In this workshop, you will learn techniques to secure a serverless application built with AWS Lambda, Amazon API Gateway and RDS Aurora. We will cover AWS services and features you can leverage to improve the security of a serverless applications in 5 domains: identity & access management, code, data, infrastructure, logging & monitoring.
... however this causes the error "We cannot execute /usr/lib/jvm/java-1.8.0-openjdk-1.8.0.191.b12-0.42.amzn1.x86_64/jre/bin/java". The exports needs to be updated to:
The purpose of this workshop is to teach security concepts, but a quick skim shows a lambda being giving cognito-idp:* on * and dynamodb:* on *. These should be trimmed up.
The CloudFormation deployment fails with "instances cannot be added to Aurora Serverless clusters".
As diving a bit deeper in to the issue the db.t2.small is not available in eu-west-1. Also the deployment tries to create serverless cluster which doesn't accept instances to be added.
On module 1E, Step 2, it says:
"In the Edit Folder window that pops up, go to Authorization tab, and change the Auth Type to OAuth 2.0, then click Get New Access Token"
Compiling of website code for Wild Ryde failed when I went through the project due to the use of the withRouter method, which is no longer in the react-router-dom library.
found 1 high severity vulnerability
run npm audit fix to fix them, or npm audit for details
High │ Regular Expression Denial of Service
Package │ minimatch
More info │ https://npmjs.com/advisories/118
On Module-0F, step 2.
Should add an instruction to add InitResourceStack bash variable so that users do not need to replace deployment command from InitResourceStack=Secure-Serverless to InitResourceStack=mod-xxxx.
From December 04, 2023, you will be required to include the imageId parameter for the CreateEnvironmentEC2 action. This change will be reflected across all direct methods of communicating with the API, such as AWS SDK, AWS CLI and AWS CloudFormation.
Unable to create the CloudFormation stack without this new parameter.
On the "Module-0E: Run your serverless application locally with SAM Local", we are making reference to using AWS Resources, which is disabled by default since Cloud9 uses AWS Toolkit since 2020.