diff --git a/packages/graphql-mesh-server/.npmignore b/packages/graphql-mesh-server/.npmignore index bfd115ba..96724112 100644 --- a/packages/graphql-mesh-server/.npmignore +++ b/packages/graphql-mesh-server/.npmignore @@ -1,5 +1,5 @@ *.ts -!lib/handlers/*.ts +!assets/handlers/*.ts !*.d.ts !*.js diff --git a/packages/graphql-mesh-server/README.md b/packages/graphql-mesh-server/README.md index 4263295b..2eca2cf7 100644 --- a/packages/graphql-mesh-server/README.md +++ b/packages/graphql-mesh-server/README.md @@ -1,6 +1,8 @@ -# Prerender in Fargate +# GraphQL Mesh in Fargate A construct host [GraphQL Mesh](https://the-guild.dev/graphql/mesh) server in Fargate. +## Deployment notifications +If notificationArn is set this construct creates a CodeStar notification rule, SNS topic and Lambda function to receive notifications for codepipeline executions and forward them to another SNS topic. This is so that you can setup AWS Chatbot either in this account OR another account and forward the notifications there. ## Props - `vpc?`: VPC to attach Redis and Fargate instances to (default: create a vpc) - `vpcName?`: If no VPC is provided create one with this name (default: 'graphql-server-vpc') @@ -13,3 +15,4 @@ A construct host [GraphQL Mesh](https://the-guild.dev/graphql/mesh) server in Fa - `memory?`: Amount of memory per Fargate instance (default: 1024) - `redis?`: Redis instance to use for mesh caching - `secrets?`: SSM values to pass through to the container as secrets + - `notificationArn?`: SNS Topic ARN to publish deployment notifications to \ No newline at end of file diff --git a/packages/graphql-mesh-server/assets/handlers/notify-sns.ts b/packages/graphql-mesh-server/assets/handlers/notify-sns.ts new file mode 100644 index 00000000..8a9c7b96 --- /dev/null +++ b/packages/graphql-mesh-server/assets/handlers/notify-sns.ts @@ -0,0 +1,20 @@ +import { PublishCommand, SNSClient } from "@aws-sdk/client-sns"; +import { SNSEvent } from "aws-lambda"; + +const client = new SNSClient({ region: process.env.AWS_REGION }); + +export const handler = async (event: SNSEvent): Promise => { + const record = event.Records[0]; + const message = record.Sns.Message; + + const command = new PublishCommand({ + TopicArn: process.env.SNS_TOPIC, + Message: message, + }); + + try { + await client.send(command); + } catch (e) { + console.log(e); + } +}; diff --git a/packages/graphql-mesh-server/lib/graphql-mesh-server.ts b/packages/graphql-mesh-server/lib/graphql-mesh-server.ts index fa696280..2d95a8ed 100644 --- a/packages/graphql-mesh-server/lib/graphql-mesh-server.ts +++ b/packages/graphql-mesh-server/lib/graphql-mesh-server.ts @@ -56,6 +56,10 @@ export type MeshHostingProps = { * SSM values to pass through to the container as secrets */ secrets?: { [key: string]: ssm.IStringParameter | ssm.IStringListParameter }; + /** + * ARN of the SNS Topic to send deployment notifications to + */ + notificationArn?: string; }; export class MeshHosting extends Construct { @@ -100,6 +104,7 @@ export class MeshHosting extends Construct { new CodePipelineService(this, "pipeline", { repository: this.repository, service: this.service, + notificationArn: props.notificationArn, }); } } diff --git a/packages/graphql-mesh-server/lib/pipeline.ts b/packages/graphql-mesh-server/lib/pipeline.ts index a4e7c7c6..c0fa72eb 100644 --- a/packages/graphql-mesh-server/lib/pipeline.ts +++ b/packages/graphql-mesh-server/lib/pipeline.ts @@ -8,6 +8,15 @@ import { Construct } from "constructs"; import * as fs from "fs"; import * as path from "path"; import * as YAML from "yaml"; +import { NodejsFunction } from "aws-cdk-lib/aws-lambda-nodejs"; +import { Runtime } from "aws-cdk-lib/aws-lambda"; +import { Effect, PolicyStatement } from "aws-cdk-lib/aws-iam"; +import { Topic } from "aws-cdk-lib/aws-sns"; +import { LambdaSubscription } from "aws-cdk-lib/aws-sns-subscriptions"; +import { + DetailType, + NotificationRule, +} from "aws-cdk-lib/aws-codestarnotifications"; export interface CodePipelineServiceProps { /** @@ -24,6 +33,11 @@ export interface CodePipelineServiceProps { * Path to buildspec.yml (default: '../assets/buildspec.yml') */ buildspecPath?: string; + + /** + * ARN of the SNS Topic to send deployment notifications to + */ + notificationArn?: string; } export class CodePipelineService extends Construct { @@ -90,5 +104,44 @@ export class CodePipelineService extends Construct { }), ], }); + + if (props.notificationArn) { + const notifier = new NodejsFunction(this, "NotifierLambda", { + entry: path.resolve(__dirname, "../assets/handlers/notify-sns.ts"), + description: + "Lambda function to forward SNS messages to another account.", + runtime: Runtime.NODEJS_18_X, + handler: "index.handler", + timeout: Duration.seconds(10), + environment: { + SNS_TOPIC: props.notificationArn, + }, + }); + + notifier.addToRolePolicy( + new PolicyStatement({ + actions: ["sns:publish"], + resources: [props.notificationArn], + effect: Effect.ALLOW, + }) + ); + + const topic = new Topic(this, "NotifierTopic"); + topic.addSubscription(new LambdaSubscription(notifier)); + + new NotificationRule(this, "CodeStarNotificationRule", { + detailType: DetailType.FULL, + events: [ + "codepipeline-pipeline-pipeline-execution-failed", + "codepipeline-pipeline-pipeline-execution-canceled", + "codepipeline-pipeline-pipeline-execution-started", + "codepipeline-pipeline-pipeline-execution-resumed", + "codepipeline-pipeline-pipeline-execution-succeeded", + "codepipeline-pipeline-pipeline-execution-superseded", + ], + targets: [topic], + source: this.pipeline, + }); + } } } diff --git a/packages/graphql-mesh-server/package.json b/packages/graphql-mesh-server/package.json index b3a40c28..df512e91 100644 --- a/packages/graphql-mesh-server/package.json +++ b/packages/graphql-mesh-server/package.json @@ -31,6 +31,7 @@ "yaml": "^2.3.1", "aws-cdk-lib": "2.97.0", "constructs": "^10.0.0", - "source-map-support": "^0.5.21" + "source-map-support": "^0.5.21", + "@aws-sdk/client-sns": "^3.413.0" } }