Add plus constructs

Author: hupe1980

.projenrc.js

@@ -5,7 +5,15 @@ const project = new cdk.JsiiProject({
   defaultReleaseBranch: "main",
   name: "cdktg",
   description: "Agile Threat Modeling as Code",
-  keywords: ["threagile", "cdk", "threat modeling", "stride"],
+  keywords: [
+    "threagile",
+    "cdk",
+    "threat modeling",
+    "stride",
+    "devsecops",
+    "appsec",
+    "constructs",
+  ],
   vscode: true,
   repositoryUrl: "https://github.com/hupe1980/cdk-threagile.git",
   license: "MIT",

API.md

@@ -46,7 +46,7 @@ export class DataAsset extends Resource {
     return {
       [this.node.id]: {
         id: this.uuid,
-        description: this.description,
+        description: this.description ?? null,
         usage: this.usage,
         tags: Array.from(new Set(this.tags)),
         origin: this.origin,

package.json

@@ -19,3 +19,7 @@ export * from "./synthesizer";
 export * from "./technical-asset";
 export * from "./trust-boundary";
 export * from "./usage";
+
+// export submobules
+export * as plus_aws from "./plus-aws";
+export * as plus from "./plus";

src/data-asset.ts

@@ -0,0 +1,53 @@
+import { Construct } from "constructs";
+import {
+  CIATriad,
+  Encryption,
+  Machine,
+  Size,
+  TechnicalAsset,
+  TechnicalAssetType,
+  Technology,
+  Usage,
+} from "..";
+import { SecurityGroup } from "./security-group";
+
+export interface ApplicationLoadBalancerProps {
+  readonly waf?: boolean;
+  readonly securityGroup?: SecurityGroup;
+  readonly description?: string;
+  readonly ciaTriad: CIATriad;
+  readonly tags?: string[];
+}
+
+export class ApplicationLoadBalancer extends TechnicalAsset {
+  public readonly securityGroup: SecurityGroup;
+
+  constructor(
+    scope: Construct,
+    id: string,
+    props: ApplicationLoadBalancerProps
+  ) {
+    super(scope, id, {
+      description: props.description,
+      type: TechnicalAssetType.PROCESS,
+      usage: Usage.BUSINESS,
+      humanUse: false,
+      size: Size.COMPONENT,
+      technology: props.waf ? Technology.WAF : Technology.LOAD_BALANCER,
+      tags: props.tags,
+      internet: false,
+      machine: Machine.VIRTUAL,
+      encryption: Encryption.NONE,
+      owner: "",
+      ciaTriad: props.ciaTriad,
+      multiTenant: true,
+      redundant: true,
+      customDevelopedParts: false,
+    });
+
+    this.securityGroup =
+      props.securityGroup ?? new SecurityGroup(this, `${id} SG`);
+
+    this.securityGroup.addTechnicalAssets(this);
+  }
+}

src/index.ts

@@ -0,0 +1,17 @@
+import { Construct } from "constructs";
+import { TrustBoundary, TrustBoundaryType } from "..";
+
+export interface CloudProps {
+  readonly description?: string;
+  readonly tags?: string[];
+}
+
+export class Cloud extends TrustBoundary {
+  constructor(scope: Construct, id: string, props: CloudProps = {}) {
+    super(scope, id, {
+      type: TrustBoundaryType.NETWORK_CLOUD_PROVIDER,
+      description: props.description,
+      tags: props.tags,
+    });
+  }
+}

src/plus-aws/application-load-balancer.ts

@@ -0,0 +1,3 @@
+export * from "./application-load-balancer";
+export * from "./cloud";
+export * from "./security-group";

src/plus-aws/cloud.ts

@@ -0,0 +1,17 @@
+import { Construct } from "constructs";
+import { TrustBoundary, TrustBoundaryType } from "..";
+
+export interface SecurityGroupProps {
+  readonly description?: string;
+  readonly tags?: string[];
+}
+
+export class SecurityGroup extends TrustBoundary {
+  constructor(scope: Construct, id: string, props: SecurityGroupProps = {}) {
+    super(scope, id, {
+      type: TrustBoundaryType.NETWORK_CLOUD_SECURITY_GROUP,
+      description: props.description,
+      tags: props.tags,
+    });
+  }
+}

src/plus-aws/index.ts

@@ -0,0 +1,41 @@
+import { Construct } from "constructs";
+import {
+  TechnicalAsset,
+  TechnicalAssetType,
+  Usage,
+  Scope,
+  Machine,
+  Encryption,
+  CIATriad,
+  Size,
+  Technology,
+} from "..";
+
+export interface BrowserProps {
+  readonly description?: string;
+  readonly scope: Scope;
+  readonly owner?: string;
+  readonly ciaTriad: CIATriad;
+}
+
+export class Browser extends TechnicalAsset {
+  constructor(scope: Construct, id: string, props: BrowserProps) {
+    super(scope, id, {
+      description: props.description,
+      type: TechnicalAssetType.EXTERNAL_ENTITY,
+      usage: Usage.BUSINESS,
+      humanUse: true,
+      scope: props.scope,
+      size: Size.APPLICATION,
+      technology: Technology.BROWSER,
+      internet: true,
+      machine: Machine.PHYSICAL,
+      encryption: Encryption.NONE,
+      owner: props.owner,
+      ciaTriad: props.ciaTriad,
+      multiTenant: false,
+      redundant: false,
+      customDevelopedParts: false,
+    });
+  }
+}