update grant error message and README

aws · Sep 9, 2022 · 58479b0 · 58479b0
1 parent ea14e7e
commit 58479b0
Show file tree

Hide file tree

Showing 3 changed files with 4 additions and 4 deletions.
diff --git a/packages/@aws-cdk/aws-neptune/README.md b/packages/@aws-cdk/aws-neptune/README.md
@@ -70,7 +70,7 @@ The following example shows enabling IAM authentication for a database cluster a
 const cluster = new neptune.DatabaseCluster(this, 'Cluster', {
   vpc,
   instanceType: neptune.InstanceType.R5_LARGE,
-  iamAuthentication: true, // Optional - will be automatically set if you call grantConnect().
+  iamAuthentication: true, // Optional - will be automatically set if you call grantConnect() or grant().
 });
 const role = new iam.Role(this, 'DBRole', { assumedBy: new iam.AccountPrincipal(this.account) });
 // Use one of the following statements to grant the role the necessary permissions

diff --git a/packages/@aws-cdk/aws-neptune/lib/cluster.ts b/packages/@aws-cdk/aws-neptune/lib/cluster.ts
@@ -375,7 +375,7 @@ export abstract class DatabaseClusterBase extends Resource implements IDatabaseC
 
   public grant(grantee: iam.IGrantable, ...actions: string[]): iam.Grant {
     if (this.enableIamAuthentication === false) {
-      throw new Error('Cannot grant actions as IAM authentication is not enabled');
+      throw new Error('Cannot grant permissions as IAM authentication is disabled');
     }
 
     this.enableIamAuthentication = true;

diff --git a/packages/@aws-cdk/aws-neptune/test/cluster.test.ts b/packages/@aws-cdk/aws-neptune/test/cluster.test.ts
@@ -544,7 +544,7 @@ describe('DatabaseCluster', () => {
     });
 
     // THEN
-    expect(() => { cluster.grantConnect(role); }).toThrow(/Cannot grant actions as IAM authentication is not enabled/);
+    expect(() => { cluster.grantConnect(role); }).toThrow(/Cannot grant permissions as IAM authentication is disabled/);
   });
 
   test('grant - enables IAM auth and grants specified actions to the grantee', () => {
@@ -618,7 +618,7 @@ describe('DatabaseCluster', () => {
     });
 
     // THEN
-    expect(() => { cluster.grant(role, 'neptune-db:ReadDataViaQuery', 'neptune-db:WriteDataViaQuery'); }).toThrow(/Cannot grant actions as IAM authentication is not enabled/);
+    expect(() => { cluster.grant(role, 'neptune-db:ReadDataViaQuery', 'neptune-db:WriteDataViaQuery'); }).toThrow(/Cannot grant permissions as IAM authentication is disabled/);
   });
 
   test('autoMinorVersionUpgrade is enabled when configured', () => {