aws-notebook

My AWS Notebook

View the Project on GitHub kyhau/aws-notebook

Architecture and Design Patterns

  1. Amazon Builders’ Library
  2. AWS Architecture Blog
  3. Data, Analytics, and Machine Learning Resource Hub
  1. The Scatter-gather pattern - Application integration patterns for microservices: Running distributed RFQs (Requests-for-quotation) - James Beswick, 2020-11-11
  2. Serverless Microservice Patterns for AWS - Jeremy Daly, 2020-07-23
  3. Using API Gateway as a Single Entry Point for Web Applications and API Microservices - Anandprasanna Gaitonde and Mohit Malik on 2019-10-22
  4. One to Many: Evolving VPC Design - Androski Spicer, 2019-10-09
  5. Top Resources for API Architects and Developers - George Mao, 2019-09-10
  6. Best Practices for Developing on AWS Lambda - George Mao, 2019-07-09
  7. What should we know about AWS Networking - Rafael Salerno, 2019-06-13
  8. Building Multi-Region Active-Active Architecture in AWS using containerised microservices - Sajid Niazi, 2019-06-07
  9. Standardizing infrastructure delivery in distributed environments using AWS Service Catalog - Kristopher Lippe, 2019-05-17
  10. The 5 Pillars of the AWS Well-Architected Framework - Derek Belt, 2019-05-15
  11. Security Pillar of AWS Well-Architected Framework - AWS, 2018-07
  12. How to build a multi-region active-active architecture on AWS - Adrian Hornsby, 2018-02-25
  13. Building a Multi-region Serverless Application with Amazon API Gateway and AWS Lambda - Stefano Buliani, 2017-11-13
  14. CloudFront Origin Protection with AWS WAF & Shield - Dylan Tack, 2017-10-12

    Amazon has been steadily improving their CloudFront CDN offering with WAF capabilities. This is a great feature, however it’s ineffective if origin servers can be attacked directly, bypassing CloudFront. With a little extra work, access to the origin can be restricted. The solution is to add a secret header value at the edge, and configure the load balancer to block requests that are missing this secret. This is necessary because CloudFront distributions are not associated with security groups, nor are fixed IPs available (unlike higher-priced competitors like Kona Site Shield).

(Non AWS specific)

  1. Open Web Application Security Project (OWASP) API Security Top 10 - APIsecurity.io, 2019-12-31