This is a Starter Kit for developing AWS Lambda based applications to work with Oracle database using Java and AWS Secrets Manager. It provides Oracle JDBC driver installation scripts, a Maven project with dependencies for AWS Lambda, AWS Secrets Manager, Oracle JDBC driver, and utility classes with the following functionalities:
- Securely retrieve database credentials from AWS Secrets Manager
- Establish database connectivity to Oracle Database e.g. Amazon RDS for Oracle
Using this, you can focus on developing your business logic without spending time in figuring out configuration and packaging of your AWS Lambda function.
This starter kit represents the following sample architecture scenario
- Apache Maven
- Java SDK
This starter kit requires the following AWS services
- AWS Lambda
- AWS Secrets Manager Secrets
- Download Oracle driver for Java from Oracle website https://www.oracle.com/database/technologies/jdbc-drivers-12c-downloads.html. Select the appropriate driver. For e.g. ojdbc7.jar
- Install Oracle Driver to local Maven Environment using one of the scripts provided in this project
- For Mac OS or Unix or Linux - install_oracle_jdbc_driver.sh
- For Windows - install_oracle_jdbc_driver.bat
- Run the installation script. E.g.
./install_oracle_jdbc_driver.sh /Users/user_name/Downloads/ojdbc7.jar - Expected Output: it installs the jar file to local Maven repository path e.g.
~/.m2/repository/com/oracle/jdbc/ojdbc/7/ - Note: The JDBC jar file can be referenced in the POM.xml using the following declaration
<!-- Dependency for Oracle JDBC driver --> <dependency> <groupId>com.oracle.jdbc</groupId> <artifactId>ojdbc</artifactId> <version>7</version> </dependency>
- The source code has Maven nature, you can build it using standard Maven commands e.g.
mvn -X clean install. or use the options available in your IDE - The above step generates a Jar file e.g. AWSLambda-Java-Oracle-Starter-1.0.jar
-
Setup AWS Secrets Manager Secret. This secrets has the credentials required to connect to Oracle Database
- Step 1
- Step 2
- Step 3
- Step 4
- Step 5
- Step 1
-
Create Lambda Execution IAM Role and attach it to the Lambda function deployed.
-
Deploy AWSLambdaOracleStarter function
- Runtime = Java 8
- Function package = Use the Jar file generated. Refer section Build Instructions
- Lambda Handler =
com.amazonaws.lambda.oracle.starter.AWSLambdaOracleStarter - Timeout = e.g. 1 minute
- Memory = e.g. 128 MB
- Execution Role = created in Step # 2
- Environment variable = as defined in the following table
Variable Name Variable Value region e.g. us-east-1 database_secret_name Name of the AWS Secrets Manager Secret
Security is important for developing applications on AWS. Please refer the following resources related to this topic.
- It is important to encrypt connection to a database. Refer the following resources from AWS
- Oracle Security
- Oracle Secure Sockets Layer for more details.
- Refer the following resources to know more about security concepts.
- The scripts provided here will help install Oracle JDBC driver to a local Maven environment. However, for production use cases, the best practice is to maintain third-party libraries (that are not available on Maven central repository) is using Repository Manager within your organization. Refer Apache Maven's documentation for more details here.
This sample code is made available under the MIT-0 license. See the LICENSE file.