AWS MeetUp - Serverless Brewing IPAs

•

0 j'aime•135 vues

Wednesday, March 11, 2020 AWS MeetUp @ Bestseller, Amsterdam Learning API Gateway, SQS, Lambda and DynamoDB by brewing an IPA at home In this talk, you will be guided on how to build an API that can track your beer fermentation process. I will share my lessons learned while I started building this API. These include the power of Lambda destinations and using X-Ray for tracing, analyzing and debugging the flows.

Technologie

Serverless Brewing IPAs
WoodWing
Wednesday, March 11, 2020
AWS MeetUp @ Bestseller, Amsterdam

2000
Established
170+
Employees
100+
Countries
1000+
Customers
60+
Business Partners
49,000
Users
2
WoodWing

The Architecture
API Integration
3
• Validate model at API Gateway
• Queue all requests
• Process the request
• Conﬁrm processing

Ingredients
Malt
Yeast
Hop
Brewery love
Hygiene
You need to keep your
workplace as clean as
possible
Tools
Brew pan
Pan with rinse water
Sieve
Thermometer
Hydrometer
!
Brewing beer at home
4

iSpindel
An ESP8266 based free-ﬂoating
sensor for brewers who want a
real-time update about the
brewing process via Wiﬁ.
7
Thanks to Hen Peretz

iSpindel as a client
Metrics every 15 seconds
8

iSpindel as a client
Metrics every 15 seconds
9

12
Split your API deﬁnition from your CloudFormation template
See: https://github.com/OAI/OpenAPI-Speciﬁcation (also known as Swagger)
Api:
Type: AWS::Serverless::Api
Properties:
…
DeﬁnitionBody:
Fn::Transform:
Name: AWS::Include
Parameters:
Location: resources/openapi.yaml
$ sam package
$ sam deploy

13
Refs and GetAtt will work in your included API
Only not the shorthand version, that will fail (cfn-lint will not catch it!)
paths:
iSpindel:
post:
x-amazon-apigateway-integration:
credentials: !GetAtt APIGatewayRole.Arn
paths:
iSpindel:
post:
x-amazon-apigateway-integration:
credentials:
Fn::GetAtt: APIGatewayRole.Arn

$14 iSpindelPayload: type: object required: [name, ID, token, angle, temperature, temp_units, battery, gravity, interval ] properties: name: { type: string } ID: { type: integer, format: int32 } token: { type: string } angle: { type: number, format: float } temperature: { type: number, format: float } temp_units: { type: string } battery: { type: number, format: float } gravity: { type: number, format: float } interval: { type: integer, format: int32 } API Model Validation$

15
Usage of Usage plans
Limit the amount of calls made by a client or device:
• Use the X-API-Key header to send the API key
• Use a custom authoriser to return a API key

16
SAM Deploy vs AWS Console deploy
When you add AddDefaultAuthorizerToCorsPreﬂight to the AWS::Serverless::Api resource it will
remove the AWS_IAM authorization deﬁned in the OpenAPI?
Auth:
AddDefaultAuthorizerToCorsPreﬂight: true
ApiKeyRequired: true
Adding the “DefaultAuthorizer” or removing the “AddDefaultAuthorizerToCorsPreﬂight” will solve
that.
Auth:
AddDefaultAuthorizerToCorsPreﬂight: true
DefaultAuthorizer: AWS_IAM
ApiKeyRequired: true

17
Lambda Destinations
Lambda destinations only work with asynchronous invocations and not with synchronous
invocations, this means destinations will not work when:
• When you test a Lambda from the AWS Console
• You have a SQS Trigger on your AWS::Serverless::Function resource
Placing a SNS Topic in between would make it asynchronous again…

18
Amazon SQS and AWS X-Ray
https://docs.aws.amazon.com/xray/latest/devguide/xray-services-sqs.html

19
Send the AWSTraceHeader from the API Gateway to SQS
x-amazon-apigateway-integration:
uri:
Fn::Sub: arn:aws:apigateway:${AWS::Region}:sqs:path/${AWS::AccountId}/${IncomingMeasurementQueue.QueueName}
httpMethod: POST
type: aws
requestParameters:
integration.request.header.Content-Type: "'application/x-www-form-urlencoded'"
requestTemplates:
application/json: |
&Action=SendMessage##
&MessageSystemAttribute.1.Name=AWSTraceHeader##
&MessageSystemAttribute.1.Value.DataType=String##
&MessageSystemAttribute.1.Value.StringValue=$util.urlEncode($method.request.header.X-Amzn-Trace-Id)##
&MessageBody=$util.urlEncode($input.json('$'))##

20
SQS and Encryption
When you send a message to an encrypted SQS Queue the role needs to have
the following IAM policies:
• kms:Decrypt
• kms:GenerateDataKey

Thank you!
Questions?
Are you looking for a new challenge? https://www.woodwing.com/jobs

Contenu connexe

Tendances

How do you create APIs? When publishing a new API there are a lot of factors to consider: Versioning, Network Management, Authorization, Ecosystem Management, and finally client SDKs. Amazon API Gateway is a fully managed service that makes it easy for developers to publish, maintain, monitor, and secure APIs at any scale. With Amazon API Gateway, you can quickly declare an API interface and connect it to existing web services running on Amazon Elastic Compute Cloud (Amazon EC2) or code running on AWS Lambda, and generate an SDK for client applications to access the API. Amazon API Gateway handles all the tasks involved in accepting and processing up to hundreds of thousands of concurrent API calls, including traffic management, authorization and access control, monitoring, and API version management. Amazon API Gateway has no minimum fees or startup costs, and you pay only for the API calls you receive and the amount of data transferred. Learning Objectives: Learn how to create APIs in the AWS Cloud without managing a single server with AWS Lambda Learn how to manage stages and versions of your APIs Learn how to map parameters and transform data in flight

AWS July Webinar Series: Overview: Build and Manage your APIs with Amazon API...

Amazon Web Services

The serverless movement represents a paradigm shift in our ability to create impressive, scalable web applications and services. Redesigning how triggers can generate and execute events can be an extremely cost-effective solution for microservices and large projects alike. Why serverless? It's less complex, scales easily, and usually costs less. The challenge today is that you may be creating these functions specific to a cloud vendor's API gateway, rather than creating the functions that are most reliable and useful. In this session, you will learn how to create a cloud-agnostic serverless execution backend for your APIs. We will show you how to use Postman APIs with Nimbella’s tooling so you have cloud-agnostic runtime environment that can run in any cloud, including private infrastructure when required. If you are building scalable web applications that you want to deploy on any cloud or private cloud, this is a must-attend session.

Building Cloud-agnostic Serverless APIs

Postman

Terraform Testing with InSpec Demo

Annie Hedgpeth

API Test Automation Tips and Tricks

testhive

So, you have a mature development process, and you also embrace DevOps. Your development team uses agile methodology. You use Git, and you have a continuous dev, test, and deployment process. But do you sleep well at night? Do you know that your services are up and running? That there are no availability, performance, and stability problems? Do you know if your customers are happy? The answer to all of those questions is precisely what APM systems provide. Application Performance Monitoring systems have become the IDE of the Site Reliability Engineers (SRE) and, as a matter of fact, for the all DevOps team, including the Dev part. In this session, you will get to know the essence of the APM systems, the good, the bad, and the vision about their future.

Alon Fliess: APM – What Is It, and Why Do I Need It? - Architecture Next 20

CodeValue

Building strong foundations apex enterprise patterns

andyinthecloud

Defining infrastructure resource policies in an organized manner can help your company better manage its infrastructure resources. This session will familiarize you with using AWS Lambda to process data and provide control logic for your infrastructure. You can use Amazon CloudWatch Events to monitor infrastructure resources in real-time, and you can use AWS Lambda to react to events based on a set of rules. We will demonstrate how you can build a rules engine for creating, monitoring, and managing policies.

Building Automated Control Systems for Your AWS Infrastructure

Amazon Web Services

What's new in Rails 5 - API Mode & Action Cable overview

Maxim Veksler

Spca2014 debugging remote event receivers van hunen

NCCOMMS

PowerShell: Automation for everyone

Gavin Barron

AWS API Gateway

Muhammed YALÇIN

PayPal has evolved from using a monolithic architecture to a microservices-oriented architecture in order to scale the rapidly growing company. In this talk, We will take a look at how PayPal was architected in the past, some of the issues that we ran into with a monolithic architecture, and how PayPal evolved over time to create a more robust and scalable approach to service deployment by leveraging Postman and implementing a microservices architecture.

PayPal's History of Microservices Architecture

Postman

Continuous delivery in AWS

Anton Babenko

EasyPost is a platform for shippers and marketplaces to integrate with various shipping carriers through an easy-to-use JSON API. We have had to build out integrations with over 100 carriers, decrypting varied frameworks for shipping APIs, converting XML to and from the carriers back to intelligible JSON objects that are easily actionable by our customers. For each of these integrations, there are a number of hurdles we overcame: mapping values and workflows between our framework and the carrier’s, crafting a test suite to verify functionality, and documenting the services supported by the carrier and that we support in the integration. Between Postman’s collections, tests, and documentation functionality, we’ve been able to get ahead of engineering to avoid pitfalls that stop engineering for weeks at a time. The audience will learn how to utilize Postman to get ahead of their engineering team and use Postman's simple HTTP interface to prep API integrations, verify their functionality, and document example calls for the integration. By the end of this talk, you should understand how to optimize your engineering resources and maintenance of information by utilizing Postman’s robust feature set.

Getting Ahead of Engineering

Postman

Five Ways to Scale your API Without Touching Your Code

3scale

Why your next serverless project should use AWS AppSync

Yan Cui

Belajar Postman test runner

Fachrul Choliluddin

Rails 5 – most effective features for apps upgradation

Andolasoft Inc

y default Kubernetes provides a set of resources for simple application lifecycle management in the form of services, deployments and ingresses. While powerful concepts on their own, they are fairly low level and doesn’t provide more advanced features like blue/green deployments, traffic switching or fully automated application lifecycle. When introducing Kubernetes to the 100s of delivery teams at Zalando it became clear that there were a need for a higher level abstraction for describing applications to solve these problems and this let to a concept called “StackSets”. The talk will focus on the design of the “StackSet” concept and include a live demo showcasing the features.

StackSets: Simplifying application management in Kubernetes - Scale Up 360°

MikkelOscarLyderikLa

Automation testing API in Java

Wix.com

Tendances (20)

AWS July Webinar Series: Overview: Build and Manage your APIs with Amazon API...

Building Cloud-agnostic Serverless APIs

Terraform Testing with InSpec Demo

API Test Automation Tips and Tricks

Alon Fliess: APM – What Is It, and Why Do I Need It? - Architecture Next 20

Building strong foundations apex enterprise patterns

Building Automated Control Systems for Your AWS Infrastructure

What's new in Rails 5 - API Mode & Action Cable overview

Spca2014 debugging remote event receivers van hunen

PowerShell: Automation for everyone

AWS API Gateway

PayPal's History of Microservices Architecture

Continuous delivery in AWS

Getting Ahead of Engineering

Five Ways to Scale your API Without Touching Your Code

Why your next serverless project should use AWS AppSync

Belajar Postman test runner

Rails 5 – most effective features for apps upgradation

StackSets: Simplifying application management in Kubernetes - Scale Up 360°

Automation testing API in Java

Similaire à AWS MeetUp - Serverless Brewing IPAs

AWS Lambda is a compute service that runs your code in response to triggers and automatically manages the compute resources for you. Amazon API Gateway is a fully managed service that makes it easy for developers to publish, maintain, monitor, and secure APIs at any scale. This webinar will familiarize you with the basics of AWS Lambda and Amazon API Gateway and demonstrate how to build web, mobile, and IoT backends using these services. You will learn how to setup API endpoints that trigger AWS Lambda functions to handle mobile, web, IoT, and 3rd party API requests. You will also learn how to use Lambda to read and write to DynamoDB. Learning Objectives: Understand key AWS Lambda and Amazon API Gateway features Learn how to set up a serverless backend using Amazon API Gateway and AWS Lambda Explore sample use cases, best practices and tips on using AWS Lambda with Amazon API Gateway

AWS August Webinar Series - Building Serverless Backends with AWS Lambda and ...

Amazon Web Services

AWS Lambda is a compute service that runs your code without provisioning or managing servers. Amazon API Gateway is a fully managed service that makes it easy for developers to publish, maintain, monitor, and secure APIs at any scale. This session will familiarize you with the basics of AWS Lambda and Amazon API Gateway and demonstrate how to build web, mobile, and IoT backends using these services. You will learn how to setup API endpoints that trigger AWS Lambda functions to handle mobile, web, IoT, and 3rd party API requests. You will also learn how to use Lambda to read and write to Amazon DynamoDB. We will run through a demo of setting up a simple serverless blogging web application that allows user authentication and the ability to create posts and comments. AWS DevDay San Francisco, June 21, 2016. Presenters: Vyom Nagrani, Ceci Deng

Building Serverless Backends with AWS Lambda and Amazon API Gateway

Amazon Web Services

Building Scalable Services with Amazon API Gateway - Technical 201

Amazon Web Services

Workshop: We love APIs

Amazon Web Services

This webinar teaches you how to use Amazon API Gateway and AWS Lambda to run your existing Express.js applications with just a few lines of code. We will introduce three new features in API Gateway: proxy integrations, greedy paths, and the ANY HTTP method. Combining these features, you can configure API Gateway in a few simple clicks via the management console and express all of your logic and API definition in code. Learning Objectives: 1. Easier migration to API Gateway and Lambda 2. New API Gateway Catch-all methods Who Should Attend: Developers

Migrate your Existing Express Apps to AWS Lambda and Amazon API Gateway

Amazon Web Services

Serverless Development Deep Dive

Amazon Web Services

Building CICD Pipelines for Serverless Applications - DevDay Los Angeles 2017

Amazon Web Services

What's New with AWS Lambda

Amazon Web Services

Build a Serverless Backend for Requesting a Ride

Amazon Web Services

by Nader Dabit, Developer Advocate AWS You’ve got an awesome startup idea – Wild Rydes! The next generation in transportation will be driven by a willing unicorn population and your new startup will produce the worlds first unicorn hailing services. It’s just seven days to launch, and your designers have delivered the final designs for your website, but your idea depends on the mobile economy! Can you build out your web and mobile infrastructure in time for your launch? Across three days, AWS experts will guide you through all the pieces that are needed to produce an awesome mobile experience for both your unicorns and your riders.

Build a Serverless Backend for Requesting a Ride

Amazon Web Services

Ovations AWS pop-up loft 2019 Technical presentation

GeanBoegman

The anypoint platform for API's

Achyuta Lakshmi

AWS Serverless Development

Amazon Web Services

Managing the deployment of code to multiple AWS Lambda functions and updating your API Gateway methods can be manual and time consuming. In this webinar, we will show you how to build a deployment pipeline to AWS Lambda using AWS CodePipeline. We will discuss how to use versioning, allowing you to better manage the different variations of your Lambda function and API Gateway methods in your development workflow, such as development, staging, and production. We will walk through how to automate the entire release process of your application from development to staging and finally to production, performing automated integration tests at each stage. Learning Objectives: Understand the basics of AWS CodePipeline Learn how to version AWS Lambda functions and API Gateway methods Build a deployment pipeline to AWS Lambda

Continuous Delivery with AWS Lambda - AWS April 2016 Webinar Series

Amazon Web Services

Operating your Production API

Amazon Web Services

What's New with AWS Lambda

Amazon Web Services

Stephen Liedig (Amazon Web Services) is a Public Sector Solutions Architect at AWS working closely with local and state governments, educational institutions, and non-profit organisations across Australia and New Zealand to design, and deliver, highly secure, scalable, reliable and fault-tolerant architectures in the AWS Cloud while sharing best practices and current trends, with a specific focus on DevOps, messaging, and serverless technologies.

Stephen Liedig: Building Serverless Backends with AWS Lambda and API Gateway

Steve Androulakis

Building serverless backends - Tech talk 5 May 2017

ARDC

Amazon API Gateway and AWS Lambda provide a new way of building applications by removing servers from the picture. But what does the removal of servers mean to tasks like deployment, monitoring, and debugging? How should you set up blue-green deployments or set alarms? Come learn all this and more, including ways to use AWS services and tools like AWS CodePipeline, AWS CloudFormation, and Amazon CloudWatch to manage your serverless applications at high quality. We will also demonstrate how you can implement a Continuous Integration and Continuous Delivery pipeline for a serverless application within minutes using AWS CodeStar. Learn More: https://aws.amazon.com/government-education/

Application Lifecycle Management in a Serverless World | AWS Public Sector Su...

Amazon Web Services

Lambdaless and AWS CDK

MooYeol Lee

Similaire à AWS MeetUp - Serverless Brewing IPAs (20)

AWS August Webinar Series - Building Serverless Backends with AWS Lambda and ...

Building Serverless Backends with AWS Lambda and Amazon API Gateway

Building Scalable Services with Amazon API Gateway - Technical 201

Workshop: We love APIs

Migrate your Existing Express Apps to AWS Lambda and Amazon API Gateway

Serverless Development Deep Dive

Building CICD Pipelines for Serverless Applications - DevDay Los Angeles 2017

What's New with AWS Lambda

Build a Serverless Backend for Requesting a Ride

Ovations AWS pop-up loft 2019 Technical presentation

The anypoint platform for API's

AWS Serverless Development

Continuous Delivery with AWS Lambda - AWS April 2016 Webinar Series

Operating your Production API

What's New with AWS Lambda

Stephen Liedig: Building Serverless Backends with AWS Lambda and API Gateway

Building serverless backends - Tech talk 5 May 2017

Application Lifecycle Management in a Serverless World | AWS Public Sector Su...

Lambdaless and AWS CDK

Dernier

Overview of Hyperledger Foundation

Hyperleger Tokyo Meetup

In the ever-evolving landscape of data management, Zero-ETL is an approach that is reshaping how businesses handle and integrate their data. This webinar explores Zero-ETL, a paradigm shift from the traditional Extract, Transform, Load (ETL) process, offering a more streamlined, efficient, and real-time data integration method. We will begin with an introduction to the concept of Zero-ETL, including how it allows direct access to data in its native environment and real-time data transformation, providing up-to-date information with significantly reduced data redundancy. Next, we'll take you through several demonstrations showing how Zero-ETL can deliver real-time data and enable the free movement of data between systems. We will also discuss the various tools that support all aspects of Zero-ETL, providing attendees with an understanding of how they can adopt this innovative approach in their organizations. Lastly, the session will conclude with an interactive Q&A segment, allowing participants to gain deeper insights into how Zero-ETL can be tailored to their specific business needs and how they can get started today. Join us to discover how Zero-ETL can elevate your organization's data strategy.

The Zero-ETL Approach: Enhancing Data Agility and Insight

Safe Software

Design and Development of a Provenance Capture Platform for Data Science

Paolo Missier

Microsoft CSP Briefing Pre-Engagement - Questionnaire

Exakis Nelite

In the dynamic field of DevOps, the quest for efficiency and productivity is endless. This talk introduces a revolutionary toolkit: Large Language Models (LLMs), including ChatGPT, Gemini, and Claude, extending far beyond traditional coding assistance. We'll explore how LLMs can automate not just code generation, but also transform day-to-day operations such as crafting compelling cover letters for TPS reports, streamlining client communications, and architecting innovative DevOps solutions. Attendees will learn effective prompting strategies and examine real-life use cases, demonstrating LLMs' potential to redefine productivity in the DevOps landscape. Join us to discover how to harness the power of LLMs for a comprehensive productivity boost across your DevOps activities.

ChatGPT and Beyond - Elevating DevOps Productivity

VictorSzoltysek

Discover the top CodeIgniter development companies that can elevate your project to new heights. Our blog explores the best firms known for their expertise in CodeIgniter framework development. From robust web applications to scalable solutions, these companies deliver excellence. Whether you're a startup or an enterprise, find the perfect match for your development needs on Top CSS Gallery's blog.

Top 10 CodeIgniter Development Companies

TopCSSGallery

Here comes another enlightening document that dives into the thrilling world of breaking BitLocker, Windows' attempt at full disk encryption. This analysis will walk you through the myriad of creative hacks, from the classic cold boot attacks—because who doesn't love freezing their computer to steal some data—to exploiting those oh-so-reliable TPM chips that might as well have a "hack me" sign on them. We'll also cover some software vulnerabilities, because Microsoft just wouldn't be the same without a few of those sprinkled in for good measure. And let's not forget about intercepting those elusive decryption keys; it's like a digital treasure hunt! So, whether you're a security expert, a forensic analyst, or just a curious cat in the world of cybersecurity, enjoy the read, and maybe keep that data backed up somewhere safe, yeah? ------- This document provides a comprehensive analysis of the method demonstrated in the video "Breaking Bitlocker - Bypassing the Windows Disk Encryption" where the author showcases a low-cost hardware attack capable of bypassing BitLocker encryption. The analysis will cover various aspects of the attack, including the technical approach, the use of a Trusted Platform Module (TPM) chip, and the implications for security practices. The analysis provides a high-quality summary of the demonstrated attack, ensuring that security professionals and specialists from different fields can understand the potential risks and necessary countermeasures. The document is particularly useful for cybersecurity experts, IT professionals, and organizations that rely on BitLocker for data protection and to highlight the need for ongoing security assessments and the potential for similar vulnerabilities in other encryption systems.

Microsoft BitLocker Bypass Attack Method.pdf

Overkill Security

Hyatt driving innovation and exceptional customer experiences with FIDO passw...

FIDO Alliance

Event-Driven Architecture Masterclass: Integrating Distributed Data Stores Ac...

ScyllaDB

Continuing Bonds Through AI: A Hermeneutic Reflection on Thanabots

Leah Henrickson

AI mind or machine power point presentation

yogeshlabana357357

Join me in this session where I'll share our journey of building a fully serverless application that flawlessly managed check-ins for an event with a staggering 80 thousand registrations. We'll dive into three key strategies that made this possible. Firstly, by harnessing DynamoDB global tables, we ensured global service availability and data replication across regions, boosting performance and disaster recovery. Next, we'll explore how we seamlessly integrated real-time updates into the app using Appsync subscriptions, making the experience dynamic and engaging for users. Finally, I'll discuss how provisioned concurrency not only improved performance but also kept costs in check, highlighting the cost-effectiveness of serverless architectures. Through these strategies and the inherent scalability of serverless technology, our application effortlessly handled massive user loads without manual intervention. This session is a real world example to the power and efficiency of modern cloud-based solutions in enabling seamless scalability and robust performance with Serverless

How we scaled to 80K users by doing nothing!.pdf

Srushith Repakula

Harnessing Passkeys in the Battle Against AI-Powered Cyber Threats.pptx

FIDO Alliance

How to Check GPS Location with a Live Tracker in Pakistan

danishmna97

Welcome to this session on UiPath Manufacturing and AI. In this session, we will discuss the importance UiPath plays with technology in the manufacturing and we will do an overview of AI and Document Understanding. Please join us to hear from UiPath and Community experts on why you might consider leveraging UiPath in manufacturing. Topics covered Community team overview The importance of UiPath technology for manufacturing UiPath AI and Document Understanding overview What is Document Understanding? DU Process Studio Template Components of DU Framework Q&A Speakers: Sebastian Seutter, Senior Industry Practice Director, UiPath, Inc. Priya Darshini, UiPath MVP RPA Solutions Architect Dzmitry Belanovski, Account Executive, UiPath, Inc.

UiPath manufacturing technology benefits and AI overview

DianaGray10

State of the Smart Building Startup Landscape 2024!

Memoori

AI+A11Y 11MAY2024 HYDERBAD GAAD 2024 - HelloA11Y (11 May 2024)

Samir Dash

JohnPollard-hybrid-app-RailsConf2024.pptx

JohnPollard37

In today's digital world, trust is key to customer relationships, but keeping it is a huge challenge. Customers are well-informed and empowered, quick to change brands if their trust is broken, even if it costs them more. This puts a lot of pressure on organizations to handle trust and safety issues with great care and transparency. The challenge, however, is real. Fragmented solutions have left privacy, legal, and security teams in a perpetual cycle of catch-up, struggling to update privacy notices, manage customer data rights, and answer lengthy security questionnaires—all while trying to prove ROI to the business. It's a thankless job, filled with repetition, tedious tasks, and constant interdepartmental coordination. Combine this with fast regulatory changes and the quick evolution of AI, and it becomes overwhelming. Join this webinar to learn more about TrustArc's new innovative solution Trust Center, the only unified, no-code online hub for trust and safety information built for privacy, security, compliance, and legal teams. Trust Center streamlines your path to compliance, shortens the pre-sales cycle, and reduces both legal and regulatory risks, saving time, effort, and cost. This webinar will review: - Why companies are building unified Trust Centers for a robust privacy program. - How unified Trust Centers streamline sales cycles, ensure regulatory compliance, and reduce operational bottlenecks. - How compliance, legal, security, GRC, and privacy teams benefit from a unified Trust Center in terms of needs, pains, and outcomes. - How TrustArc Trust Center saves time and work while reducing legal, reputational, and compliance risk by effectively managing policies, notices, terms, and disclosures, and providing real-time updates on subprocessors.

TrustArc Webinar - Unified Trust Center for Privacy, Security, Compliance, an...

TrustArc

Portal Kombat : extension du réseau de propagande russe

中央社

Dernier (20)

Overview of Hyperledger Foundation

The Zero-ETL Approach: Enhancing Data Agility and Insight

Design and Development of a Provenance Capture Platform for Data Science

Microsoft CSP Briefing Pre-Engagement - Questionnaire

ChatGPT and Beyond - Elevating DevOps Productivity

Top 10 CodeIgniter Development Companies

Microsoft BitLocker Bypass Attack Method.pdf

Hyatt driving innovation and exceptional customer experiences with FIDO passw...

Event-Driven Architecture Masterclass: Integrating Distributed Data Stores Ac...

Continuing Bonds Through AI: A Hermeneutic Reflection on Thanabots

AI mind or machine power point presentation

How we scaled to 80K users by doing nothing!.pdf

Harnessing Passkeys in the Battle Against AI-Powered Cyber Threats.pptx

How to Check GPS Location with a Live Tracker in Pakistan

UiPath manufacturing technology benefits and AI overview

State of the Smart Building Startup Landscape 2024!

AI+A11Y 11MAY2024 HYDERBAD GAAD 2024 - HelloA11Y (11 May 2024)

JohnPollard-hybrid-app-RailsConf2024.pptx

TrustArc Webinar - Unified Trust Center for Privacy, Security, Compliance, an...

Portal Kombat : extension du réseau de propagande russe

AWS MeetUp - Serverless Brewing IPAs

1. Serverless Brewing IPAs WoodWing Wednesday, March 11, 2020 AWS MeetUp @ Bestseller, Amsterdam

2. 2000 Established 170+ Employees 100+ Countries 1000+ Customers 60+ Business Partners 49,000 Users 2 WoodWing

3. The Architecture API Integration 3 • Validate model at API Gateway • Queue all requests • Process the request • Conﬁrm processing

4. Ingredients Malt Yeast Hop Brewery love Hygiene You need to keep your workplace as clean as possible Tools Brew pan Pan with rinse water Sieve Thermometer Hydrometer ! Brewing beer at home 4

5. 5 The process

6. 6 Depen Fermentation process

7. iSpindel An ESP8266 based free-ﬂoating sensor for brewers who want a real-time update about the brewing process via Wiﬁ. 7 Thanks to Hen Peretz

8. iSpindel as a client Metrics every 15 seconds 8

9. iSpindel as a client Metrics every 15 seconds 9

10. 10 BrewAPI Demo IPA 5%

11. 11 Lessons Learned

12. 12 Split your API definition from your CloudFormation template See: https://github.com/OAI/OpenAPI-Specification (also known as Swagger) Api: Type: AWS::Serverless::Api Properties: … DefinitionBody: Fn::Transform: Name: AWS::Include Parameters: Location: resources/openapi.yaml $ sam package $ sam deploy

13. 13 Refs and GetAtt will work in your included API Only not the shorthand version, that will fail (cfn-lint will not catch it!) paths: iSpindel: post: x-amazon-apigateway-integration: credentials: !GetAtt APIGatewayRole.Arn paths: iSpindel: post: x-amazon-apigateway-integration: credentials: Fn::GetAtt: APIGatewayRole.Arn

14. 14 iSpindelPayload: type: object required: [name, ID, token, angle, temperature, temp_units, battery, gravity, interval ] properties: name: { type: string } ID: { type: integer, format: int32 } token: { type: string } angle: { type: number, format: float } temperature: { type: number, format: float } temp_units: { type: string } battery: { type: number, format: float } gravity: { type: number, format: float } interval: { type: integer, format: int32 } API Model Validation

15. 15 Usage of Usage plans Limit the amount of calls made by a client or device: • Use the X-API-Key header to send the API key • Use a custom authoriser to return a API key

16. 16 SAM Deploy vs AWS Console deploy When you add AddDefaultAuthorizerToCorsPreflight to the AWS::Serverless::Api resource it will remove the AWS_IAM authorization defined in the OpenAPI? Auth: AddDefaultAuthorizerToCorsPreflight: true ApiKeyRequired: true Adding the “DefaultAuthorizer” or removing the “AddDefaultAuthorizerToCorsPreflight” will solve that. Auth: AddDefaultAuthorizerToCorsPreflight: true DefaultAuthorizer: AWS_IAM ApiKeyRequired: true

17. 17 Lambda Destinations Lambda destinations only work with asynchronous invocations and not with synchronous invocations, this means destinations will not work when: • When you test a Lambda from the AWS Console • You have a SQS Trigger on your AWS::Serverless::Function resource Placing a SNS Topic in between would make it asynchronous again…

18. 18 Amazon SQS and AWS X-Ray https://docs.aws.amazon.com/xray/latest/devguide/xray-services-sqs.html

19. 19 Send the AWSTraceHeader from the API Gateway to SQS x-amazon-apigateway-integration: uri: Fn::Sub: arn:aws:apigateway:${AWS::Region}:sqs:path/${AWS::AccountId}/${IncomingMeasurementQueue.QueueName} httpMethod: POST type: aws requestParameters: integration.request.header.Content-Type: "'application/x-www-form-urlencoded'" requestTemplates: application/json: | &Action=SendMessage## &MessageSystemAttribute.1.Name=AWSTraceHeader## &MessageSystemAttribute.1.Value.DataType=String## &MessageSystemAttribute.1.Value.StringValue=$util.urlEncode($method.request.header.X-Amzn-Trace-Id)## &MessageBody=$util.urlEncode($input.json('$'))##

20. 20 SQS and Encryption When you send a message to an encrypted SQS Queue the role needs to have the following IAM policies: • kms:Decrypt • kms:GenerateDataKey

21. Thank you! Questions? Are you looking for a new challenge? https://www.woodwing.com/jobs

AWS MeetUp - Serverless Brewing IPAs

Recommandé

Recommandé

Contenu connexe

Tendances

Tendances (20)

Similaire à AWS MeetUp - Serverless Brewing IPAs

Similaire à AWS MeetUp - Serverless Brewing IPAs (20)

Dernier

Dernier (20)

AWS MeetUp - Serverless Brewing IPAs