S3

How to Securely let Frontend Apps to Directly Access AWS services

AWS, DynamoDB, S3, Serverless

In this post, let’s discuss a radical idea – if the API layer is not adding any value besides authentication and calling the AWS SDK, then why not just remove it and let the frontend talk to your AWS resources directly? It will be the cheapest way to build a full-stack application, and there are similar precedents in the IoT space already.

It’s not the way that I’d recommend for most of you. But it’s possible to do it safely so that a user can only access his/her data. All you need is a little bit of IAM policy and a Cognito Identity Pool.

Yes, S3 now encrypts objects by default, but your job is not done yet

AWS, S3, Security

Update 06/04/2023: AWS announced that S3 now enables the “block public access” and “disable ACL” settings for all new buckets. It’s great to see these being enabled by default. But the points I raised in the post still stand. The default encryption (SSE-S3) only protects against situations when someone has stolen data from AWS servers/disks …

Yes, S3 now encrypts objects by default, but your job is not done yet Read More »

aws x-ray and lambda : the good, the bad and the ugly

API Gateway, AWS, DynamoDB, Lambda, Programming, S3, Serverless, X-Ray

AWS announced general availability of AWS Lambda support for AWS X-Ray back in May. It’s taken me a while to try it out, and whilst I see plenty of values I think its current limitations significantly restricts its usefulness in a complex system. I found Lambda-specific documentations to be fragmented and I had to rely …

aws x-ray and lambda : the good, the bad and the ugly Read More »

Yubl’s road to Serverless architecture – building a scalable push notification system

AWS, Lambda, Programming, S3, Serverless

part 1: overview part 2: testing and CI/CD part 3: ops part 4: building a scalable notification system <- you’re here part 5: building a better recommendation system Just before Yubl’s untimely demise we did an interesting piece of work to redesign the system for sending targeted push notifications to our users to improve retention. The …

Yubl’s road to Serverless architecture – building a scalable push notification system Read More »

Yubl’s road to Serverless architecture – overview

API Gateway, AWS, DynamoDB, Kinesis, Lambda, Node.js, Programming, S3, Serverless

part 1: overview <- you’re here part 2: testing and CI/CD part 3: ops part 4: building a scalable notification system part 5: building a better recommendation system Since Yubl’s closure quite a few people have asked about the serverless architecture we ended up with and some of the things we have learnt along the …

Yubl’s road to Serverless architecture – overview Read More »

S3 – Masterclass Webinar slides

AWS, S3

I stumbled across a set of slides with a rather comprehensive overview of the different aspects of S3, worthwhile reading for anyone who works with Amazon S3 regularly. Enjoy! Masterclass Webinar: Amazon S3 from Amazon Web Services

By continuing to use the site, you agree to the use of cookies. more information

The cookie settings on this website are set to "allow cookies" to give you the best browsing experience possible. If you continue to use this website without changing your cookie settings or you click "Accept" below then you are consenting to this.

Close