aws-samples
diff --git a/‎API.md‎
Lines changed: 39 additions & 0 deletions b/‎API.md‎
Lines changed: 39 additions & 0 deletions
diff --git a/‎package.json‎
Lines changed: 2 additions & 2 deletions b/‎package.json‎
Lines changed: 2 additions & 2 deletions
diff --git a/‎src/index.ts‎
Lines changed: 35 additions & 0 deletions b/‎src/index.ts‎
Lines changed: 35 additions & 0 deletions
diff --git a/‎test/imagepipeline.test.ts‎
Lines changed: 7 additions & 0 deletions b/‎test/imagepipeline.test.ts‎
Lines changed: 7 additions & 0 deletions
@@ -99,6 +99,18 @@ export interface ImagePipelineProps {
    * Store vulnerability scans through AWS Inpsector in ECR using these image tags (if option is enabled)
    */
   readonly vulnScansRepoTags?: string[];
+  /**
+   * Set to true if you want to copy this AMI to other accounts using a Distribution Configuration
+   */
+  readonly enableCrossAccountDistribution?: boolean;
+  /**
+   * List of accounts to copy this AMI to, if the option to do so is enabled
+   */
+  readonly distributionAccountIDs?: string[];
+  /**
+   * List of regions to copy this AMI to, if the option to do so is enabled
+   */
+  readonly distributionRegions?: string[];
 }
 
 export class ImagePipeline extends Construct {
@@ -224,6 +236,29 @@ export class ImagePipeline extends Construct {
         },
       };
     }
+    if (props.enableCrossAccountDistribution) {
+      const distributionsList: imagebuilder.CfnDistributionConfiguration.DistributionProperty[] = [];
+      props.distributionRegions?.forEach(distributionRegion => {
+        const distributionConfig: any = {
+          region: distributionRegion,
+          amiDistributionConfiguration: {
+            name: `${props.imageRecipe}-${distributionRegion}`,
+            description: `copy AMI ${props.imageRecipe} to ${distributionRegion}`,
+            targetAccountIds: props.distributionAccountIDs,
+          },
+        };
+        distributionsList.push(distributionConfig);
+      });
+      const amiDistributionConfiguration = new imagebuilder.CfnDistributionConfiguration(this, 'amiDistributionConfiguration', {
+        name: `${props.imageRecipe}-distribution-config`,
+        description: `Cross account distribution settings for ${props.imageRecipe}`,
+        distributions: distributionsList,
+      });
+      imagePipelineProps = {
+        ...imagePipelineProps,
+        distributionConfigurationArn: amiDistributionConfiguration.attrArn,
+      };
+    }
     new imagebuilder.CfnImagePipeline(this, 'ImagePipeline', imagePipelineProps);
   }
 }
@@ -55,6 +55,9 @@ const propsWithVolumeConfig: ImagePipelineProps = {
     volumeType: 'gp3',
     throughput: 1000,
   },
+  enableCrossAccountDistribution: true,
+  distributionAccountIDs: ['111222333444', '222444666888'],
+  distributionRegions: ['us-east-1', 'us-west-2'],
 };
 
 beforeAll(() => {
@@ -157,6 +160,10 @@ test('Infrastructure Configuration is built with provided EBS volume properties'
     SecurityGroupIds: ['sg-12345678'],
     SubnetId: 'subnet-12345678',
   });
+  templateWithVolume.hasResourceProperties('AWS::ImageBuilder::DistributionConfiguration', {
+    Name: 'TestImageRecipe-distribution-config',
+    Description: 'Cross account distribution settings for TestImageRecipe',
+  });
 });