Input on AWS-driven form field part 2

Table Of Contents

Advanced form-field solution architecture hosted by AWS (v2) - newly revised based on input!

Hi #AWS builders - I really appreciate the input from the community on the initial design! I’ve revised the architecture based on community recommendations:

spaformarch2

  1. Client enters the site, enters their email to be informed of upcoming events, etc. This is a SPA (single-page application) hosted by Amazon CloudFront, serving Amazon S3 as the origin. A CAPTCHA is used to prevent spam/etc.

    • The onClick event on the form execute’s POST to the API endpoint hosted within the API Gateway endpoint as defined in step
    • Once validated (API Key), the event payload is sent to the queue. CORS ensures it’s being submitted through the originating site.

  2. AWS WAF evaluates it via the corresponding AWS WAF rule (AWSManagedRulesCommonRuleSet) - noted here. This will help to prevent CrossSiteScripting attacks and the similar.

  3. Utilizing a mapping template, Amazon API Gateway is able to translate the request into something DynamoDB can receive securely and in its native input language. Here’s a breakdown:

    • Client sends API Gateway a PUT request with the email
    • Mapping template transforms this into DynamoDB put format
    • Integration request puts the email into the DynamoDB table
    • Gets integration response from DynamoDB
    • Returns 200 OK response to client

    To further describe, a simple userflow:

apigwuserflow

  1. We then enable DynamoDB Streams and add an event source mapping for an Amazon Lambda function to receive these events. Here’s a breakdown:

    • When an item is inserted/updated in the DynamoDB table, a record is added to the DynamoDB Stream
    • The stream buffers the inserts/updates (24 hours by default)

  2. The associated Lambda function receives events from the stream and processes them.

    • The Lambda function processor is triggered when stream records are available
    • Lambda process the event record, performs any needed transformations

  3. The Lambda function reads the event from the stream and send it to Amazon SES for processing.

  4. Amazon SES ships the email from noreply@xyz.com from the trusted domain with the necessary details.

I’m looking forward to sharing the code for this once it’s completed! Stay tuned! :)

Tags :
Share :

Related Posts

Using CloudFront origin groups to increase availability on SPA deployments

Using CloudFront origin groups to increase availability on SPA deployments

Table of Contents Overview Services utilized Existing deployment Existing deployment availability Adding high-availability Amazon S3 bucket (cross region) OAI - Origin Access Identity Don’t let DNS be your dependency in HA design Lambda@Edge can be mighty slow to de-replicate Honorable mentions Handling index.html redirection Redirects Security Conclusion Overview Adding automated failover for your SPA deployment that is deployed to an associated AWS region is a simple, cost-effective way to increase site availability! In this post, we’ll cover the sometimes forgotten parts of Amazon CloudFront, Lambda@Edge (and purpose-driven functionality) along with Amazon S3 as native origin’s within an origin group.

Read More
AWS-CDK 1.150.0 now supports AWS-SSO!

AWS-CDK 1.150.0 now supports AWS-SSO!

AWS SSO now supported in AWS-CDK v1.150.0 Overview What is AWS-CDK? AWS SSO AWS-CDK v1.150.0 Features Bug Fixes Impact Why does it matter? After effect Implementation How do I use this new feature? Overview As of 03/26/2022 - aws-cdk v1.150 now supports AWS Single Sign On! Let’s walk through the impact, what it fixes and why it’s important.

Read More
Demistify AWS IAM permissions required for AWS MSK Connect

Demistify AWS IAM permissions required for AWS MSK Connect

Demystifying AWS MSK Connect IAM permissions MSK Connect requires a bit of well-defined IAM (Identity and Access Management) permissions to make it successful. I’m here to help navigate your way through the required permissions to utilize AWS MSK Connect!

Read More