fix(codebuild): enhance validation for Windows image types

packages/aws-cdk-lib/aws-codebuild/lib/project.ts

@@ -2223,20 +2223,34 @@ export class WindowsBuildImage implements IBuildImage {
     const errors: string[] = [];
 
     if (buildEnvironment.privileged) {
+      // Reference: https://docs.aws.amazon.com/codebuild/latest/userguide/build-env-ref-compute-types.html
+      // "Also, Windows does not support privileged mode."
+      // Last accessed: 2025-04-12
       errors.push('Windows images do not support privileged mode');
     }
 
     if (buildEnvironment.computeType && isLambdaComputeType(buildEnvironment.computeType)) {
+      // Reference: https://docs.aws.amazon.com/codebuild/latest/userguide/build-env-ref-compute-types.html
+      // The table below the sentence "AWS CodeBuild provides build environments with the following available memory and disk space for AWS Lambda compute mode:" does not include Windows environment types.
+      // Last accessed: 2025-04-12
       errors.push('Windows images do not support Lambda compute types');
     }
 
-    const unsupportedComputeTypes = [ComputeType.SMALL, ComputeType.X_LARGE, ComputeType.X2_LARGE];
+    const unsupportedComputeTypes = [ComputeType.SMALL];
     if (buildEnvironment.computeType !== undefined && unsupportedComputeTypes.includes(buildEnvironment.computeType)) {
+      // Reference: https://docs.aws.amazon.com/codebuild/latest/userguide/build-env-ref-compute-types.html#environment.types
+      // The table includes Windows Medium, Large, XLarge, and 2XLarge.
+      // Last accessed: 2025-04-12
       errors.push(`Windows images do not support the '${buildEnvironment.computeType}' compute type`);
     }
 
-    if (!buildEnvironment.fleet && this.type === WindowsImageType.SERVER_2022) {
-      errors.push('Windows Server 2022 images must be used with a fleet');
+    const supportedOnDemandEnvironmentRegion = ['us-east-2', 'us-east-1', 'us-west-2', 'ap-southeast-2', 'ap-northeast-1', 'eu-central-1', 'eu-west-1', 'sa-east-1'];
+    if (!buildEnvironment.fleet && this.type === WindowsImageType.SERVER_2022 && !supportedOnDemandEnvironmentRegion.includes(Aws.REGION)) {
+      // Reference: https://docs.aws.amazon.com/codebuild/latest/userguide/build-env-ref-compute-types.html#environment.types
+      // The environment type WINDOWS_SERVER_2022_CONTAINER is only available in these Regions: [...]
+      // The environment type WINDOWS_EC2 (BUILD_GENERAL1_MEDIUM, BUILD_GENERAL1_LARGE) is only available in these Regions: [...]
+      // Last accessed: 2025-04-12
+      errors.push(`Windows Server 2022 images must be used with a fleet in ${Aws.REGION}`);
     }
 
     return errors;

packages/aws-cdk-lib/aws-codebuild/test/project.test.ts

@@ -1197,9 +1197,9 @@ describe('Environment', () => {
     }).toThrow('The environment type of the fleet (LINUX_CONTAINER) must match the environment type of the build image (WINDOWS_SERVER_2019_CONTAINER)');
   });
 
-  test('throws when Windows 2022 build image is used without a fleet', () => {
+  test('throws when Windows 2022 build image is used without a fleet in an unsupported region', () => {
     // GIVEN
-    const stack = new cdk.Stack();
+    const stack = new cdk.Stack(undefined, undefined, { env: { region: 'us-west-1' } });
     const bucket = s3.Bucket.fromBucketName(stack, 'Bucket', 'my-bucket'); // (stack, 'Bucket');
 
     // THEN
@@ -1216,9 +1216,51 @@ describe('Environment', () => {
     }).toThrow('Windows Server 2022 images must be used with a fleet');
   });
 
-  test('throws when 2022 WindowsImageType is used without a fleet', () => {
+  test('can use Windows 2022 build image without a fleet in a supported region', () => {
     // GIVEN
-    const stack = new cdk.Stack();
+    const stack = new cdk.Stack(undefined, undefined, { env: { region: 'us-west-2' } });
+    const bucket = s3.Bucket.fromBucketName(stack, 'Bucket', 'my-bucket'); // (stack, 'Bucket');
+
+    // THEN
+    expect(() => {
+      new codebuild.Project(stack, 'Project', {
+        source: codebuild.Source.s3({
+          bucket,
+          path: 'path',
+        }),
+        environment: {
+          buildImage: codebuild.WindowsBuildImage.WIN_SERVER_CORE_2022_BASE_3_0,
+        },
+      });
+    }).not.toThrow('Windows Server 2022 images must be used with a fleet in us-west-2');
+  });
+
+  test('throws when 2022 WindowsImageType is used without a fleet in an unsupported region', () => {
+    // GIVEN
+    const stack = new cdk.Stack(undefined, undefined, { env: { region: 'us-west-1' } });
+    const bucket = s3.Bucket.fromBucketName(stack, 'Bucket', 'my-bucket'); // (stack, 'Bucket');
+
+    // THEN
+    expect(() => {
+      new codebuild.Project(stack, 'Project', {
+        source: codebuild.Source.s3({
+          bucket,
+          path: 'path',
+        }),
+        environment: {
+          buildImage: codebuild.WindowsBuildImage.fromDockerRegistry(
+            'aws/codebuild/future-windows-version:2099-9.0',
+            {},
+            codebuild.WindowsImageType.SERVER_2022,
+          ),
+        },
+      });
+    }).toThrow('Windows Server 2022 images must be used with a fleet');
+  });
+
+  test('can use 2022 WindowsImageType without a fleet in a supported region', () => {
+    // GIVEN
+    const stack = new cdk.Stack(undefined, undefined, { env: { region: 'us-west-2' } });
     const bucket = s3.Bucket.fromBucketName(stack, 'Bucket', 'my-bucket'); // (stack, 'Bucket');
 
     // THEN