constructor()

in source/resources/lib/demo.ts [29:113]

• 63 lines of code
• 2 McCabe index (conditional complexity)

  constructor(scope: App, id: string) {
    super(scope, id);

    //=============================================================================================
    // Metadata
    //=============================================================================================
    this.templateOptions.description = `(${manifest.solution.demoSolutionId}) - The AWS CloudFormation template for deployment of the ${manifest.solution.name} demo resources. Version ${manifest.solution.solutionVersion}`;
    this.templateOptions.templateFormatVersion =
      manifest.solution.templateVersion;

    //=============================================================================================
    // Resources
    //=============================================================================================
    /**
     * CloudFront - S3 resource
     */
    new CloudFrontToS3(this, "test-cloudfront-s3", {});

    /**
     * Security Groups
     */
    const vpc = new Vpc(this, "test-VPC", {
      cidr: "10.0.0.0/16",
    });

    vpc.publicSubnets.forEach((s) => {
      const cfnSubnet = s.node.defaultChild as CfnResource;
      cfnSubnet.addPropertyOverride("MapPublicIpOnLaunch", false);
    });

    const sg = new SecurityGroup(this, "test-vpc-sg", {
      vpc: vpc,
      allowAllOutbound: true,
    });
    sg.addIngressRule(Peer.anyIpv4(), Port.allTcp());

    //=============================================================================================
    // cfn_nag suppress rules
    //=============================================================================================
    const sgSuppress = sg.node.findChild("Resource") as CfnResource;
    const vpcSuppress = vpc.node.findChild("Resource") as CfnResource;
    sgSuppress.cfnOptions.metadata = {
      cfn_nag: {
        rules_to_suppress: [
          {
            id: "W40",
            reason:
              "Demo template, need resources to trigger violation rules in the account",
          },
          {
            id: "W5",
            reason:
              "Demo template, need resources to trigger violation rules in the account",
          },
          {
            id: "W9",
            reason:
              "Demo template, need resources to trigger violation rules in the account",
          },
          {
            id: "W2",
            reason:
              "Demo template, need resources to trigger violation rules in the account",
          },
          {
            id: "W27",
            reason:
              "Demo template, need resources to trigger violation rules in the account",
          },
        ],
      },
    };

    vpcSuppress.cfnOptions.metadata = {
      cfn_nag: {
        rules_to_suppress: [
          {
            id: "W60",
            reason:
              "Demo template, need resources to trigger violation rules in the account",
          },
        ],
      },
    };
  }