chore: deprecate qualifier parameter for lambda integrations

[kaizencc]

‼️ Lambda is changing their authorization strategy. Under this new behavior customer lambda invocations will fail in this scenario:

• the invocation is requested using an IAM Permission with an unqualified ARN as the FunctionName
• the invocation is requested with an unqualified ARN and a Qualifier parameter

The idea is to steer away from invoking lambdas with a Qualifier request parameter altogether, hence the deprecations. Instead, customers should be requesting permissions on qualified ARNs (versions and aliases) if they want to invoke versions/aliases.

See #19464.

---

By submitting this pull request, I confirm that my contribution is made under the terms of the Apache-2.0 license

[gitpod-io]

[kaizencc]

I don't think we should deprecate the Qualifier in EventInvokeConfig. Or that we can reasonably do so. We use it internally as part of configureAsyncInvoke:

aws-cdk/packages/@aws-cdk/aws-lambda/lib/function-base.ts

Lines 551 to 555 in 8c60d4d

	new EventInvokeConfig(this, 'EventInvokeConfig', {
	function: this.lambda,
	qualifier: this.qualifier,
	...options,
	});

It is also a required property in the docs, so we are defaulting to pass $LATEST if it is not sent in.

[aws-cdk-automation]

AWS CodeBuild CI Report

• CodeBuild project: AutoBuildProject89A8053A-LhjRyN9kxr8o
• Commit ID: 4d78092
• Result: SUCCEEDED
• Build Logs (available for 30 days)

Powered by github-codebuild-logs, available on the AWS Serverless Application Repository

[mergify]

Thank you for contributing! Your pull request will be updated from master and then merged automatically (do not update manually, and be sure to allow changes to be pushed to your fork).