(aws-rds): vpc should be optional in ServerlessCluster

[CorentinDoue]

Description

A VPC is not mandatory to create a AWS Aurora serverless cluster. In CfnDBCluster,DBSubnetGroupName and VpcSecurityGroupIds are optional.

But a VPC is required to create a ServerlessCluster

The VPC attribute should be optional.

Use Case

When the DataAPI is enabled, it's possible to have a project without any direct access to the Cluster. The cluster don't need to be in a VPC (or if it's in VPC we don't need to know it). It's especially useful for serverless projects which tend to get rid of VPCs.

I wish I could simply write

const cluster = new rds.ServerlessCluster(this, 'AnotherCluster', {
  engine: rds.DatabaseClusterEngine.AURORA_MYSQL,
  enableDataApi: true,
});

declare const code: lambda.Code;
const fn = new lambda.Function(this, 'MyFunction', {
  runtime: lambda.Runtime.NODEJS_14_X,
  handler: 'index.handler',
  code,
  environment: {
    CLUSTER_ARN: cluster.clusterArn,
    SECRET_ARN: cluster.secret!.secretArn,
  },
});
cluster.grantDataApiAccess(fn);

Proposed Solution

Make the vpc parameter optional. When it's undefined, don't create any subnet or security group and don't set DBSubnetGroupName and VpcSecurityGroupIds

Other information

No response

Acknowledge

• I may be able to implement this feature request
• This feature might incur a breaking change

[skinny85]

Thanks for opening the issue @CorentinDoue! We encourage community contributions, so if you'd like to open us a Pull Request adding this feature, that would be fantastic - it should be a relatively straightforward change. Our "Contributing" guide: https://github.com/aws/aws-cdk/blob/master/CONTRIBUTING.md.

Thanks,
Adam

[github-actions]

⚠️COMMENT VISIBILITY WARNING⚠️

Comments on closed issues are hard for our team to see.
If you need more assistance, please either tag a team member or open a new issue that references this one.
If you wish to keep having a conversation with other community members under this issue feel free to do so.