Issue 210 (#212)

biffgaut · web-flow · commit f902cc79f921 · 2021-06-07T14:02:57.000-04:00
diff --git a/source/patterns/@aws-solutions-constructs/aws-lambda-sagemakerendpoint/test/__snapshots__/aws-lambda-sagemakerendpoint.test.js.snap b/source/patterns/@aws-solutions-constructs/aws-lambda-sagemakerendpoint/test/__snapshots__/aws-lambda-sagemakerendpoint.test.js.snap
@@ -568,7 +568,7 @@ Object {
     },
   },
   "Resources": Object {
-    "ReplaceEndpointDefaultSecurityGroupsecuritygroupB97DD1AF": Object {
+    "DefaultSAGEMAKERRUNTIMEsecuritygroup32609E8C": Object {
       "Metadata": Object {
         "cfn_nag": Object {
           "rules_to_suppress": Array [
@@ -584,7 +584,7 @@ Object {
         },
       },
       "Properties": Object {
-        "GroupDescription": "Default/ReplaceEndpointDefaultSecurityGroup-security-group",
+        "GroupDescription": "Default/Default-SAGEMAKER_RUNTIME-security-group",
         "SecurityGroupEgress": Array [
           Object {
             "CidrIp": "0.0.0.0/0",
@@ -783,7 +783,7 @@ Object {
         "SecurityGroupIds": Array [
           Object {
             "Fn::GetAtt": Array [
-              "ReplaceEndpointDefaultSecurityGroupsecuritygroupB97DD1AF",
+              "DefaultSAGEMAKERRUNTIMEsecuritygroup32609E8C",
               "GroupId",
             ],
           },
diff --git a/source/patterns/@aws-solutions-constructs/aws-lambda-secretsmanager/test/integ.deployFunctionWithExistingVpc.expected.json b/source/patterns/@aws-solutions-constructs/aws-lambda-secretsmanager/test/integ.deployFunctionWithExistingVpc.expected.json
@@ -674,7 +674,7 @@
         "SecurityGroupIds": [
           {
             "Fn::GetAtt": [
-              "ReplaceEndpointDefaultSecurityGroupsecuritygroupB97DD1AF",
+              "deployFunctionWithExistingVpcSECRETSMANAGERsecuritygroupB20BA3EB",
               "GroupId"
             ]
           }
@@ -956,10 +956,10 @@
         }
       }
     },
-    "ReplaceEndpointDefaultSecurityGroupsecuritygroupB97DD1AF": {
+    "deployFunctionWithExistingVpcSECRETSMANAGERsecuritygroupB20BA3EB": {
       "Type": "AWS::EC2::SecurityGroup",
       "Properties": {
-        "GroupDescription": "deployFunctionWithExistingVpc/ReplaceEndpointDefaultSecurityGroup-security-group",
+        "GroupDescription": "deployFunctionWithExistingVpc/deployFunctionWithExistingVpc-SECRETS_MANAGER-security-group",
         "SecurityGroupEgress": [
           {
             "CidrIp": "0.0.0.0/0",
diff --git a/source/patterns/@aws-solutions-constructs/aws-lambda-secretsmanager/test/integ.deployFunctionWithVpc.expected.json b/source/patterns/@aws-solutions-constructs/aws-lambda-secretsmanager/test/integ.deployFunctionWithVpc.expected.json
@@ -558,7 +558,7 @@
         "SecurityGroupIds": [
           {
             "Fn::GetAtt": [
-              "ReplaceEndpointDefaultSecurityGroupsecuritygroupB97DD1AF",
+              "deployFunctionWithVpcSECRETSMANAGERsecuritygroup140A8C59",
               "GroupId"
             ]
           }
@@ -577,10 +577,10 @@
         "VpcEndpointType": "Interface"
       }
     },
-    "ReplaceEndpointDefaultSecurityGroupsecuritygroupB97DD1AF": {
+    "deployFunctionWithVpcSECRETSMANAGERsecuritygroup140A8C59": {
       "Type": "AWS::EC2::SecurityGroup",
       "Properties": {
-        "GroupDescription": "deployFunctionWithVpc/ReplaceEndpointDefaultSecurityGroup-security-group",
+        "GroupDescription": "deployFunctionWithVpc/deployFunctionWithVpc-SECRETS_MANAGER-security-group",
         "SecurityGroupEgress": [
           {
             "CidrIp": "0.0.0.0/0",
diff --git a/source/patterns/@aws-solutions-constructs/aws-lambda-sns/test/integ.deployFunctionWithVpc.expected.json b/source/patterns/@aws-solutions-constructs/aws-lambda-sns/test/integ.deployFunctionWithVpc.expected.json
@@ -650,7 +650,7 @@
         "SecurityGroupIds": [
           {
             "Fn::GetAtt": [
-              "ReplaceEndpointDefaultSecurityGroupsecuritygroupB97DD1AF",
+              "deployFunctionWithVpcSNSsecuritygroup5E54C413",
               "GroupId"
             ]
           }
@@ -669,10 +669,10 @@
         "VpcEndpointType": "Interface"
       }
     },
-    "ReplaceEndpointDefaultSecurityGroupsecuritygroupB97DD1AF": {
+    "deployFunctionWithVpcSNSsecuritygroup5E54C413": {
       "Type": "AWS::EC2::SecurityGroup",
       "Properties": {
-        "GroupDescription": "deployFunctionWithVpc/ReplaceEndpointDefaultSecurityGroup-security-group",
+        "GroupDescription": "deployFunctionWithVpc/deployFunctionWithVpc-SNS-security-group",
         "SecurityGroupEgress": [
           {
             "CidrIp": "0.0.0.0/0",
diff --git a/source/patterns/@aws-solutions-constructs/aws-lambda-sqs/test/integ.deployFunctionWithVpc.expected.json b/source/patterns/@aws-solutions-constructs/aws-lambda-sqs/test/integ.deployFunctionWithVpc.expected.json
@@ -707,7 +707,7 @@
         "SecurityGroupIds": [
           {
             "Fn::GetAtt": [
-              "ReplaceEndpointDefaultSecurityGroupsecuritygroupB97DD1AF",
+              "deployFunctionWithVpcSQSsecuritygroup2E4E2685",
               "GroupId"
             ]
           }
@@ -726,10 +726,10 @@
         "VpcEndpointType": "Interface"
       }
     },
-    "ReplaceEndpointDefaultSecurityGroupsecuritygroupB97DD1AF": {
+    "deployFunctionWithVpcSQSsecuritygroup2E4E2685": {
       "Type": "AWS::EC2::SecurityGroup",
       "Properties": {
-        "GroupDescription": "deployFunctionWithVpc/ReplaceEndpointDefaultSecurityGroup-security-group",
+        "GroupDescription": "deployFunctionWithVpc/deployFunctionWithVpc-SQS-security-group",
         "SecurityGroupEgress": [
           {
             "CidrIp": "0.0.0.0/0",
diff --git a/source/patterns/@aws-solutions-constructs/aws-lambda-ssmstringparameter/test/integ.deployFunctionWithExistingVpc.expected.json b/source/patterns/@aws-solutions-constructs/aws-lambda-ssmstringparameter/test/integ.deployFunctionWithExistingVpc.expected.json
@@ -674,7 +674,7 @@
         "SecurityGroupIds": [
           {
             "Fn::GetAtt": [
-              "ReplaceEndpointDefaultSecurityGroupsecuritygroupB97DD1AF",
+              "deployFunctionWithExistingVpcSSMsecuritygroupC287F479",
               "GroupId"
             ]
           }
@@ -967,10 +967,10 @@
         "Value": "test-string-value"
       }
     },
-    "ReplaceEndpointDefaultSecurityGroupsecuritygroupB97DD1AF": {
+    "deployFunctionWithExistingVpcSSMsecuritygroupC287F479": {
       "Type": "AWS::EC2::SecurityGroup",
       "Properties": {
-        "GroupDescription": "deployFunctionWithExistingVpc/ReplaceEndpointDefaultSecurityGroup-security-group",
+        "GroupDescription": "deployFunctionWithExistingVpc/deployFunctionWithExistingVpc-SSM-security-group",
         "SecurityGroupEgress": [
           {
             "CidrIp": "0.0.0.0/0",
diff --git a/source/patterns/@aws-solutions-constructs/aws-lambda-ssmstringparameter/test/integ.deployFunctionWithVpc.expected.json b/source/patterns/@aws-solutions-constructs/aws-lambda-ssmstringparameter/test/integ.deployFunctionWithVpc.expected.json
@@ -569,7 +569,7 @@
         "SecurityGroupIds": [
           {
             "Fn::GetAtt": [
-              "ReplaceEndpointDefaultSecurityGroupsecuritygroupB97DD1AF",
+              "deployFunctionWithVpcSSMsecuritygroup918CB15C",
               "GroupId"
             ]
           }
@@ -588,10 +588,10 @@
         "VpcEndpointType": "Interface"
       }
     },
-    "ReplaceEndpointDefaultSecurityGroupsecuritygroupB97DD1AF": {
+    "deployFunctionWithVpcSSMsecuritygroup918CB15C": {
       "Type": "AWS::EC2::SecurityGroup",
       "Properties": {
-        "GroupDescription": "deployFunctionWithVpc/ReplaceEndpointDefaultSecurityGroup-security-group",
+        "GroupDescription": "deployFunctionWithVpc/deployFunctionWithVpc-SSM-security-group",
         "SecurityGroupEgress": [
           {
             "CidrIp": "0.0.0.0/0",
diff --git a/source/patterns/@aws-solutions-constructs/core/lib/vpc-helper.ts b/source/patterns/@aws-solutions-constructs/core/lib/vpc-helper.ts
@@ -49,10 +49,7 @@ export function buildVpc(scope: Construct, props: BuildVpcProps): ec2.IVpc {
   }
 
   if (props?.constructVpcProps) {
-    cumulativeProps = overrideProps(
-      cumulativeProps,
-      props?.constructVpcProps
-    );
+    cumulativeProps = overrideProps(cumulativeProps, props?.constructVpcProps);
   }
 
   const vpc = new ec2.Vpc(scope, "Vpc", cumulativeProps);
@@ -172,7 +169,7 @@ export function AddAwsServiceEndpoint(
 
       const endpointDefaultSecurityGroup = buildSecurityGroup(
         scope,
-        "ReplaceEndpointDefaultSecurityGroup",
+        `${scope.node.id}-${service.endpointName}`,
         {
           vpc,
           allowAllOutbound: true,
diff --git a/source/patterns/@aws-solutions-constructs/core/test/__snapshots__/sagemaker-helper.test.js.snap b/source/patterns/@aws-solutions-constructs/core/test/__snapshots__/sagemaker-helper.test.js.snap
diff --git a/source/patterns/@aws-solutions-constructs/core/test/vpc-helper.test.ts b/source/patterns/@aws-solutions-constructs/core/test/vpc-helper.test.ts

Original file line number	Diff line number	Diff line change
`@@ -674,7 +674,7 @@`
`674`	`674`	`"SecurityGroupIds": [`
`675`	`675`	`{`
`676`	`676`	`"Fn::GetAtt": [`
`677`		`- "ReplaceEndpointDefaultSecurityGroupsecuritygroupB97DD1AF",`
	`677`	`+ "deployFunctionWithExistingVpcSECRETSMANAGERsecuritygroupB20BA3EB",`
`678`	`678`	`"GroupId"`
`679`	`679`	`]`
`680`	`680`	`}`
`@@ -956,10 +956,10 @@`
`956`	`956`	`}`
`957`	`957`	`}`
`958`	`958`	`},`
`959`		`- "ReplaceEndpointDefaultSecurityGroupsecuritygroupB97DD1AF": {`
	`959`	`+ "deployFunctionWithExistingVpcSECRETSMANAGERsecuritygroupB20BA3EB": {`
`960`	`960`	`"Type": "AWS::EC2::SecurityGroup",`
`961`	`961`	`"Properties": {`
`962`		`- "GroupDescription": "deployFunctionWithExistingVpc/ReplaceEndpointDefaultSecurityGroup-security-group",`
	`962`	`+ "GroupDescription": "deployFunctionWithExistingVpc/deployFunctionWithExistingVpc-SECRETS_MANAGER-security-group",`
`963`	`963`	`"SecurityGroupEgress": [`
`964`	`964`	`{`
`965`	`965`	`"CidrIp": "0.0.0.0/0",`
Original file line number	Diff line number	Diff line change
`@@ -558,7 +558,7 @@`
`558`	`558`	`"SecurityGroupIds": [`
`559`	`559`	`{`
`560`	`560`	`"Fn::GetAtt": [`
`561`		`- "ReplaceEndpointDefaultSecurityGroupsecuritygroupB97DD1AF",`
	`561`	`+ "deployFunctionWithVpcSECRETSMANAGERsecuritygroup140A8C59",`
`562`	`562`	`"GroupId"`
`563`	`563`	`]`
`564`	`564`	`}`
`@@ -577,10 +577,10 @@`
`577`	`577`	`"VpcEndpointType": "Interface"`
`578`	`578`	`}`
`579`	`579`	`},`
`580`		`- "ReplaceEndpointDefaultSecurityGroupsecuritygroupB97DD1AF": {`
	`580`	`+ "deployFunctionWithVpcSECRETSMANAGERsecuritygroup140A8C59": {`
`581`	`581`	`"Type": "AWS::EC2::SecurityGroup",`
`582`	`582`	`"Properties": {`
`583`		`- "GroupDescription": "deployFunctionWithVpc/ReplaceEndpointDefaultSecurityGroup-security-group",`
	`583`	`+ "GroupDescription": "deployFunctionWithVpc/deployFunctionWithVpc-SECRETS_MANAGER-security-group",`
`584`	`584`	`"SecurityGroupEgress": [`
`585`	`585`	`{`
`586`	`586`	`"CidrIp": "0.0.0.0/0",`
Original file line number	Diff line number	Diff line change
`@@ -650,7 +650,7 @@`
`650`	`650`	`"SecurityGroupIds": [`
`651`	`651`	`{`
`652`	`652`	`"Fn::GetAtt": [`
`653`		`- "ReplaceEndpointDefaultSecurityGroupsecuritygroupB97DD1AF",`
	`653`	`+ "deployFunctionWithVpcSNSsecuritygroup5E54C413",`
`654`	`654`	`"GroupId"`
`655`	`655`	`]`
`656`	`656`	`}`
`@@ -669,10 +669,10 @@`
`669`	`669`	`"VpcEndpointType": "Interface"`
`670`	`670`	`}`
`671`	`671`	`},`
`672`		`- "ReplaceEndpointDefaultSecurityGroupsecuritygroupB97DD1AF": {`
	`672`	`+ "deployFunctionWithVpcSNSsecuritygroup5E54C413": {`
`673`	`673`	`"Type": "AWS::EC2::SecurityGroup",`
`674`	`674`	`"Properties": {`
`675`		`- "GroupDescription": "deployFunctionWithVpc/ReplaceEndpointDefaultSecurityGroup-security-group",`
	`675`	`+ "GroupDescription": "deployFunctionWithVpc/deployFunctionWithVpc-SNS-security-group",`
`676`	`676`	`"SecurityGroupEgress": [`
`677`	`677`	`{`
`678`	`678`	`"CidrIp": "0.0.0.0/0",`
Original file line number	Diff line number	Diff line change
`@@ -707,7 +707,7 @@`
`707`	`707`	`"SecurityGroupIds": [`
`708`	`708`	`{`
`709`	`709`	`"Fn::GetAtt": [`
`710`		`- "ReplaceEndpointDefaultSecurityGroupsecuritygroupB97DD1AF",`
	`710`	`+ "deployFunctionWithVpcSQSsecuritygroup2E4E2685",`
`711`	`711`	`"GroupId"`
`712`	`712`	`]`
`713`	`713`	`}`
`@@ -726,10 +726,10 @@`
`726`	`726`	`"VpcEndpointType": "Interface"`
`727`	`727`	`}`
`728`	`728`	`},`
`729`		`- "ReplaceEndpointDefaultSecurityGroupsecuritygroupB97DD1AF": {`
	`729`	`+ "deployFunctionWithVpcSQSsecuritygroup2E4E2685": {`
`730`	`730`	`"Type": "AWS::EC2::SecurityGroup",`
`731`	`731`	`"Properties": {`
`732`		`- "GroupDescription": "deployFunctionWithVpc/ReplaceEndpointDefaultSecurityGroup-security-group",`
	`732`	`+ "GroupDescription": "deployFunctionWithVpc/deployFunctionWithVpc-SQS-security-group",`
`733`	`733`	`"SecurityGroupEgress": [`
`734`	`734`	`{`
`735`	`735`	`"CidrIp": "0.0.0.0/0",`
Original file line number	Diff line number	Diff line change
`@@ -569,7 +569,7 @@`
`569`	`569`	`"SecurityGroupIds": [`
`570`	`570`	`{`
`571`	`571`	`"Fn::GetAtt": [`
`572`		`- "ReplaceEndpointDefaultSecurityGroupsecuritygroupB97DD1AF",`
	`572`	`+ "deployFunctionWithVpcSSMsecuritygroup918CB15C",`
`573`	`573`	`"GroupId"`
`574`	`574`	`]`
`575`	`575`	`}`
`@@ -588,10 +588,10 @@`
`588`	`588`	`"VpcEndpointType": "Interface"`
`589`	`589`	`}`
`590`	`590`	`},`
`591`		`- "ReplaceEndpointDefaultSecurityGroupsecuritygroupB97DD1AF": {`
	`591`	`+ "deployFunctionWithVpcSSMsecuritygroup918CB15C": {`
`592`	`592`	`"Type": "AWS::EC2::SecurityGroup",`
`593`	`593`	`"Properties": {`
`594`		`- "GroupDescription": "deployFunctionWithVpc/ReplaceEndpointDefaultSecurityGroup-security-group",`
	`594`	`+ "GroupDescription": "deployFunctionWithVpc/deployFunctionWithVpc-SSM-security-group",`
`595`	`595`	`"SecurityGroupEgress": [`
`596`	`596`	`{`
`597`	`597`	`"CidrIp": "0.0.0.0/0",`
Original file line number	Diff line number	Diff line change
`@@ -49,10 +49,7 @@ export function buildVpc(scope: Construct, props: BuildVpcProps): ec2.IVpc {`
`49`	`49`	`}`
`50`	`50`
`51`	`51`	`if (props?.constructVpcProps) {`
`52`		`- cumulativeProps = overrideProps(`
`53`		`- cumulativeProps,`
`54`		`- props?.constructVpcProps`
`55`		`- );`
	`52`	`+ cumulativeProps = overrideProps(cumulativeProps, props?.constructVpcProps);`
`56`	`53`	`}`
`57`	`54`
`58`	`55`	`const vpc = new ec2.Vpc(scope, "Vpc", cumulativeProps);`
`@@ -172,7 +169,7 @@ export function AddAwsServiceEndpoint(`
`172`	`169`
`173`	`170`	`const endpointDefaultSecurityGroup = buildSecurityGroup(`
`174`	`171`	`scope,`
`175`		`- "ReplaceEndpointDefaultSecurityGroup",`
	`172`	+ `${scope.node.id}-${service.endpointName}`,
`176`	`173`	`{`
`177`	`174`	`vpc,`
`178`	`175`	`allowAllOutbound: true,`