Skip to content

Commit

Permalink
CloudFormation Template Schema upgrade (#389)
Browse files Browse the repository at this point in the history
https://github.com/aws-cloudformation/cloudformation-template-schema/tree/main

Co-authored-by: kddejong <36457093+kddejong@users.noreply.github.com>
Co-authored-by: Kevin DeJong <kddejong@amazon.com>
  • Loading branch information
3 people authored Jul 11, 2024
1 parent 0110e6d commit f0e7825
Show file tree
Hide file tree
Showing 253 changed files with 30,675 additions and 16,547 deletions.
17,224 changes: 9,188 additions & 8,036 deletions server/schema/resources.schema.json

Large diffs are not rendered by default.

15 changes: 11 additions & 4 deletions server/schema/resources/aws-acmpca-certificate.json
Original file line number Diff line number Diff line change
Expand Up @@ -552,6 +552,12 @@
}
},
"additionalProperties": false,
"tagging": {
"taggable": false,
"tagOnCreate": false,
"tagUpdatable": false,
"cloudFormationSystemTags": false
},
"required": [
"CertificateAuthorityArn",
"CertificateSigningRequest",
Expand All @@ -573,7 +579,11 @@
],
"writeOnlyProperties": [
"/properties/ApiPassthrough",
"/properties/CertificateSigningRequest"
"/properties/CertificateSigningRequest",
"/properties/SigningAlgorithm",
"/properties/TemplateArn",
"/properties/Validity",
"/properties/ValidityNotBefore"
],
"primaryIdentifier": [
"/properties/Arn",
Expand All @@ -595,9 +605,6 @@
"permissions": [
"acm-pca:GetCertificate"
]
},
"update": {
"permissions": []
}
},
"attributes": {
Expand Down
20 changes: 14 additions & 6 deletions server/schema/resources/aws-acmpca-certificateauthority.json
Original file line number Diff line number Diff line change
Expand Up @@ -13,13 +13,16 @@
"properties": {
"Key": {
"type": "string",
"markdownDescription": "\n\n---\n\nRequired: No \nType: String \nUpdate requires: No interruption"
"markdownDescription": "\n\n---\n\nRequired: Yes \nType: String \nUpdate requires: No interruption"
},
"Value": {
"type": "string",
"markdownDescription": "\n\n---\n\nRequired: No \nType: String \nUpdate requires: No interruption"
}
},
"required": [
"Key"
],
"markdownDescription": "\n\n---\n\nRequired: No \nUpdate requires: No interruption"
},
"Subject": {
Expand Down Expand Up @@ -138,7 +141,7 @@
"properties": {
"Enabled": {
"type": "boolean",
"markdownDescription": "\n\n---\n\nRequired: No \nType: Boolean \nUpdate requires: No interruption"
"markdownDescription": "\n\n---\n\nRequired: Yes \nType: Boolean \nUpdate requires: No interruption"
},
"ExpirationInDays": {
"type": "integer",
Expand All @@ -160,6 +163,9 @@
"$ref": "#/definitions/CrlDistributionPointExtensionConfiguration"
}
},
"required": [
"Enabled"
],
"markdownDescription": "Your certificate authority can create and maintain a certificate revocation list (CRL). A CRL contains information about certificates that have been revoked.\n\n---\n\nRequired: No \nUpdate requires: No interruption"
},
"OcspConfiguration": {
Expand All @@ -169,13 +175,16 @@
"properties": {
"Enabled": {
"type": "boolean",
"markdownDescription": "\n\n---\n\nRequired: No \nType: Boolean \nUpdate requires: No interruption"
"markdownDescription": "\n\n---\n\nRequired: Yes \nType: Boolean \nUpdate requires: No interruption"
},
"OcspCustomCname": {
"type": "string",
"markdownDescription": "\n\n---\n\nRequired: No \nType: String \nUpdate requires: No interruption"
}
},
"required": [
"Enabled"
],
"markdownDescription": "Helps to configure online certificate status protocol (OCSP) responder for your certificate authority\n\n---\n\nRequired: No \nUpdate requires: No interruption"
},
"RevocationConfiguration": {
Expand Down Expand Up @@ -309,12 +318,11 @@
},
"NameAssigner": {
"type": "string",
"markdownDescription": "\n\n---\n\nRequired: Yes \nType: String \nUpdate requires: No interruption"
"markdownDescription": "\n\n---\n\nRequired: No \nType: String \nUpdate requires: No interruption"
}
},
"required": [
"PartyName",
"NameAssigner"
"PartyName"
],
"markdownDescription": "Structure that contains X.509 EdiPartyName information.\n\n---\n\nRequired: No \nUpdate requires: No interruption"
},
Expand Down
Original file line number Diff line number Diff line change
Expand Up @@ -24,6 +24,12 @@
"markdownDescription": "The status of the Certificate Authority.\n\n---\n\nRequired: No \nType: String \nUpdate requires: No interruption"
}
},
"tagging": {
"taggable": false,
"tagOnCreate": false,
"tagUpdatable": false,
"cloudFormationSystemTags": false
},
"additionalProperties": false,
"required": [
"CertificateAuthorityArn",
Expand Down
7 changes: 6 additions & 1 deletion server/schema/resources/aws-acmpca-permission.json
Original file line number Diff line number Diff line change
Expand Up @@ -30,7 +30,12 @@
}
},
"additionalProperties": false,
"taggable": false,
"tagging": {
"taggable": false,
"tagOnCreate": false,
"tagUpdatable": false,
"cloudFormationSystemTags": false
},
"required": [
"Actions",
"CertificateAuthorityArn",
Expand Down
6 changes: 2 additions & 4 deletions server/schema/resources/aws-amazonmq-broker.json
Original file line number Diff line number Diff line change
Expand Up @@ -65,7 +65,7 @@
},
"EngineVersion": {
"type": "string",
"markdownDescription": "\n\n---\n\nRequired: Yes \nType: String \nUpdate requires: No interruption"
"markdownDescription": "\n\n---\n\nRequired: No \nType: String \nUpdate requires: No interruption"
},
"MaintenanceWindowStartTime": {
"$ref": "#/definitions/MaintenanceWindow"
Expand All @@ -76,7 +76,7 @@
},
"AutoMinorVersionUpgrade": {
"type": "boolean",
"markdownDescription": "\n\n---\n\nRequired: Yes \nType: Boolean \nUpdate requires: No interruption"
"markdownDescription": "\n\n---\n\nRequired: No \nType: Boolean \nUpdate requires: No interruption"
},
"Logs": {
"$ref": "#/definitions/LogList"
Expand Down Expand Up @@ -296,11 +296,9 @@
}
},
"required": [
"EngineVersion",
"DeploymentMode",
"HostInstanceType",
"EngineType",
"AutoMinorVersionUpgrade",
"Users",
"PubliclyAccessible",
"BrokerName"
Expand Down
3 changes: 1 addition & 2 deletions server/schema/resources/aws-amazonmq-configuration.json
Original file line number Diff line number Diff line change
Expand Up @@ -5,7 +5,7 @@
"properties": {
"EngineVersion": {
"type": "string",
"markdownDescription": "\n\n---\n\nRequired: Yes \nType: String \nUpdate requires: Replacement"
"markdownDescription": "\n\n---\n\nRequired: No \nType: String \nUpdate requires: Replacement"
},
"Description": {
"type": "string",
Expand Down Expand Up @@ -58,7 +58,6 @@
}
},
"required": [
"EngineVersion",
"EngineType",
"Data",
"Name"
Expand Down
47 changes: 26 additions & 21 deletions server/schema/resources/aws-apigateway-account.json
Original file line number Diff line number Diff line change
@@ -1,34 +1,21 @@
{
"typeName": "AWS::ApiGateway::Account",
"description": "The ``AWS::ApiGateway::Account`` resource specifies the IAM role that Amazon API Gateway uses to write API logs to Amazon CloudWatch Logs. To avoid overwriting other roles, you should only have one ``AWS::ApiGateway::Account`` resource per region per account.",
"sourceUrl": "https://github.com/aws-cloudformation/aws-cloudformation-resource-providers-apigateway",
"additionalProperties": false,
"properties": {
"CloudWatchRoleArn": {
"description": "The ARN of an Amazon CloudWatch role for the current Account.",
"type": "string",
"markdownDescription": "The ARN of an Amazon CloudWatch role for the current Account.\n\n---\n\nRequired: No \nType: String \nUpdate requires: No interruption"
}
"tagging": {
"taggable": false
},
"primaryIdentifier": [
"/properties/Id"
],
"readOnlyProperties": [
"/properties/Id"
],
"handlers": {
"read": {
"permissions": [
"apigateway:GET"
]
},
"create": {
"permissions": [
"apigateway:PATCH",
"iam:GetRole",
"iam:PassRole"
]
},
"read": {
"permissions": [
"apigateway:GET"
]
},
"update": {
"permissions": [
"apigateway:PATCH",
Expand All @@ -37,7 +24,25 @@
]
},
"delete": {
"permissions": []
"permissions": [
"apigateway:PATCH"
]
}
},
"typeName": "AWS::ApiGateway::Account",
"readOnlyProperties": [
"/properties/Id"
],
"description": "The ``AWS::ApiGateway::Account`` resource specifies the IAM role that Amazon API Gateway uses to write API logs to Amazon CloudWatch Logs. To avoid overwriting other roles, you should only have one ``AWS::ApiGateway::Account`` resource per region per account.",
"additionalProperties": false,
"primaryIdentifier": [
"/properties/Id"
],
"properties": {
"CloudWatchRoleArn": {
"description": "The ARN of an Amazon CloudWatch role for the current Account.",
"type": "string",
"markdownDescription": "The ARN of an Amazon CloudWatch role for the current Account.\n\n---\n\nRequired: No \nType: String \nUpdate requires: No interruption"
}
},
"attributes": {
Expand Down
12 changes: 12 additions & 0 deletions server/schema/resources/aws-apigateway-apikey.json
Original file line number Diff line number Diff line change
Expand Up @@ -99,6 +99,18 @@
"markdownDescription": "\n\n---\n\nRequired: No \nUpdate requires: No interruption"
}
},
"tagging": {
"taggable": true,
"tagOnCreate": true,
"tagUpdatable": true,
"cloudFormationSystemTags": true,
"tagProperty": "/properties/Tags",
"permissions": [
"apigateway:PUT",
"apigateway:DELETE",
"apigateway:GET"
]
},
"createOnlyProperties": [
"/properties/GenerateDistinctId",
"/properties/Name",
Expand Down
12 changes: 12 additions & 0 deletions server/schema/resources/aws-apigateway-clientcertificate.json
Original file line number Diff line number Diff line change
Expand Up @@ -41,6 +41,18 @@
"markdownDescription": "\n\n---\n\nRequired: No \nUpdate requires: No interruption"
}
},
"tagging": {
"taggable": true,
"tagOnCreate": true,
"tagUpdatable": true,
"cloudFormationSystemTags": true,
"tagProperty": "/properties/Tags",
"permissions": [
"apigateway:PUT",
"apigateway:DELETE",
"apigateway:GET"
]
},
"primaryIdentifier": [
"/properties/ClientCertificateId"
],
Expand Down
Loading

0 comments on commit f0e7825

Please sign in to comment.