Serverless or Bust Part 2 – Handling Events and Securing Lambdas

In our first installment, we discussed how the Serverless Framework provided an easy way to deploy a Lambda (function) on AWS. But we skipped some pretty big topics: How Serverless manages our services How AWS Lambdas receive parameters, path variables, and query strings How to secure Lambdas from unauthorized use How to get something done … Read More

Managing AWS users and roles in a multi-account organization

My last post compared different infrastructure tools for creating users and letting them assume roles for cross-account access. I received a few questions about the underlying problem that those scripts were trying to solve, so this post delves a bit deeper into the realm of user management.

Comparing Infrastructure Tools: A First Look at the AWS Cloud Development Kit

My background is as a developer, so when I think of “devops” and “infrastructure as code” I look for the loops and conditionals of a Turing-complete language. Unfortunately for me, popular devops tools lean toward a declarative format: you describe the environment that you want, and the tool makes whatever changes are needed to achieve … Read More