentStatementArgs{
* Effect: pulumi.String("Allow"),
* Actions: pulumi.StringArray{
* pulumi.String("codestar-connections:UseConnection"),
* },
* Resources: pulumi.StringArray{
* example.Arn,
* },
* },
* &iam.GetPolicyDocumentStatementArgs{
* Effect: pulumi.String("Allow"),
* Actions: pulumi.StringArray{
* pulumi.String("codebuild:BatchGetBuilds"),
* pulumi.String("codebuild:StartBuild"),
* },
* Resources: pulumi.StringArray{
* pulumi.String("*"),
* },
* },
* },
* }, nil)
* _, err = iam.NewRolePolicy(ctx, "codepipeline_policy", &iam.RolePolicyArgs{
* Name: pulumi.String("codepipeline_policy"),
* Role: codepipelineRole.ID(),
* Policy: pulumi.String(codepipelinePolicy.ApplyT(func(codepipelinePolicy iam.GetPolicyDocumentResult) (*string, error) {
* return &codepipelinePolicy.Json, nil
* }).(pulumi.StringPtrOutput)),
* })
* if err != nil {
* return err
* }
* return nil
* })
* }
* ```
* ```java
* package generated_program;
* import com.pulumi.Context;
* import com.pulumi.Pulumi;
* import com.pulumi.core.Output;
* import com.pulumi.aws.codestarconnections.Connection;
* import com.pulumi.aws.codestarconnections.ConnectionArgs;
* import com.pulumi.aws.s3.BucketV2;
* import com.pulumi.aws.s3.BucketV2Args;
* import com.pulumi.aws.iam.IamFunctions;
* import com.pulumi.aws.iam.inputs.GetPolicyDocumentArgs;
* import com.pulumi.aws.iam.Role;
* import com.pulumi.aws.iam.RoleArgs;
* import com.pulumi.aws.kms.KmsFunctions;
* import com.pulumi.aws.kms.inputs.GetAliasArgs;
* import com.pulumi.aws.codepipeline.Pipeline;
* import com.pulumi.aws.codepipeline.PipelineArgs;
* import com.pulumi.aws.codepipeline.inputs.PipelineArtifactStoreArgs;
* import com.pulumi.aws.codepipeline.inputs.PipelineArtifactStoreEncryptionKeyArgs;
* import com.pulumi.aws.codepipeline.inputs.PipelineStageArgs;
* import com.pulumi.aws.s3.BucketPublicAccessBlock;
* import com.pulumi.aws.s3.BucketPublicAccessBlockArgs;
* import com.pulumi.aws.iam.RolePolicy;
* import com.pulumi.aws.iam.RolePolicyArgs;
* import java.util.List;
* import java.util.ArrayList;
* import java.util.Map;
* import java.io.File;
* import java.nio.file.Files;
* import java.nio.file.Paths;
* public class App {
* public static void main(String[] args) {
* Pulumi.run(App::stack);
* }
* public static void stack(Context ctx) {
* var example = new Connection("example", ConnectionArgs.builder()
* .name("example-connection")
* .providerType("GitHub")
* .build());
* var codepipelineBucket = new BucketV2("codepipelineBucket", BucketV2Args.builder()
* .bucket("test-bucket")
* .build());
* final var assumeRole = IamFunctions.getPolicyDocument(GetPolicyDocumentArgs.builder()
* .statements(GetPolicyDocumentStatementArgs.builder()
* .effect("Allow")
* .principals(GetPolicyDocumentStatementPrincipalArgs.builder()
* .type("Service")
* .identifiers("codepipeline.amazonaws.com")
* .build())
* .actions("sts:AssumeRole")
* .build())
* .build());
* var codepipelineRole = new Role("codepipelineRole", RoleArgs.builder()
* .name("test-role")
* .assumeRolePolicy(assumeRole.applyValue(getPolicyDocumentResult -> getPolicyDocumentResult.json()))
* .build());
* final var s3kmskey = KmsFunctions.getAlias(GetAliasArgs.builder()
* .name("alias/myKmsKey")
* .build());
* var codepipeline = new Pipeline("codepipeline", PipelineArgs.builder()
* .name("tf-test-pipeline")
* .roleArn(codepipelineRole.arn())
* .artifactStores(PipelineArtifactStoreArgs.builder()
* .location(codepipelineBucket.bucket())
* .type("S3")
* .encryptionKey(PipelineArtifactStoreEncryptionKeyArgs.builder()
* .id(s3kmskey.applyValue(getAliasResult -> getAliasResult.arn()))
* .type("KMS")
* .build())
* .build())
* .stages(
* PipelineStageArgs.builder()
* .name("Source")
* .actions(PipelineStageActionArgs.builder()
* .name("Source")
* .category("Source")
* .owner("AWS")
* .provider("CodeStarSourceConnection")
* .version("1")
* .outputArtifacts("source_output")
* .configuration(Map.ofEntries(
* Map.entry("ConnectionArn", example.arn()),
* Map.entry("FullRepositoryId", "my-organization/example"),
* Map.entry("BranchName", "main")
* ))
* .build())
* .build(),
* PipelineStageArgs.builder()
* .name("Build")
* .actions(PipelineStageActionArgs.builder()
* .name("Build")
* .category("Build")
* .owner("AWS")
* .provider("CodeBuild")
* .inputArtifacts("source_output")
* .outputArtifacts("build_output")
* .version("1")
* .configuration(Map.of("ProjectName", "test"))
* .build())
* .build(),
* PipelineStageArgs.builder()
* .name("Deploy")
* .actions(PipelineStageActionArgs.builder()
* .name("Deploy")
* .category("Deploy")
* .owner("AWS")
* .provider("CloudFormation")
* .inputArtifacts("build_output")
* .version("1")
* .configuration(Map.ofEntries(
* Map.entry("ActionMode", "REPLACE_ON_FAILURE"),
* Map.entry("Capabilities", "CAPABILITY_AUTO_EXPAND,CAPABILITY_IAM"),
* Map.entry("OutputFileName", "CreateStackOutput.json"),
* Map.entry("StackName", "MyStack"),
* Map.entry("TemplatePath", "build_output::sam-templated.yaml")
* ))
* .build())
* .build())
* .build());
* var codepipelineBucketPab = new BucketPublicAccessBlock("codepipelineBucketPab", BucketPublicAccessBlockArgs.builder()
* .bucket(codepipelineBucket.id())
* .blockPublicAcls(true)
* .blockPublicPolicy(true)
* .ignorePublicAcls(true)
* .restrictPublicBuckets(true)
* .build());
* final var codepipelinePolicy = IamFunctions.getPolicyDocument(GetPolicyDocumentArgs.builder()
* .statements(
* GetPolicyDocumentStatementArgs.builder()
* .effect("Allow")
* .actions(
* "s3:GetObject",
* "s3:GetObjectVersion",
* "s3:GetBucketVersioning",
* "s3:PutObjectAcl",
* "s3:PutObject")
* .resources(
* codepipelineBucket.arn(),
* codepipelineBucket.arn().applyValue(arn -> String.format("%s/*", arn)))
* .build(),
* GetPolicyDocumentStatementArgs.builder()
* .effect("Allow")
* .actions("codestar-connections:UseConnection")
* .resources(example.arn())
* .build(),
* GetPolicyDocumentStatementArgs.builder()
* .effect("Allow")
* .actions(
* "codebuild:BatchGetBuilds",
* "codebuild:StartBuild")
* .resources("*")
* .build())
* .build());
* var codepipelinePolicyRolePolicy = new RolePolicy("codepipelinePolicyRolePolicy", RolePolicyArgs.builder()
* .name("codepipeline_policy")
* .role(codepipelineRole.id())
* .policy(codepipelinePolicy.applyValue(getPolicyDocumentResult -> getPolicyDocumentResult).applyValue(codepipelinePolicy -> codepipelinePolicy.applyValue(getPolicyDocumentResult -> getPolicyDocumentResult.json())))
* .build());
* }
* }
* ```
* ```yaml
* resources:
* codepipeline:
* type: aws:codepipeline:Pipeline
* properties:
* name: tf-test-pipeline
* roleArn: ${codepipelineRole.arn}
* artifactStores:
* - location: ${codepipelineBucket.bucket}
* type: S3
* encryptionKey:
* id: ${s3kmskey.arn}
* type: KMS
* stages:
* - name: Source
* actions:
* - name: Source
* category: Source
* owner: AWS
* provider: CodeStarSourceConnection
* version: '1'
* outputArtifacts:
* - source_output
* configuration:
* ConnectionArn: ${example.arn}
* FullRepositoryId: my-organization/example
* BranchName: main
* - name: Build
* actions:
* - name: Build
* category: Build
* owner: AWS
* provider: CodeBuild
* inputArtifacts:
* - source_output
* outputArtifacts:
* - build_output
* version: '1'
* configuration:
* ProjectName: test
* - name: Deploy
* actions:
* - name: Deploy
* category: Deploy
* owner: AWS
* provider: CloudFormation
* inputArtifacts:
* - build_output
* version: '1'
* configuration:
* ActionMode: REPLACE_ON_FAILURE
* Capabilities: CAPABILITY_AUTO_EXPAND,CAPABILITY_IAM
* OutputFileName: CreateStackOutput.json
* StackName: MyStack
* TemplatePath: build_output::sam-templated.yaml
* example:
* type: aws:codestarconnections:Connection
* properties:
* name: example-connection
* providerType: GitHub
* codepipelineBucket:
* type: aws:s3:BucketV2
* name: codepipeline_bucket
* properties:
* bucket: test-bucket
* codepipelineBucketPab:
* type: aws:s3:BucketPublicAccessBlock
* name: codepipeline_bucket_pab
* properties:
* bucket: ${codepipelineBucket.id}
* blockPublicAcls: true
* blockPublicPolicy: true
* ignorePublicAcls: true
* restrictPublicBuckets: true
* codepipelineRole:
* type: aws:iam:Role
* name: codepipeline_role
* properties:
* name: test-role
* assumeRolePolicy: ${assumeRole.json}
* codepipelinePolicyRolePolicy:
* type: aws:iam:RolePolicy
* name: codepipeline_policy
* properties:
* name: codepipeline_policy
* role: ${codepipelineRole.id}
* policy: ${codepipelinePolicy.json}
* variables:
* assumeRole:
* fn::invoke:
* Function: aws:iam:getPolicyDocument
* Arguments:
* statements:
* - effect: Allow
* principals:
* - type: Service
* identifiers:
* - codepipeline.amazonaws.com
* actions:
* - sts:AssumeRole
* codepipelinePolicy:
* fn::invoke:
* Function: aws:iam:getPolicyDocument
* Arguments:
* statements:
* - effect: Allow
* actions:
* - s3:GetObject
* - s3:GetObjectVersion
* - s3:GetBucketVersioning
* - s3:PutObjectAcl
* - s3:PutObject
* resources:
* - ${codepipelineBucket.arn}
* - ${codepipelineBucket.arn}/*
* - effect: Allow
* actions:
* - codestar-connections:UseConnection
* resources:
* - ${example.arn}
* - effect: Allow
* actions:
* - codebuild:BatchGetBuilds
* - codebuild:StartBuild
* resources:
* - '*'
* s3kmskey:
* fn::invoke:
* Function: aws:kms:getAlias
* Arguments:
* name: alias/myKmsKey
* ```
*
* ## Import
* Using `pulumi import`, import CodePipelines using the name. For example:
* ```sh
* $ pulumi import aws:codepipeline/pipeline:Pipeline foo example
* ```
* */*/*/*/*/*/
*/
public class Pipeline internal constructor(
override val javaResource: com.pulumi.aws.codepipeline.Pipeline,
) : KotlinCustomResource(javaResource, PipelineMapper) {
/**
* The codepipeline ARN.
*/
public val arn: Output
get() = javaResource.arn().applyValue({ args0 -> args0 })
/**
* One or more artifact_store blocks. Artifact stores are documented below.
*/
public val artifactStores: Output>
get() = javaResource.artifactStores().applyValue({ args0 ->
args0.map({ args0 ->
args0.let({ args0 -> pipelineArtifactStoreToKotlin(args0) })
})
})
/**
* The method that the pipeline will use to handle multiple executions. The default mode is `SUPERSEDED`. For value values, refer to the [AWS documentation](https://docs.aws.amazon.com/codepipeline/latest/APIReference/API_PipelineDeclaration.html#CodePipeline-Type-PipelineDeclaration-executionMode).
* **Note:** `QUEUED` or `PARALLEL` mode can only be used with V2 pipelines.
*/
public val executionMode: Output?
get() = javaResource.executionMode().applyValue({ args0 ->
args0.map({ args0 ->
args0
}).orElse(null)
})
/**
* The name of the pipeline.
*/
public val name: Output
get() = javaResource.name().applyValue({ args0 -> args0 })
/**
* Type of the pipeline. Possible values are: `V1` and `V2`. Default value is `V1`.
*/
public val pipelineType: Output?
get() = javaResource.pipelineType().applyValue({ args0 ->
args0.map({ args0 ->
args0
}).orElse(null)
})
/**
* A service role Amazon Resource Name (ARN) that grants AWS CodePipeline permission to make calls to AWS services on your behalf.
*/
public val roleArn: Output
get() = javaResource.roleArn().applyValue({ args0 -> args0 })
/**
* A stage block. Stages are documented below.
*/
public val stages: Output>
get() = javaResource.stages().applyValue({ args0 ->
args0.map({ args0 ->
args0.let({ args0 ->
pipelineStageToKotlin(args0)
})
})
})
/**
* A map of tags to assign to the resource. If configured with a provider `default_tags` configuration block present, tags with matching keys will overwrite those defined at the provider-level.
*/
public val tags: Output>?
get() = javaResource.tags().applyValue({ args0 ->
args0.map({ args0 ->
args0.map({ args0 ->
args0.key.to(args0.value)
}).toMap()
}).orElse(null)
})
/**
* A map of tags assigned to the resource, including those inherited from the provider `default_tags` configuration block.
*/
@Deprecated(
message = """
Please use `tags` instead.
""",
)
public val tagsAll: Output>
get() = javaResource.tagsAll().applyValue({ args0 ->
args0.map({ args0 ->
args0.key.to(args0.value)
}).toMap()
})
/**
* A trigger block. Valid only when `pipeline_type` is `V2`. Triggers are documented below.
*/
public val triggers: Output>
get() = javaResource.triggers().applyValue({ args0 ->
args0.map({ args0 ->
args0.let({ args0 ->
pipelineTriggerToKotlin(args0)
})
})
})
/**
* A pipeline-level variable block. Valid only when `pipeline_type` is `V2`. Variable are documented below.
*/
public val variables: Output>?
get() = javaResource.variables().applyValue({ args0 ->
args0.map({ args0 ->
args0.map({ args0 ->
args0.let({ args0 -> pipelineVariableToKotlin(args0) })
})
}).orElse(null)
})
}
public object PipelineMapper : ResourceMapper {
override fun supportsMappingOfType(javaResource: Resource): Boolean =
com.pulumi.aws.codepipeline.Pipeline::class == javaResource::class
override fun map(javaResource: Resource): Pipeline = Pipeline(
javaResource as
com.pulumi.aws.codepipeline.Pipeline,
)
}
/**
* @see [Pipeline].
* @param name The _unique_ name of the resulting resource.
* @param block Builder for [Pipeline].
*/
public suspend fun pipeline(name: String, block: suspend PipelineResourceBuilder.() -> Unit): Pipeline {
val builder = PipelineResourceBuilder()
builder.name(name)
block(builder)
return builder.build()
}
/**
* @see [Pipeline].
* @param name The _unique_ name of the resulting resource.
*/
public fun pipeline(name: String): Pipeline {
val builder = PipelineResourceBuilder()
builder.name(name)
return builder.build()
}
