A simple yet powerful framework to build serverless applications with a well curated standard of best practices.
The framework will only create "General" Serverless infrastructure, which builds the direct-connection between AWS services, and for the indirect-connections we will need to send a ticket to Ops/DBA to manually create.
Examples of Direct Connections:
- AWS API Gateway -> Lambda
- Step Function -> Lambda
- EventBridge -> Lambda
- EventBridge -> Step Function
Examples of Indirect Connections:
- Anything about S3
- Anything about DB
- Lambda -> API Gateway
- Lambda -> Step Function
- Lambda -> ...
-
Create an application repo
-
Create a Tag of the application repo
-
Setup AWS account with a profile name on local machine:
~/.aws/credentials
[my-profile-name]
region = us-east-1
aws_access_key_id = abc
aws_secret_access_key = def
-
Specify environment variables listed in
envfile: method-1)$ export AWS_REGION=us-east-1; export xxx=abcmethod-2) Add variables intoenvfile-local, and run$ ./scripts/inject_envfile.sh -
Run deployment:
$ make deploy
#or
$ make deploy-lambda
$ make deploy-rest-api
$ make deploy-stepfunc
$ make deploy-schedules
- Lambda Function Full NAME: "${StageName}-${StageSubName}-${ApplicationName}-${FunctionName}"
- LAMBDA FUNCTION PATH: "lambda-function/${FunctionFullName}/${BUILD_NO}.zip"
- Lambda Package Layer NAME: "lambda-layer-${ManifestMd5}"
- Lambda Package Layer PATH: "lambda-layer/${ManifestMd5_LEVELED_DIR}/{ManifestMd5}.zip"
- API: "${StageName}-${StageSubName}-${ApplicationName}-${ApiName}"
- ApiStage: only one -> "latest_release", also points to each Lambda's alias "latest_release"
- StageName=prod: (having production env variables and vpc settings)
- StageSubName=main: production release
- StageSubName=beta: beta release
- StageSubName=prev: previous release for easy rollback & debug
- StageName=dev: (having dev env variables, developer has R/W permission)
- StageSubName=feature1: independent deployment CD for each new feature development
- StageSubName=feature2: independent deployment CD for each new feature development
TODO:
- Rollback Mechanism
- Lambda deploy a new version, than switch
-
Make a "Change Table" first before any deployment -
Auto add IAM role/policy -
Safe deployment - Add VPC for Lambda
- Create REST API
- API Throttling
- Lambda: IAM Authorizer (Http / Rest)
- Pull application def/code from another repo
- Support Provisioned Concurrency
- Auto-remove very old versions (Lambda has version / storage quota)
-
Enforce IAM Authorizer for every API(Not if we're using REST Private API) - Support Lambda Authorizer
- Auto-remove very old layers (need to redesign "shared-layers" to "in-app-shared-layers")
- Decouple Lambda deployments from App deployments
- Unify definitions for all types of applications
- AppType:Script (Scheduled Event)
- AppType:StateMachine (Step Func)
- Scheduled Lambda
- Scheduled StateMachine
- Schedules: support more settings (DLQ, logs, roles, retry...)
- Rest-api: remove unused routes
- Deploy or detect IAM dependencies
- Check specs before deployment (e.g., VPC validation, IAM validation, Swagger validation...)
- Specify which lambda to deploy
- Support Ephemeral Storage
- Support resource tags
- Support Function URL
- Support Lambda Concurrency
- Support SNS
- Support SQS
- Support DLQ
- Support REST-API trigger Step Function
- Add stage info to Lambda's environment variables
- Attach policy for Lambda to call StepFunc
- Support X-ray for Lambda/APIGW
-
REST API response code settings-> AWS will auto-create from Swagger definitions - Render IAM Policy with resource specs
- Support EventBridge Event Filters
- Support all API Gateway features: including API directly upload to S3