function exportContactHistory()

in lib/export-contact-history-s3.js [15:84]

• 57 lines of code
• 2 McCabe index (conditional complexity)

function exportContactHistory(scope) {
    //Setup S3 bucket to write contact history to
    const contactHistoryBucket = new s3.Bucket(scope, 'ContactHistoryBucket', {
        removalPolicy: cdk.RemovalPolicy.DESTROY,
        autoDeleteObjects: true
    });
    //Setup ExportContactHistory Lambda function
    const exportContactHistoryLambda = new lambda.Function(scope, 'ExportContactHistoryS3', {
        description: 'Reads contact history from Honeycode and saves it to S3',
        code: lambda.Code.fromAsset('lambda/ExportContactHistoryS3'),
        handler: 'index.handler',
        runtime: lambda.Runtime.NODEJS_12_X,
        environment,
        timeout: cdk.Duration.minutes(1), //Give enough time for reading and saving contact history
    });
    //Run ExportContactHistory every minute
    const exportContactHistoryRule = new events.Rule(scope, 'ExportContactHistoryRule', {
        schedule: events.Schedule.expression('rate(1 minute)')
    });
    exportContactHistoryRule.addTarget(new targets.LambdaFunction(exportContactHistoryLambda));
    //Allow lambda function to write to the S3 bucket
    contactHistoryBucket.grantWrite(exportContactHistoryLambda);
    //Add the bucket name to the lambda's environment variables
    exportContactHistoryLambda.addEnvironment('s3bucket', contactHistoryBucket.bucketName);
    //Allow lambda to access Honeycode workbook
    //When a crossAccountHoneycodeRoleArn is specified, the lambda will assume that role and we don't need to add Honeycode policies to the Lambda execution role 
    if (environment.crossAcountHoneycodeRoleArn.indexOf("arn:aws") === -1) {
        //You can give full access to all your workbooks
        //exportContactHistoryLambda.role.addManagedPolicy(iam.ManagedPolicy.fromAwsManagedPolicyName('AmazonHoneycodeWorkbookFullAccess'));
        //Or give access to this specific workbook (recommended)
        exportContactHistoryLambda.addToRolePolicy(new iam.PolicyStatement({
            actions: ['honeycode:ListTables', 'honeycode:ListTableColumns', 'honeycode:BatchUpdateTableRows', 'honeycode:QueryTableRows'],
            resources: [`arn:aws:honeycode:*:*:workbook:workbook/${environment.workbookId}`, `arn:aws:honeycode:*:*:table:workbook/${environment.workbookId}/table/*`]
        }))
    } else {
        //Add STS assume role to allow this lambda to assume the cross account role
        exportContactHistoryLambda.addToRolePolicy(new iam.PolicyStatement({
            actions: ['sts:AssumeRole'],
            resources: [environment.crossAcountHoneycodeRoleArn]
        }))
    }
    //Write s3-manifest.json to S3 bucket using a custom resource for use with QuickSight
    new AwsCustomResource(scope, 'S3Manifest', {
        onCreate: {
            service: 'S3',
            action: 'putObject',
            parameters: {
                Bucket: contactHistoryBucket.bucketName,
                Key: 'manifest.json',
                Body: JSON.stringify({
                    fileLocations: [
                        {
                            URIPrefixes: [
                                `s3://${contactHistoryBucket.bucketName}/csv/`
                            ]
                        }
                    ]
                }, null, 2)
            },
            physicalResourceId: 'S3ManifestFile'
        },
        policy: AwsCustomResourcePolicy.fromSdkCalls({
            resources: [`${contactHistoryBucket.bucketArn}/*`]
        })
    });
    //Output the Bucket URL
    new cdk.CfnOutput(scope, "S3 manifest file URL", {
        value: `s3://${contactHistoryBucket.bucketName}/manifest.json`
    });
}