aws-samples · tbrand · Apr 12, 2024 · Apr 8, 2024 · Apr 10, 2024 · Apr 12, 2024
diff --git a/packages/cdk/cdk.json b/packages/cdk/cdk.json
@@ -48,6 +48,8 @@
     "anonymousUsageTracking": true,
     "recognizeFileEnabled": false,
     "vpcId": null,
+    "roleArn": "",
+    "sessionName": "BedrockApiAccess",
     "@aws-cdk/aws-lambda:recognizeLayerVersion": true,
     "@aws-cdk/core:checkSecretUsage": true,
     "@aws-cdk/core:target-partitions": [

diff --git a/packages/cdk/lambda/utils/bedrockApi.ts b/packages/cdk/lambda/utils/bedrockApi.ts
@@ -13,10 +13,59 @@ import {
   UnrecordedMessage,
 } from 'generative-ai-use-cases-jp';
 import { BEDROCK_MODELS, BEDROCK_IMAGE_GEN_MODELS } from './models';
+import { STSClient, AssumeRoleCommand, } from "@aws-sdk/client-sts";
 
-const client = new BedrockRuntimeClient({
-  region: process.env.MODEL_REGION,
-});
+// STSから一時的な認証情報を取得する関数を追加
+const assumeRole = async (roleArn: string, sessionName: string) => {
+  const stsClient = new STSClient({ region: process.env.MODEL_REGION });
+  const command = new AssumeRoleCommand({
+    RoleArn: roleArn,
+    RoleSessionName: sessionName,
+  });
+
+  try {
+    const response = await stsClient.send(command);
+    if (response.Credentials) {
+    return {
+      accessKeyId: response.Credentials?.AccessKeyId,
+      secretAccessKey: response.Credentials?.SecretAccessKey,
+      sessionToken: response.Credentials?.SessionToken,
+    };
+    } else {
+      throw new Error("認証情報を取得できませんでした。");
+    }
+  } catch (error) {
+    console.error("Error assuming role: ", error);
+    throw error;
+  }
+};
+
+// BedrockRuntimeClientを初期化する関数
+const initBedrockClient = async () => {
+  // ROLE_ARN が設定されているかチェック
+  if (process.env.ROLE_ARN && process.env.SESSION_NAME) {
+    // STS から一時的な認証情報を取得してクライアントを初期化
+    const tempCredentials = await assumeRole(process.env.ROLE_ARN, process.env.SESSION_NAME);
+
+    if (!tempCredentials.accessKeyId || !tempCredentials.secretAccessKey || !tempCredentials.sessionToken) {
+      throw new Error("STSからの認証情報が不完全です。");
+    }
+
+    return new BedrockRuntimeClient({
+      region: process.env.MODEL_REGION,
+      credentials: {
+        accessKeyId: tempCredentials.accessKeyId,
+        secretAccessKey: tempCredentials.secretAccessKey,
+        sessionToken: tempCredentials.sessionToken,
+      }
+    });
+  } else {
+    // STSを使用しない場合のクライアント初期化
+    return new BedrockRuntimeClient({
+      region: process.env.MODEL_REGION,
+    });
+  }
+};
 
 const createBodyText = (
   model: string,
@@ -49,6 +98,7 @@ const extractOutputImage = (
 
 const bedrockApi: ApiInterface = {
   invoke: async (model, messages) => {
+    const client = await initBedrockClient();
     const command = new InvokeModelCommand({
       modelId: model.modelId,
       body: createBodyText(model.modelId, messages),
@@ -59,6 +109,7 @@ const bedrockApi: ApiInterface = {
     return extractOutputText(model.modelId, body);
   },
   invokeStream: async function* (model, messages) {
+    const client = await initBedrockClient();
     try {
       const command = new InvokeModelWithResponseStreamCommand({
         modelId: model.modelId,
@@ -98,6 +149,7 @@ const bedrockApi: ApiInterface = {
     }
   },
   generateImage: async (model, params) => {
+    const client = await initBedrockClient();
     const command = new InvokeModelCommand({
       modelId: model.modelId,
       body: createBodyImage(model.modelId, params),

diff --git a/packages/cdk/lib/construct/api.ts b/packages/cdk/lib/construct/api.ts
@@ -31,6 +31,8 @@ export class Api extends Construct {
   readonly imageGenerationModelIds: string[];
   readonly endpointNames: string[];
   readonly agentNames: string[];
+  readonly roleArn: string;
+  readonly sessionName: string
 
   constructor(scope: Construct, id: string, props: BackendApiProps) {
     super(scope, id);
@@ -93,6 +95,10 @@ export class Api extends Construct {
       };
     }
 
+    // cross account access IAM role
+    const roleArn = this.node.tryGetContext('roleArn');
+    const sessionName = this.node.tryGetContext('sessionName');
+
     // Lambda
     const predictFunction = new NodejsFunction(this, 'Predict', {
       runtime: Runtime.NODEJS_18_X,
@@ -102,6 +108,8 @@ export class Api extends Construct {
         MODEL_REGION: modelRegion,
         MODEL_IDS: JSON.stringify(modelIds),
         IMAGE_GENERATION_MODEL_IDS: JSON.stringify(imageGenerationModelIds),
+	ROLE_ARN: roleArn,
+	SESSION_NAME: sessionName,
       },
       bundling: {
         nodeModules: ['@aws-sdk/client-bedrock-runtime'],
@@ -118,6 +126,8 @@ export class Api extends Construct {
         IMAGE_GENERATION_MODEL_IDS: JSON.stringify(imageGenerationModelIds),
         AGENT_REGION: agentRegion,
         AGENT_MAP: JSON.stringify(agentMap),
+	ROLE_ARN: roleArn,
+	SESSION_NAME: sessionName,
       },
       bundling: {
         nodeModules: [
@@ -144,6 +154,8 @@ export class Api extends Construct {
         MODEL_REGION: modelRegion,
         MODEL_IDS: JSON.stringify(modelIds),
         IMAGE_GENERATION_MODEL_IDS: JSON.stringify(imageGenerationModelIds),
+	ROLE_ARN: roleArn,
+	SESSION_NAME: sessionName,
       },
     });
     table.grantWriteData(predictTitleFunction);
@@ -156,6 +168,8 @@ export class Api extends Construct {
         MODEL_REGION: modelRegion,
         MODEL_IDS: JSON.stringify(modelIds),
         IMAGE_GENERATION_MODEL_IDS: JSON.stringify(imageGenerationModelIds),
+	ROLE_ARN: roleArn,
+	SESSION_NAME: sessionName,
       },
       bundling: {
         nodeModules: ['@aws-sdk/client-bedrock-runtime'],
@@ -183,15 +197,37 @@ export class Api extends Construct {
 
     // Bedrock は常に権限付与
     // Bedrock Policy
-    const bedrockPolicy = new PolicyStatement({
-      effect: Effect.ALLOW,
-      resources: ['*'],
-      actions: ['bedrock:*', 'logs:*'],
-    });
-    predictStreamFunction.role?.addToPrincipalPolicy(bedrockPolicy);
-    predictFunction.role?.addToPrincipalPolicy(bedrockPolicy);
-    predictTitleFunction.role?.addToPrincipalPolicy(bedrockPolicy);
-    generateImageFunction.role?.addToPrincipalPolicy(bedrockPolicy);
+    if (typeof roleArn !== 'string' || roleArn === '') {
+      const bedrockPolicy = new PolicyStatement({
+        effect: Effect.ALLOW,
+        resources: ['*'],
+        actions: ['bedrock:*', 'logs:*'],
+      });
+      predictStreamFunction.role?.addToPrincipalPolicy(bedrockPolicy);
+      predictFunction.role?.addToPrincipalPolicy(bedrockPolicy);
+      predictTitleFunction.role?.addToPrincipalPolicy(bedrockPolicy);
+      generateImageFunction.role?.addToPrincipalPolicy(bedrockPolicy);
+    } else {
+      // roleArn が指定されている場合のポリシー
+      const logsPolicy = new PolicyStatement({
+        effect: Effect.ALLOW,
+        actions: ['logs:*'],
+        resources: ['*'],
+      });
+      const assumeRolePolicy = new PolicyStatement({
+        effect: Effect.ALLOW,
+        actions: ['sts:AssumeRole'],
+        resources: [roleArn],
+      });
+      predictStreamFunction.role?.addToPrincipalPolicy(logsPolicy);
+      predictFunction.role?.addToPrincipalPolicy(logsPolicy);
+      predictTitleFunction.role?.addToPrincipalPolicy(logsPolicy);
+      generateImageFunction.role?.addToPrincipalPolicy(logsPolicy);
+      predictStreamFunction.role?.addToPrincipalPolicy(assumeRolePolicy);
+      predictFunction.role?.addToPrincipalPolicy(assumeRolePolicy);
+      predictTitleFunction.role?.addToPrincipalPolicy(assumeRolePolicy);
+      generateImageFunction.role?.addToPrincipalPolicy(assumeRolePolicy);
+    }
 
     const createChatFunction = new NodejsFunction(this, 'CreateChat', {
       runtime: Runtime.NODEJS_18_X,