feat: allow multi region stackset deployments with assets

josh-demuth · Jan 18, 2024 · 9f588a1 · 9f588a1
1 parent afd12b6
commit 9f588a1
Show file tree

Hide file tree

Showing 15 changed files with 531 additions and 386 deletions.
diff --git a/.projen/deps.json b/.projen/deps.json
diff --git a/.projen/tasks.json b/.projen/tasks.json
diff --git a/.projenrc.ts b/.projenrc.ts
@@ -1,7 +1,7 @@
 import { CdklabsConstructLibrary } from 'cdklabs-projen-project-types';
 import { JsonPatch } from 'projen';
 
-const MIN_CDK_VERSION = '2.108.0';
+const MIN_CDK_VERSION = '2.113.0';
 const project = new CdklabsConstructLibrary({
   projenrcTs: true,
   author: 'AWS',
@@ -10,7 +10,7 @@ const project = new CdklabsConstructLibrary({
   defaultReleaseBranch: 'main',
   name: 'cdk-stacksets',
   repositoryUrl: 'https://github.com/cdklabs/cdk-stacksets.git',
-  devDeps: ['cdklabs-projen-project-types', '@aws-cdk/integ-tests-alpha', `@aws-cdk/integ-runner@${MIN_CDK_VERSION}`, `aws-cdk@${MIN_CDK_VERSION}`],
+  devDeps: ['cdklabs-projen-project-types', `@aws-cdk/cloud-assembly-schema@${MIN_CDK_VERSION}`, `@aws-cdk/integ-tests-alpha@${MIN_CDK_VERSION}-alpha.0`, `@aws-cdk/integ-runner@${MIN_CDK_VERSION}`, `aws-cdk@${MIN_CDK_VERSION}`],
   publishDryRun: false,
   private: false,
 });

diff --git a/API.md b/API.md
diff --git a/README.md b/README.md
@@ -255,9 +255,9 @@ AWS accounts when they are added or removed from the specified organizational un
 
 You can use the StackSet's parent stack to facilitate file assets. Behind the scenes,
 this is accomplished using the `BucketDeployment` construct from the
-`aws_s3_deployment` module. You need to provide a bucket outside the scope of the CDK
-managed asset buckets and ensure you have persmissions for the target accounts to pull
-the artifacts from the supplied bucket.
+`aws_s3_deployment` module. You need to provide a list of buckets outside the scope of the CDK
+managed asset buckets and ensure you have permissions for the target accounts to pull
+the artifacts from the supplied bucket(s).
 
 As a basic example, if using a `serviceManaged` deployment, you just need to give read
 access to the Organization. You can create the asset bucket in the parent stack, or another
@@ -267,7 +267,7 @@ If creating in the parent or sibling stack you could create and export similar t
 
 ```ts
 const bucket = new s3.Bucket(this, "Assets", {
-  bucketName: "cdkstacket-asset-bucket-xyz",
+  bucketName: "prefix-us-east-1",
 });
 
 bucket.addToResourcePolicy(
@@ -285,11 +285,16 @@ Then pass as a prop to the StackSet stack:
 declare const bucket: s3.Bucket;
 const stack = new Stack();
 const stackSetStack = new StackSetStack(stack, 'MyStackSet', {
-  assetBucket: bucket,
+  assetBuckets: [bucket],
 });
 ```
 
-Then call `new StackSet` as described in the sections above.
+To faciliate multi region deployments, there is an assetPrefix property. This 
+gets added to the region the Stack Set is deployed to. The stack synthesis for 
+the Stack Set would look for a bucket named `prefix-{Region}` in the example 
+above. `{Region}` is whatever region you are deploying the Stack Set to as 
+defined in your target property of the StackSet. You will need to ensure the 
+bucket name is correct based on what was previously created and then passed in.
 
 You can use self-managed StackSet deployments with file assets too but will
 need to ensure all target accounts roles will have access to the central asset

diff --git a/package.json b/package.json