fix(events): allow adding same target to rule multiple times

[jogold]

As rule targets can have different input configurations adding the same target multiple times
must be possible.

Move rule target id generation to aws-events where it's easy to simply increment a counter. This
id is passed as an argument to bind() for targets that need to know their given id (e.g. EcsTask).

Add permissionsNode on IFunction to handle permission checks for both functions and singleton
functions.

Fixes #3173

---

Please read the contribution guidelines and follow the pull-request checklist.

By submitting this pull request, I confirm that my contribution is made under the terms of the Apache-2.0 license

[rix0rrr]

I'm not sure this will work correctly if we update a list of 2 elements to a list of 2 different elements.

I believe what will happen is CloudFormation will call addTarget("Rule1", { ... }) (the new Rule1), and then removeTarget("Rule1") (intending to remove the old rule1).

Anything that depends on addition order is super scary to me. I'd rather have a different consistent way of generating IDs.

[rix0rrr]

Either an optional "id" field on every target that can be used in lieu of the default id, or we hash in the target configuration to make the ID unique.

[jogold]

Are you sure? CF will likely use PutTargets which updates everything in one go?

[jogold]

OK I get what you mean, let's hash the configuration.

[jogold]

How do you suggest passing the id to the EcsTask target (which needs the id for its AwsCustomResource) if we hash it in aws-events after receiving the full configuration?

[jogold]

I'm not sure this will work correctly if we update a list of 2 elements to a list of 2 different elements.

Actually I tested this and it works fine. If this was the case we would already have a problem with the current implementation because when you change a target configuration (let's say message for targets.SnsTopic) you are basically updating the target but keeping the same id. Rule targets are not CF resources by themselves, they are properties of AWS::Events::Rule.

You can try the following:
First depoy:

event.addTarget(new targets.SqsQueue(queue));
event.addTarget(new targets.SnsTopic(topic));

Second deploy:

event.addTarget(new targets.SnsTopic(topic));
event.addTarget(new targets.SqsQueue(queue));

After second deploy targets are correctly inverted.

Let me know if you still think that the id generation should be updated.

[rix0rrr]

Why do they have an ID then... :x

[rix0rrr]

Oh well I guess this breaks API compatibility now.

err  - METHOD @aws-cdk/aws-events-targets.CodeBuildProject.bind: returns @aws-cdk/aws-events.RuleTargetConfig: formerly required property 'id' is missing in @aws-cdk/aws-events.RuleTargetConfig [change-return-type:@aws-cdk/aws-events-targets.CodeBuildProject.bind]

[jogold]

This is rather technical/internal... what do you suggest?

[rix0rrr]

I have to context switch to get back into it... but offhand: id can't be removed. So can you make it so that it is used if nonempty, and the new behavior applies if the string is empty?

Not as good as an optional id field, but it'll have to do.

[jogold]

@rix0rrr this is now non breaking.

(shouldn't jsii-diff consider a change from required to optional as non breaking?)

[rix0rrr]

(shouldn't jsii-diff consider a change from required to optional as non breaking?)

Not if the field is on a struct that is returned from a function. Consider the following:

interface OutputStruct {
  value: string;
}

const struct : OutputStruct = giveMeTheStruct();
functionThatExpectsAString(struct.value);

Now change value to be optional -- the code breaks! It used to be able to expect that value was always there, but that's no longer true.

[rix0rrr]

After merging it it broke master, so I undid the merge and revived the PR here: #3352

[rix0rrr]

This is a better pR: #3353