April 2022– date –

【Connecting to RDS inside and outside of Lambda function handler methods to measure performance】 This section is about refactoring, which is the scope of the AWS DBA. One of the best practices for connecting to RDS from a Lambda functi...

【Two Authentication Methods for RDS Proxy】 The following page shows how to access RDS from Lambda through RDS Proxy. https://awstut.com/en/2022/04/23/connect-to-rds-from-lambda-in-vpc-via-rds-proxy-en In the above page, we chose passwo...

【Creating Lambda Layer using CloudFormation】 This page reviews how to create a Lambda layer in CloudFormation. Lambda layers provide a convenient way to package libraries and other dependencies that you can use with your Lambda functio...

【Creating Lambda Function URL by CloudFormation (NONE version)】 Lambda Function URL was released on April 22, 2022. AWS Lambda is announcing Lambda Function URLs, a new feature that makes it easier to invoke functions through an HTTPS ...

【Connect to RDS from Lambda in VPC via RDS Proxy】 Consider a configuration where Lambda is deployed in a VPC and connects to RDS.When accessing RDS from Lambda, it is best practice to connect via RDS Proxy rather than directly. Many ap...

【CloudFront Geographic Restriction】 This page is also one of the AWS SAA's topics on designing secure applications and architectures. We will review one of CloudFront's features, geo-restriction. If you need to prevent users in specifi...

【Extending Attached EBS】 One of the topics covered in AWS SOA is deployment, provisioning, and automation.We will review how to extend an EBS attached to an EC2 instance. We will review the following three patterns accessing and expand...

【Change Permission for Guest/Sign-in users in Cognito ID Pool】 The Cognito ID pool can generate temporary credentials for unauthenticated guest users in addition to authenticated users.In this case, we will check a configuration that g...

【5 patterns of OAuth scopes for Cognito User Pool】 By default, the following OAuth scopes can be used to specify the scope of privileges to be granted when configuring the app client for the Cognito user pool. phone email profile openi...

【Authorization by Cognito ID Pool after Authentication by User Pool - Authorization grant code ver】 In the following page, we have confirmed a configuration that uses Cognito user pool and identity pool, and OAuth flow grants the signe...