Backup and restore strategies are something we usually configure it just in case anything bad happen but we never actually test it and try it out to see in more details how it works.In AWS environment when using RDS cluster…
Exposing services through custom domains for API Gateway and CloudFront with Terraform is an architectural decision that defines how users, clients, and systems discover and access your application. Without a structured approach, domain configuration often ends up fragmented — certificates…
Authentication in modern applications is an architectural boundary. It defines how users prove their identity, how applications obtain tokens, how APIs validate incoming requests, and how permissions are enforced across services. When authentication is configured manually in the AWS console…
Multi-tenant SaaS systems offer significant advantages such as cost efficiency, scalability, and operational agility. In this post, I’ll walk through a practical architecture for building multi-tenant SaaS applications on Amazon EKS, focusing on tenant onboarding, isolation, and the close relationship…
As many organizations are transitioning to deploy SaaS (Software as a service) applications on the cloud they are facing an issue of how to approach and which services and tools to use. Especially when talking about microservice development, Amazon has…
Co-written with my friend and colleague, Marko Eremija. The Modern application development lifecycle is based on deploying new features and bug fixes up to multiple times a day. To accomplish this, there needs to be a way of providing stable…
When managing data heavy infrastructure at scale we often forget about backups as we are used to fact that cloud will not fail us until one day you actually need to restore it. Having a consistent, automated backup process across…
AWS CloudWatch is a powerful service for monitoring resources and applications. While AWS automatically provides metrics for most services, sometimes you need to create custom metrics that CloudWatch do not provide by default. For example, to track whether your data…
Typically, when working with Terraform, there are multiple ways to achieve the same result, which can be particularly useful with more complex AWS configurations. In this blog post, I will show different approaches to defining S3 bucket lifecycle rules with…
When you start working on new solution most likely you would have at least two separate AWS accounts one for testing (e.g. sandbox) and one for production. Managing infrastructure across multiple accounts can get messy and it is crucial to…
