Often when we hear that app would need login, it often sounds as simple feature: a user opens application, enters credentials and gets access. But in real AWS applications, especially enterprise applications, login is usually only the first part of…
User-uploaded files are a common security risk. If an application allows users to upload PDFs, images, or any documents into S3, those files should be scanned before they are trusted by downstream services. Instead of building a custom pipeline with…
Sometimes we just need frontend to simply place files into S3, so routing every upload through API Gateway and maybe Lambda adds extra latency, extra cost and extra code to maintain. Also there is API upload size limit of 10MB.…
AWS API Gateway integrated with Cognito is perfect approach for exposing Lambda or other computing services. It offers a secure and scalable solution also for serverless applications. In this blog post, we will explore how to integrate API Gateway with…
Securing sensitive data, such as Database connection details, API keys, access tokens etc., is crucial in any infrastructure project. This blog post, Terraform manage secrets with SOPS, explores how to handle them by utilizing SOPS (Secrets OPerationS), a tool for…
