Lukas
Reputation: 198
Add Conditions to Resources in CDK
I have created a CDK stack that will be deployed in multiple regions. One of the constructs shall only be deployed in one region. In Cloudformation I'd simply add a Condition to the resource, but I haven't found a way to do something similar with CDK constructs.
It is possible to define a CfnCondition and add it to CfnResources, but I how do I add conditions to constructs like lambda functions?
Upvotes: 11
Views: 18510
Answers (2)
Jorge López
Reputation: 1919
Here is a example on how to achieve this for a iam.Role:
const role = new iam.Role(this, "TestRole", {...});
const conditionKey = "AssumeRolePolicyDocument.Statement.0.Condition.ForAnyValue:StringLike";
const conditionValue = {
"aws:userid": [
"[email protected]",
"[email protected]",
],
};
const roleRef = role.node.defaultChild as iam.CfnRole;
roleRef.addPropertyOverride(conditionKey, conditionValue);
Upvotes: 0
jogold
Reputation: 7407
Here is a example on how to achieve this for a iam.User:
// Create a CloudFormation condition on the region
const regionCondition = new cdk.CfnCondition(this, 'RegionCondition', {
expression: cdk.Fn.conditionEquals(cdk.Stack.of(this).region, 'eu-west-1'),
});
// Create the user using the L2 construct
const user = new iam.User(this, 'User');
// Add the condition on the underlying AWS::IAM::User
(user.node.defaultChild as iam.CfnUser).cfnOptions.condition = regionCondition
Upvotes: 14
Related Questions
- Assert resources do not have properties
- Is it possible to specify AWS resources in cdk8s?
- How to add a tag to an AWS-CDK construct
- AWS CDK conditional ImportValue
- How to specify parameter definition in CDK stack?
- AWS CDK resource create sequence?
- How do I check if all resources in my CDK stack have certain properties?
- AWS CDK Python Create Resources conditionally
- How to test if CDK context key exists?
- AWS CDK: Add Cfn Condition to all/multiple resources