feat(secretsmanager): support secrets rotation in GovCloud (#17673)

This follows the same general setup as #14608 to add Secrets Manager rotation support in the `aws-us-gov` partition, GovCloud (US).

----

*By submitting this pull request, I confirm that my contribution is made under the terms of the Apache-2.0 license*

Author: laurelmay

.gitallowed

@@ -32,3 +32,5 @@ account: '919830735681' #cn-northwest-1
 account: '297356227824'
 # partition aws-cn
 account: '193023089310'
+# partition aws-us-gov
+account: '023102451235'

packages/@aws-cdk/aws-docdb/test/integ.cluster-rotation.lit.expected.json

@@ -823,6 +823,10 @@
       "aws-cn": {
         "applicationId": "arn:aws-cn:serverlessrepo:cn-north-1:193023089310:applications/SecretsManagerMongoDBRotationSingleUser",
         "semanticVersion": "1.1.37"
+      },
+      "aws-us-gov": {
+        "applicationId": "arn:aws-us-gov:serverlessrepo:us-gov-west-1:023102451235:applications/SecretsManagerMongoDBRotationSingleUser",
+        "semanticVersion": "1.1.93"
       }
     }
   }

packages/@aws-cdk/aws-rds/test/integ.cluster-rotation.lit.expected.json

@@ -846,6 +846,10 @@
       "aws-cn": {
         "applicationId": "arn:aws-cn:serverlessrepo:cn-north-1:193023089310:applications/SecretsManagerRDSMySQLRotationSingleUser",
         "semanticVersion": "1.1.37"
+      },
+      "aws-us-gov": {
+        "applicationId": "arn:aws-us-gov:serverlessrepo:us-gov-west-1:023102451235:applications/SecretsManagerRDSMySQLRotationSingleUser",
+        "semanticVersion": "1.1.93"
       }
     }
   }

packages/@aws-cdk/aws-rds/test/integ.instance.lit.expected.json

@@ -1136,6 +1136,10 @@
       "aws-cn": {
         "applicationId": "arn:aws-cn:serverlessrepo:cn-north-1:193023089310:applications/SecretsManagerRDSOracleRotationSingleUser",
         "semanticVersion": "1.1.37"
+      },
+      "aws-us-gov": {
+        "applicationId": "arn:aws-us-gov:serverlessrepo:us-gov-west-1:023102451235:applications/SecretsManagerRDSOracleRotationSingleUser",
+        "semanticVersion": "1.1.93"
       }
     }
   },

packages/@aws-cdk/aws-secretsmanager/lib/secret-rotation.ts

@@ -149,6 +149,8 @@ export class SecretRotationApplication {
       return this.applicationId;
     } else if (partition === 'aws-cn') {
       return `arn:aws-cn:serverlessrepo:cn-north-1:193023089310:applications/${this.applicationName}`;
+    } else if (partition === 'aws-us-gov') {
+      return `arn:aws-us-gov:serverlessrepo:us-gov-west-1:023102451235:applications/${this.applicationName}`;
     } else {
       throw new Error(`unsupported partition: ${partition}`);
     }
@@ -163,6 +165,8 @@ export class SecretRotationApplication {
       return this.semanticVersion;
     } else if (partition === 'aws-cn') {
       return '1.1.37';
+    } else if (partition === 'aws-us-gov') {
+      return '1.1.93';
     } else {
       throw new Error(`unsupported partition: ${partition}`);
     }
@@ -316,6 +320,10 @@ export class SecretRotation extends CoreConstruct {
           applicationId: props.application.applicationArnForPartition('aws-cn'),
           semanticVersion: props.application.semanticVersionForPartition('aws-cn'),
         },
+        'aws-us-gov': {
+          applicationId: props.application.applicationArnForPartition('aws-us-gov'),
+          semanticVersion: props.application.semanticVersionForPartition('aws-us-gov'),
+        },
       },
     });
     const application = new serverless.CfnApplication(this, 'Resource', {