fix(scheduler-targetes-alpha): multiple schedules cause resolution er…

…ror during synth (#30634) ### Reason for this change Creating multiple `Schedule`s causes Resolution Error during synth. This PR does not fix the root cause (discussing at #28713), but apply a workaround to prevent the error. ### Description of changes Use `ServicePrincipal` with conditions directly, instead of `PrincipalWithConditions`. ### Description of how you validated changes Added a feature flag `{"@aws-cdk/aws-iam:minimizePolicies":true}` to unit tests. Resolution errors occur before fix. No errors occur after fix. ## Checklist - [x] My code adheres to the [CONTRIBUTING GUIDE](https://github.com/aws/aws-cdk/blob/main/CONTRIBUTING.md) and [DESIGN GUIDELINES](https://github.com/aws/aws-cdk/blob/main/docs/DESIGN_GUIDELINES.md) ---- *By submitting this pull request, I confirm that my contribution is made under the terms of the Apache-2.0 license*
aws · Jul 10, 2024 · 727e886 · 727e886
1 parent 7cd0f65
commit 727e886
Show file tree

Hide file tree

Showing 22 changed files with 9,453 additions and 10,133 deletions.
diff --git a/packages/@aws-cdk/aws-scheduler-targets-alpha/lib/target.ts b/packages/@aws-cdk/aws-scheduler-targets-alpha/lib/target.ts
@@ -116,9 +116,11 @@ export abstract class ScheduleTargetBase {
     const id = 'SchedulerRoleForTarget-' + hash;
     const existingRole = stack.node.tryFindChild(id) as iam.Role;
 
-    const principal = new iam.PrincipalWithConditions(new iam.ServicePrincipal('scheduler.amazonaws.com'), {
-      StringEquals: {
-        'aws:SourceAccount': schedule.env.account,
+    const principal = new iam.ServicePrincipal('scheduler.amazonaws.com', {
+      conditions: {
+        StringEquals: {
+          'aws:SourceAccount': schedule.env.account,
+        },
       },
     });
     if (existingRole) {
@@ -192,4 +194,4 @@ export abstract class ScheduleTargetBase {
       maximumRetryAttempts: maxAttempts,
     };
   }
-}
+}
diff --git a/packages/@aws-cdk/aws-scheduler-targets-alpha/test/codebuild-start-build.test.ts b/packages/@aws-cdk/aws-scheduler-targets-alpha/test/codebuild-start-build.test.ts
@@ -16,7 +16,7 @@ describe('codebuild start build', () => {
   const expr = ScheduleExpression.at(new Date(Date.UTC(1991, 2, 24, 0, 0, 0)));
 
   beforeEach(() => {
-    app = new App();
+    app = new App({ context: { '@aws-cdk/aws-iam:minimizePolicies': true } });
     stack = new Stack(app, 'Stack', { env: { region: 'us-east-1', account: '123456789012' } });
     codebuildProject = new Project(stack, 'Project', {
       buildSpec: BuildSpec.fromObject({}),

diff --git a/...s/@aws-cdk/aws-scheduler-targets-alpha/test/codepipeline-start-pipeline-execution.test.ts b/...s/@aws-cdk/aws-scheduler-targets-alpha/test/codepipeline-start-pipeline-execution.test.ts
@@ -30,7 +30,7 @@ describe('codepipeline start execution', () => {
   const expr = ScheduleExpression.at(new Date(Date.UTC(1991, 2, 24, 0, 0, 0)));
 
   beforeEach(() => {
-    app = new App();
+    app = new App({ context: { '@aws-cdk/aws-iam:minimizePolicies': true } });
     stack = new Stack(app, 'Stack', { env: { region: 'us-east-1', account: '123456789012' } });
     codepipeline = createMinimalPipeline(stack);
   });

diff --git a/packages/@aws-cdk/aws-scheduler-targets-alpha/test/event-bridge-put-events.test.ts b/packages/@aws-cdk/aws-scheduler-targets-alpha/test/event-bridge-put-events.test.ts
@@ -14,7 +14,7 @@ describe('eventBridge put events', () => {
   const expr = ScheduleExpression.at(new Date(Date.UTC(1991, 2, 24, 0, 0, 0)));
 
   beforeEach(() => {
-    app = new App();
+    app = new App({ context: { '@aws-cdk/aws-iam:minimizePolicies': true } });
     stack = new Stack(app, 'Stack', { env: { region: 'us-east-1', account: '123456789012' } });
     eventBus = new events.EventBus(stack, 'MyEventBus', { eventBusName: 'MyEventBus' });
     eventBusEventEntry = {

diff --git a/packages/@aws-cdk/aws-scheduler-targets-alpha/test/inspector-start-assessment-run.test.ts b/packages/@aws-cdk/aws-scheduler-targets-alpha/test/inspector-start-assessment-run.test.ts
@@ -13,7 +13,7 @@ describe('schedule target', () => {
   const expr = ScheduleExpression.at(new Date(Date.UTC(1969, 10, 20, 0, 0, 0)));
 
   beforeEach(() => {
-    app = new App();
+    app = new App({ context: { '@aws-cdk/aws-iam:minimizePolicies': true } });
     stack = new Stack(app, 'Stack', { env: { region: 'us-east-1', account: '123456789012' } });
     const assessmentTarget = new CfnAssessmentTarget(stack, 'MyAssessmentTarget');
     template = new CfnAssessmentTemplate(stack, 'MyTemplate', {
@@ -506,4 +506,4 @@ describe('schedule target', () => {
         target: inspectorTarget,
       })).toThrow(/Number of retry attempts should be less or equal than 185/);
   });
-});
+});