In this episode, we discuss Permission Boundary policies in AWS IAM. A permissions boundary is an advanced feature in which you set the maximum permissions that an identity-based policy can grant to an IAM entity. When you set a permissions boundary for an entity, the entity can perform only the actions allowed by its identity-based policies and its permissions boundaries. In this episode, we discuss this concept a bit more in detail and we show how it can be used to give freedom to development teams while preventing privilege escalation. We also cover some of the disadvantages that come with using permission boundaries and other things to be aware of. Finally, we will give some practical advice on how to get the best out of Permissions Boundary Policy and get the best out of them.

💰 SPONSORS 💰 AWS Bites is brought to you by fourTheorem, the AWS consulting partner with lots of experience with AWS, Serverless, and Lambda. If you are looking for a partner that can help you deliver your next Serverless workload successfully, look no further and reach out to us at ⁠⁠⁠⁠https://fourTheorem.com⁠⁠⁠⁠ In this episode, we mentioned the following resources:

• Episode 112. "What is a Service Control Policy (SCP)?": https://awsbites.com/112-what-is-a-service-control-policy-scp/
• IAM Policy Simulator: https://policysim.aws.amazon.com/home/index.jsp?#roles
• The famous RSA paper that introduces Alice and Bob in the world of cryptography: https://web.williams.edu/Mathematics/lg5/302/RSA.pdf
• A biographical backstory on Alice and Bob: https://urbigenous.net/library/alicebob.html

Do you have any AWS questions you would like us to address? Leave a comment here or connect with us on X, formerly Twitter: - ⁠⁠⁠⁠⁠⁠⁠⁠⁠https://twitter.com/eoins⁠⁠⁠⁠⁠⁠⁠⁠⁠ - ⁠⁠⁠⁠⁠⁠⁠⁠⁠https://twitter.com/loige⁠⁠

In this episode, we discuss the new experimental AWS Lambda LLRT Low Latency runtime for JavaScript. We provide an overview of what a Lambda runtime is and how LLRT aims to optimize cold starts and performance compared to existing runtimes like Node.js. We outline the benefits of LLRT but also highlight concerns around its experimental status, lack of parity with Node.js, and reliance on dependencies like QuickJS. Overall, LLRT shows promise but needs more stability, support, and real-world testing before it can be recommended for production use. In the end, we also have an appeal for AWS itself when it comes to investing in the larger JavaScript ecosystem.

💰 SPONSORS 💰 AWS Bites is brought to you by fourTheorem, the AWS consulting partner with lots of experience with AWS, Serverless, and Lambda. If you are looking for a partner that can help you deliver your next Serverless workload successfully, look no further and reach out to us at ⁠⁠⁠https://fourTheorem.com⁠⁠⁠ In this episode, we mentioned the following resources:

• Episode 104. "Explaining Lambda Runtimes": https://awsbites.com/104-explaining-lambda-runtimes/
• LLRT official repository on GitHub: https://github.com/awslabs/llrt
• QuickJS official website: https://bellard.org/quickjs/
• Lambda performance benchmark by Maxime David: https://maxday.github.io/lambda-perf/
• Richard Davidson on GitHub: https://github.com/richarddavison
• Fabrice Bellard on Wikipedia: https://en.wikipedia.org/wiki/Fabrice_Bellard
• QuickJS-ng fork: https://github.com/quickjs-ng/quickjs
• QuickJS issue where users debate whether the project is dead or alive: https://github.com/bellard/quickjs/issues/188
• WinterCG initiative: https://wintercg.org/

Do you have any AWS questions you would like us to address? Leave a comment here or connect with us on X, formerly Twitter: - ⁠⁠⁠⁠⁠⁠⁠⁠https://twitter.com/eoins⁠⁠⁠⁠⁠⁠⁠⁠ - ⁠⁠⁠⁠⁠⁠⁠⁠https://twitter.com/loige⁠⁠

In this episode, we discuss what to do if you accidentally leak your AWS credentials during a live stream. We explain the difference between temporary credentials and long-lived credentials, and how to revoke each type. For temporary credentials, we recommend using the AWS console to revoke sessions or creating an IAM policy to deny access. For long-lived credentials, you must deactivate and rotate the credentials. We also touch on using tools like HashiCorp Vault to manage credentials securely.

💰 SPONSORS 💰 AWS Bites is brought to you by fourTheorem, the AWS consulting partner that doesn’t suck. Check us out at ⁠⁠https://fourTheorem.com⁠⁠ In this episode, we mentioned the following resources:

• Gist with example policy: https://gist.github.com/lmammino/02fef8ce0cc22a45f219fe4f47fcf20c
• Revoking IAM role temporary security credentials (official AWS docs): https://docs.aws.amazon.com/IAM/latest/UserGuide/id_roles_use_revoke-sessions.html

Do you have any AWS questions you would like us to address? Leave a comment here or connect with us on X, formerly Twitter: - ⁠⁠⁠⁠⁠⁠⁠https://twitter.com/eoins⁠⁠⁠⁠⁠⁠⁠ - ⁠⁠⁠⁠⁠⁠⁠https://twitter.com/loige⁠⁠

In this episode, we provide a friendly introduction to Service Control Policies (SCPs) in AWS Organizations. We explain what SCPs are, how they work, common use cases, and tips for troubleshooting access-denied errors related to SCPs. We cover how SCPs differ from identity-based and resource-based policies, and how SCPs can be used to set boundaries on maximum permissions in AWS accounts across an organization.

💰 SPONSORS 💰 AWS Bites is sponsored by fourTheorem, an AWS Partner with plenty of experience setting up AWS accounts and Service Control Policies. If that's something you'd like some help with, reach out to us on social media or check out ⁠https://fourTheorem.com⁠ In this episode, we mentioned the following resources:

• Episode 96: "AWS Governance and Landing Zone with Control Tower, Org Formation, and Terraform": https://awsbites.com/96-aws-governance-and-landing-zone-with-control-tower-org-formation-and-terraform/
• Episode 40: "What do you need to know about IAM?": https://awsbites.com/40-what-do-you-need-to-know-about-iam/
• Conor Maher's repo with some SCP examples: https://github.com/conzy/terraform-demo

Do you have any AWS questions you would like us to address? Leave a comment here or connect with us on X, formerly Twitter: - ⁠⁠⁠⁠⁠⁠https://twitter.com/eoins⁠⁠⁠⁠⁠⁠ - ⁠⁠⁠⁠⁠⁠https://twitter.com/loige⁠⁠

In this episode, we discuss how we work as a cloud consulting company, including our principles, engagement process, sprint methodology, and focus on agile development to deliver successful projects. We aim to be trusted partners, not just vendors, and enable our customers' business goals. By the end of this episode, you will know what working with a cloud consulting company like fourTheorem could look like and you might learn some strategies to make cloud projects a success! We will also digress a little into the history of software practices, common misconceptions, and what we believe should be the right way to build software.

💰 SPONSORS 💰 AWS Bites is sponsored by fourTheorem, an AWS Partner with plenty of experience delivering cloud projects to production. If you want to chat, reach out to us on social media or check out https://fourTheorem.com In this episode, we mentioned the following resources.

• Working with fourTheorem (blog post): https://fourtheorem.com/working-with-fourtheorem/
• AI as a service, book by Peter Elger and Eoin Shanaghy: https://www.manning.com/books/ai-as-a-service
• Majority of developers spending half, or less, of their day coding, report finds (TechRepublic article): https://www.techrepublic.com/article/majority-of-developers-spending-half-or-less-of-their-day-codin g-report-finds/
• 2023 software.com Future of Work Report: https://www.software.com/reports/future-of-work
• Managing the Development of Large Software Systems, Dr. WInston W. Royce, 1970: https://www.praxisframework.org/files/royce1970.pdf

Do you have any AWS questions you would like us to address? Leave a comment here or connect with us on X, formerly Twitter: - ⁠⁠⁠⁠⁠https://twitter.com/eoins⁠⁠⁠⁠⁠ - ⁠⁠⁠⁠⁠https://twitter.com/loige⁠⁠

In this episode, we discuss using AWS Lambda for machine learning inference. We cover the tradeoffs between GPUs and CPUs for ML, tools like ggml and llama.cpp for running models on CPUs, and share examples where we've experimented with Lambda for ML like podcast transcription, medical imaging, and natural language processing. While Lambda ML is still quite experimental, it can be a viable option for certain use cases.

💰 SPONSORS 💰 AWS Bites is brought to you by fourTheorem, an Advanced AWS Partner. If you are moving to AWS or need a partner to help you go faster, check us out at fourtheorem.com ! In this episode, we mentioned the following resources.

• Episode "46. How do you do machine learning on AWS?": https://awsbites.com/46-how-do-you-do-machine-learning-on-aws/
• Episode "108. How to Solve Lambda Python Cold Starts": https://awsbites.com/108-how-to-solve-lambda-python-cold-starts/
• ggml (the framework): https://github.com/ggerganov/ggml
• ggml (the company): https://ggml.ai
• llama.cpp: https://github.com/ggerganov/llama.cpp
• whisper.cpp: https://github.com/ggerganov/whisper.cpp
• whisper.cpp WebAssembly demo: https://whisper.ggerganov.com/
• ONNX Runtime: https://onnxruntime.ai/
• An example of using whisper.cpp with the Rust bindings: https://github.com/lmammino/whisper-rs-example
• Project running Whisper.cpp in a Lambda function: https://github.com/eoinsha/whisper_lambda_cpp
• AWS Lambda Image Container Chest X-Ray Example: https://github.com/fourTheorem/lambda-image-cxr-detection
• Episode "103. Building GenAI Features with Bedrock": https://awsbites.com/103-building-genai-features-with-bedrock/⁠

Do you have any AWS questions you would like us to address? Leave a comment here or connect with us on X, formerly Twitter: - ⁠⁠⁠⁠https://twitter.com/eoins⁠⁠⁠⁠ - ⁠⁠⁠⁠https://twitter.com/loige⁠⁠

This episode of the AWS Bites Podcast provides an overview of the AWS Project Development Kit (PDK), an open-source tool to help bootstrap and maintain cloud projects. We discuss what PDK is, how it can help generate boilerplate code and infrastructure, keep configuration consistent across projects, and some pros and cons of using a tool like this versus doing it manually. Is PDK something you should use for your cloud projects? Let's find out!

💰 SPONSORS 💰 AWS Bites is brought to you by fourTheorem, an Advanced AWS Partner. If you are moving to AWS or need a partner to help you go faster, check us out at fourtheorem.com ! In this episode, we mentioned the following resources.

• The official PDK website (and documentation): https://aws.github.io/aws-pdk/
• Our previous episode "16. What are the pros and cons of CDK?": https://awsbites.com/16-what-are-the-pros-and-cons-of-cdk/
• Our previous episode "93. CDK Patterns - The Good, The Bad and The Ugly": https://awsbites.com/93-cdk-patterns-the-good-the-bad-and-the-ugly/
• Projen's official website: https://projen.io/
• Introduction talk to Projen at CDK Day 2020: https://www.youtube.com/watch?v=SOWMPzXtTCw
• Our previous episode "70. How do you create good AWS diagrams?": https://awsbites.com/70-how-do-you-create-good-aws-diagrams/
• Building a shopping list app with PDK (tutorial): https://aws.github.io/aws-pdk/getting_started/shopping_list_app.html
• PDK in-depth developer guides: https://aws.github.io/aws-pdk/developer_guides/index.html
• Opinion by Vlad Ionescu on X: https://twitter.com/iamvlaaaaaaad/status/1743608823896592640
• Yeoman: https://yeoman.io/
• CookieCutter: https://github.com/cookiecutter/cookiecutter
• Terraform project generation example: https://github.com/conzy/terraform-demo

Do you have any AWS questions you would like us to address? Leave a comment here or connect with us on X, formerly Twitter: - ⁠⁠⁠https://twitter.com/eoins⁠⁠⁠ - ⁠⁠⁠https://twitter.com/loige⁠⁠

In this episode, we discuss how you can use Python for data science workloads on AWS Lambda. We cover the pros and cons of using Lambda for these workloads compared to other AWS services. We benchmark cold start times and performance for different Lambda deployment options like zip packages, layers, and container images. The results show container images can provide faster cold starts than zip packages once the caches are warmed up. We summarize the optimizations AWS has made to enable performant container image deployments. Overall, Lambda can be a good fit for certain data science workloads, especially those that are bursty and need high concurrency.

💰 SPONSORS 💰 AWS Bites is brought to you by fourTheorem, an Advanced AWS Partner. If you are moving to AWS or need a partner to help you go faster, check us out at fourtheorem.com ! In this episode, we mentioned the following resources.

• Our blog post detailing our research on how to optimise Python Data Science in AWS Lambda: https://fourtheorem.com/optimise-python-data-science-aws-lambda/
• The repository with our benchmarks and related visualizations: https://github.com/fourTheorem/lambda-datasci-perf
• On-demand Container Loading on AWS Lambda (AWS Paper): https://arxiv.org/abs/2305.13162

Do you have any AWS questions you would like us to address? Leave a comment here or connect with us on X, formerly Twitter: - ⁠⁠https://twitter.com/eoins⁠⁠ - ⁠⁠https://twitter.com/loige⁠⁠

In this episode, we share expert opinions from AWS community leaders on their favorite announcements from re:Invent 2023, advice for those starting their cloud journey, predictions for the future of serverless, whether to go multi-cloud or not, and how AI will impact developers. Our guests provide insightful perspectives on getting hands-on experience, leveraging the AWS community, thinking through architectural decisions, and more. AWS Bites is brought to you by fourTheorem, an Advanced AWS Partner. If you are moving to AWS or need a partner to help you go faster, check us out at fourtheorem.com ! In this episode, we mentioned the following resources.

• Alex Kearns on Linkedin: https://www.linkedin.com/in/alexjameskearns/
• AWS Console-to-Code (Preview) to generate code for console actions: https://aws.amazon.com/about-aws/whats-new/2023/11/aws-console-to-code-preview-generate-console-actions/
• Emily Shea on Linkedin: https://www.linkedin.com/in/emshea/
• Emily's talk: Getting started building serverless event-driven applications (SVS205): https://www.youtube.com/watch?v=1aTQI-Kqs2U
• Ran Isenberg on Linkedin: https://www.linkedin.com/in/ranisenberg/
• Ran's blog: https://www.ranthebuilder.cloud/
• Maxime David on Linkedin: https://www.linkedin.com/in/maxday/
• Danielle Heberling on Linkedin: https://www.linkedin.com/in/deeheber/
• Jones Zachariah Noel N on Linkedin: https://www.linkedin.com/in/jones-zachariah-noel-n/
• Sam Williams on Linkedin: https://www.linkedin.com/in/sam-complete-coding/
• AJ Stuyvenberg on Linkedin: https://www.linkedin.com/in/aaron-stuyvenberg/
• Faizal Khan on Linkedin: https://www.linkedin.com/in/faizal-khan/
• Heitor Lessa on Linkedin: https://www.linkedin.com/in/heitorlessa/
• Chris Williams on Linkedin: https://www.linkedin.com/in/chrisfwilliams/
• Praneeta Prakash on Linkedin: https://www.linkedin.com/in/praneetaprakash/

Do you have any AWS questions you would like us to address? Leave a comment here or connect with us on X, formerly Twitter: - ⁠https://twitter.com/eoins⁠ - ⁠https://twitter.com/loige⁠

#aws #reinvent2023 #reinvent #networkingevents

Luciano and Eoin chat about Luciano's experience attending AWS re:Invent 2023 in Las Vegas for the first time. They talk about the massive scale of the event, logistical challenges getting around between venues, highlights from the keynotes and announcements, and tips for networking and getting the most out of re:Invent. Luciano shares his perspective on the AI focus, meeting people in real life after connecting online, rookie mistakes to avoid, and why re:Invent is worth the investment for anyone working in the AWS space. AWS Bites is brought to you by fourTheorem, an Advanced AWS Partner. If you are moving to AWS or need a partner to help you go faster, check us out at fourtheorem.com ! In this episode, we mentioned the following resources.

- Amazon Q: https://aws.amazon.com/blogs/aws/introducing-amazon-q-a-new-generative-ai-powered-assistant-preview/

- Efi Merdler-Kravitz's talk on "Rustifying serverless" with AWS Lambda (YouTube): https://www.youtube.com/watch?v=Mdh_2PXe9i8

- ElastiCache Serverless for Redis and Memcached: https://aws.amazon.com/blogs/aws/amazon-elasticache-serverless-for-redis-and-memcached-now-generally-available/

- Throughput increase and dead letter queue redrive for SQS FIFO: https://aws.amazon.com/blogs/aws/announcing-throughput-increase-and-dead-letter-queue-redrive-support-for-amazon-sqs-fifo-queues/ - Step Functions Workflow Studio in AWS Application Composer: https://aws.amazon.com/blogs/aws/aws-step-functions-workflow-studio-is-now-available-in-aws-application-composer/

- Lambda scales 12x faster: https://aws.amazon.com/blogs/aws/aws-lambda-functions-now-scale-12-times-faster-when-handling-high-volume-requests/

- Step Function redrive from a failed state: https://aws.amazon.com/blogs/compute/introducing-aws-step-functions-redrive-a-new-way-to-restart-workflows/

Do you have any AWS questions you would like us to address? Leave a comment here or connect with us on X, formerly Twitter: - https://twitter.com/eoins - https://twitter.com/loige

#aws #reinvent2023 #reinvent #networkingevents

In this episode, we discuss integration testing event-driven systems and explore AWS's new Integration Application Test Kit (IATK). We cover the challenges of testing events and common approaches like logging, end-to-end testing, and using temporary queues. We then introduce IATK, walk through how to use it for EventBridge testing, and share our experience trying out the X-Ray trace validation. We found IATK promising but still rough around the edges, though overall a useful addition to help test complex event flows. 💰 SPONSORS 💰 AWS Bites is brought to you by fourTheorem, an Advanced AWS Partner. If you are moving to AWS or need a partner to help you go faster, check us out at ⁠⁠⁠⁠fourtheorem.com⁠⁠⁠⁠!

In this episode, we mentioned the following resources:

• sls-test-tools on GitHub: https://github.com/aleios-cloud/sls-test-tools
• Sarah Hamilton’s article on Integration testing and how to use sls-test-tool: https://medium.com/serverless-transformation/bridge-integrity-integration-testing-strategy-for-eventbridge-based-serverless-architectures-b73529397251
• Our previous episode on building a cross-account Event Bridge deployment: https://awsbites.com/39-how-do-you-build-a-cross-account-event-backbone-with-eventbridge/
• Our IATK tests for the cross-account Event Bridge project: https://github.com/fourTheorem/cross-account-eventbridge/blob/main/test/integration/test_events.py
• IATK tutorial: https://awslabs.github.io/aws-iatk/tutorial/
• IATK examples: https://awslabs.github.io/aws-iatk/tutorial/examples/retrieve_cfn_info/

You can listen to AWS Bites wherever you get your podcasts:

• Apple Podcasts:⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠ https://podcasts.apple.com/us/podcast/aws-bites/id1585489017⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠
• Spotify: ⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠https://open.spotify.com/show/3Lh7PzqBFV6yt5WsTAmO5q⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠
• Google: ⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠https://podcasts.google.com/feed/aHR0cHM6Ly9hbmNob3IuZm0vcy82YTMzMTJhMC9wb2RjYXN0L3Jzcw==⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠
• Breaker:⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠ https://www.breaker.audio/aws-bites⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠
• RSS:  ⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠https://anchor.fm/s/6a3312a0/podcast/rss

In this episode, we celebrate AWS Lambda's 9th birthday by taking a deep dive into Lambda runtimes. We discuss how Lambda works, compare official runtimes vs. custom runtimes, and explain when and why building a custom runtime might be worth the effort. We talk through how custom runtimes work, options for deploying them, and potential use cases where they could be beneficial over standard runtimes. 💰 SPONSORS 💰 AWS Bites is brought to you by fourTheorem, an Advanced AWS Partner. If you are moving to AWS or need a partner to help you go faster, check us out at ⁠⁠⁠fourtheorem.com⁠⁠⁠!

In this episode, we mentioned the following resources:

• The original announcement launching AWS Lambda in 2014: https://aws.amazon.com/about-aws/whats-new/2014/11/13/introducing-aws-lambda/
• List of official Lambda runtimes: https://docs.aws.amazon.com/lambda/latest/dg/lambda-runtimes.html
• Library implementing the Rust runtime: https://github.com/awslabs/aws-lambda-rust-runtime
• Library implementing the Go runtime: https://github.com/aws/aws-lambda-go/
• Library implementing the C++ runtime: https://github.com/awslabs/aws-lambda-cpp
• Third-party PHP runtime (Bref): https://bref.sh/
• Third-party Swift runtime: https://github.com/swift-server/swift-aws-lambda-runtime
• Official documentation on how to build a custom runtime: https://docs.aws.amazon.com/lambda/latest/dg/runtimes-custom.html
• An official tutorial on how to build a custom runtime: https://docs.aws.amazon.com/lambda/latest/dg/runtimes-walkthrough.html
• List of all the environment variables available to a runtime: https://docs.aws.amazon.com/lambda/latest/dg/configuration-envvars.html#configuration-envvars-runtime
• Lambda Response Streaming official docs: https://docs.aws.amazon.com/lambda/latest/dg/runtimes-custom.html#runtimes-custom-response-streaming
• Our previous episode on Lambda Response Streaming: https://awsbites.com/77-how-do-you-use-lambda-response-streaming/
• On-demand Container Loading in AWS Lambda (paper): https://arxiv.org/abs/2305.13162
• Deep dive on container support for AWS Lambda (Eoin's article): https://dev.to/eoinsha/container-image-support-in-aws-lambda-deep-dive-2keh
• When is the Lambda Init Phase Free, and when is it Billed? (article by Luc van Donkersgoed): https://lucvandonkersgoed.com/2022/04/09/when-is-the-lambda-init-phase-free-and-when-is-it-billed/⁠

You can listen to AWS Bites wherever you get your podcasts:

• Apple Podcasts:⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠ https://podcasts.apple.com/us/podcast/aws-bites/id1585489017⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠
• Spotify: ⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠https://open.spotify.com/show/3Lh7PzqBFV6yt5WsTAmO5q⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠
• Google: ⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠https://podcasts.google.com/feed/aHR0cHM6Ly9hbmNob3IuZm0vcy82YTMzMTJhMC9wb2RjYXN0L3Jzcw==⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠
• Breaker:⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠ https://www.breaker.audio/aws-bites⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠
• RSS:  ⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠https://anchor.fm/s/6a3312a0/podcast/rss

In this episode, we discuss how we automated generating YouTube descriptions, chapters and tags for our podcast using Amazon's new GenAI tool: Bedrock. We provide an overview of Bedrock's features and how we built an integration to summarize podcast transcripts and extract relevant metadata using the Anthropic Claude model. We share the prompt engineering required to instruct the AI, and details on our serverless architecture using Step Functions, Lambda, and EventBridge. We also discussed Bedrock pricing models and how we built a real-time cost-monitoring dashboard. Overall, this automation saves us substantial manual effort while keeping costs low. We hope this episode inspires others to explore building their AI workflows with Bedrock. 💰 SPONSORS 💰 AWS Bites is brought to you by fourTheorem, an Advanced AWS Partner. If you are moving to AWS or need a partner to help you go faster, check us out at ⁠⁠fourtheorem.com⁠⁠!

In this episode, we mentioned the following resources:

• The GitHub repository with the code for the AWS Bites website: https://github.com/awsbites/aws-bites-site
• Episoder: the open source project we created to handle this Bedrock-based automation: https://github.com/fourTheorem/episoder
• Podwhisperer: out other open source automation that creates accurate transcripts for our podcast: https://github.com/fourTheorem/podwhisperer/
• Amazon Bedrock Workshop: https://catalog.us-east-1.prod.workshops.aws/workshops/a4bdb007-5600-4368-81c5-ff5b4154f518/en-US
• Using generative AI on AWS for diverse content types (workshop): https://catalog.workshops.aws/genai-on-aws/en-US/01-introduction
• Deploying a Multi-Model and Multi-RAG Powered Chatbot Using AWS CDK on AWS: https://github.com/aws-samples/aws-genai-llm-chatbot/tree/main

You can listen to AWS Bites wherever you get your podcasts:

• Apple Podcasts:⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠ https://podcasts.apple.com/us/podcast/aws-bites/id1585489017⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠
• Spotify: ⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠https://open.spotify.com/show/3Lh7PzqBFV6yt5WsTAmO5q⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠
• Google: ⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠https://podcasts.google.com/feed/aHR0cHM6Ly9hbmNob3IuZm0vcy82YTMzMTJhMC9wb2RjYXN0L3Jzcw==⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠
• Breaker:⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠ https://www.breaker.audio/aws-bites⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠
• RSS:  ⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠https://anchor.fm/s/6a3312a0/podcast/rss

In this episode, we have the pleasure of speaking with Jeremy Daly, CEO of Ampt and a leader in the AWS and serverless community. We discuss Jeremy's journey into AWS and serverless, the prolific open source work and content he creates, the evolution of serverless over the years, common myths about serverless, and, finally, the story behind building Ampt to improve the developer experience. Jeremy provides his perspective on the state of serverless and predictions for the future and it also gives some fantastic pieces of advice for wannabe tech-entrepreneurs! 💰 SPONSORS 💰 AWS Bites is brought to you by fourTheorem, an Advanced AWS Partner. If you are moving to AWS or need a partner to help you go faster, check us out at ⁠fourtheorem.com⁠!

In this episode, we mentioned the following resources:

• Serverless Microservice patterns for AWS (article by Jeremy): https://www.jeremydaly.com/serverless-microservice-patterns-for-aws/
• Datadog research: The state of Serverless: https://www.datadoghq.com/state-of-serverless/
• Bref: serverless runtime for PHP: https://bref.sh/
• Ampt original announcement blog post: https://www.serverless.com/blog/serverless-cloud-spins-off-as-ampt
• Our previous episode on Ampt: https://awsbites.com/100-exploring-ampt-a-new-way-to-build-cloud-apps-on-aws/
• Long-running tasks and smart compute with Ampt: https://getampt.com/blog/introducing-long-running-tasks/
• Ampt official website: https://getampt.com/
• Jeremy's official website: https://www.jeremydaly.com/
• Jeremy on X (ergo Twitter): https://twitter.com/jeremy_daly
• Jeremy's newsletter "Off-by-none": https://offbynone.io/

You can listen to AWS Bites wherever you get your podcasts:

• Apple Podcasts:⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠ https://podcasts.apple.com/us/podcast/aws-bites/id1585489017⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠
• Spotify: ⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠https://open.spotify.com/show/3Lh7PzqBFV6yt5WsTAmO5q⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠
• Google: ⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠https://podcasts.google.com/feed/aHR0cHM6Ly9hbmNob3IuZm0vcy82YTMzMTJhMC9wb2RjYXN0L3Jzcw==⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠
• Breaker:⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠ https://www.breaker.audio/aws-bites⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠
• RSS:  ⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠https://anchor.fm/s/6a3312a0/podcast/rss

Today we embark on a fascinating journey into the world of AWS Lambda functions and how to make them accessible to the public. In a recent use case, involving the creation of a public Lambda function for AWS users, we asked ourselves some interesting questions. How can you securely, cost-effectively, and conveniently publish AWS resources, especially Lambda functions, for others to use? And... can we possibly make some money out of this? Join us as we explore various options and share our findings for making your AWS resources available to the world. We dive into the Serverless Application Repository (SAR), an AWS treasure trove for publishing resources. And SAR isn't the only way! We also discuss alternatives like CloudFormation templates, GitHub publishing, Terraform modules, and container images. We explore the pros and cons of these methods and debate the implications in terms of cost, security, and ease of use. Finally, we touch on the AWS Marketplace as a platform to monetize your AWS resources. 💰 SPONSORS 💰 AWS Bites is brought to you by fourTheorem, an Advanced AWS Partner. If you are moving to AWS or need a partner to help you go faster, check us out at fourtheorem.com!

In this episode, we mentioned the following resources:

• Our previous episode about HTTP Lambdas (including an overview of Rest vs HTTP API Gateways): https://awsbites.com/74-function-urls-vs-api-gateway/
• Example of publicly accessible Lambda code using CloudFormation templates on GitHub: https://github.com/eoinsha/public-s3-lambda-code-example
• AWS SAR (Serverless Application Repository): https://aws.amazon.com/serverless/serverlessrepo/
• The Terraform Registry: https://registry.terraform.io/
• AWS Marketplace: https://aws.amazon.com/marketplace
• "Selling an AMI and a CloudFormation template as an alternative to SaaS" by Cloudonaut: https://cloudonaut.io/selling-ami-cloudformation-alternative-saas/

You can listen to AWS Bites wherever you get your podcasts:

• Apple Podcasts:⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠ https://podcasts.apple.com/us/podcast/aws-bites/id1585489017⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠
• Spotify: ⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠https://open.spotify.com/show/3Lh7PzqBFV6yt5WsTAmO5q⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠
• Google: ⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠https://podcasts.google.com/feed/aHR0cHM6Ly9hbmNob3IuZm0vcy82YTMzMTJhMC9wb2RjYXN0L3Jzcw==⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠
• Breaker:⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠ https://www.breaker.audio/aws-bites⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠
• RSS:  ⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠https://anchor.fm/s/6a3312a0/podcast/rss

Greetings, my fellow innovators, and welcome to this illuminating episode of AWS Bites! In this edition, we embark on a journey into the realms of Ampt, a groundbreaking solution that simplifies the intricate landscape of AWS application development, allowing you to direct your focus toward the very essence of your applications, unhindered by the burdens of infrastructure management. As your guides through this remarkable odyssey, hosts Luciano and Eoin delve into the ingenious facets of Ampt. We unveil its "code over infrastructure" paradigm, which resonates with the principles of efficiency and simplicity. Furthermore, we explore Ampt's intelligent compute options, designed to adapt to the dynamic needs of your applications, and its streamlined deployment process, which paves the way for a more seamless journey into the world of cloud development. Join us on this voyage as we unravel how Ampt simplifies the intricate art of crafting full-stack applications. Notably, it offers individual sandboxes for each developer, eliminating the cacophony of distractions caused by noisy neighbors. Together, we will also uncover the straightforward path to beginning your journey with Ampt, highlighting its exciting features that promise to reshape the landscape of cloud development. This episode is a testament to innovation and the pursuit of progress. So, heed the call and stay at the forefront of AWS development by immersing yourself in this episode today! 💰 SPONSORS 💰 fourTheorem is the company that makes AWS Bites possible. If you are looking for a partner to accompany you on your cloud journey, check them out at ⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠fourtheorem.com⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠!

In this episode, we mentioned the following resources:

• Ampt: https://getampt.com/
• Ampt blog with many case studies: https://getampt.com/blog

You can listen to AWS Bites wherever you get your podcasts:

• Apple Podcasts:⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠ https://podcasts.apple.com/us/podcast/aws-bites/id1585489017⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠
• Spotify: ⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠https://open.spotify.com/show/3Lh7PzqBFV6yt5WsTAmO5q⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠
• Google: ⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠https://podcasts.google.com/feed/aHR0cHM6Ly9hbmNob3IuZm0vcy82YTMzMTJhMC9wb2RjYXN0L3Jzcw==⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠
• Breaker:⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠ https://www.breaker.audio/aws-bites⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠
• RSS:  ⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠https://anchor.fm/s/6a3312a0/podcast/rss

In this thrilling episode of AWS Bites Podcast, we delve into the murky world of cloud computing and discuss the most haunting fears that deter businesses from adopting Amazon Web Services (AWS). In this gritty discussion reminiscent of a noir novel, they reveal the sinister concerns of cost, complexity, security, and vendor lock-in that keep organizations in the dark. If you're in the cloud consulting business or facing internal resistance to moving your projects to AWS, this episode is your secret weapon. We shed light on how to reassure your clients and your boss that AWS can bring value. We also provide valuable tips on how to prepare your organization for a successful migration, as these transitions often require significant changes within the company itself. In this episode, you'll discover: How to tackle the fear of cost and gain control over your spending; Strategies to navigate the labyrinth of AWS complexity and maximize productivity; Techniques to secure your AWS environment and shield against potential breaches; The trade-offs of vendor lock-in and how to mitigate risks; Whether AWS is the right path for your business and when to embrace it. 💰 SPONSORS 💰 fourTheorem is the company that makes AWS Bites possible. If you are looking for a partner to accompany you on your cloud journey, check them out at ⁠⁠⁠⁠⁠⁠⁠⁠⁠fourtheorem.com⁠⁠⁠⁠⁠⁠⁠⁠⁠!

In this episode, we mentioned the following resources:

• Our previous episode on AWS Governance and Landing Zone with Control Tower, Org Formation, and Terraform: https://awsbites.com/96-aws-governance-and-landing-zone-with-control-tower-org-formation-and-terraform/

You can listen to AWS Bites wherever you get your podcasts:

• Apple Podcasts:⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠ https://podcasts.apple.com/us/podcast/aws-bites/id1585489017⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠
• Spotify: ⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠https://open.spotify.com/show/3Lh7PzqBFV6yt5WsTAmO5q⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠
• Google: ⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠https://podcasts.google.com/feed/aHR0cHM6Ly9hbmNob3IuZm0vcy82YTMzMTJhMC9wb2RjYXN0L3Jzcw==⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠
• Breaker:⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠ https://www.breaker.audio/aws-bites⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠
• RSS:  ⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠https://anchor.fm/s/6a3312a0/podcast/rss

Today, we will explore the enigmatic world of Amazon Pinpoint. Pinpoint boasts a wide range of capabilities that can prove advantageous for various marketing endeavors. In this intriguing episode, we will shed light on Pinpoint's core features and use cases. Additionally, we will compare it to several other marketing products, including Google Analytics, Marketo, Mailchimp, and more. However, the most startling revelation pertains to the recent changes in Pinpoint's limitations, which have left users deeply concerned. The astonishing reduction from 7,000 events per second to a mere 15 has prompted us to ponder: is AWS attempting to relegate Pinpoint to oblivion? Join us in the eerie tranquility of a snow-covered hotel as we unravel the mysteries surrounding Pinpoint's destiny. Could it be that AWS aims to discontinue Pinpoint altogether? Alternatively, are they endeavoring to revitalize it, akin to a vengeful spirit seeking redemption? Or could there be a nefarious pricing strategy at play? As the ethereal specter of Pinpoint looms large, we implore AWS to provide clarity regarding its intentions. If you are a Pinpoint user or contemplating entering this mysterious realm, tune in and share your thoughts in the comments. Will Pinpoint endure, or is it destined to become a fading memory in the annals of technology? 💰 SPONSORS 💰 fourTheorem is the company that makes AWS Bites possible. If you are looking for a partner to accompany you on your cloud journey, check them out at ⁠⁠⁠⁠⁠⁠⁠⁠fourtheorem.com⁠⁠⁠⁠⁠⁠⁠⁠!

In this episode, we mentioned the following resources:

• Amazon Pinpoint: https://aws.amazon.com/pinpoint/
• Amazon Pinpoint service quota: https://docs.aws.amazon.com/pinpoint/latest/developerguide/quotas.html
• AWS support: https://aws.amazon.com/support
• Reddit thread discussing the quota change: https://www.reddit.com/r/aws/comments/16rfs42/aws_pinpoint_reduces_default_quota_for_new/

You can listen to AWS Bites wherever you get your podcasts:

• Apple Podcasts:⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠ https://podcasts.apple.com/us/podcast/aws-bites/id1585489017⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠
• Spotify: ⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠https://open.spotify.com/show/3Lh7PzqBFV6yt5WsTAmO5q⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠
• Google: ⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠https://podcasts.google.com/feed/aHR0cHM6Ly9hbmNob3IuZm0vcy82YTMzMTJhMC9wb2RjYXN0L3Jzcw==⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠
• Breaker:⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠ https://www.breaker.audio/aws-bites⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠
• RSS:  ⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠https://anchor.fm/s/6a3312a0/podcast/rss

Rev up your AWS know-how in this high-octane episode of AWS Bites Podcast, where we take you under the hood to fine-tune your AWS applications configuration! Kicking things off, we rev our engines and stress the vital role of slick configuration management in the world of cloud-based applications, leaving those old-school methods in the dust. Buckle up as we steer you through the twists and turns, starting with the straightforward horsepower of environment variables, giving you the lowdown on what fuels them and when to put the brakes on. We then shift gears to introduce AWS Systems Manager Parameter Store as a simple, yet effective solution that can provide you with all the torque you need. Secrets Manager rolls in next, guarding your valuable secrets with KMS encryption and IAM. The track leads to AppConfig, where they fine-tune your configuration game, ensuring smooth deployments and no pit stops for errors. For the daredevils out there, we open the toolbox and show you how to custom-build your own configuration engine, putting you in the driver's seat. Finally, we rev up the engine one last time and hit the gas with our recommendations, offering you a turbocharged approach to AWS configuration, tailored to your application's needs. So, tighten those bolts and get ready for a ride that'll leave your AWS configuration skills purring like a finely-tuned machine! 🚗💨🔧 💰 SPONSORS 💰 fourTheorem is the company that makes AWS Bites possible. If you are looking for a partner to accompany you on your cloud journey, check them out at ⁠⁠⁠⁠⁠⁠⁠fourtheorem.com⁠⁠⁠⁠⁠⁠⁠!

In this episode, we mentioned the following resources:

• The Twelve-factor app: https://12factor.net/
• AWS System Manager Parameter Store: https://docs.aws.amazon.com/systems-manager/latest/userguide/systems-manager-parameter-store.html
• AWS Secrets Manager: https://docs.aws.amazon.com/secretsmanager/latest/userguide/intro.html
• AWS AppConfig: https://docs.aws.amazon.com/appconfig/latest/userguide/what-is-appconfig.html
• AWS Lambda Extension for SSM: https://docs.aws.amazon.com/systems-manager/latest/userguide/ps-integration-lambda-extensions.html
• ssm-cache-python module: https://github.com/alexcasalboni/ssm-cache-python
• Eoin's article "3 Ways to read SSM Parameters": https://dev.to/eoinsha/3-ways-to-read-ssm-parameters-4555
• Middy middleware for SSM Parameters: https://middy.js.org/docs/middlewares/ssm
• Beabetterdev: Deep dive into SSM Parameters: https://www.youtube.com/watch?v=8Hstqmge71w
• Middy middleware for Secrets Manager: https://middy.js.org/docs/middlewares/secrets-manager
• Beabetterdev: Deep dive into Secrets Manager: https://www.youtube.com/watch?v=GwVWWn2ZKj0
• Middy middleware for AppConfig: https://middy.js.org/docs/middlewares/appconfig
• Beabetterdev: Deep dive into App Config with a demo: https://www.youtube.com/watch?v=OwEJxRiaLPo
• Middy middleware for pre-loading config from S3: https://middy.js.org/docs/middlewares/s3
• Middy middleware for pre-loading config from DynamoDB: https://middy.js.org/docs/middlewares/dynamodb

You can listen to AWS Bites wherever you get your podcasts:

• Apple Podcasts:⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠ https://podcasts.apple.com/us/podcast/aws-bites/id1585489017⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠
• Spotify: ⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠https://open.spotify.com/show/3Lh7PzqBFV6yt5WsTAmO5q⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠
• Google: ⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠https://podcasts.google.com/feed/aHR0cHM6Ly9hbmNob3IuZm0vcy82YTMzMTJhMC9wb2RjYXN0L3Jzcw==⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠
• Breaker:⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠ https://www.breaker.audio/aws-bites⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠
• RSS:  ⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠https://anchor.fm/s/6a3312a0/podcast/rss

In this episode of AWS Bites, Luciano and Eoin dive deep into the world of AWS governance, landing zones, and automation tools. AWS emphasizes the importance of good governance for customers of all sizes, whether you're starting from scratch or have been using AWS for years. But with so many tools available, which one should you choose? Join us as we explore the best practices for setting up your AWS accounts correctly and discover tools that can automate the process, including AWS Control Tower and open-source alternatives like OrgFormation and Terraform. Whether you're new to AWS or a seasoned user, there's something valuable for everyone in this episode. 💰 SPONSORS 💰 fourTheorem is the company that makes AWS Bites possible. If you are looking for a partner to accompany you on your cloud journey, check them out at ⁠⁠⁠⁠⁠⁠fourtheorem.com⁠⁠⁠⁠⁠⁠!

In this episode, we mentioned the following resources:

• AWS Control Tower: https://aws.amazon.com/controltower/
• Org Formation: https://github.com/org-formation
• Terraform: https://www.terraform.io/
• Org Formation official examples: https://github.com/org-formation/org-formation-cli/tree/master/examples
• Org Formation resource providers: https://github.com/org-formation/aws-resource-providers
• Great Terraform + Terraform Cloud demo repository by Conor Maher: https://github.com/conzy/terraform-demo
• Landing Zone Accelerator with CDK: https://github.com/awslabs/landing-zone-accelerator-on-aws
• AWS Control Tower Account Factory for Terraform (AFT): https://docs.aws.amazon.com/controltower/latest/userguide/aft-getting-started.html
• Managing AWS Organizations using the open source org-formation tool: https://aws.amazon.com/blogs/opensource/managing-aws-organizations-using-the-open-source-org-formation-tool-part-1/
• How to get started with Org Formation: https://bahr.dev/2022/02/07/org-formation/

You can listen to AWS Bites wherever you get your podcasts:

• Apple Podcasts:⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠ https://podcasts.apple.com/us/podcast/aws-bites/id1585489017⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠
• Spotify: ⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠https://open.spotify.com/show/3Lh7PzqBFV6yt5WsTAmO5q⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠
• Google: ⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠https://podcasts.google.com/feed/aHR0cHM6Ly9hbmNob3IuZm0vcy82YTMzMTJhMC9wb2RjYXN0L3Jzcw==⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠
• Breaker:⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠ https://www.breaker.audio/aws-bites⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠
• RSS:  ⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠https://anchor.fm/s/6a3312a0/podcast/rss

Saddle up for a cloud adventure like no other in this episode of AWS Bites, where Eoin and Luciano explore the untamed world of AWS S3 Mountpoint.

Just like a trusty steed on the digital prairie, Mountpoint gallops into action to solve complex use cases, making it a valuable asset for managing massive data, achieving high throughput, and effortlessly fetching information from the AWS S3 wilderness. Dive deep into the inner workings of Mountpoint, a Rust-powered Linux-exclusive application that harnesses the Linux FUSE subsystem to provide optimal S3 performance.

While exploring alternatives like s3fs-fuse and goofys, discover the benefits of sticking to native AWS tools for certain scenarios.

Uncover Mountpoint's performance prowess, thanks to its integration with AWS Common Runtime libraries, and learn when to hop on this cloud cowboy or opt for a more native approach.

Wrapping up, don't forget to check out AWS Storage's blog post for an even deeper dive into Mountpoint's capabilities. Whether you're a seasoned cloud wrangler or a newcomer to the digital rodeo, this video will equip you with the knowledge to navigate the AWS S3 Mountpoint frontier confidently. 💰 SPONSORS 💰 fourTheorem is the company that makes AWS Bites possible. If you are looking for a partner to accompany you on your cloud journey, check them out at ⁠⁠⁠⁠⁠fourtheorem.com⁠⁠⁠⁠⁠!

In this episode, we mentioned the following resources:

• AWS Mountpoint repository: https://github.com/awslabs/mountpoint-s3/
• Running Mountpoint in a container: https://github.com/awslabs/mountpoint-s3/tree/main/docker#docker-permissions-and-aws-container-services
• S3-fs-fuse: https://github.com/s3fs-fuse/s3fs-fuse
• Goofys: https://github.com/kahing/goofys
• AWS CRT: https://docs.aws.amazon.com/sdkref/latest/guide/common-runtime.html
• Cloudonaut podcast episode talking about how difficult it is to get 5 TB objects quickly: https://www.youtube.com/watch?v=I91GSGXcOh8
• Cloudonaut custom high-performance Node.js S3 Client: https://github.com/widdix/s3-getobject-accelerator
• Automated Reasoning at AWS: https://aws.amazon.com/blogs/storage/how-automated-reasoning-helps-us-innovate-at-s3-scale/
• Detailed blog post from AWS Storage: https://aws.amazon.com/blogs/storage/the-inside-story-on-mountpoint-for-amazon-s3-a-high-performance-open-source-file-client/

You can listen to AWS Bites wherever you get your podcasts:

• Apple Podcasts:⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠ https://podcasts.apple.com/us/podcast/aws-bites/id1585489017⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠
• Spotify: ⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠https://open.spotify.com/show/3Lh7PzqBFV6yt5WsTAmO5q⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠
• Google: ⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠https://podcasts.google.com/feed/aHR0cHM6Ly9hbmNob3IuZm0vcy82YTMzMTJhMC9wb2RjYXN0L3Jzcw==⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠
• Breaker:⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠ https://www.breaker.audio/aws-bites⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠
• RSS:  ⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠https://anchor.fm/s/6a3312a0/podcast/rss

Ever wondered how to gain deep insights into the myriad of activities within your AWS organization accounts? In this episode of AWS Bites, we dive into the world of AWS CloudTrail and Athena, showing you how to seamlessly query and analyze CloudTrail logs for valuable information, troubleshooting, security, and compliance. 💰 SPONSORS 💰 fourTheorem is the company that makes AWS Bites possible. If you are looking for a partner to accompany you on your cloud journey, check them out at ⁠⁠⁠⁠fourtheorem.com⁠⁠⁠⁠!

In this episode, we mentioned the following resources:

• A gist with the code for a working example of a Glue Catalog Data Table for CloudTrail logs that can be used with Athena: https://gist.github.com/eoinsha/6cf5ce478d36d797d314f161275c5aa6
• Our previous episode on CloudWatch Logs Insights: https://awsbites.com/35-how-can-you-become-a-logs-ninja-with-cloudwatch/

You can listen to AWS Bites wherever you get your podcasts:

• Apple Podcasts:⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠ https://podcasts.apple.com/us/podcast/aws-bites/id1585489017⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠
• Spotify: ⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠https://open.spotify.com/show/3Lh7PzqBFV6yt5WsTAmO5q⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠
• Google: ⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠https://podcasts.google.com/feed/aHR0cHM6Ly9hbmNob3IuZm0vcy82YTMzMTJhMC9wb2RjYXN0L3Jzcw==⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠
• Breaker:⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠ https://www.breaker.audio/aws-bites⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠
• RSS:  ⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠https://anchor.fm/s/6a3312a0/podcast/rss

In today's episode, we're diving into the fascinating world of CDK Patterns - those ingenious building blocks that can transform your cloud journey. We uncover what CDK Patterns are, where to find them, and why you'll want to use them! With CDK's object-oriented abstraction, L2 and L3 Constructs bring a whole new level of convenience. We'll explore where to find these powerful patterns, from the ones baked right into CDK to the inspiring examples showcased by community websites such as cdkpatterns.com. Why bother with CDK Patterns and L3 Constructs? Well, imagine encapsulating best practices, avoiding tedious configuration repetition, and ensuring a consistent approach across your services. That's just the tip of the iceberg! Of course, we'll be candid about the challenges you might encounter, like versioning and resource oversight. Fear not! We'll share practical tips to address these hurdles, including automated testing and vigilant monitoring using CDK diff functionality. And wait, there's more! We'll reveal some exciting alternatives to CDK Patterns, giving you a broader perspective on reusable modules for your cloud adventures. 💰 SPONSORS 💰 fourTheorem is the company that makes AWS Bites possible. If you are looking for a partner to accompany you on your cloud journey, check them out at ⁠⁠⁠fourtheorem.com⁠⁠⁠!

In this episode, we mentioned the following resources:

• AWS Solution Constructs: https://docs.aws.amazon.com/solutions/latest/constructs/welcome.html
• CDK Patterns: https://cdkpatterns.com/
• AWS Cloudformation Templates: https://github.com/widdix/aws-cf-templates
• Terraform AWS Modules: https://github.com/terraform-aws-modules

You can listen to AWS Bites wherever you get your podcasts:

• Apple Podcasts:⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠ https://podcasts.apple.com/us/podcast/aws-bites/id1585489017⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠
• Spotify: ⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠https://open.spotify.com/show/3Lh7PzqBFV6yt5WsTAmO5q⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠
• Google: ⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠https://podcasts.google.com/feed/aHR0cHM6Ly9hbmNob3IuZm0vcy82YTMzMTJhMC9wb2RjYXN0L3Jzcw==⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠
• Breaker:⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠ https://www.breaker.audio/aws-bites⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠
• RSS:  ⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠https://anchor.fm/s/6a3312a0/podcast/rss

In this episode of AWS Bites, we take you on a captivating migration journey. Together, we'll explore how we transformed fullstackbulletin.com's automation process, leaving behind the complexities of a monolithic AWS Lambda and embracing the efficiency of Step Functions.

Join us as we dive into the challenges of automating a weekly newsletter, trying to strike the perfect balance between automation and manual curation. We'll discover the risks of relying on external services and how we navigated these obstacles during our migration.

Together, we'll uncover the step-by-step process of breaking down the monolithic Lambda architecture and orchestrating a more manageable approach with Step Functions. We will also briefly touch on alternative social platforms like Mastodon and other Twitter alternatives during our migration adventure.

Learn with us about different migration strategies and the crucial role of observability for smooth operations.

Finally, we will share some valuable lessons that you can apply to your production workloads. 💰 SPONSORS 💰 fourTheorem is the company that makes AWS Bites possible. If you are looking for a partner to accompany you on your cloud journey, check them out at ⁠⁠⁠fourtheorem.com⁠⁠⁠!

In this episode, we mentioned the following resources:

• Fullstack Bulletin: https://fullstackbulletin.com/
• Fullstack Bulletin on GitHub: https://github.com/FullStackBulletin/
• Fullstack Bulletin remake recordings (YouTube playlist): https://www.youtube.com/playlist?list=PLbNOKnE-Oyr1tsUft4j0QZDyk5iFcVVy_
• SLIC Watch for automated observability: https://github.com/fourTheorem/slic-watch
• Eoin on Mastodon: https://mastodon.ie/@eoins
• Luciano on Mastodon: https://mastodon.ie/@loige

You can listen to AWS Bites wherever you get your podcasts:

• Apple Podcasts:⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠ https://podcasts.apple.com/us/podcast/aws-bites/id1585489017⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠
• Spotify: ⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠https://open.spotify.com/show/3Lh7PzqBFV6yt5WsTAmO5q⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠
• Google: ⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠https://podcasts.google.com/feed/aHR0cHM6Ly9hbmNob3IuZm0vcy82YTMzMTJhMC9wb2RjYXN0L3Jzcw==⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠
• Breaker:⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠ https://www.breaker.audio/aws-bites⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠
• RSS:  ⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠https://anchor.fm/s/6a3312a0/podcast/rss

In this episode, we take a journey through time and technology and learn the origin stories of Eoin and Luciano. In this captivating discussion, they share their paths into the world of software development and their eventual immersion into the realm of Amazon Web Services (AWS). Eoin's story begins in the early days of home computing, where he tinkered with a Spectrum ZX, coding programs and saving them on audio cassettes. He walks us through his computer science studies, securing his first jobs, and his initial encounters with AWS, where skepticism eventually turned into fascination. Meanwhile, Luciano shares his first magical encounter with a computer, igniting his passion for programming, and his subsequent journey into computer science and early work experiences. Moving to Ireland opened doors to work on pioneering cloud projects, leading him to develop tools like Middy and eventually join fourTheorem. The episode delves into their experiences with serverless architecture, solo startups, and how they would approach learning differently if given the chance to do it all again. Join us for a nostalgic, inspiring, and educational episode as we explore the captivating stories that shaped our expertise in the world of AWS. 💰 SPONSORS 💰 fourTheorem is the company that makes AWS Bites possible. If you are looking for a partner to accompany you on your cloud journey, check them out at ⁠⁠fourtheorem.com⁠⁠!

In this episode, we mentioned the following resources:

• Gorillas videogame (GORILLAS.BAS): https://en.wikipedia.org/wiki/Gorillas_(video_game)
• Middy Lambda framework for Node.js: https://middy.js.org/

You can listen to AWS Bites wherever you get your podcasts:

• Apple Podcasts:⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠ https://podcasts.apple.com/us/podcast/aws-bites/id1585489017⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠
• Spotify: ⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠https://open.spotify.com/show/3Lh7PzqBFV6yt5WsTAmO5q⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠
• Google: ⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠https://podcasts.google.com/feed/aHR0cHM6Ly9hbmNob3IuZm0vcy82YTMzMTJhMC9wb2RjYXN0L3Jzcw==⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠
• Breaker:⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠ https://www.breaker.audio/aws-bites⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠
• RSS:  ⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠https://anchor.fm/s/6a3312a0/podcast/rss

AWS is great, but it can surely be better, much better! Today we want to mention 9 things that could help AWS to reach new heights: hard billing limits, better UX and documentation, and much more! We also have a special message to AWS and all the AWS professionals who have helped throughout the years. Join us in this intergalactic journey to improve the leading cloud provider! 💰 SPONSORS 💰 fourTheorem is the company that makes AWS Bites possible. If you are looking for a partner to accompany you on your cloud journey, check them out at ⁠fourtheorem.com⁠!

In this episode, we mentioned the following resources:

• Our previous episode on how to simulate AWS Locally: https://awsbites.com/89-should-you-simulate-aws-locally/
• Our previous episode on bastion hosts: https://awsbites.com/78-when-do-you-need-a-bastion-host/

You can listen to AWS Bites wherever you get your podcasts:

• Apple Podcasts:⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠ https://podcasts.apple.com/us/podcast/aws-bites/id1585489017⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠
• Spotify: ⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠https://open.spotify.com/show/3Lh7PzqBFV6yt5WsTAmO5q⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠
• Google: ⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠https://podcasts.google.com/feed/aHR0cHM6Ly9hbmNob3IuZm0vcy82YTMzMTJhMC9wb2RjYXN0L3Jzcw==⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠
• Breaker:⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠ https://www.breaker.audio/aws-bites⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠
• RSS:  ⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠https://anchor.fm/s/6a3312a0/podcast/rss

Welcome to the epic tale of AWS Bites! In this chapter, we embark on a perilous journey through the challenges of developing distributed applications on AWS. We encounter fierce foes in the form of deployment times and limited access to real AWS services during local development. But fear not, for we have powerful tools at our disposal, including the legendary LocalStack and Serverless offline. And if that's not enough, we have tips and tricks for optimizing our development flow without local simulations, using well-structured code and unit tests. We even share CloudFormation tricks to speed up deployment times and reveal the secret of speeding up the development of IAM policies with Session Policies. So grab your swords and join us on this epic adventure to overcome the challenges of local development on AWS! 💰 SPONSORS 💰 fourTheorem is the company that makes AWS Bites possible. If you are looking for a partner to accompany you on your cloud journey, check them out at fourtheorem.com!

In this episode, we mentioned the following resources:

• Localstack coverage: https://docs.localstack.cloud/user-guide/aws/feature-coverage/
• Localstack v2.0: https://www.infoq.com/news/2023/04/localstack-aws-version-two-ga/
• Cargo-Lambda: https://www.cargo-lambda.info/
• AWS .NET Mock Lambda Test Tool - https://aws.amazon.com/blogs/developer/debugging-net-core-aws-lambda-functions-using-the-aws-net-mock-lambda-test-tool/
• Step Functions Local - local Step Function simulation: https://docs.aws.amazon.com/step-functions/latest/dg/sfn-local.html
• Article by Yan Cui on the topic of testing serverless applications: https://theburningmonk.com/2022/05/my-testing-strategy-for-serverless-applications/

You can listen to AWS Bites wherever you get your podcasts:

• Apple Podcasts:⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠ https://podcasts.apple.com/us/podcast/aws-bites/id1585489017⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠
• Spotify: ⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠https://open.spotify.com/show/3Lh7PzqBFV6yt5WsTAmO5q⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠
• Google: ⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠https://podcasts.google.com/feed/aHR0cHM6Ly9hbmNob3IuZm0vcy82YTMzMTJhMC9wb2RjYXN0L3Jzcw==⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠
• Breaker:⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠ https://www.breaker.audio/aws-bites⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠
• RSS:  ⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠https://anchor.fm/s/6a3312a0/podcast/rss

In this episode of AWS Bites, we discuss VPC Lattice, a new service in the Salad Bowl of AWS Networking. We cover all the concepts, applications, and exciting possibilities for VPC Lattice and share tips on how to use it effectively. We talk about reducing friction between network admin and dev teams and how VPC Lattice can be a game changer for traditional and serverless workloads. Get ready for some greens and don't miss this informative episode of AWS Bites!

💰 SPONSORS 💰

AWS Bites is sponsored by ⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠fourTheorem⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠, an AWS Consulting Partner offering training, cloud migration, and modern application architecture.

In this episode, we mentioned the following resources:

• Our demo repository of VPC Lattice: https://github.com/fourTheorem/vpc-lattice-demo
• Some useful slides to recap the main concepts about VPC Lattice: https://fourtheorem.github.io/vpc-lattice-demo/
• Serverless Networking with VPC Lattice (Serverless Office Hours): https://www.youtube.com/watch?v=C4dw8tz_dgc
• Amazon VPC Lattice workshop: https://catalog.us-east-1.prod.workshops.aws/workshops/9e543f60-e409-43d4-b37f-78ff3e1a07f5/en-US

You can listen to AWS Bites wherever you get your podcasts:

• Apple Podcasts:⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠ https://podcasts.apple.com/us/podcast/aws-bites/id1585489017⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠
• Spotify: ⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠https://open.spotify.com/show/3Lh7PzqBFV6yt5WsTAmO5q⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠
• Google: ⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠https://podcasts.google.com/feed/aHR0cHM6Ly9hbmNob3IuZm0vcy82YTMzMTJhMC9wb2RjYXN0L3Jzcw==⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠
• Breaker:⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠ https://www.breaker.audio/aws-bites⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠
• RSS:  ⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠https://anchor.fm/s/6a3312a0/podcast/rss

Are you interested in landing an AWS role? Or maybe are you looking to hire some cloud talent?! In this episode of the AWS Bites podcast, we share our insights on the interview process we have adopted at fourTheorem. This process is not just about testing AWS knowledge, but it's also about evaluating cultural fit, way of working skills and knowledge, and future plans. From the “Fiona chat” to the technical interview, we provide valuable tips for candidates, such as being honest about your knowledge and asking questions during the interview.

💰 SPONSORS 💰

AWS Bites is sponsored by ⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠fourTheorem⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠, an AWS Consulting Partner offering training, cloud migration, and modern application architecture.

You can listen to AWS Bites wherever you get your podcasts:

• Apple Podcasts:⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠ https://podcasts.apple.com/us/podcast/aws-bites/id1585489017⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠
• Spotify: ⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠https://open.spotify.com/show/3Lh7PzqBFV6yt5WsTAmO5q⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠
• Google: ⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠https://podcasts.google.com/feed/aHR0cHM6Ly9hbmNob3IuZm0vcy82YTMzMTJhMC9wb2RjYXN0L3Jzcw==⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠
• Breaker:⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠ https://www.breaker.audio/aws-bites⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠
• RSS:  ⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠https://anchor.fm/s/6a3312a0/podcast/rss

Are you struggling with securely integrating workloads running on-premises, in Azure, or in any other cloud with a workload running in AWS? In this exciting episode of the AWS Bites podcast, we dive into 6 different options for securely and efficiently integrating workloads between clouds. From providing a public API in AWS with an authorization method to using IAM roles anywhere to using OIDC federated identities, we explore the advantages and disadvantages of each option. We even cover the use of SSM hybrid activations and creating the interface on the Azure/Data Centre side and polling from AWS. Don't miss out on this informative discussion about the best practices for integrating workloads between clouds. Tune in now and let’s have some cloud fun together!

💰 SPONSORS 💰

AWS Bites is sponsored by ⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠fourTheorem⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠, an AWS Consulting Partner offering training, cloud migration, and modern application architecture.

In this episode, we mentioned the following resources:

• Our repository with an example on how to use IAM Roles Anywhere: https://github.com/fourTheorem/iam-roles-anywhere-demo/
• aws_signing_helper CLI: https://github.com/aws/rolesanywhere-credential-helper
• Detailed article on how to set up OIDC Federated Identities: https://blog.identitydigest.com/azuread-access-aws/
• Our previous episode on OIDC providers: https://awsbites.com/45-what-s-the-magic-of-oidc-identity-providers/

You can listen to AWS Bites wherever you get your podcasts:

• Apple Podcasts:⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠ https://podcasts.apple.com/us/podcast/aws-bites/id1585489017⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠
• Spotify: ⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠https://open.spotify.com/show/3Lh7PzqBFV6yt5WsTAmO5q⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠
• Google: ⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠https://podcasts.google.com/feed/aHR0cHM6Ly9hbmNob3IuZm0vcy82YTMzMTJhMC9wb2RjYXN0L3Jzcw==⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠
• Breaker:⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠ https://www.breaker.audio/aws-bites⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠
• RSS:  ⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠https://anchor.fm/s/6a3312a0/podcast/rss

In the latest episode of AWS Bites Podcast, Luciano and Eoin share their insider tips on how to get the most out of in-person AWS events like summits, re:Inforce, or re:Invent.

From networking to swag hoarding, they cover everything you need to know to make the most of these conferences. Learn how to convince your employer to let you attend and how to plan ahead to get the most out of the event. Plus, hear about the fun activities and after-parties you won't want to miss.

Don't miss out on this must-listen episode if you're attending an AWS event soon!

💰 SPONSORS 💰

AWS Bites is sponsored by ⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠fourTheorem⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠, an AWS Consulting Partner offering training, cloud migration, and modern application architecture.

In this episode, we mentioned the following resources:

• AWS Events app for Android: https://play.google.com/store/apps/details?id=com.mobiquityinc.awsevents&hl=en&gl=US&pli=1
• AWS Events app for iOS: https://apps.apple.com/us/app/aws-events/id1457242918

You can listen to AWS Bites wherever you get your podcasts:

• Apple Podcasts:⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠ https://podcasts.apple.com/us/podcast/aws-bites/id1585489017⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠
• Spotify: ⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠https://open.spotify.com/show/3Lh7PzqBFV6yt5WsTAmO5q⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠
• Google: ⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠https://podcasts.google.com/feed/aHR0cHM6Ly9hbmNob3IuZm0vcy82YTMzMTJhMC9wb2RjYXN0L3Jzcw==⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠
• Breaker:⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠ https://www.breaker.audio/aws-bites⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠
• RSS:  ⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠https://anchor.fm/s/6a3312a0/podcast/rss

In this episode of AWS Bites, we explore the future of Virtual Private Clouds (VPCs) in the context of the zero-trust security trend.

We'll dive into the pros and cons of using VPCs, including their usefulness when dealing with sensitive data or when you need fine-grained control over your network environment. But let's be real, sometimes VPCs can be a bit of a headache. We'll discuss why you might want to avoid them, including the added complexity they can bring to your network environment.

Fear not, we'll also provide a summary of when to use and when not to use VPCs, as well as alternatives to using VPCs, such as services that don't require them.

So, are ready to talk VPCs!?

💰 SPONSORS 💰

AWS Bites is sponsored by ⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠fourTheorem⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠, an AWS Consulting Partner offering training, cloud migration, and modern application architecture.

In this episode, we mentioned the following resources:

• Our previous episode on Bastion hosts: https://awsbites.com/78-when-do-you-need-a-bastion-host/
• AWS announcement for improved Lambda VPC connection (2019): https://aws.amazon.com/blogs/compute/announcing-improved-vpc-networking-for-aws-lambda-functions/

You can listen to AWS Bites wherever you get your podcasts:

• Apple Podcasts:⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠ https://podcasts.apple.com/us/podcast/aws-bites/id1585489017⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠
• Spotify: ⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠https://open.spotify.com/show/3Lh7PzqBFV6yt5WsTAmO5q⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠
• Google: ⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠https://podcasts.google.com/feed/aHR0cHM6Ly9hbmNob3IuZm0vcy82YTMzMTJhMC9wb2RjYXN0L3Jzcw==⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠
• Breaker:⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠ https://www.breaker.audio/aws-bites⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠
• RSS:  ⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠https://anchor.fm/s/6a3312a0/podcast/rss

VPC Lettuce is a new service form AWS that lets you pay per leaf instead of buying a whole lettuce up front. Pricing starts at $0.50 per gram per second.

In this episode of the AWS Bites podcast, we explore the best practices for creating and configuring S3 Buckets, Amazon Web Services' popular object storage service. We will learn how to set up buckets correctly from the start, avoiding common pitfalls and ensuring efficient management.

We provide a quick recap of Amazon S3, covering buckets, objects, and various use cases. Discover the importance of globally unique bucket names, versioning, and observability through logging and metrics. We will tell you how to ensure the security of your buckets with encryption options and proper access controls.

Finally, we discuss S3 integrations and additional settings you might consider for your workload.

Don't miss this insightful episode packed with practical tips and expert advice. Tune in now and optimize your S3 Bucket setup for success!

💰 SPONSORS 💰

AWS Bites is sponsored by ⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠fourTheorem⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠, an AWS Consulting Partner offering training, cloud migration, and modern application architecture.

In this episode, we mentioned the following resources:

• Our previous episode on How to deploy static websites on AWS: https://awsbites.com/3-how-do-you-deploy-a-static-website-on-aws/
• Our previous episode on How to deploy private static websites on AWS: https://awsbites.com/80-can-you-do-private-static-websites-on-aws/
• Official documentation for S3 buckets server logs: https://docs.aws.amazon.com/AmazonS3/latest/userguide/ServerLogs.html
• AWS S3 Storage Lens: https://aws.amazon.com/blogs/aws/s3-storage-lens/
• Yan Cui's article on S3 Object encryption: https://theburningmonk.com/2023/01/yes-s3-now-encrypts-objects-by-default-but-your-job-is-not-done-yet/

You can listen to AWS Bites wherever you get your podcasts:

• Apple Podcasts:⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠ https://podcasts.apple.com/us/podcast/aws-bites/id1585489017⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠
• Spotify: ⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠https://open.spotify.com/show/3Lh7PzqBFV6yt5WsTAmO5q⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠
• Google: ⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠https://podcasts.google.com/feed/aHR0cHM6Ly9hbmNob3IuZm0vcy82YTMzMTJhMC9wb2RjYXN0L3Jzcw==⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠
• Breaker:⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠ https://www.breaker.audio/aws-bites⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠
• RSS:  ⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠https://anchor.fm/s/6a3312a0/podcast/rss

Who is the king of all databases when it comes to performance? Yes, Redis! Of course!

In this episode of AWS Bites, we talk about Redis on ElastiCache, one of the most essential instruments in the cloud architect's toolbox.

We explore the joys and woes of Redis on AWS and share some exciting alternatives regarding in-memory databases and caching systems.

We discuss the use cases of Redis, including session storage, web page caching, database cache, cost optimization, queues and pub/sub messaging, and distributed applications state.

We extensively talk about ElastiCache, the managed cache solution on AWS based on either Redis or Memcache, and its features such as replication groups, auto-scaling, and monitoring.

Finally, we discuss potential alternatives, such as DynamoDB (with DAX), Upstash, or Momento, a serverless cache built on Pelikan.

💰 SPONSORS 💰

AWS Bites is sponsored by ⁠⁠⁠⁠⁠⁠⁠⁠⁠fourTheorem⁠⁠⁠⁠⁠⁠⁠⁠⁠, an AWS Consulting Partner offering training, cloud migration, and modern application architecture.

In this episode, we mentioned the following resources:

• Elasticache: https://aws.amazon.com/elasticache/
• Upstash: https://upstash.com/
• Momento: https://www.gomomento.com/

You can listen to AWS Bites wherever you get your podcasts:

• Apple Podcasts:⁠⁠⁠⁠⁠⁠⁠⁠⁠ https://podcasts.apple.com/us/podcast/aws-bites/id1585489017⁠⁠⁠⁠⁠⁠⁠⁠⁠
• Spotify: ⁠⁠⁠⁠⁠⁠⁠⁠⁠https://open.spotify.com/show/3Lh7PzqBFV6yt5WsTAmO5q⁠⁠⁠⁠⁠⁠⁠⁠⁠
• Google: ⁠⁠⁠⁠⁠⁠⁠⁠⁠https://podcasts.google.com/feed/aHR0cHM6Ly9hbmNob3IuZm0vcy82YTMzMTJhMC9wb2RjYXN0L3Jzcw==⁠⁠⁠⁠⁠⁠⁠⁠⁠
• Breaker:⁠⁠⁠⁠⁠⁠⁠⁠⁠ https://www.breaker.audio/aws-bites⁠⁠⁠⁠⁠⁠⁠⁠⁠
• RSS:  ⁠⁠⁠⁠⁠⁠⁠⁠⁠https://anchor.fm/s/6a3312a0/podcast/rss

Are you tired of being stuck in your local development environment? Do you dream of coding from a beach in Sicily? Well, get ready to make those dreams a reality with this episode of AWS Bites!

Today we are here to show you how to use VSCode to develop against a remote Cloud9 instance on AWS.

You'll learn how to edit in VSCode instead of using the Cloud9 editor, so you can take advantage of the power of the cloud and code from anywhere while staying in the comfort of your favourite code editor.

We'll cover two ways to edit in VSCode: with SSM and with VSCode Tunnels. With these setups, you can code from home, a coffee shop, or even a beach in Sicily (if you like granitas and sunshine). Plus, you'll get to use that fancy iPad you spent all that money on (also) for coding!

Get comfortable and let’s learn how to set up our next remote coding environment!

💰 SPONSORS 💰

AWS Bites is sponsored by ⁠⁠⁠⁠⁠⁠⁠⁠fourTheorem⁠⁠⁠⁠⁠⁠⁠⁠, an AWS Consulting Partner offering training, cloud migration, and modern application architecture.

In this episode, we mentioned the following resources:

• Visual Studio Code Server: https://code.visualstudio.com/docs/remote/vscode-server
• Our previous episode "When do you need a bastion host?": https://awsbites.com/78-when-do-you-need-a-bastion-host/
• Instructions to set up your own VS Code integration with Cloud9: https://gist.github.com/lmammino/13f8ae95b222919c51b42153bfc71637
• Our live series stream "Coding a serverless file transfer app on AWS": https://www.youtube.com/playlist?list=PLAWXFhe0N1vI1_z-06EzJ22pz95_gBrId

You can listen to AWS Bites wherever you get your podcasts:

• Apple Podcasts:⁠⁠⁠⁠⁠⁠⁠⁠ https://podcasts.apple.com/us/podcast/aws-bites/id1585489017⁠⁠⁠⁠⁠⁠⁠⁠
• Spotify: ⁠⁠⁠⁠⁠⁠⁠⁠https://open.spotify.com/show/3Lh7PzqBFV6yt5WsTAmO5q⁠⁠⁠⁠⁠⁠⁠⁠
• Google: ⁠⁠⁠⁠⁠⁠⁠⁠https://podcasts.google.com/feed/aHR0cHM6Ly9hbmNob3IuZm0vcy82YTMzMTJhMC9wb2RjYXN0L3Jzcw==⁠⁠⁠⁠⁠⁠⁠⁠
• Breaker:⁠⁠⁠⁠⁠⁠⁠⁠ https://www.breaker.audio/aws-bites⁠⁠⁠⁠⁠⁠⁠⁠
• RSS:  ⁠⁠⁠⁠⁠⁠⁠⁠https://anchor.fm/s/6a3312a0/podcast/rss

In this episode of the AWS Bites podcast, we discuss the challenges of hosting private static websites on AWS. We explore why it's important to host internal corporate applications and line of business applications only for internal consumption, and the requirements for doing so. We also evaluate different options for hosting private static websites, including S3 with CloudFront, containers on ECS/Fargate with ALB, API Gateway, and AppRunner. Finally, we summarize the pros and cons of each option and provide a rating for each. If you're looking to host a private static website on AWS, this episode is a must-listen!

💰 SPONSORS 💰

AWS Bites is sponsored by ⁠⁠⁠⁠⁠⁠⁠fourTheorem⁠⁠⁠⁠⁠⁠⁠, an AWS Consulting Partner offering training, cloud migration, and modern application architecture.

In this episode, we mentioned the following resources:

• Our previous episode "How do you deploy a static website in AWS?": https://awsbites.com/3-how-do-you-deploy-a-static-website-on-aws/
• Our previous episode "How do you use Lambda response streaming": https://awsbites.com/77-how-do-you-use-lambda-response-streaming
• Our previous episode "How do you do Functionless APIs?": https://awsbites.com/79-how-do-you-do-functionless-apis
• Open issue on GitHub for private hosted zones support for App Runner: https://github.com/aws/apprunner-roadmap/issues/183

You can listen to AWS Bites wherever you get your podcasts:

• Apple Podcasts:⁠⁠⁠⁠⁠⁠⁠ https://podcasts.apple.com/us/podcast/aws-bites/id1585489017⁠⁠⁠⁠⁠⁠⁠
• Spotify: ⁠⁠⁠⁠⁠⁠⁠https://open.spotify.com/show/3Lh7PzqBFV6yt5WsTAmO5q⁠⁠⁠⁠⁠⁠⁠
• Google: ⁠⁠⁠⁠⁠⁠⁠https://podcasts.google.com/feed/aHR0cHM6Ly9hbmNob3IuZm0vcy82YTMzMTJhMC9wb2RjYXN0L3Jzcw==⁠⁠⁠⁠⁠⁠⁠
• Breaker:⁠⁠⁠⁠⁠⁠⁠ https://www.breaker.audio/aws-bites⁠⁠⁠⁠⁠⁠⁠
• RSS:  ⁠⁠⁠⁠⁠⁠⁠https://anchor.fm/s/6a3312a0/podcast/rss

In this exciting episode of the AWS Bites podcast, we're diving into the fascinating world of functionless applications. Yes, you heard it right! We'll be exploring how reducing the number of lambda functions can simplify your applications, resulting in lower latency, no cold starts, and cheaper costs.

But don't worry, we still love lambda! We'll be explaining the pros and cons of this approach, taking you through a step-by-step guide on how to use service proxies and manipulate the input for the target service using VTL.

And that's not all! We also share some helpful resources for those interested in learning more about this approach, including blog posts from some of the brightest minds in the field like Alex DeBrie, Sheen Brisals, and Paul Swail.

So, tune in and learn how to simplify your applications, reduce costs, and take your AWS game to the next level with functionless applications!

💰 SPONSORS 💰

AWS Bites is sponsored by ⁠⁠⁠⁠⁠⁠fourTheorem⁠⁠⁠⁠⁠⁠, an AWS Consulting Partner offering training, cloud migration, and modern application architecture.

In this episode, we mentioned the following resources:

• Blog post from Alex DeBrie on API Gateway Service Proxy: https://www.alexdebrie.com/posts/aws-api-gateway-service-proxy/
• Another blog post on Service Proxy by Sheen Brisals: https://sbrisals.medium.com/dont-wait-for-functionless-write-less-functions-instead-8f2c331cd651
• "Some code is more equal than others" by Paul Swail https://serverlessfirst.com/some-code-more-equal/

You can listen to AWS Bites wherever you get your podcasts:

• Apple Podcasts:⁠⁠⁠⁠⁠⁠ https://podcasts.apple.com/us/podcast/aws-bites/id1585489017⁠⁠⁠⁠⁠⁠
• Spotify: ⁠⁠⁠⁠⁠⁠https://open.spotify.com/show/3Lh7PzqBFV6yt5WsTAmO5q⁠⁠⁠⁠⁠⁠
• Google: ⁠⁠⁠⁠⁠⁠https://podcasts.google.com/feed/aHR0cHM6Ly9hbmNob3IuZm0vcy82YTMzMTJhMC9wb2RjYXN0L3Jzcw==⁠⁠⁠⁠⁠⁠
• Breaker:⁠⁠⁠⁠⁠⁠ https://www.breaker.audio/aws-bites⁠⁠⁠⁠⁠⁠
• RSS:  ⁠⁠⁠⁠⁠⁠https://anchor.fm/s/6a3312a0/podcast/rss

Harken, good sir! Art thou aware of the arcane art of safeguarding thy AWS instances from malevolent threats whilst keeping them accessible for thy travels? There exists a mighty tool for such purpose, and it is hight the "bastion host." In this pamphlet, we shalt unravel the mysteries of the bastion host and showeth thee how to useth it to safeguard thy web space. We shall commence by presenting a shadowy example architecture and introducing thee to the definition of a bastion host. We shalt then delve into the question of whether bastion hosts could be a security liability and explore the enigmatic concept of port-knocking. We shalt also take thee on a valiant journey of how to provision a bastion host on AWS, and explaineth the cryptic basics of SSH and tunnels. Thou shalt discover the dark side of managing SSH keys and auditing SSH connections, and we shall reveal the secrets of AWS EC2 Instance Connect and AWS Session Manager (SSM) as solutions. Thou shalt learn how to accept connections without exposing a port on the public internet, and we shall introduce thee to a mysterious tool called "basti" that can make it easier to provision SSM-based bastion hosts and connect to thy databases. We shalt wrap up by revealing alternative security measures to the mysterious bastion host and provide thee with cryptic closing notes to summarize the key takeaways from this video. Heed our call to this intriguing guide to securing thy web space, and may the forces of the internet be in thy favor! 🛡️ SPONSORS 🛡️ Harken, good folk! We would like to offer our deepest gratitude to our noble sponsor, fourTheorem (https://fourtheorem.com), an AWS Consulting Partner that doth offer training, cloud migration, and modern application architecture. Thanks to their generosity, we are able to continue on our journey of imparting wisdom and knowledge regarding AWS.

Verily, in this episode, we hath made mention of the following resources:

• ⁠⁠⁠An open-source implementation of the port-knocking technique
• Thee official guide to set up EC2 Instance Connect
• A list of AWS IPs
• Thee official docs on how to set up SSM
• SSM agent code on GitHub
• Thee inlets project on GitHub
• Basti on GitHub
• Tailscale
• Wireguard

Hear ye, hear ye! AWS Bites is at thy disposal wherever thou mayest listen to thy podcasts:

• Apple Podcasts:⁠⁠⁠⁠⁠⁠ https://podcasts.apple.com/us/podcast/aws-bites/id1585489017⁠⁠⁠⁠⁠⁠
• Spotify: ⁠⁠⁠⁠⁠⁠https://open.spotify.com/show/3Lh7PzqBFV6yt5WsTAmO5q⁠⁠⁠⁠⁠⁠
• Google: ⁠⁠⁠⁠⁠⁠https://podcasts.google.com/feed/aHR0cHM6Ly9hbmNob3IuZm0vcy82YTMzMTJhMC9wb2RjYXN0L3Jzcw==⁠⁠⁠⁠⁠⁠
• Breaker:⁠⁠⁠⁠⁠⁠ https://www.breaker.audio/aws-bites⁠⁠⁠⁠⁠⁠
• RSS:  ⁠⁠⁠⁠⁠⁠https://anchor.fm/s/6a3312a0/podcast/rss

Are you tired of waiting for your Lambda functions to finish before getting a response? Well, now you don't have to! In this episode of the AWS Bites podcast, we will talk about Lambda Response Streaming, a new feature recently added by AWS that lets you stream responses from your Lambda functions in real time. We'll start by explaining what Lambda Response Streaming is and how it differs from buffering. We'll also discuss HTTP Chunking and other benefits of streaming. If you're a Node.js developer, you'll be happy to know that we'll cover how to work with streams in Node.js and how the new Lambda Response Streaming API works with the Node.js runtime. But that's not all! We'll also discuss how to consume Lambda Response Streaming responses and compare that with S3 Object Response. And if you're wondering about pricing and quotas, we'll cover that too. Finally, we'll answer the question on everyone's mind: will we get streaming requests as well? You'll have to watch the video to find out! So if you're interested in learning more about Lambda Response Streaming and how it can improve the performance of your serverless applications, make sure to tune in. We promise it'll be worth your time.

💰 SPONSORS 💰

AWS Bites is sponsored by ⁠⁠⁠⁠⁠fourTheorem⁠⁠⁠⁠⁠, an AWS Consulting Partner offering training, cloud migration, and modern application architecture.

In this episode, we mentioned the following resources:

• ⁠Official announcement blog post for Lambda Response Streaming
• Our previous episode about Lambda function URLs vs API GW vs LB
• HTTP Chunked transfer encoding protocol
• Luciano's free Node.js streams workshop on GitHub
• Node.js design patterns (the book)
• Streamify response functionality in Middy
• Lambda Rust Runtime codebase (support for Response Streaming)
• Similar evidence of Response Streaming feature support in the GoLang Runtime
• Our previous episode about S3 pre-signed URLs
• Lambda Response Streaming pricing
• Eoin's article about S3 Object Response
• Experimental Node.js custom Node.js streaming runtime

You can listen to AWS Bites wherever you get your podcasts:

• Apple Podcasts:⁠⁠⁠⁠⁠ https://podcasts.apple.com/us/podcast/aws-bites/id1585489017⁠⁠⁠⁠⁠
• Spotify: ⁠⁠⁠⁠⁠https://open.spotify.com/show/3Lh7PzqBFV6yt5WsTAmO5q⁠⁠⁠⁠⁠
• Google: ⁠⁠⁠⁠⁠https://podcasts.google.com/feed/aHR0cHM6Ly9hbmNob3IuZm0vcy82YTMzMTJhMC9wb2RjYXN0L3Jzcw==⁠⁠⁠⁠⁠
• Breaker:⁠⁠⁠⁠⁠ https://www.breaker.audio/aws-bites⁠⁠⁠⁠⁠
• RSS:  ⁠⁠⁠⁠⁠https://anchor.fm/s/6a3312a0/podcast/rss

In this episode, we're doing something different! Join us for a special screen-sharing edition of our podcast series, as we take a deep dive into AWS Copilot, a service designed to simplify container application deployment on AWS. During this video, we'll be sharing our screens as we walk through the AWS Copilot landing page and documentation, and demonstrate how to use the service to deploy a container application. We highly recommend watching the video version of this episode, as we'll be providing a lot of visual guidance and examples. Starting with the basics, we'll learn about the differences between copilot init and copilot app init, and how to prepare our environment using a custom domain. We'll then walk through the deployment process step-by-step, examining the generated configuration file, manifest.yml, and testing our deployed application. Next, we'll explore the networking resources created by AWS Copilot, including a VPC, subnets, and a load balancer, and review the automation capabilities of CodePipeline. We'll also discuss the options available for rolling out new changes, and demonstrate how to make changes and re-deploy through the pipeline. Throughout the video, we will share their thoughts and opinions on AWS Copilot, including a failed attempt with AppRunner and a review of the pipeline execution and timing.

💰 SPONSORS 💰

AWS Bites is sponsored by ⁠⁠⁠⁠fourTheorem⁠⁠⁠⁠, an AWS Consulting Partner offering training, cloud migration, and modern application architecture.

In this episode, we mentioned the following resources:

• AWS Copilot landing page
• AWS Copilot documentation
• AWS App2Container tool
• AWS AppRunner
• Our previous episode "Do you use CodePipeline or GitHub Actions?"
• Gurarpit Singh's blog post "Blue/Green Deployments with AWS CodeDeploy and Terraform"
• Additional guides and resources on AWS Copilot

You can listen to AWS Bites wherever you get your podcasts:

• Apple Podcasts:⁠⁠⁠⁠ https://podcasts.apple.com/us/podcast/aws-bites/id1585489017⁠⁠⁠⁠
• Spotify: ⁠⁠⁠⁠https://open.spotify.com/show/3Lh7PzqBFV6yt5WsTAmO5q⁠⁠⁠⁠
• Google: ⁠⁠⁠⁠https://podcasts.google.com/feed/aHR0cHM6Ly9hbmNob3IuZm0vcy82YTMzMTJhMC9wb2RjYXN0L3Jzcw==⁠⁠⁠⁠
• Breaker:⁠⁠⁠⁠ https://www.breaker.audio/aws-bites⁠⁠⁠⁠
• RSS:  ⁠⁠⁠⁠https://anchor.fm/s/6a3312a0/podcast/rss

In this special episode of AWS Bites, we drop all our opinions about the sudden growth of AI and how it is going to change the future as we know it! We begin by taking a trip down memory lane and discovering the types of AI tools that have been used in the past and how they have helped us. Then, we'll dive into ChatGPT, a language model that can assist us in writing and even creating code. We're especially excited to discuss how ChatGPT can be used to create slide decks or even write a book or a blog post. But wait, there's more! We'll also explore the utility of other AI tools such as Grammarly and OpenAI Whisper for improving our writing and transcribing spoken words into text. Moving forward, we'll examine how we tried to use AI to develop cloud applications on platforms like AWS. We'll also consider the impact of AI on the education system and how it can be used to modernize complex systems, or for learning, including programming languages that are new to developers. Now, we know there might be some concerns about using AI, such as whether it takes away the fun of software engineering or reduces creativity. But fear not! We'll address these concerns head-on and explore how AI can actually make us more productive and lead to exciting new discoveries. Finally, we'll discuss the exciting possibilities for AI and its potential to democratize access to the job market and society in general.

💰 SPONSORS 💰

AWS Bites is sponsored by ⁠⁠⁠fourTheorem⁠⁠⁠, an AWS Consulting Partner offering training, cloud migration, and modern application architecture.

In this episode, we mentioned the following resources:

• Our episode about OpenAI Whisper for generating transcripts
• David Boyne's AI-powered story generation tool (AWS Blog post)
• The Fission project for simplifying monolith to microservices migrations

🎁 BONUS CONTENT A Limerick by ChatGPT On the Amazon Cloud far away, Where businesses went to play, The costs grew so vast, Their budgets were trashed, As their dollars all floated away!

You can listen to AWS Bites wherever you get your podcasts:

• Apple Podcasts:⁠⁠⁠ https://podcasts.apple.com/us/podcast/aws-bites/id1585489017⁠⁠⁠
• Spotify: ⁠⁠⁠https://open.spotify.com/show/3Lh7PzqBFV6yt5WsTAmO5q⁠⁠⁠
• Google: ⁠⁠⁠https://podcasts.google.com/feed/aHR0cHM6Ly9hbmNob3IuZm0vcy82YTMzMTJhMC9wb2RjYXN0L3Jzcw==⁠⁠⁠
• Breaker:⁠⁠⁠ https://www.breaker.audio/aws-bites⁠⁠⁠
• RSS:  ⁠⁠⁠https://anchor.fm/s/6a3312a0/podcast/rss

How can you use a Lambda to respond to an HTTP request? There are more ways than ever to do it. We have API Gateway REST APIs, Lambda support for Application Load Balancer, and now Function URLs. But which one should you use, and when? In this episode of AWS Bites podcast, we will give you a quick and simple guide to picking the best way to build APIs with Lambda. In this video, we're going to pitch Function URLs against API Gateway in a battle for the ages! Function URLs offer a simple and quick way to get a public URL to invoke a Lambda function, with fewer configuration options and cheaper pricing. They are suitable for private webhooks, simple backend functions, and machine learning inference backend. However, they lack authorization and DDoS protection, making them unsuitable for public webhooks. On the other hand, API Gateway offers more features and control, making it suitable for public APIs. API Gateway comes in two flavors: REST and HTTP with some subtle differences. Finally, we will also cover Application Load balancer and explore when and why it can be a convenient alternative to both Function URLs and API Gateway.

💰 SPONSORS 💰

AWS Bites is sponsored by ⁠⁠fourTheorem⁠⁠, an AWS Consulting Partner offering training, cloud migration, and modern application architecture.

In this episode, we mentioned the following resources:

• Article by AJ Stuyvenberg reporting that Function URLs have a latency of 8.35ms
• GitHub repository with all the material we used in our evaluation

You can listen to AWS Bites wherever you get your podcasts:

• Apple Podcasts:⁠⁠ https://podcasts.apple.com/us/podcast/aws-bites/id1585489017⁠⁠
• Spotify: ⁠⁠https://open.spotify.com/show/3Lh7PzqBFV6yt5WsTAmO5q⁠⁠
• Google: ⁠⁠https://podcasts.google.com/feed/aHR0cHM6Ly9hbmNob3IuZm0vcy82YTMzMTJhMC9wb2RjYXN0L3Jzcw==⁠⁠
• Breaker:⁠⁠ https://www.breaker.audio/aws-bites⁠⁠
• RSS:  ⁠⁠https://anchor.fm/s/6a3312a0/podcast/rss

In this episode, we're going to be talking about AWS Application Composer - a FREE service that promises to help you build serverless applications with ease. With its simple drag-and-drop interface, it's supposed to make Infrastructure as Code a breeze. But the real question is - does it live up to the hype? We know a lot of you are probably struggling with building applications using CloudFormation. It's a real pain, right? So, we decided to take Application Composer for a spin and see if it's worth adding to your toolkit or giving it a hard pass. After covering a generic overview of the service, how it works, and the main concepts, we discuss our experience in creating a new simple serverless application from scratch only using API Gateway, Lambda, and S3. Then we cover what it looks like to import an existing project (a slightly more complicated one) into Application Composer and find out what works and what doesn't. We conclude by discussing some other things that didn't work as expected and by providing our general recommendation on whether you should be using this service today.

💰 SPONSORS 💰

AWS Bites is sponsored by ⁠fourTheorem⁠, an AWS Consulting Partner offering training, cloud migration, and modern application architecture.

In this episode, we mentioned the following resources:

• ⁠Web platform filesystem Access API
• The current status of cross-browser support for the File System Access API
• Our first Application Composer demo source code
• Earthquake notifier serverless project
• Our previous episode on Fargate and how to optimize cost for it

You can listen to AWS Bites wherever you get your podcasts:

• Apple Podcasts:⁠ https://podcasts.apple.com/us/podcast/aws-bites/id1585489017⁠
• Spotify: ⁠https://open.spotify.com/show/3Lh7PzqBFV6yt5WsTAmO5q⁠
• Google: ⁠https://podcasts.google.com/feed/aHR0cHM6Ly9hbmNob3IuZm0vcy82YTMzMTJhMC9wb2RjYXN0L3Jzcw==⁠
• Breaker:⁠ https://www.breaker.audio/aws-bites⁠
• RSS:  ⁠https://anchor.fm/s/6a3312a0/podcast/rss

AWS ECS is a powerful service that allows you to run containerized applications at scale. It's suitable for a variety of use cases, including web applications, microservices, and background processing.

In this episode, we'll provide an introduction to the main concepts of ECS and then dive into cost-optimization strategies. We'll explore the different options for running containers on ECS, including EC2, Fargate, and ECS Anywhere.

We'll discuss various opportunities for saving money, such as using Arm (Graviton) instances, Spot instances, Compute Savings Plans, and RIs or EC2 Saving Plans.

Finally, we'll cover how to set up ECS to use Spot instances, including how to create capacity providers and specify a capacity provider strategy. We'll also discuss whether it's always best to use EC2 instead of Fargate for cost optimization and recommend some tools that can help you find other opportunities to save on container costs.

💰 SPONSORS 💰

AWS Bites is sponsored by fourTheorem, an AWS Consulting Partner offering training, cloud migration, and modern application architecture.

In this episode, we mentioned the following resources:

• Saving Plan calculator
• EC2 instance selector
• Spot prices dashboard by Vantage
• Fargate Right Sizing dashboard
• AWS Cost Explorer rightsizing recommender for EC2

You can listen to AWS Bites wherever you get your podcasts:

• Apple Podcasts: https://podcasts.apple.com/us/podcast/aws-bites/id1585489017
• Spotify: https://open.spotify.com/show/3Lh7PzqBFV6yt5WsTAmO5q
• Google: https://podcasts.google.com/feed/aHR0cHM6Ly9hbmNob3IuZm0vcy82YTMzMTJhMC9wb2RjYXN0L3Jzcw==
• Breaker: https://www.breaker.audio/aws-bites
• RSS:  https://anchor.fm/s/6a3312a0/podcast/rss

Join us as we explore the controversy surrounding serverless computing in this week's video! We'll be discussing David Heinemeier Hansson's recent blog post where he argues that serverless is a trap that only benefits cloud providers.

While we respect DHH's opinion, we'll be providing an alternative perspective by analyzing his major points and discussing the benefits of using serverless computing, including Total Cost of Ownership (TCO) and increased agility. We'll also be highlighting how serverless can help teams focus on business logic instead of infrastructure management and enable easier integration with other cloud services, making it more efficient to build and deploy applications.

Don't miss out on this informative and thought-provoking discussion!

💰 SPONSORS 💰

AWS Bites is sponsored by fourTheorem, an AWS Consulting Partner offering training, cloud migration, and modern application architecture.

In this episode, we mentioned the following resources:

• "Don't be fooled by Serverless" (Original post by DHH)
• "Why are we leaving the cloud" (Previous post by DHH)
• "Why AWS Lambda pricing has to change for the enterprise" (our article on AWS Lambda pricing comparison)
• Our previous episode "What will serverless 2.0 look like"
• Kelsey Hightower's tweet on vendor lock-in
• Jeremy Daly's article "The cloud isn't the issue, you are using it wrong"

You can listen to AWS Bites wherever you get your podcasts:

• Apple Podcasts: https://podcasts.apple.com/us/podcast/aws-bites/id1585489017
• Spotify: https://open.spotify.com/show/3Lh7PzqBFV6yt5WsTAmO5q
• Google: https://podcasts.google.com/feed/aHR0cHM6Ly9hbmNob3IuZm0vcy82YTMzMTJhMC9wb2RjYXN0L3Jzcw==
• Breaker: https://www.breaker.audio/aws-bites
• RSS:  https://anchor.fm/s/6a3312a0/podcast/rss

Are you ready to level up your software architecture skills? In this episode, we deep-dive into the world of diagrams and show you why they are essential for creating robust and scalable cloud architectures!

Starting with the basics, we explain why diagrams are so important and why you should be using them in your work. We'll discuss different approaches to creating diagrams mentioning the popular C4 method and some alternative approaches.

In the context of AWS we will share some insider tips about using AWS icon sets to enhance your architecture diagrams and make them look as professional as possible.

Next, we'll take you for a tour of the various tools you can use to create diagrams, from manual drag-n-drop tools like Visio, DrawIo, Excalidraw, and LucidCharts, to programmatic tools like Mermaid, Python diagrams library, and Kroki. We will also share some exciting insights into generating diagrams from infrastructure using tools like CfnDiagrams and the Terraform graph command.

Finally, we'll close this episode by showing you how to share your diagrams and collaborate effectively with others.

💰 SPONSORS 💰

AWS Bites is sponsored by fourTheorem, an AWS Consulting Partner offering training, cloud migration, and modern application architecture.

In this episode, we mentioned the following resources:

• Official AWS Icon set: https://aws.amazon.com/architecture/icons/
• CloudCraft: https://www.cloudcraft.co/
• ExcaliDraw: https://excalidraw.com/
• Diagrams.net: https://www.diagrams.net/
• LucidChart: https://www.lucidchart.com/
• Whiteboard: substitute tldraw: https://www.tldraw.com/
• Mermaid: https://mermaid.js.org/ 
• Python diagrams library: https://pypi.org/project/diagrams/
• Kroki URL-based diagram renderer: https://kroki.io/
• cfn-diagram by Lars Jacobssen: https://github.com/ljacobsson/cfn-diagram
• cdk-dia by Tom Roshko: https://github.com/pistazie/cdk-dia
• AWS Application Composer https://aws.amazon.com/application-composer/

You can listen to AWS Bites wherever you get your podcasts:

• Apple Podcasts: https://podcasts.apple.com/us/podcast/aws-bites/id1585489017
• Spotify: https://open.spotify.com/show/3Lh7PzqBFV6yt5WsTAmO5q
• Google: https://podcasts.google.com/feed/aHR0cHM6Ly9hbmNob3IuZm0vcy82YTMzMTJhMC9wb2RjYXN0L3Jzcw==
• Breaker: https://www.breaker.audio/aws-bites
• RSS:  https://anchor.fm/s/6a3312a0/podcast/rss

Do you know what horrors lurk in your AWS account? Aren't you afraid of the murky waters of an old and cluttered AWS account, which might be rife with security risks and other unexpected dark forces?

Fear no more!

In this episode, we share our best tips to discover every resource in your neglected AWS account and, whether you decide to clean things up, delete what's needed, or just put some order into the mess, we give you some practical suggestions on what kind of tools or services you could you to achieve your task. 

Throughout the episode, we reveal some of the secrets and hidden potential of AWS Config, Resource Explorer, Resource Groups, and CloudTrail.

Finally, We talk about third-party services and open-source projects such as Resmo, Steampipe, and CloudQuery, which can even span the realms of AWS and help you with other clouds and services.

💰 SPONSORS 💰

AWS Bites is sponsored by fourTheorem, an AWS Consulting Partner offering training, cloud migration, and modern application architecture.

In this episode, we mentioned the following resources:

• AWS Config: https://aws.amazon.com/config/
• AWS Resource Explorer: https://aws.amazon.com/resourceexplorer/
• AWS Resource Groups: https://docs.aws.amazon.com/ARG/latest/userguide/resource-groups.html
• AWS Tag Editor: https://docs.aws.amazon.com/tag-editor/latest/userguide/tagging.html
• CloudTrail: https://docs.aws.amazon.com/awscloudtrail/latest/userguide/cloudtrail-user-guide.html
• Resmo https://www.resmo.com/
• Steampipe: https://steampipe.io/
• CloudQuery: https://www.cloudquery.io/
• Our previous episode: "How do you move away from the management console?": https://awsbites.com/11-how-do-you-move-away-from-the-management-console/
• cloud-nuke: https://github.com/gruntwork-io/cloud-nuke
• aws-nuke: https://github.com/rebuy-de/aws-nuke
• terraformer: https://github.com/GoogleCloudPlatform/terraformer
• Former2: https://github.com/iann0036/former2

You can listen to AWS Bites wherever you get your podcasts:

• Apple Podcasts: https://podcasts.apple.com/us/podcast/aws-bites/id1585489017
• Spotify: https://open.spotify.com/show/3Lh7PzqBFV6yt5WsTAmO5q
• Google: https://podcasts.google.com/feed/aHR0cHM6Ly9hbmNob3IuZm0vcy82YTMzMTJhMC9wb2RjYXN0L3Jzcw==
• Breaker: https://www.breaker.audio/aws-bites
• RSS:  https://anchor.fm/s/6a3312a0/podcast/rss

If you've been using AWS for a while, you might have heard the term "well-architected". But what does it really mean? Don't worry if you're not quite sure, because we are here to help!

In this episode of AWS Bites, we will be diving into the world of well-architected and explaining what it means, both in general and in the specific context of AWS. We will be covering the well-architected framework, the different tools, and facets that come with it, and answering some practical questions like "should you care about building well-architected workloads?" and "how do you know if your workloads are well-architected?".

Whether you're a startup or a mature organization, learn why building well-architected systems is crucial for the long-term success of your business.

By the end of this episode, you'll have a solid understanding of the world of well-architected and why it's so important. Let's dive in!

💰 SPONSORS 💰

AWS Bites is sponsored by fourTheorem, an AWS Consulting Partner offering training, cloud migration, and modern application architecture.

In this episode, we mentioned the following resources:

• The well-architected framework
• The well-architected paper by AWS
• The well-architected tool
• Well-architected labs

You can listen to AWS Bites wherever you get your podcasts:

• Apple Podcasts: https://podcasts.apple.com/us/podcast/aws-bites/id1585489017
• Spotify: https://open.spotify.com/show/3Lh7PzqBFV6yt5WsTAmO5q
• Google: https://podcasts.google.com/feed/aHR0cHM6Ly9hbmNob3IuZm0vcy82YTMzMTJhMC9wb2RjYXN0L3Jzcw==
• Breaker: https://www.breaker.audio/aws-bites
• RSS:  https://anchor.fm/s/6a3312a0/podcast/rss

Do you have any AWS q

Are you tired of feeling overwhelmed by the vast AWS landscape? Do you find yourself constantly struggling to keep up with all the tasks at hand? Look no further! In this episode of AWS Bites podcast, Eoin and Luciano share their top six time-saving tools to help you reclaim your productivity and make the most of your AWS experience. These tools are designed to make your life easier and allow you to achieve more in less time.

But don't worry, this won't be a boring lecture. Get ready to have some fun as they reveal their top tricks and tips, from profiles and SSO to terminal gems and CLI magic. These tools will have you feeling like a kid in a candy store, soaring through your AWS work with ease. And if that wasn't enough, they've got a few extra special surprises in store to take your AWS skills to new heights.

So buckle up and get ready for a wild ride, it's time to have some fun with AWS!

💰 SPONSORS 💰

AWS Bites is sponsored by fourTheorem, an AWS Consulting Partner offering training, cloud migration, and modern application architecture.

In this episode, we mentioned the following resources:

• Our previous episode discussing SSO and OIDC identity providers: AWS Bites Episode 45
• CLI application to switch profiles and roles easily: Granted.dev
• AWS SSO CLI on GitHub
• Starship universal terminal prompt
• jq CLI helper
• ijq (interactive jq)
• AWS CLI --filter option: AWS CLI filter option documentation
• Dash documentation app for Mac
• GitHub Copilot
• IAM Policy Simulator
• AWS SDK for Pandas on GitHub
• AWS CloudShell
• SLIC Watch
• Our previous episode on SLIC Watch: AWS Bites Episode 34
• Middy Serverless Framework for Node.js
• Our previous episode on Middy: AWS Bites Episode 41

You can listen to AWS Bites wherever you get your podcasts:

• Apple Podcasts: https://podcasts.apple.com/us/podcast/aws-bites/id1585489017
• Spotify: https://open.spotify.com/show/3Lh7PzqBFV6yt5WsTAmO5q
• Google: https://podcasts.google.com/feed/aHR0cHM6Ly9hbmNob3IuZm0vcy82YTMzMTJhMC9wb2RjYXN0L3Jzcw==
• Breaker: https://www.breaker.audio/aws-bites
• RSS:  https://anchor.fm/s/6a3312a0/podcast/rss

Do you have any AWS q

Discover the Ultimate Battle: Serverless Framework vs AWS SAM!

Are you building and deploying serverless applications and don't know which tool to choose? Look no further, as we dive into a comparison of the two heavyweights in the serverless world - AWS SAM and Serverless Framework. Find out their unique features, ease of use, and what the future holds for these Infrastructure as Code (IaC) tools. By the end of this episode, you will know which one is right for you and your projects!

Join us as we explore the pros and cons of each tool, from the flexibility and ease of use of Serverless Framework to the cloud-side deployment management of SAM. Learn about the different syntax options, supported languages, and credentials management (especially SSO).

Get the inside scoop on the installation process and build and deployment capabilities, including the new "sam accelerate" feature for faster development. Discover the difference between handling multiple components and stacks and how each tool keeps up with new AWS features.

Don't miss out on this exciting episode as we determine the winner in the ultimate battle of Serverless Framework vs AWS SAM!

💰 SPONSORS 💰

AWS Bites is sponsored by fourTheorem, an AWS Consulting Partner offering training, cloud migration, and modern application architecture.

In this episode, we mentioned the following resources:

• Our previous episode discussing Cloudformation vs Terraform
• Our previous episode discussing the Serverless development experience
• Serverless framework SSO support issue on GitHub
• SAM connectors for permissions
• Our previous episode on AWS OIDC providers
• SLIC Watch plugin for easy serverless observability

You can listen to AWS Bites wherever you get your podcasts:

• Apple Podcasts: https://podcasts.apple.com/us/podcast/aws-bites/id1585489017
• Spotify: https://open.spotify.com/show/3Lh7PzqBFV6yt5WsTAmO5q
• Google: https://podcasts.google.com/feed/aHR0cHM6Ly9hbmNob3IuZm0vcy82YTMzMTJhMC9wb2RjYXN0L3Jzcw==
• Breaker: https://www.breaker.audio/aws-bites
• RSS:  https://anchor.fm/s/6a3312a0/podcast/rss

Do you have any AWS questions you would like us to address? Leave a comment here or connect with us on Twitter:

• https://twitter.com/eoins
• https://twitter.com/loige

#AWS #serverless #lambda

In this episode of the AWS Bites Podcast, we dive into the serverless pattern of using AWS Lambda together with SQS. We explain the basics of both Lambda and SQS for those who may not be familiar with them. We talk about how we use Lambda, a Function as a Service offering in AWS, to write our own functions and have AWS run them in response to certain events. And we also discuss SQS, a scalable and managed queuing system available on AWS, which we use to offload work to background workers.

We delve into how the two services work together through the use of "Event Source Mapping" in Lambda, which polls our SQS queue and makes synchronous Lambda invocation requests when messages are available. We also mention how this feature provides us with the ability to control batch size and window, as well as specify filters to save execution time and cost. But we also share one of the limitations we faced when using SQS and Lambda together which was the lack of control over concurrency and the potential for excessive throttling.

But recently, AWS has released a new feature called "SQS maximum concurrency support" which allows us to specify a maximum number of invocations for an Event Source Mapping. This solves the problem of excessive throttling and eliminates the need to use reserved concurrency. It also allows for more control over concurrency when using multiple Event Source Mappings with the same function. We explain how this new feature has improved our workflow and made it much more efficient.

💰 SPONSORS 💰

AWS Bites is sponsored by fourTheorem, an AWS Consulting Partner offering training, cloud migration, and modern application architecture.

In this episode, we mentioned the following resources:

• AWS Lambda
• Amazon SQS
• Series of blog posts by Zac Charles covering the original problem and the solution in detail
• Official AWS blog post with the announcement of the maximum concurrency feature
• Our previous episode on SQS
• Our video-series on AWS event services

You can listen to AWS Bites wherever you get your podcasts:

• Apple Podcasts: https://podcasts.apple.com/us/podcast/aws-bites/id1585489017
• Spotify: https://open.spotify.com/show/3Lh7PzqBFV6yt5WsTAmO5q
• Google: https://podcasts.google.com/feed/aHR0cHM6Ly9hbmNob3IuZm0vcy82YTMzMTJhMC9wb2RjYXN0L3Jzcw==
• Breaker: https://www.breaker.audio/aws-bites
• RSS:  https://anchor.fm/s/6a3312a0/podcast/rss

Do you have any AWS questions you would like us to address? Leave a comment here or connect with us on Twitter:

• https://twitter.com/eoins
• https://twitter.com/loige

#AWS #rust #lambda

Are you curious about using Rust to write AWS Lambda functions?

In this episode of AWS BItes, we will be discussing the pros and cons of using Rust for serverless applications. With Rust, you'll be able to take advantage of its fast performance and memory efficiency. Plus, its programming model makes it easy to write safe and correct code. However, Rust is not a native runtime for Lambda, but rather a library that implements a custom runtime built and maintained by AWS. This custom runtime is built on top of the Tokio async runtime and even has a built-in middleware engine, which allows for easy hook-in of reusable logic and building your own middleware.

But what if you're new to Rust? Don't worry, we'll also be walking you through the steps on how to write your first Lambda in Rust. From cargo-lambda to the serverless framework plugin for Rust, we'll be sharing different alternatives for building and deploying your Rust-based Lambda functions.

So join us on this journey as we explore the exciting world of Rust and Lambda.

💰 SPONSORS 💰

AWS Bites is sponsored by fourTheorem, an AWS Consulting Partner offering training, cloud migration, and modern application architecture.

In this episode, we mentioned the following resources:

• Rust 1.0 original announcement: https://blog.rust-lang.org/2015/05/15/Rust-1.0.html
• The Rust programming language home page: https://www.rust-lang.org/
• Firecracker runtime: https://firecracker-microvm.github.io
• Luciano's Twitch profile: https://twitch.tv/loige
• AWS Rust runtime library: https://github.com/awslabs/aws-lambda-rust-runtime
• Tokio, Rust async runtime: https://tokio.rs/
• Example of how to enable the tracing middleware in Lambda: https://github.com/awslabs/aws-lambda-rust-runtime/blob/99dba6447253ac87cf3cefeb2ba130b50514f9df/examples/http-tower-trace/src/main.rs#L4
• Rustup tool to install the Rust toolchain: https://rustup.rs/- Reference article on how to write a Lambda in Rust using cargo-rust: https://blog.scanner.dev/getting-started-with-serverless-rust-in-aws-lambda/
• Cargo-lambda, a cargo extension that helps with writing, running, testing, and deploying lambdas written in Rust: https://www.cargo-lambda.info
• Serverless framework plugin for Rust: https://www.serverless.com/plugins/serverless-rust
• Eoin's article on Container Image Support in AWS Lambda: https://dev.to/eoinsha/container-image-support-in-aws-lambda-deep-dive-2keh- AWS SDK for Rust: https://github.com/awslabs/aws-sdk-rust
• Coding challenges to learn rust: https://exercism.org/

You can listen to AWS Bites wherever you get your podcasts:

• Apple Podcasts: https://podcasts.apple.com/us/podcast/aws-bites/id1585489017
• Spotify: https://open.spotify.com/show/3Lh7PzqBFV6yt5WsTAmO5q
• Google: https://podcasts.google.com/feed/aHR0cHM6Ly9hbmNob3IuZm0vcy82YTMzMTJhMC9wb2RjYXN0L3Jzcw==
• Breaker: https://www.breaker.audio/aws-bites
• RSS:  https://anchor.fm/s/6a3312a0/podcast/rss

Do you have any AWS questions you would like us to address? Leave a comment here or connect with us on Twitter:

• https://twitter.com/eoins
• https://twitter.com/loige

#AWS #rust #lambda

We built a Step Function that allows us to generate high-quality transcripts for AWS Bites podcast!

After evaluating different approaches and technologies we ended up using Amazon transcribe and OpenAI whisper. They both have their pros and cons but combined together they gave us everything we were looking for with quite a good degree of accuracy!

In this episode, we describe our use case, our research, and how eventually we did go about productionizing our final solution.

If you run a podcast and you would like to do something similar, we have open source our solution. It's called PodWhisperer and you can find it on GitHub: https://github.com/fourTheorem/podwhisperer .

💰 SPONSORS 💰

AWS Bites is sponsored by fourTheorem, an AWS Consulting Partner offering training, cloud migration, and modern application architecture.

In this episode, we mentioned the following resources:

• PodWhisperer on GitHub: https://github.com/fourTheorem/podwhisperer/
• Amazon Transcribe: https://aws.amazon.com/transcribe
• OpenAI Whisper announcement blog post: https://openai.com/blog/whisper/

You can listen to AWS Bites wherever you get your podcasts:

• Apple Podcasts: https://podcasts.apple.com/us/podcast/aws-bites/id1585489017
• Spotify: https://open.spotify.com/show/3Lh7PzqBFV6yt5WsTAmO5q
• Google: https://podcasts.google.com/feed/aHR0cHM6Ly9hbmNob3IuZm0vcy82YTMzMTJhMC9wb2RjYXN0L3Jzcw==
• Breaker: https://www.breaker.audio/aws-bites
• RSS:  https://anchor.fm/s/6a3312a0/podcast/rss

Do you have any AWS questions you would like us to address? Leave a comment here or connect with us on Twitter:

• https://twitter.com/eoins
• https://twitter.com/loige

#AWS #speechtotext #openai

re:Invent 2022, the biggest AWS conference of the year is just over and there were tons of interesting announcements: many new features and some interesting new AWS products!

But we are not going to bother you with yet another walkthrough of all of them.

In this episode of AWS Bites podcast we just discuss our top 3 announcements and explained what we liked and what could have made them even better!  We will talk about EventBridge Pipes, Step Functions Distributed Map, and Application Composer.

What are your favorite announcements? Let us know on Twitter or in the comments!

💰 SPONSORS 💰

AWS Bites is sponsored by fourTheorem, an AWS Consulting Partner offering training, cloud migration, and modern application architecture.

In this episode, we mentioned the following resources:

• Previous Episode on EventBridge: https://awsbites.com/23-what-s-the-big-deal-with-eventbridge/
• Previous episode on cost: https://awsbites.com/61-how-do-i-control-aws-cost/
• EventBridge Pipes Official Announcement: https://aws.amazon.com/blogs/aws/new-create-point-to-point-integrations-between-event-producers-and-consumers-with-amazon-eventbridge-pipes
• Step Functions Distributed Map Official Announcement: https://aws.amazon.com/blogs/aws/step-functions-distributed-map-a-serverless-solution-for-large-scale-parallel-data-processing/
• Application Composer Official Announcement:  https://aws.amazon.com/blogs/compute/visualize-and-create-your-serverless-workloads-with-aws-application-composer/
• SNS Payload Message Filtering: https://aws.amazon.com/blogs/compute/visualize-and-create-your-serverless-workloads-with-aws-application-composer/
• Verified Access: https://aws.amazon.com/about-aws/whats-new/2022/11/aws-verified-access-preview/
• CloudWatch Cross-Account Observability: https://aws.amazon.com/blogs/aws/new-amazon-cloudwatch-cross-account-observability/
• Official AWS Blog post with Top AWS re:Invent 2022 announcements: https://aws.amazon.com/blogs/aws/top-announcements-of-aws-reinvent-2022/

You can listen to AWS Bites wherever you get your podcasts:

• Apple Podcasts: https://podcasts.apple.com/us/podcast/aws-bites/id1585489017
• Spotify: https://open.spotify.com/show/3Lh7PzqBFV6yt5WsTAmO5q
• Google: https://podcasts.google.com/feed/aHR0cHM6Ly9hbmNob3IuZm0vcy82YTMzMTJhMC9wb2RjYXN0L3Jzcw==
• Breaker: https://www.breaker.audio/aws-bites
• RSS:  https://anchor.fm/s/6a3312a0/podcast/rss

Do you have any AWS questions you would like us to address? Leave a comment here or connect with us on Twitter:

• https://twitter.com/eoins
• https://twitter.com/loige

#AWS #reinvent #announcements

Let's face it: when it comes to AWS, cost is one of the scariest topics! 

Why? Mostly because the underlying model can get very complex. 

There are too many variables and ultimately it's just hard to predict how much is a given workload going to cost you on AWS. Are going to be bankrupted by this unpredictable cost? Probably not!

In this episode, we share some suggestions and tools on how to approach cost when going to AWS. It's not a simple topic, but it's something you need to embrace, learn and get confident with. With a bit of effort, cost will not be so scary anymore and you'll be able to take advantage of all the awesome services and features of AWS without being so worried about cost!

💰 SPONSORS 💰

AWS Bites is sponsored by fourTheorem, an AWS Consulting Partner offering training, cloud migration, and modern application architecture.

In this episode, we mentioned the following resources:

• Amazon FREE Tier: https://aws.amazon.com/free/free-tier-faqs/
• AWS Activate Program: https://aws.amazon.com/activate/
• FourTheorem on MAP (Migration Acceleration Program): https://fourtheorem.com/solutions/migration-acceleration/
• What are the benefits of tags (past episode): https://awsbites.com/32-what-are-the-benefits-of-tags/
• AWS Horror stories (past episode): https://awsbites.com/8-what-are-your-aws-horror-stories/
• AWS Well Architected Framework cost optimisation pillar https://docs.aws.amazon.com/wellarchitected/latest/cost-optimization-pillar/welcome.htm
• Hands-on labs on cost calculation: https://www.wellarchitectedlabs.com/cost/
• AWS Pricing calculator: https://calculator.aws

You can listen to AWS Bites wherever you get your podcasts:

• Apple Podcasts: https://podcasts.apple.com/us/podcast/aws-bites/id1585489017
• Spotify: https://open.spotify.com/show/3Lh7PzqBFV6yt5WsTAmO5q
• Google: https://podcasts.google.com/feed/aHR0cHM6Ly9hbmNob3IuZm0vcy82YTMzMTJhMC9wb2RjYXN0L3Jzcw==
• Breaker: https://www.breaker.audio/aws-bites
• RSS:  https://anchor.fm/s/6a3312a0/podcast/rss

Do you have any AWS questions you would like us to address? Leave a comment here or connect with us on Twitter: - https://twitter.com/eoins - https://twitter.com/loige

#AWS #cost #expense

AWS Lambda is one of the most famous AWS services these days. If you are just starting with your cloud journey you might be confused about what Lambda actually is, what are the limitations, and when you should be using it or not.

In this episode, we provide a beginner-friendly introduction to Lambda and summarise everything there’s to know about it: when to use it and when not, differences with containers, the pricing model, limitations, and integrations.

By the end of this episode, we will also chime in with some of our opinions and share whether we believe that Lambda is the future of cloud computing or not! 

💰 SPONSORS 💰

AWS Bites is sponsored by fourTheorem (https://fourtheorem.com/). fourTheorem is an AWS Consulting Partner offering training, cloud migration, and modern application architecture.

In this episode, we mentioned the following resources:

• The original announcement of AWS Lambda from 2014: https://aws.amazon.com/about-aws/whats-new/2014/11/13/introducing-aws-lambda/
• Using Lambda for High-Performance Computing (AWS Blog Post): https://aws.amazon.com/blogs/hpc/a-serverless-architecture-for-high-performance-financial-modelling/
• Lambda vs Fargate vs EC2 pricing (article by Eoin Shanaghy): https://fourtheorem.com/why-aws-lambda-pricing-has-to-change-for-the-enterprise/
• Our previous episode of what serverless v2 will look like: https://awsbites.com/59-what-will-serverless-2-0-look-like/
• AWS Lambda tiered pricing announcement by AWS: https://aws.amazon.com/blogs/compute/introducing-tiered-pricing-for-aws-lambda/
• Understanding AWS Lambda Scaling and Throughput (Video by Marcia Villalba & Julian Wood): https://www.youtube.com/watch?v=wenqZqNOVZw
• Keet by Holepunch (P2P messaging app): https://keet.io/
• SocketSupply (a company building a P2P platform): https://socketsupply.co/

You can listen to AWS Bites wherever you get your podcasts:

• Apple Podcasts: https://podcasts.apple.com/us/podcast/aws-bites/id1585489017
• Spotify: https://open.spotify.com/show/3Lh7PzqBFV6yt5WsTAmO5q
• Google: https://podcasts.google.com/feed/aHR0cHM6Ly9hbmNob3IuZm0vcy82YTMzMTJhMC9wb2RjYXN0L3Jzcw==
• Breaker: https://www.breaker.audio/aws-bites
• RSS:  https://anchor.fm/s/6a3312a0/podcast/rss

Do you have any AWS questions you would like us to address? Leave a comment here or connect with us on Twitter: - https://twitter.com/eoins - https://twitter.com/loige

#AWS #serverless #lambda

The definition of serverless has already changed in the few years since it first emerged. There have been many success stories using serverless - in startups and the enterprise. But what comes next?

In this episode, we will clarify our definition of Serverless, what are the main challenges with it today, and speculate on what we believe will come next! By the end of this episode, you’ll have heard our thoughts and predictions on what Serverless 2.0 will look like. We will also reveal who we think will be the main challenger to AWS for domination of serverless as it goes mainstream! 

AWS Bites is sponsored by fourTheorem. fourTheorem is an AWS Consulting Partner offering training, cloud migration, and modern application architecture.

In this episode, we mentioned the following resources:

• The SLIC Watch project for automated observability best practices
• Vercel
• Serverless cloud
• SST (Serverless Stack)
• Darklang
• FaunaDB
• Cloud Firestore
• Cockroach DB serverless
• Digital Ocean
• Our series of live coding streams where we build a serverless WeTransfer clone on AWS from scratch

You can listen to AWS Bites wherever you get your podcasts:

• Apple Podcasts: https://podcasts.apple.com/us/podcast/aws-bites/id1585489017
• Spotify: https://open.spotify.com/show/3Lh7PzqBFV6yt5WsTAmO5q
• Google: https://podcasts.google.com/feed/aHR0cHM6Ly9hbmNob3IuZm0vcy82YTMzMTJhMC9wb2RjYXN0L3Jzcw==
• Breaker: https://www.breaker.audio/aws-bites
• RSS:  https://anchor.fm/s/6a3312a0/podcast/rss

Do you have any AWS questions you would like us to address?
Leave a comment here or connect with us on Twitter:
- https://twitter.com/eoins
- https://twitter.com/loige

#AWS #serverless #future

Building actual projects is a great way to consolidate our understanding of AWS. In this episode, we present 4 different project ideas to explore services and concepts in the space of web application development, machine learning, and data science.

Ok, you are probably wondering where kitties come into the equation here. Every one of these 4 project ideas involves kitties! 🐱

We can learn stuff and have some fun too!

In this episode, we mentioned the following resources:

- Our sponsor, fourTheorem: https://fourtheorem.com/

- The Cat Detector workshop  https://github.com/fourTheorem/workshops/tree/master/cat-detector

- AI as a Service (book): https://www.manning.com/books/ai-as-a-service

- Kaggle dataset cat vs dog: https://www.kaggle.com/datasets/shaunthesheep/microsoft-catsvsdogs-dataset

- The best website in the world: https://http.cat

- The true meaning of the 418 HTTP status code: https://http.cat/418

- The cat breeds dataset on Kaggle: https://www.kaggle.com/datasets/ma7555/cat-breeds-dataset

- Our series of live coding streams where we build a serverless WeTransfer clone on AWS from scratch: https://www.youtube.com/playlist?list=PLAWXFhe0N1vI1_z-06EzJ22pz95_gBrId

You can listen to AWS Bites wherever you get your podcasts:

- Apple Podcasts: https://podcasts.apple.com/us/podcast/aws-bites/id1585489017

- Spotify: https://open.spotify.com/show/3Lh7PzqBFV6yt5WsTAmO5q

- Google: https://podcasts.google.com/feed/aHR0cHM6Ly9hbmNob3IuZm0vcy82YTMzMTJhMC9wb2RjYXN0L3Jzcw==

- Breaker: https://www.breaker.audio/aws-bites

- RSS: ​​https://anchor.fm/s/6a3312a0/podcast/rss

Do you have any AWS questions you would like us to address?

Leave a comment here or connect with us on Twitter:
- https://twitter.com/eoins
- https://twitter.com/loige

#AWS #projects #learn

If you looked into Amazon Cognito, chances are that you have been confused by User Pools and Identity Pools (now renamed to Federated Identities). Well, Cognito is not one of the simplest AWS services to get started with but it is indeed very powerful and it can be very convenient to use when you are dealing with authentication and authorization.

In this Episode of the AWS Bites Podcast, we try to clarify what is the difference between User Pools and Identity Pools. When to use one or the other and even when to use them together. Throughout the episode, we will cover several practical examples and use cases.

In this episode, we didn’t really mention any resources, but if you want to deep dive into this topic here are some useful links:

• Our series of live streams where we also use Cognito User Pools for authentication: https://www.youtube.com/watch?v=EfRElTYilyY&list=PLAWXFhe0N1vI1_z-06EzJ22pz95_gBrId
• Our previous episode about S3 Pre-signed URLs (an alternative way to give controlled access to files on S3): https://www.youtube.com/watch?v=NDEWH0VTudg
• Amazon Cognito, official documentation: https://docs.aws.amazon.com/cognito/index.html

You can listen to AWS Bites wherever you get your podcasts:

- Apple Podcasts: https://podcasts.apple.com/us/podcast/aws-bites/id1585489017

- Spotify: https://open.spotify.com/show/3Lh7PzqBFV6yt5WsTAmO5q

- Google: https://podcasts.google.com/feed/aHR0cHM6Ly9hbmNob3IuZm0vcy82YTMzMTJhMC9wb2RjYXN0L3Jzcw==

- Breaker: https://www.breaker.audio/aws-bites

- RSS:  https://anchor.fm/s/6a3312a0/podcast/rss

Do you have any AWS questions you would like us to address? Leave a comment here or connect with us on Twitter: - https://twitter.com/eoins - https://twitter.com/loige

Uploading and downloading files are some of the most common operations for web applications. But let’s face it, as common as they are, they are still challenging features to implement in a reliable and scalable way!  This is especially true for serverless environments where you have strict limits in payload size and you cannot have long-running connections.  So what’s the solution? If you are using S3, pre-signed URLs can help quite a bit!   In this episode of AWS Bites podcast, we are going to learn more about them, and… if you stick until the very end of this episode, we are going to disclose an interesting and quite unknown tip about pre-signed URLs!

In this episode, we mentioned the following resources:

- Documentation for the pre-signed POST: https://docs.aws.amazon.com/AmazonS3/latest/API/RESTObjectPOST.html
- How to upload files from a frontend app using pre-signed URLs (by Borislav Hadzhiev): https://bobbyhadz.com/blog/aws-s3-presigned-url-react
- Using pre-signed URLs for multi-part uploads: https://www.altostra.com/blog/multipart-uploads-with-s3-presigned-url
- Different architectures and tips for managing uploads to S3 (by Zach Charles): https://zaccharles.medium.com/s3-uploads-proxies-vs-presigned-urls-vs-presigned-posts-9661e2b37932
- Using S3 Object Lambdas to generate and transform S3 files on the fly (By Eoin Shanaghy): https://eoins.medium.com/using-s3-object-lambdas-to-generate-and-transform-on-the-fly-874b0f27fb84

You can listen to AWS Bites wherever you get your podcasts:

- Apple Podcasts: https://podcasts.apple.com/us/podcast/aws-bites/id1585489017

- Spotify: https://open.spotify.com/show/3Lh7PzqBFV6yt5WsTAmO5q

- Google: https://podcasts.google.com/feed/aHR0cHM6Ly9hbmNob3IuZm0vcy82YTMzMTJhMC9wb2RjYXN0L3Jzcw==

- Breaker: https://www.breaker.audio/aws-bites

- RSS:  https://anchor.fm/s/6a3312a0/podcast/rss

Do you have any AWS questions you would like us to address? Leave a comment here or connect with us on Twitter: - https://twitter.com/eoins - https://twitter.com/loige

Sometimes people talk about an MVP and then say "yeah but we deploy manually" or "we don't have tests yet". Is that really an MVP or is it something else? And what it takes to build a successful MVP when using AWS? In this episode, we discuss the differences between a prototype, a proof of concept, and an MVP. Then we debate about what's the minimum amount of work you need to put in place to have an MVP on AWS. We debate on whether our weshare.click is an MVP or just a prototype and why. Finally, we provide a list of previous episodes that can help to acquire the foundational AWS knowledge that is needed to be able to build an MVP successfully.

In this episode, we mentioned the following resources:

- The book  "The lean startup" by Eric Ries: http://theleanstartup.com/book
- The weshare.click repository: https://github.com/awsbites/weshare.click
- The YouTube playlist of all our weshare.click live streams: https://www.youtube.com/watch?v=EfRElTYilyY&list=PLAWXFhe0N1vI1_z-06EzJ22pz95_gBrId
- The YouTube playlist of AWS foundational knowledge videos: https://www.youtube.com/watch?v=M6KAb1RQh9E&list=PLAWXFhe0N1vIGgrMh8gyU4q4KPGaIqpIA&index=1

You can listen to AWS Bites wherever you get your podcasts:

- Apple Podcasts: https://podcasts.apple.com/us/podcast/aws-bites/id1585489017

- Spotify: https://open.spotify.com/show/3Lh7PzqBFV6yt5WsTAmO5q

- Google: https://podcasts.google.com/feed/aHR0cHM6Ly9hbmNob3IuZm0vcy82YTMzMTJhMC9wb2RjYXN0L3Jzcw==

- Breaker: https://www.breaker.audio/aws-bites

- RSS:  https://anchor.fm/s/6a3312a0/podcast/rss

Do you have any AWS questions you would like us to address?
Leave a comment here or connect with us on Twitter: - https://twitter.com/eoins - https://twitter.com/loige

AWS Step Functions are all the rage right now! The visual editor is getting better and better and there are always new capabilities like the recently introduced intrinsic functions. In this episode we will try to answer the question “are Step Functions a Low-Code tool”? In the process, we will give our own definition of what Low-Code means, and we will describe the main characteristics of Step Functions and try to assess whether they match our definition or not. We will also discuss several practical use cases that can be addressed with Low-Code and Step Functions.

In this episode, we mentioned the following resources:

- Our previous episode dedicated to Step Functions and what can you do with them: https://awsbites.com/7-when-do-you-use-step-functions/

- FullStack Bulletin Newsletter - https://fullstackbulletin.com/

- Implementing the Saga pattern with Step Functions: https://theburningmonk.com/2017/07/applying-the-saga-pattern-with-aws-lambda-and-step-functions/

You can listen to AWS Bites wherever you get your podcasts:

- Apple Podcasts: https://podcasts.apple.com/us/podcast/aws-bites/id1585489017

- Spotify: https://open.spotify.com/show/3Lh7PzqBFV6yt5WsTAmO5q

- Google: https://podcasts.google.com/feed/aHR0cHM6Ly9hbmNob3IuZm0vcy82YTMzMTJhMC9wb2RjYXN0L3Jzcw==

- Breaker: https://www.breaker.audio/aws-bites

- RSS:

https://anchor.fm/s/6a3312a0/podcast/rss

Do you have any AWS questions you would like us to address?

Leave a comment here or connect with us on Twitter:
- https://twitter.com/eoins
- https://twitter.com/loige

This is a special episode recorded live during a live coding session on YouTube (2022-09-28). The audio-only experience might not be the best one, so if you are curious to see the video and enjoy our diagrams and screen sharing, please check this episode on YouTube: https://youtu.be/b-FoqIcOcPw.

How can you build a WeTransfer or a Dropbox Transfer clone on AWS?  This is our sixth (and last!) live coding stream. In this episode, we completed the authentication layer for our file transfer application. Specifically, we completed the OAuth 2 device flow on top of AWS Cognito and updated the weshare CLI application to support this new authentication flow. We also added an authorization layer in front of our file upload API.

All our code is available in this repository: https://github.com/awsbites/weshare.click

In this episode we mentioned the following resources:

• GitHub PR with the final OAuth 2.0 device flow step: https://github.com/awsbites/weshare.click/pull/2
• jwtinfo CLI tool: https://github.com/lmammino/jwtinfo
• enquirer package: https://npm.im/enquirer
• undici HTTP client package: https://npm.im/undici
• open package to open the browser at a specific URL: https://npm.im/open
• ora: animated spinner package: https://npm.im/ora
• conf package for persisting user settings: https://npm.im/conf

You can listen to AWS Bites wherever you get your podcasts:

- Apple Podcasts: https://podcasts.apple.com/us/podcast/aws-bites/id1585489017

- Spotify: https://open.spotify.com/show/3Lh7PzqBFV6yt5WsTAmO5q

- Google: https://podcasts.google.com/feed/aHR0cHM6Ly9hbmNob3IuZm0vcy82YTMzMTJhMC9wb2RjYXN0L3Jzcw==

- Breaker: https://www.breaker.audio/aws-bites

- RSS:  https://anchor.fm/s/6a3312a0/podcast/rss

Do you have any AWS questions you would like us to address?

Leave a comment here or connect with us on Twitter: - https://twitter.com/eoins - https://twitter.com/loige

#AWS #livecoding #transfer

This is a special episode recorded live during a live coding session on YouTube (2022-09-21). The audio-only experience might not be the best one, so if you are curious to see the video and enjoy our diagrams and screen sharing, please check this episode on YouTube: https://www.youtube.com/watch?v=0TzfkbisMEA.

How can you build a WeTransfer or a Dropbox Transfer clone on AWS?  This is our fifth live coding stream. In this episode, we continued adding some security to our application. Specifically, we implemented 75% of the OAuth 2 device flow on top of AWS Cognito to allow our file upload CLI application to get some credentials. In order to implement this flow, we need to store some secrets. We decided to use DynamoDB and spent a lot of time discussing our data design and how and why we used the famous and controversial DynamoDB single table design principle.

All our code is available in this repository: https://github.com/awsbites/weshare.click

In this episode we mentioned the following resources:

• OAuth 2 Device Auth flow RFC8628: https://www.rfc-editor.org/rfc/rfc8628
• The DynamoDB book by Alex DeBrie: https://www.dynamodbbook.com/
• LevelDB: https://github.com/google/leveldb
• OAuth 2 Authorization framework RFC6749: https://www.rfc-editor.org/rfc/rfc6749

You can listen to AWS Bites wherever you get your podcasts:

- Apple Podcasts: https://podcasts.apple.com/us/podcast/aws-bites/id1585489017

- Spotify: https://open.spotify.com/show/3Lh7PzqBFV6yt5WsTAmO5q

- Google: https://podcasts.google.com/feed/aHR0cHM6Ly9hbmNob3IuZm0vcy82YTMzMTJhMC9wb2RjYXN0L3Jzcw==

- Breaker: https://www.breaker.audio/aws-bites

- RSS:  https://anchor.fm/s/6a3312a0/podcast/rss

Do you have any AWS questions you would like us to address?

Leave a comment here or connect with us on Twitter: - https://twitter.com/eoins - https://twitter.com/loige

#AWS #livecoding #transfer

This is a special episode recorded live during a live coding session on YouTube (2022-09-16). The audio-only experience might not be the best one, so if you are curious to see the video and enjoy our diagrams and screen sharing, please check this episode on YouTube: https://www.youtube.com/watch?v=vVic3oqqqfY.

How can you build a WeTransfer or a Dropbox Transfer clone on AWS?  This is our fourth live coding stream. In this episode, we started looking into adding some security to our application. Specifically, we started implementing a device auth flow on top of AWS Cognito to allow our file upload CLI application to get some credentials. 

All our code is available in this repository: https://github.com/awsbites/weshare.click

In this episode we mentioned the following resources:

• Content-Disposition Header on MDN: https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Content-Disposition
• OAuth 2 Device Auth flow RFC8628: https://www.rfc-editor.org/rfc/rfc8628 
• XKCD Comic about password security: https://xkcd.com/936/
• crypto-random-string package: https://www.npmjs.com/package/crypto-random-string
• Dash offline documentation app: https://kapeli.com/dash

You can listen to AWS Bites wherever you get your podcasts:

- Apple Podcasts: https://podcasts.apple.com/us/podcast/aws-bites/id1585489017

- Spotify: https://open.spotify.com/show/3Lh7PzqBFV6yt5WsTAmO5q

- Google: https://podcasts.google.com/feed/aHR0cHM6Ly9hbmNob3IuZm0vcy82YTMzMTJhMC9wb2RjYXN0L3Jzcw==

- Breaker: https://www.breaker.audio/aws-bites

- RSS:  https://anchor.fm/s/6a3312a0/podcast/rss

Do you have any AWS questions you would like us to address?

Leave a comment here or connect with us on Twitter: - https://twitter.com/eoins - https://twitter.com/loige

#AWS #livecoding #transfer

This is a special episode recorded live during a live coding session on YouTube (2022-08-31). The audio-only experience might not be the best one, so if you are curious to see the video and enjoy our diagrams and screen sharing, please check this episode on YouTube: https://www.youtube.com/watch?v=hlW_RwRgskI

How can you build a WeTransfer or a Dropbox Transfer clone on AWS?  This is our third live coding stream. In this episode, we made our lambdas better by adding observability best practices (structured logs, metrics and tracing) through Lambda Power Tools for TypeScript and Middy. We also created a simple Node.js CLI to easily upload files from the command line.

All our code is available in this repository: https://github.com/awsbites/weshare.click

Some of the resources we mentioned:

• Lambda power tools for TypeScript: https://awslabs.github.io/aws-lambda-powertools-typescript/latest/
• Middy: Node.js middleware framework for AWS Lambda: https://middy.js.org/
• Getting to Well Architected Faster with AWS Lambda Powertools (article): https://www.fourtheorem.com/blog/aws-lambda-powertools

You can listen to AWS Bites wherever you get your podcasts:

- Apple Podcasts: https://podcasts.apple.com/us/podcast/aws-bites/id1585489017

- Spotify: https://open.spotify.com/show/3Lh7PzqBFV6yt5WsTAmO5q

- Google: https://podcasts.google.com/feed/aHR0cHM6Ly9hbmNob3IuZm0vcy82YTMzMTJhMC9wb2RjYXN0L3Jzcw==

- Breaker: https://www.breaker.audio/aws-bites

- RSS:  https://anchor.fm/s/6a3312a0/podcast/rss

Do you have any AWS questions you would like us to address?

Leave a comment here or connect with us on Twitter: - https://twitter.com/eoins - https://twitter.com/loige

#AWS #livecoding #transfer

This is a special episode recorded live during a live coding session on YouTube (2022-08-24). The audio-only experience might not be the best one, so if you are curious to see the video and enjoy our diagrams and screen sharing, please check this episode on YouTube: https://youtu.be/4wCX32YUtMk

How can you build a WeTransfer or a Dropbox Transfer clone on AWS?  This is our second live coding stream. In this episode, we revisited our architecture and added a custom domain to our APIs, and created a new API endpoint that allows us to have download URLs that are much nicer (shorter and branded).   

We also added support for the Content-Disposition header to make sure that uploads can specify a file name and that downloads will retain the same file name (regardless of the file key in S3).

All our code is available in this repository: https://github.com/awsbites/weshare.click

You can listen to AWS Bites wherever you get your podcasts:

- Apple Podcasts: https://podcasts.apple.com/us/podcast/aws-bites/id1585489017

- Spotify: https://open.spotify.com/show/3Lh7PzqBFV6yt5WsTAmO5q

- Google: https://podcasts.google.com/feed/aHR0cHM6Ly9hbmNob3IuZm0vcy82YTMzMTJhMC9wb2RjYXN0L3Jzcw==

- Breaker: https://www.breaker.audio/aws-bites

- RSS:  https://anchor.fm/s/6a3312a0/podcast/rss

Do you have any AWS questions you would like us to address?

Leave a comment here or connect with us on Twitter: - https://twitter.com/eoins - https://twitter.com/loige

#AWS #livecoding #transfer

This is a special episode recorded live during a live coding session on YouTube (2022-08-17). The audio-only experience might not be the best one, so if you are curious to see the video and enjoy our diagrams and screen sharing, please check this episode on YouTube: https://www.youtube.com/watch?v=EfRElTYilyY

How can you build a WeTransfer or a Dropbox Transfer clone on AWS?  This is our first live coding stream. In this episode, we started a new challenge: building a product live on AWS!  In this first issue, we managed to implement a very simple MVP using S3, API Gateway, and Lambda.  All our code is available in this repository: https://github.com/awsbites/weshare.click

You can listen to AWS Bites wherever you get your podcasts:

- Apple Podcasts: https://podcasts.apple.com/us/podcast/aws-bites/id1585489017

- Spotify: https://open.spotify.com/show/3Lh7PzqBFV6yt5WsTAmO5q

- Google: https://podcasts.google.com/feed/aHR0cHM6Ly9hbmNob3IuZm0vcy82YTMzMTJhMC9wb2RjYXN0L3Jzcw==

- Breaker: https://www.breaker.audio/aws-bites

- RSS:  https://anchor.fm/s/6a3312a0/podcast/rss

Do you have any AWS questions you would like us to address?

Leave a comment here or connect with us on Twitter: - https://twitter.com/eoins - https://twitter.com/loige

#AWS #livecoding #transfer

In this special episode we announce our next initiative: starting some YouTube coding live streams where we build something on AWS. Specifically we are going to build a file transfer service, just like WeTransfer or Dropbox Transfer! In this episode we announce why we decided to start this, the logistic and some of the details of the product we are going to build.

We are really looking forward to pairing with you all live on this build! Make sure you are subscribed to our YouTube channel so you are notified when we go live on Wednesday 17 August!

In this episode, we mentioned the following resources:

- The YouTube channel that we are going to use to live stream: https://www.youtube.com/AWSBites

You can listen to AWS Bites wherever you get your podcasts:

- Apple Podcasts: https://podcasts.apple.com/us/podcast/aws-bites/id1585489017

- Spotify: https://open.spotify.com/show/3Lh7PzqBFV6yt5WsTAmO5q

- Google: https://podcasts.google.com/feed/aHR0cHM6Ly9hbmNob3IuZm0vcy82YTMzMTJhMC9wb2RjYXN0L3Jzcw==

- Breaker: https://www.breaker.audio/aws-bites

- RSS:

https://anchor.fm/s/6a3312a0/podcast/rss

Do you have any AWS questions you would like us to address?

Leave a comment here or connect with us on Twitter:
- https://twitter.com/eoins
- https://twitter.com/loige

#AWS #livecoding #transfer

The public cloud gives you amazing machine learning powers with a low barrier to entry. Once you know where to begin, you can quickly build solutions to process images, video, text and audio, as well as structured data. In this episode we talk about the managed AI services that are available on AWS and that require zero machine learning expertise (Rekognition, Polly, Transcribe, Forecast, Personalise, Comprehend, Lex, Textract, Translate). We will also talk about services you can use to create and run your own custom models (SageMaker). We will finally cover some different use cases and some of the things you need to consider before you do machine learning in production.

In this episode, we mentioned the following resources:

- AI as a Service book https://www.manning.com/books/ai-as-a-service

- Julien Simon’s YouTube channel: https://www.youtube.com/c/juliensimonfr

- Article by MIT researchers “Amazon’s Rekognition shows gender and ethnic bias”: https://venturebeat.com/2019/01/24/amazon-rekognition-bias-mit/

- Article “One year moratorium on police use of Rekognition”: https://www.aboutamazon.com/news/policy-news-views/we-are-implementing-a-one-year-moratorium-on-police-use-of-rekognition

This episode is also available on YouTube: https://www.youtube.com/AWSBites

You can listen to AWS Bites wherever you get your podcasts:

- Apple Podcasts: https://podcasts.apple.com/us/podcast/aws-bites/id1585489017

- Spotify: https://open.spotify.com/show/3Lh7PzqBFV6yt5WsTAmO5q

- Google: https://podcasts.google.com/feed/aHR0cHM6Ly9hbmNob3IuZm0vcy82YTMzMTJhMC9wb2RjYXN0L3Jzcw==

- Breaker: https://www.breaker.audio/aws-bites

- RSS: ​​https://anchor.fm/s/6a3312a0/podcast/rss

Do you have any AWS questions you would like us to address?

Leave a comment here or connect with us on Twitter:
- https://twitter.com/eoins
- https://twitter.com/loige

If you are thinking of using an external CICD tool to deploy to AWS you are probably wondering how to securely connect your pipelines to your AWS account.

You could create a user for your CICD tool of choice and copy some hard coded credentials into it, but, let’s face it: this doesn’t feel like the right - or at least the most secure - approach!

In the previous episode we discussed how AWS and GitHub solved this problem by using OIDC identity providers and this seems to be a good solution to the problem.

In this episode of AWS Bites we will try to demystify the secrets of OIDC identity providers and explain how they work and what’s the trust model between AWS and an OIDC provider like GitHub actions. We will also explain all the steps required to integrate AWS with GitHub, how JWT works in this particular scenario and other use cases where you could use OIDC providers.

In this episode, we mentioned the following resources:

- GitHub docs explaining how to integrate with AWS as an OIDC provider: https://docs.github.com/en/actions/deployment/security-hardening-your-deployments/about-security-hardening-with-openid-connect

- Article “What’s in a JWT” https://loige.co/whats-in-a-jwt

- jwtinfo, CLI tool to inspect JWT: https://github.com/lmammino/jwtinfo

- AWS action to assume a role from a GitHub Pipeline: https://github.com/aws-actions/configure-aws-credentials#assuming-a-role

- Great post by Elias Brange detailing how to setup GitHub OIDC integration for AWS: https://www.eliasbrange.dev/posts/secure-aws-deploys-from-github-actions-with-oidc/

- Previous episode on why you should consider GitHub Actions rather than AWS CodePipeline: https://awsbites.com/44-do-you-use-codepipeline-or-github-actions/

This episode is also available on YouTube: https://www.youtube.com/AWSBites

You can listen to AWS Bites wherever you get your podcasts. See https://awsbites.com for all the links.

Do you have any AWS questions you would like us to address?

Connect with us on Twitter:
- https://twitter.com/eoins
- https://twitter.com/loige

Automated, Continuous Build and Continuous Delivery are must-haves when building modern applications on AWS. To achieve this, you have numerous options, including third party providers like GitHub Actions and Circle CI, and the AWS services, CodePipeline and CodeBuild. In this episode we focus on GitHub Actions and we compare it with the native AWS features offered by services like CodePipeline and Code Build. In particular we discuss what CodePipeline offers and how to set it up, what the tradeoffs are and when to choose one over the other. We also discuss when you should look outside AWS to a third-party provider and highlight when GitHub Actions can be a great fit for your AWS CI/CD needs!

In this episode, we mentioned the following resources:

- Example pipeline for a serverless mono repo using CDK is available in SLIC Starter: https://github.com/fourTheorem/slic-starter/tree/main/packages/cicd

- 50+ official actions provided by GitHub themselves: https://github.com/actions

- How to configure OIDC integrations with AWS and other services like GitHub: https://docs.github.com/en/actions/deployment/security-hardening-your-deployments/configuring-openid-connect-in-amazon-web-services

- GitHub Actions billing details: https://docs.github.com/en/billing/managing-billing-for-github-actions/about-billing-for-github-actions

- Workshop illustrating how to create CodeBuild and CodePipeline resources using CDK: https://cdkworkshop.com/20-typescript/70-advanced-topics/200-pipelines/3000-new-pipeline.html

- Paul Swail’s article “Why I switched from AWS CodePipeline to GitHub Actions”: https://serverlessfirst.com/switch-codepipeline-to-github-actions/

- A tutorial article by AWS showing how to authenticate and use GitHub actions to build & deploy a web app to an EC2 instance https://aws.amazon.com/blogs/devops/integrating-with-github-actions-ci-cd-pipeline-to-deploy-a-web-app-to-amazon-ec2/

- Other examples of when it is OK to ditch AWS services for third party (previous podcast episode): https://awsbites.com/43-when-is-it-ok-to-cheat-on-aws/

This episode is also available on YouTube: https://www.youtube.com/AWSBites

You can listen to AWS Bites wherever you get your podcasts. See https://awsbites.com

Leave a comment here or connect with us on Twitter:

- https://twitter.com/eoins
- https://twitter.com/loige

We do love AWS, but sometimes we have to admit that it’s not always a silver bullet. There are definitely use cases where it might be worth considering alternatives to AWS.

In this episode we will discuss some of these use cases and try to highlight what are the advantages that other platforms or services can have over AWS in very specific circumstances. First of all we clarify why we like AWS and why (and when) it’s worth sticking with it. Then, we discuss what are some of the reasons why it might be worth considering alternatives to AWS. At this point we go into the specifics and talk about authentication services (Auth0), search services (ElasticSearch, Algolia), CDN Services (GitHub Pages, Netlify, Vercel, CloudFlare, Fastly, Akamai), Databases (MongoDB Atlas, Digital Ocean managed databases, IBM Compose, CloudFlare D1, Upstash, Confluent Kafka), Headless CMS services (ContentFul, Storyful, AirTable, Google Spreadsheet), Virtual Machine services (Digital Ocean, Linode).

In this episode, we mentioned the following resources:

- Episode 3. "​​How do you deploy a static website on AWS?”: https://awsbites.com/3-how-do-you-deploy-a-static-website-on-aws/

- Auth0: https://auth0.com/

- Amazon OpenSearch: https://aws.amazon.com/opensearch-service/the-elk-stack/what-is-opensearch/

- Elastic Cloud: https://www.elastic.co/cloud/

- Algolia: https://www.algolia.com/

- Vercel: https://vercel.com/

- Netlify: https://www.netlify.com/

- MongoDB Atlas: https://www.mongodb.com/atlas/database

- Digital Ocean managed database: https://try.digitalocean.com/managed-databases/

- Compose (now IBM Cloud Databases): https://www.compose.com/

- Upstash: https://upstash.com/

- Confluent: https://www.confluent.io/

- AirTable: https://airtable.com/

- Linode: https://www.linode.com/

This episode is also available on YouTube: https://www.youtube.com/AWSBites

You can listen to AWS Bites wherever you get your podcasts:

- Apple Podcasts: https://podcasts.apple.com/us/podcast/aws-bites/id1585489017

- Spotify: https://open.spotify.com/show/3Lh7PzqBFV6yt5WsTAmO5q

- Google: https://podcasts.google.com/feed/aHR0cHM6Ly9hbmNob3IuZm0vcy82YTMzMTJhMC9wb2RjYXN0L3Jzcw==

- Breaker: https://www.breaker.audio/aws-bites

- RSS: ​​https://anchor.fm/s/6a3312a0/podcast/rss

Do you have any AWS questions you would like us to address?
Connect with us on Twitter:
- https://twitter.com/eoins
- https://twitter.com/loige

We recently talked about migrating a monolithic application to AWS, using EC2, load balancers, S3 and RDS. In this episode we want to talk about a slightly different setup, where we are going for containers instead of EC2 and we want to deploy them in Fargate. In this We are going to cover all the components you will need in your architecture, the reasons to choose Fargate over any alternatives and discuss some CDK tricks to get started in a quick way (and the pitfalls that might come with them).

In this episode, we mentioned the following resources:

- CDK ECS Patterns: https://docs.aws.amazon.com/cdk/api/v2/docs/aws-cdk-lib.aws_ecs_patterns-readme.html

- How to fine tune the health checks to speed up the deployment process: https://www.qovery.com/blog/how-to-speed-up-amazon-ecs-container-deployments

- Previous Episode “37. How do you migrate a monolith to AWS without the drama?”: https://awsbites.com/37-how-do-you-migrate-a-monolith-to-aws-without-the-drama/

This episode is also available on YouTube: https://www.youtube.com/AWSBites

You can listen to AWS Bites wherever you get your podcasts:

- Apple Podcasts: https://podcasts.apple.com/us/podcast/aws-bites/id1585489017

- Spotify: https://open.spotify.com/show/3Lh7PzqBFV6yt5WsTAmO5q

- Google: https://podcasts.google.com/feed/aHR0cHM6Ly9hbmNob3IuZm0vcy82YTMzMTJhMC9wb2RjYXN0L3Jzcw==

- Breaker: https://www.breaker.audio/aws-bites

- RSS: ​​https://anchor.fm/s/6a3312a0/podcast/rss

Do you have any AWS questions you would like us to address?

Leave a comment here or connect with us on Twitter:
- https://twitter.com/eoins
- https://twitter.com/loige

#aws #docker #fargate

Lambda functions are small units of code that achieve a specific purpose. It’s always a good idea to keep your code short, clean and simple. And yet, sometimes you find yourself writing lots of boilerplate code in every function to do common things, like parsing events, validation, loading parameters and lots more.

The Middy.js framework was designed to help you keep Node.js Lambda function code simple, letting you focus on the business logic and clearing away duplication and boilerplate. By the end of this episode, you will know: How Middy.js works with JavaScript and TypeScript, how to perform validation, event parsing and parameter loading, and how you can even write and use your own Middy middleware. Finally you’ll get to know who is using Middy and how you could contribute to the Middy ecosystem.

In this episode, we mentioned the following resources:

- Middy Website and documentation: https://middy.js.org/

- How to get started with middy (official docs): https://middy.js.org/docs

- Middy official middlewares (official docs): https://middy.js.org/docs/middlewares/intro

- How to write your own middlewares (official docs): https://middy.js.org/docs/category/writing-middlewares

- Middy integrations (official docs): https://middy.js.org/docs/category/integrations

- Interview with Taco Bell in an episode of Real World Serverless where they mention how they use middy: https://www.listennotes.com/podcasts/real-world/56-serverless-at-tacobell--k5gAQBMHSb/

- Open source projects using Middy: https://github.com/middyjs/middy/network/dependents?package_id=UGFja2FnZS00Njc1NDUzOTU%3D

- Lambda Power Tools for TypeScript Middy Integration: https://awslabs.github.io/aws-lambda-powertools-typescript/0.10.0/core/logger/#capturing-lambda-context-info

This episode is also available on YouTube: https://www.youtube.com/AWSBites

You can listen to AWS Bites wherever you get your podcasts:

- Apple Podcasts: https://podcasts.apple.com/us/podcast/aws-bites/id1585489017

- Spotify: https://open.spotify.com/show/3Lh7PzqBFV6yt5WsTAmO5q

- Google: https://podcasts.google.com/feed/aHR0cHM6Ly9hbmNob3IuZm0vcy82YTMzMTJhMC9wb2RjYXN0L3Jzcw==

- Breaker: https://www.breaker.audio/aws-bites

- RSS: ​​https://anchor.fm/s/6a3312a0/podcast/rss

Do you have any AWS questions you would like us to address?

Leave a comment here or connect with us on Twitter:
- https://twitter.com/eoins
- https://twitter.com/loige

#aws #serverless #lambda

Identity Access Management, also known as IAM, can be an intimidating service when getting started with AWS. But IAM is also one of those core services that you can’t really avoid. In this episode we try to distill down everything that you need to know to understand IAM and start to use it proficiently. We cover what IAM is, why it is so important, how authentication and authorization work, what policy documents are and how to write them, how a user or an application get credentials to interact with AWS and finally many examples, tips and tricks.

In this episode, we mentioned the following resources:

- IAM access analyzer:  https://docs.aws.amazon.com/IAM/latest/UserGuide/what-is-access-analyzer.html

- Our previous episode on how to manage AWS credentials: https://www.youtube.com/watch?v=X4uA6EtNyos

- Understanding how IAM Policies work (AWS Docs): https://docs.aws.amazon.com/IAM/latest/UserGuide/intro-structure.html

- Policy simulator: https://policysim.aws.amazon.com/

- Policy evaluation logic (AWS Docs): https://docs.aws.amazon.com/IAM/latest/UserGuide/reference_policies_evaluation-logic.html

- How the Signature v4 (sigv4) algorithm works (AWS Docs): ​​https://docs.aws.amazon.com/general/latest/gr/sigv4_signing.html

- Actions, resources, and condition keys for AWS services - https://docs.aws.amazon.com/service-authorization/latest/reference/reference_policies_actions-resources-contextkeys.html

- Video IAM Concepts by beabetterdev: https://www.youtube.com/watch?v=_ZCTvmaPgao

- Re:Invent session “Getting started with AWS identity” by Becky Weiss: https://www.youtube.com/watch?v=Zvz-qYYhvMk

- Re:Invent session “Become an IAM Policy Master in 60 Minutes or Less” by Brigid Johnson:  https://www.youtube.com/watch?v=YQsK4MtsELU

This episode is also available on YouTube: https://www.youtube.com/AWSBites

You can listen to AWS Bites wherever you get your podcasts:

- Apple Podcasts: https://podcasts.apple.com/us/podcast/aws-bites/id1585489017

- Spotify: https://open.spotify.com/show/3Lh7PzqBFV6yt5WsTAmO5q

- Google: https://podcasts.google.com/feed/aHR0cHM6Ly9hbmNob3IuZm0vcy82YTMzMTJhMC9wb2RjYXN0L3Jzcw==

- Breaker: https://www.breaker.audio/aws-bites

- RSS: ​​https://anchor.fm/s/6a3312a0/podcast/rss

Do you have any AWS questions you would like us to address?

Leave a comment here or connect with us on Twitter:
- https://twitter.com/eoins
- https://twitter.com/loige

When it comes to building and deploying microservice applications on AWS, there are 2 emerging best practices: use a separate AWS account per application (and environment) and decouple communication between separate systems using events (instead of point-to-point communication). Can we use these two best practices together? Yes, but we will need to find a way to pass messages between AWS accounts! In this episode we discuss how to do that using EventBridge as a cross-account event backbone! We discuss why these 2 suggestions are well established best practices, what are the pros and cons that they bring to the table, what an event backbone is and why EventBridge is a great service to implement one. Finally, we will discuss a case study and an example implementation of this pattern in the context of an e-commerce application built with a microservices architecture.

In this episode, we mentioned the following resources:

- Article “How to use EventBridge as a Cross-Account Event Backbone” https://dev.to/eoinsha/how-to-use-eventbridge-as-a-cross-account-event-backbone-5fik

- Repository with example code: https://github.com/fourTheorem/cross-account-eventbridge/

- Article “What can you do with EventBridge?” (fourTheorem blog): https://www.fourtheorem.com/blog/what-can-you-do-with-eventbridge

- For great ideas on structuring event payloads, take a read of Sheen Brisals' post on the Lego Engineering blog: https://medium.com/lego-engineering/the-power-of-amazon-eventbridge-is-in-its-detail-92c07ddcaa40

- Article “What do you need to know about SNS?” (fourTheorem blog) which includes a comparison of SNS and EventBridge: https://www.fourtheorem.com/blog/what-do-you-need-to-know-about-sns

- AWS Bites Episode 23: “What’s the big deal with EventBridge?” : https://youtu.be/UjIE5qp-v8w

- AWS Community Day talk by Luc van Donkersgoed “Event-Driven Architecture at PostNL Scale”

https://www.youtube.com/watch?v=nyoMF1AEI7g

This episode is also available on YouTube: https://www.youtube.com/AWSBites

You can listen to AWS Bites wherever you get your podcasts:

- Apple Podcasts: https://podcasts.apple.com/us/podcast/aws-bites/id1585489017

- Spotify: https://open.spotify.com/show/3Lh7PzqBFV6yt5WsTAmO5q

- Google: https://podcasts.google.com/feed/aHR0cHM6Ly9hbmNob3IuZm0vcy82YTMzMTJhMC9wb2RjYXN0L3Jzcw==

- Breaker: https://www.breaker.audio/aws-bites

- RSS: ​​https://anchor.fm/s/6a3312a0/podcast/rss

Do you have any AWS questions you would like us to address?

Leave a comment here or connect with us on Twitter:
- https://twitter.com/eoins
- https://twitter.com/loige

#aws #microservice #eventbridge

When it comes to choosing compute services on AWS, there are a lot of options, including EC2, ECS, Lambda, EKS… New ones keep emerging all the time! Selecting the right one for each application is no longer an easy choice. In this episode we discuss why you need compute services and what kinds of problems should be offloaded to something else entirely. We suggest how you can develop a methodology to make the selection process easier and less biased within your company. We discuss at a high level what are some of the different compute options available in AWS and finally we provide a few different options example use cases and describe how we picked the compute service for each.

In this episode, we mentioned the following resources:

- InfoQ article “A Recipe to Migrate and Scale Monoliths in the Cloud”: https://www.infoq.com/articles/cloud-migrate-scale/

- Our previous episode about migrating monoliths to the cloud: https://www.youtube.com/watch?v=GYa2RkYDfBQ

- Article on choosing the right compute service: https://www.fourtheorem.com/blog/aws-compute

This episode is also available on YouTube: https://www.youtube.com/AWSBites

You can listen to AWS Bites wherever you get your podcasts:

- Apple Podcasts: https://podcasts.apple.com/us/podcast/aws-bites/id1585489017

- Spotify: https://open.spotify.com/show/3Lh7PzqBFV6yt5WsTAmO5q

- Google: https://podcasts.google.com/feed/aHR0cHM6Ly9hbmNob3IuZm0vcy82YTMzMTJhMC9wb2RjYXN0L3Jzcw==

- Breaker: https://www.breaker.audio/aws-bites

- RSS: ​​https://anchor.fm/s/6a3312a0/podcast/rss

Do you have any AWS questions you would like us to address?

Leave a comment here or connect with us on Twitter:
- https://twitter.com/eoins
- https://twitter.com/loige

#aws #compute #lambda

Migrating monoliths to the cloud can be a scary, expensive and time consuming and time consuming activity. Many companies try to avoid it even if it could be beneficial for them, just because they think it would require too much work and be too risky. But there are interesting compromises and incremental approaches that can be used to simplify and de-risk this kind of migration. The idea is that you don’t necessarily have to dramatically re-engineer your application to move it to the cloud (and start to take advantage of it).

In this episode, based on an InfoQ article that we recently published, we discuss a fictional use case where a company with a monolithic application managed to move to the cloud with a minimum amount of change. The move to the cloud has brought more scalability and resilience for the company to move forward and expand. But it also brings new challenges and opportunities. We will discuss all of this in more detail and by the end of this episode you should have a checklist for migrating monoliths to the cloud with minimal effort.

In this episode, we mentioned the following resources:

- InfoQ article “A Recipe to Migrate and Scale Monoliths in the Cloud”: https://www.infoq.com/articles/cloud-migrate-scale/

- Our previous episode about other cloud migration strategies: https://www.youtube.com/watch?v=IDh4eQzbvyg

- Our previous episode about the difference between CloudFormation and Terraform for infrastructure as code: https://www.youtube.com/watch?v=mLkOH2I0rX8

- Our previous episode about the pros and cons of CDK for infrastructure as code: https://www.youtube.com/watch?v=jjyNTNQdW2s

This episode is also available on YouTube: https://www.youtube.com/AWSBites

You can listen to AWS Bites wherever you get your podcasts:

- Apple Podcasts: https://podcasts.apple.com/us/podcast/aws-bites/id1585489017

- Spotify: https://open.spotify.com/show/3Lh7PzqBFV6yt5WsTAmO5q

- Google: https://podcasts.google.com/feed/aHR0cHM6Ly9hbmNob3IuZm0vcy82YTMzMTJhMC9wb2RjYXN0L3Jzcw==

- Breaker: https://www.breaker.audio/aws-bites

- RSS:

https://anchor.fm/s/6a3312a0/podcast/rss

Do you have any AWS questions you would like us to address?

Leave a comment here or connect with us on Twitter:
- https://twitter.com/eoins
- https://twitter.com/loige

#aws #monolith #migration

There are lots of options for programming languages on AWS these days but one of the most popular ones remains JavaScript. In this episode of AWS Bites we discuss what it’s like to develop with JavaScript, Node.js and TypeScript on AWS and what’s new in this field.

We explore why you would choose JavaScript and what are the trade-offs that come with this choice. We present some of the main features of the all-new AWS SDK v3 for JavaScript. We discuss runtime support and tooling for AWS Lambda and finally some interesting developments in the JavaScript ecosystem for the cloud and AWS.

- Our previous episode on What language to use for lambda: https://www.youtube.com/watch?v=S0tpReRa6m4

- AI as a Service by Eoin Shanaghy and Peter Elger (book): https://www.manning.com/books/ai-as-a-service

- Node.js Design Patterns by Mario Casciaro and Luciano Mammino (book): https://www.nodejsdesignpatterns.com/

- AWS SDK for JavaScript v3 high level concepts (including command based model): https://docs.aws.amazon.com/AWSJavaScriptSDK/v3/latest/index.html#high-level-concepts

- AWS SDK for JavaScript v3 paginators using Async Iterators: https://docs.aws.amazon.com/AWSJavaScriptSDK/v3/latest/index.html#paginators

- Mocking support for the AWS SDK for JavaScript v3: https://aws.amazon.com/blogs/developer/mocking-modular-aws-sdk-for-javascript-v3-in-unit-tests/

- Various interesting benchmarks on different Lambda runtimes: https://github.com/theam/aws-lambda-benchmark - https://filia-aleks.medium.com/benchmarking-all-aws-lambda-runtimes-in-2021-cold-start-part-1-e4146fe89385 - https://www.simform.com/blog/aws-lambda-performance/

- Support for ESM modules in AWS Lambda (Node.js 14): https://aws.amazon.com/about-aws/whats-new/2022/01/aws-lambda-es-modules-top-level-await-node-js-14/

- The Middy Framework (middleware pattern for AWS Lambda): https://middy.js.org/

- Lambda Power Tools library for TypeScript: https://awslabs.github.io/aws-lambda-powertools-typescript/

- Yan Cui’s article on performance improvements with bundling: https://lumigo.io/blog/3-major-ways-to-improve-aws-lambda-performance/

- ZX project (scripting with JavaScript) by Google: https://github.com/google/zx

Do you have any AWS questions you would like us to address?

Leave a comment here or connect with us on Twitter:
- https://twitter.com/eoins
- https://twitter.com/loige

In the age of distributed systems we produce tons and tons of logs. This is especially true for AWS when using CloudWatch logs. So how do we make sense of all these logs and how can we find useful information in them?

In this episode we talk all about logs on AWS and we discuss the main concepts in CloudWatch for logs like Log Groups and Log Streams. We discuss how you can consume logs and how this used to be a big pain point with AWS CloudWatch logs and how now things are a lot better thanks to a relatively new feature called Log Insights.

Finally we discuss some best practices that you should consider when thinking about logs for your distributed cloud applications.

In this episode, we mentioned the following resources:

- Our previous episode on CloudWatch alarms: https://www.youtube.com/watch?v=rk4QMJf6R4U

- Analyzing log data with CloudWatch Logs Insights: https://docs.aws.amazon.com/AmazonCloudWatch/latest/logs/AnalyzingLogData.html

- CloudWatch logs insights query syntax: https://docs.aws.amazon.com/AmazonCloudWatch/latest/logs/CWL_QuerySyntax.html

- Pino logger for Node.js: https://getpino.io

This episode is also available on YouTube: https://www.youtube.com/AWSBites

You can listen to AWS Bites wherever you get your podcasts:

- Apple Podcasts: https://podcasts.apple.com/us/podcast/aws-bites/id1585489017

- Spotify: https://open.spotify.com/show/3Lh7PzqBFV6yt5WsTAmO5q

- Google: https://podcasts.google.com/feed/aHR0cHM6Ly9hbmNob3IuZm0vcy82YTMzMTJhMC9wb2RjYXN0L3Jzcw==

- Breaker: https://www.breaker.audio/aws-bites

- RSS:

https://anchor.fm/s/6a3312a0/podcast/rss

Do you have any AWS questions you would like us to address?

Leave a comment here or connect with us on Twitter:
- https://twitter.com/eoins
- https://twitter.com/loige

#aws #logs #cloudwatch

CloudWatch is a great service for metrics. You get tons of metrics out of the box and you can also create your custom ones. One of the most important things you can do with metrics is to create alarms, so how do we get the most out of CloudWatch alarms?

In this episode we share our insights and cover the different types of alarms that exist, how to create an alarm, what to do when an alarm is triggered, a few examples of useful alarms and some of the drawbacks of CloudWatch alarms and how to overcome them.

In this episode, we mentioned the following resources:

- Our previous episode on CloudWatch metrics: https://www.youtube.com/watch?v=vwo2jXfyooQ

- SLIC Watch, a serverless framework plugin that generates sensible alarms and dashboard automatically: https://fth.link/slic-watch

This episode is also available on YouTube: https://www.youtube.com/AWSBites

You can listen to AWS Bites wherever you get your podcasts:

- Apple Podcasts: https://podcasts.apple.com/us/podcast/aws-bites/id1585489017

- Spotify: https://open.spotify.com/show/3Lh7PzqBFV6yt5WsTAmO5q

- Google: https://podcasts.google.com/feed/aHR0cHM6Ly9hbmNob3IuZm0vcy82YTMzMTJhMC9wb2RjYXN0L3Jzcw==

- Breaker: https://www.breaker.audio/aws-bites

- RSS: ​​https://anchor.fm/s/6a3312a0/podcast/rss

Do you have any AWS questions you would like us to address?

Leave a comment here or connect with us on Twitter:
- https://twitter.com/eoins
- https://twitter.com/loige

#aws #alarms #cloudwatch

CloudWatch is the main Observability tool in AWS and it offers a wide range of features: logs, metrics, dashboards, alarms and even events (recently moved into EventBridge).

In this episode we are going to focus on CloudWatch metrics. We are going to discuss the characteristics of metrics in CloudWatch: namespaces, dimensions, units and more. What metrics you get out of the box and how to create your own. How to access and explore metrics.

Finally we will compare CloudWatch to other providers like DataDog, New Relic, Honeycomb and Grafana + Prometheus and try to assess whether CloudWatch is enough or if you need to use other third-party services.

In this episode, we mentioned the following resources:

- How to send Gzipped requests with boto3 (which uses the PutMetricsData API as an example): https://loige.co/how-to-send-gzipped-requests-with-boto3

- CloudWatch service quota: https://docs.aws.amazon.com/AmazonCloudWatch/latest/monitoring/cloudwatch_limits.html

- CloudWatch metrics stream for DataDog: https://www.datadoghq.com/blog/amazon-cloudwatch-metric-streams-datadog/

This episode is also available on YouTube: https://www.youtube.com/AWSBites

You can listen to AWS Bites wherever you get your podcasts:

- Apple Podcasts: https://podcasts.apple.com/us/podcast/aws-bites/id1585489017

- Spotify: https://open.spotify.com/show/3Lh7PzqBFV6yt5WsTAmO5q

- Google: https://podcasts.google.com/feed/aHR0cHM6Ly9hbmNob3IuZm0vcy82YTMzMTJhMC9wb2RjYXN0L3Jzcw==

- Breaker: https://www.breaker.audio/aws-bites

- RSS: ​​https://anchor.fm/s/6a3312a0/podcast/rss

Do you have any AWS questions you would like us to address?

Leave a comment here or connect with us on Twitter:
- https://twitter.com/eoins
- https://twitter.com/loige

What are the benefits of Tags? You have probably seen that you can add tags to almost every resource in AWS… but should you really do it? And if you do it, what are the benefits?

In today’s episode Eoin and Luciano cover what tags are, some examples of how to use them and what kind of benefits they can give you and your team. Finally we’ll give you a bunch of ideas on how to build a tagging strategy and get value from tags!

In this episode, we mentioned the following resources:

- Resource group tagging (https://docs.aws.amazon.com/resourcegroupstagging/latest/APIReference/overview.html)

- Controlling access to AWS resources using tags https://docs.aws.amazon.com/IAM/latest/UserGuide/access_tags.html

- Enforce tagging via SCP (Service Control Policies): https://docs.aws.amazon.com/organizations/latest/userguide/orgs_manage_policies_scps_examples_tagging.html#example-require-tag-on-create

- Use AWS Config to create rules that can alarm if some resources are not compliant: https://aws.amazon.com/premiumsupport/knowledge-center/config-resource-non-compliant/

- Example on how to use CloudTrail to automatically tag newly created resources: https://aws.amazon.com/blogs/mt/auto-tag-aws-resources/

- Archived AWS white paper on tagging best practices: https://d1.awsstatic.com/whitepapers/aws-tagging-best-practices.pdf

This episode is also available on YouTube: https://www.youtube.com/AWSBites

You can listen to AWS Bites wherever you get your podcasts:

- Apple Podcasts: https://podcasts.apple.com/us/podcast/aws-bites/id1585489017

- Spotify: https://open.spotify.com/show/3Lh7PzqBFV6yt5WsTAmO5q

- Google: https://podcasts.google.com/feed/aHR0cHM6Ly9hbmNob3IuZm0vcy82YTMzMTJhMC9wb2RjYXN0L3Jzcw==

- Breaker: https://www.breaker.audio/aws-bites

- RSS: ​​https://anchor.fm/s/6a3312a0/podcast/rss

Do you have any AWS questions you would like us to address?

Leave a comment here or connect with us on Twitter:
- https://twitter.com/eoins
- https://twitter.com/loige

#aws #tags #cloudformation

Should I use CloudFormation or should I use Terraform instead? If you are just starting to do Infrastructure as Code (IaaC) you probably have this question. In this episode we will discuss in detail how these two amazing pieces of technology compare against each other and what their features, weaknesses and strengths are. We will share our opinions based on our experience with these 2 technologies and guess what, for once we have a bit of clash of opinions! Can you guess who is in the Terraform camp and who is in the CloudFormation camp instead?

In this episode, we mentioned the following resources:

- A tutorial on how to create resources conditionally with CDK (and CloudFormation): https://loige.co/create-resources-conditionally-with-cdk

- An article to understand in depth how to use secrets management with SSM and SecretsManager together with CloudFormation: https://dev.to/eoinsha/3-ways-to-read-ssm-parameters-4555

- Ben Kehoe’s tweet about switching from CloudFormation to Terraform: https://twitter.com/ben11kehoe/status/1158758917515763712

- Terraform null resources: https://registry.terraform.io/providers/hashicorp/null/latest/docs/resources/resource

- CloudFormation Macros: https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/macros-example.html

- How to workaround missing CloudFormation features (by Cloudonaut): https://cloudonaut.io/three-and-a-half-ways-to-workaround-missing-cloudformation-support/

- Org-formation: https://github.com/org-formation/org-formation-cli

- How to create accounts in an org with Terraform: https://registry.terraform.io/providers/hashicorp/aws/latest/docs/resources/organizations_account

- Control Tower Account Factory for Terraform: https://learn.hashicorp.com/tutorials/terraform/aws-control-tower-aft

- Pulumi: https://www.pulumi.com/

- Cloudonaut’s comparison of CloudFormation with Terraform: https://cloudonaut.io/cloudformation-vs-terraform/

- Cloudonaut’s free CloudFormation templates: https://templates.cloudonaut.io/en/stable/

Do you have any AWS questions you would like us to address?

Leave a comment here or connect with us on Twitter:
- https://twitter.com/eoins
- https://twitter.com/loige

AWS Lambda just got a big upgrade in ephemeral storage: you can now have up to 10 GB of storage for your /tmp folder! Before this was limited to “only” 512 Mb… But is this really useful? What can we do now that we couldn’t do before? Also, is this going to have an impact on price? And how does it compare with other storage capabilities that are available in Lambda? Eoin and Luciano are on the case to try to find some answers to these compelling questions, for the greater serverless good!

In this episode, we mentioned the following resources:

- Official AWS announcement blog post: https://aws.amazon.com/about-aws/whats-new/2022/03/aws-lambda-configure-ephemeral-storage/

- Will Dady on Twitter about 10GB of ephemeral storage now enabling interesting CI/CD use cases: https://twitter.com/WillDady/status/1507110176209322018

- Yan Cui’s post on Lumigo’s blog “Welcome to 10GB of tmp storage with Lambda”: https://lumigo.io/blog/welcome-to-10gb-of-tmp-storage-with-lambda/

- Lambda cost comparison with ephemeral storage spreadsheet: https://docs.google.com/spreadsheets/d/1_oGjLN0BeRR8CWfgdjeYiIknRTugdmJOhGkAjLCTStw/edit?usp=sharing

This episode is also available on YouTube: https://www.youtube.com/AWSBites

You can listen to AWS Bites wherever you get your podcasts:

- Apple Podcasts: https://podcasts.apple.com/us/podcast/aws-bites/id1585489017

- Spotify: https://open.spotify.com/show/3Lh7PzqBFV6yt5WsTAmO5q

- Google: https://podcasts.google.com/feed/aHR0cHM6Ly9hbmNob3IuZm0vcy82YTMzMTJhMC9wb2RjYXN0L3Jzcw==

- Breaker: https://www.breaker.audio/aws-bites

- RSS: ​​https://anchor.fm/s/6a3312a0/podcast/rss

Do you have any AWS questions you would like us to address?

Leave a comment here or connect with us on Twitter:
- https://twitter.com/eoins
- https://twitter.com/loige

Eoin and Luciano take you through the ways serverless can give you more security out of the box. We cover the tradeoffs between having more security control and the responsibility that comes with this power. There are always new security challenges so we cover some of the common pitfalls with serverless and AWS security in general. Finally, we share some tips to make your serverless deployments more secure.

In this episode, we mentioned the following resources:

• Architecting Secure Serverless Applications on the AWS Architecture Blog: https://aws.amazon.com/blogs/architecture/architecting-secure-serverless-applications/
• AWS IAM Access Analyzer: https://docs.aws.amazon.com/IAM/latest/UserGuide/what-is-access-analyzer.htm
• The AWS response to the Log4J2 vulnerability: https://aws.amazon.com/security/security-bulletins/AWS-2021-006/
• FunctionShield: https://github.com/puresec/FunctionShield

This episode is also available on YouTube: https://www.youtube.com/AWSBites

You can listen to AWS Bites wherever you get your podcasts:

- Apple Podcasts: https://podcasts.apple.com/us/podcast/aws-bites/id1585489017

- Spotify: https://open.spotify.com/show/3Lh7PzqBFV6yt5WsTAmO5q

- Google: https://podcasts.google.com/feed/aHR0cHM6Ly9hbmNob3IuZm0vcy82YTMzMTJhMC9wb2RjYXN0L3Jzcw==

- Breaker: https://www.breaker.audio/aws-bites

- RSS: ​​https://anchor.fm/s/6a3312a0/podcast/rss

Do you have any AWS questions you would like us to address?

Leave a comment here or connect with us on Twitter:
- https://twitter.com/eoins
- https://twitter.com/loige

Luciano and Eoin discuss their strategies and ideas to help new team members to start embracing cloud computing and get productive with AWS. What are the main concepts to focus on when bootstrapping this journey, how to make a plan and make sure it’s bespoke to the expectation of the new employee. How to do pairing sessions and make sure we can build hands-on experience. Finally we discuss building troubleshooting skills and make sure we put in place a virtuous cycle that can foster continuous learning.

In this episode, we mentioned the following resources:

- Our previous episode about AWS certifications and learning material: https://www.youtube.com/watch?v=qf0CuUOtPEI

This episode is also available on YouTube: https://www.youtube.com/AWSBites

You can listen to AWS Bites wherever you get your podcasts:

- Apple Podcasts: https://podcasts.apple.com/us/podcast/aws-bites/id1585489017

- Spotify: https://open.spotify.com/show/3Lh7PzqBFV6yt5WsTAmO5q

- Google: https://podcasts.google.com/feed/aHR0cHM6Ly9hbmNob3IuZm0vcy82YTMzMTJhMC9wb2RjYXN0L3Jzcw==

- Breaker: https://www.breaker.audio/aws-bites

- RSS: ​​https://anchor.fm/s/6a3312a0/podcast/rss

Do you have any AWS questions you would like us to address?

Leave a comment here or connect with us on Twitter:
- https://twitter.com/eoins
- https://twitter.com/loige

Eoin and Luciano try to answer the question of what AWS accounts do you need for your team and how to organize them. In this episode of AWS bites we discuss common ways to organize AWS accounts and environments from the perspective of a company running production workloads. We try to answer questions like “how many accounts and how many environments?”. We also discuss how you and your team can be more productive by effectively managing AWS accounts and environments. Finally we explore some common security and cost-related tradeoffs that are common when it comes to organizing AWS accounts.

Thanks to David Lynam for suggesting this awesome topic!

In this episode, we mentioned the following resources:

- AWS Account vending machines: https://aws.amazon.com/solutions/implementations/aws-landing-zone/

- Org Formation: https://github.com/org-formation/org-formation-cli

- Terraform for accounts and organizations: https://registry.terraform.io/providers/hashicorp/aws/latest/docs/resources/organizations_account

This episode is also available on YouTube: https://www.youtube.com/AWSBites

You can listen to AWS Bites wherever you get your podcasts:

- Apple Podcasts: https://podcasts.apple.com/us/podcast/aws-bites/id1585489017

- Spotify: https://open.spotify.com/show/3Lh7PzqBFV6yt5WsTAmO5q

- Google: https://podcasts.google.com/feed/aHR0cHM6Ly9hbmNob3IuZm0vcy82YTMzMTJhMC9wb2RjYXN0L3Jzcw==

- Breaker: https://www.breaker.audio/aws-bites

- RSS: ​​https://anchor.fm/s/6a3312a0/podcast/rss

Do you have any AWS questions you would like us to address?

Leave a comment here or connect with us on Twitter:
- https://twitter.com/eoins
- https://twitter.com/loige

Luciano and Eoin explore the wonderful world of data streaming using Kafka on AWS. In this episode we focus mainly on Managed Streaming for Kafka (or MSK) and discuss what are the main differences between MSK and Kinesis. We also explore the main features that MSK provides, its scaling characteristics, pricing and, finally, how MSK works in conjunction with other AWS services.

We conclude the episode by providing a decision tree that should help you to decide whether you should use Kinesis or MSK or avoid streaming services entirely in favor of something like SNS or SQS.

In this episode, we mentioned the following resources:

- Our previous episode on Kinesis data streams: https://www.youtube.com/watch?v=u_nR6up4Kvs

- Our series of Event services: https://www.youtube.com/watch?v=CG7uhkKftoY&list=PLAWXFhe0N1vLHkGO1ZIWW_SZpturHBiE_

- AWS MSK sizing spreadsheet: https://dy7oqpxkwhskb.cloudfront.net/MSK_Sizing_Pricing.xlsx

- Should My Startup use Kinesis or MSK? - https://www.youtube.com/watch?v=TJS19EuzH2k

- Intro to MSK (reinvent talk from 2018) - https://www.youtube.com/watch?v=9nKswHsLseY

- Running Apache Kafka on AWS (by Frank Munz) - https://www.youtube.com/watch?v=HtU9pb18g5Q

- Cloudonaut - Kinesis versus MSK - https://www.youtube.com/watch?v=kcBAKz0MPf8

This episode is also available on YouTube: https://www.youtube.com/AWSBites

You can listen to AWS Bites wherever you get your podcasts:

- Apple Podcasts: https://podcasts.apple.com/us/podcast/aws-bites/id1585489017

- Spotify: https://open.spotify.com/show/3Lh7PzqBFV6yt5WsTAmO5q

- Google: https://podcasts.google.com/feed/aHR0cHM6Ly9hbmNob3IuZm0vcy82YTMzMTJhMC9wb2RjYXN0L3Jzcw==

- Breaker: https://www.breaker.audio/aws-bites

- RSS: ​​https://anchor.fm/s/6a3312a0/podcast/rss

Do you have any AWS questions you would like us to address?

Leave a comment here or connect with us on Twitter:
- https://twitter.com/eoins
- https://twitter.com/loige

Eoin and Luciano are back with some more AWS messaging services material! This time we talk about Kinesis Data Streams and everything there’s to know about them! In this episode of AWS Bites, we cover the difference between data streaming and queue or message buses. How Kinesis can let you process large batches of messages in near real time. Why you might use Kinesis as a queue or pub/sub bus in some cases. A few different ways to use Kinesis with the focus on avoiding too much complexity. We also provide some insights based on our experience with Kinesis Data Streams including real use cases, monitoring tips and some gotchas to be aware of.

In this episode, we mentioned the following resources:

- Our introductory episode about what services you should use for events: https://www.youtube.com/watch?v=CG7uhkKftoY

- Amazon Kinesis Producer Library (KPL): https://docs.aws.amazon.com/streams/latest/dev/developing-producers-with-kpl.html

- Amazon Kinesis Consumer Library (KCL): https://docs.aws.amazon.com/streams/latest/dev/shared-throughput-kcl-consumers.html

- Kinesis Library wrapper for Node.js: https://github.com/awslabs/amazon-kinesis-client-nodejs

- Kinesis Library wrapper for Python: https://github.com/awslabs/amazon-kinesis-client-python

- Kinesis Data Stream with captures from DynamoDB (for CDC): https://docs.aws.amazon.com/amazondynamodb/latest/developerguide/kds.html

- Kinesis Data Stream with captures from Aurora: https://docs.aws.amazon.com/AmazonRDS/latest/AuroraUserGuide/DBActivityStreams.Overview.html

- Kinesis Data Analytics: https://aws.amazon.com/kinesis/data-analytics/

- Kinesis Firehose: https://aws.amazon.com/kinesis/data-firehose/

- Must-read on Kinesis: Anahit Pogosova’s two-part blog series: https://dev.solita.fi/2020/05/28/kinesis-streams-part-1.html & https://dev.solita.fi/2020/12/21/kinesis-streams-part-2.html

- Cloudonaut Kinesis vs MSK: https://cloudonaut.io/versus/messaging/kinesis-data-streams-vs-msk/

- Deep Dive on Lambda Consumers for Kinesis / Heeki Park - re:invent 2020 https://www.youtube.com/watch?v=tCYwc7-wwsU

You can listen to AWS Bites wherever you get your podcasts. Find all the links on https://awsbites.com

Do you have any AWS questions you would like us to address?

Leave a comment here or connect with us on Twitter:
- https://twitter.com/eoins
- https://twitter.com/loige

Luciano and Eoin deep dive into SNS discussing what it does, how it differs from EventBridge and SQS and how you can use it to send messages to customers but also for microservices communication. In this new episode dedicated to AWS events and messaging services, we learn everything there is to know about SNS including advantages, limitations and cost. This episode complements the episode about EventBridge, giving another perspective on when to use SNS and when to pick EventBridge instead.

In this episode, we mentioned the following resources:

- Our previous episode about EventBridge: https://www.youtube.com/watch?v=UjIE5qp-v8w

- Our previous episode about all things SQS: https://www.youtube.com/watch?v=svoA-ds8-8c

- Our introductory episode about what services you should use for events: https://www.youtube.com/watch?v=CG7uhkKftoY

- A comparison between EventBridge and SNS by Cloudonaut: https://cloudonaut.io/eventbridge-vs-sns/

This episode is also available on YouTube: https://www.youtube.com/AWSBites

You can listen to AWS Bites wherever you get your podcasts:

- Apple Podcasts: https://podcasts.apple.com/us/podcast/aws-bites/id1585489017

- Spotify: https://open.spotify.com/show/3Lh7PzqBFV6yt5WsTAmO5q

- Google: https://podcasts.google.com/feed/aHR0cHM6Ly9hbmNob3IuZm0vcy82YTMzMTJhMC9wb2RjYXN0L3Jzcw==

- Breaker: https://www.breaker.audio/aws-bites

- RSS: ​​https://anchor.fm/s/6a3312a0/podcast/rss

Do you have any AWS questions you would like us to address?

Leave a comment here or connect with us on Twitter:
- https://twitter.com/eoins
- https://twitter.com/loige

Eoin and Luciano continue their series about event services. In this episode, they chat about EventBridge and explore why this AWS service has such a great potential for event-based serverless applications. This episode presents some interesting examples of when and how to use EventBridge. It also covers all the different classes of events that you can manage with EventBridge: AWS events, third-party events and custom events. We discuss limits and pricing and, finally, we show how things can go wrong and how much you can end up paying for it. We conclude the episode with some tips and resources to avoid shooting yourself in the foot and get good observability when using EventBridge.In this episode, we mentioned the following resources:

- Our previous episode about all things SQS: https://www.youtube.com/watch?v=svoA-ds8-8c

- Our introductory episode about what services you should use for events: https://www.youtube.com/watch?v=CG7uhkKftoY

- List of AWS services that can trigger EventBridge events: https://docs.aws.amazon.com/eventbridge/latest/userguide/eb-service-event.html

- An example of how to make HTTP calls directly from EventBridge (Sheen Brisals): https://medium.com/lego-engineering/amazon-eventbridge-api-destinations-demystified-part-i-23fa70d9a04d

- How to test when using EventBridge (by Paul Swail): https://serverlessfirst.com/eventbridge-testing-guide/

- Eventbridge CLI tool: https://github.com/spezam/eventbridge-cli

- Lumigo CLI: https://github.com/lumigo-io/lumigo-CLI#lumigo-cli-tail-eventbridge-bus

- EventBridge Atlas: https://eventbridge-atlas.netlify.app/

- EventBridge Canon: https://eventbridge-canon.netlify.app/

- Accelerate Serverless Adoption with EventBridge (talk by Sheen Brisals): https://www.youtube.com/watch?v=sTZpoSGOSOI

- Series of Articles by Sheen Brisals on EventBridge: https://sbrisals.medium.com/table-of-contents-set-pieces-16c1ca1ecb33

This episode is also available on YouTube: https://www.youtube.com/AWSBites

You can listen to AWS Bites wherever you get your podcasts:

- Apple Podcasts: https://podcasts.apple.com/us/podcast/aws-bites/id1585489017

- Google: https://podcasts.google.com/feed/aHR0cHM6Ly9hbmNob3IuZm0vcy82YTMzMTJhMC9wb2RjYXN0L3Jzcw==

- Breaker: https://www.breaker.audio/aws-bites

- RSS: ​​https://anchor.fm/s/6a3312a0/podcast/rss

Do you have any AWS questions you would like us to address?

Leave a comment here or connect with us on Twitter:
- https://twitter.com/eoins
- https://twitter.com/loige

Luciano and Eoin take a deep dive into SQS as part of a series on AWS event services and event-driven architecture. We talk about the kind of problems SQS can solve, all of the SQS features and how to configure and use SQS to achieve reliability and scalability without all the complexity. We also take some time to detail how SQS works with Lambda in terms of scaling, batching and filtering.

In this episode, we gave a special mention to three highly-recommended re:Invent 2021 talks on the topic of Enterprise Integration Patterns with AWS services:

1. AWS re:Invent 2021 - Application integration patterns for microservices - Gregor Hohpe - https://www.youtube.com/watch?v=ttJAIQf7cTw
2. AWS re:Invent 2021 - Building next-gen applications with event-driven architectures - Sam Dengler - https://www.youtube.com/watch?v=U5GZNt0iMZY
3. AWS re:Invent 2021 - AWS re:Invent 2021 - Application integration patterns for microservices - Dirk Froehner - https://www.youtube.com/watch?v=QhfuzEkN3Ck -

In addition, we mentioned the following resources.

- SQS: https://aws.amazon.com/sqs/

- Using Lambda with SQS: https://docs.aws.amazon.com/lambda/latest/dg/with-sqs.html

- Lambda SQS Scaling: https://aws.amazon.com/premiumsupport/knowledge-center/lambda-sqs-scaling/

- SLIC Watch (Serverless plugin for easy dashboards and alarms): https://github.com/fourTheorem/slic-watch 

This episode is also available on YouTube: https://www.youtube.com/AWSBites

You can listen to AWS Bites wherever you get your podcasts:

- Apple Podcasts: https://podcasts.apple.com/us/podcast/aws-bites/id1585489017

- Spotify: https://open.spotify.com/show/3Lh7PzqBFV6yt5WsTAmO5q

- Google: https://podcasts.google.com/feed/aHR0cHM6Ly9hbmNob3IuZm0vcy82YTMzMTJhMC9wb2RjYXN0L3Jzcw==

- Breaker: https://www.breaker.audio/aws-bites

- RSS:

https://anchor.fm/s/6a3312a0/podcast/rss

Do you have any AWS questions you would like us to address?

Leave a comment here or connect with us on Twitter:
- https://twitter.com/eoins
- https://twitter.com/loige

In this episode of AWS Bites podcast, Luciano and Eoin talk about AWS services related to events and message passing like SQS, SNS, Event Bridge, Kinesis and Kafka (MSK).

We discuss in which context is convenient to use messages and events and we deliver a quick walkthrough of all the services discussing major features and some practical examples on how to use them.

In this episode we mentioned the following resources:

- SNS: https://aws.amazon.com/sns/

- SQS: https://aws.amazon.com/sqs/

- Event Bridge: https://aws.amazon.com/eventbridge/

- Kinesis: https://aws.amazon.com/kinesis/

- Kafka (MSK): https://aws.amazon.com/msk/

This episode is also available on YouTube: https://www.youtube.com/AWSBites

You can listen to AWS Bites wherever you get your podcasts:

- Apple Podcasts: https://podcasts.apple.com/us/podcast/aws-bites/id1585489017

- Spotify: https://open.spotify.com/show/3Lh7PzqBFV6yt5WsTAmO5q

- Google: https://podcasts.google.com/feed/aHR0cHM6Ly9hbmNob3IuZm0vcy82YTMzMTJhMC9wb2RjYXN0L3Jzcw==

- Breaker: https://www.breaker.audio/aws-bites

- RSS: ​​https://anchor.fm/s/6a3312a0/podcast/rss

Do you have any AWS questions you would like us to address?

Leave a comment here or connect with us on Twitter:
- https://twitter.com/eoins
- https://twitter.com/loige

In this episode of AWS Bites podcast, Eoin and Luciano talk about whether it is worth to get an AWS certification and why. We discuss why a certification can be important from the perspective of individuals and companies, what are the certifications available and how are they grouped. Finally we try to provide some suggestions for a study plan and give various useful resources and tips.

In this episode we mentioned the following resources:

- Official AWS certifications landing page: https://aws.amazon.com/certification/

- Passing all the AWS certifications, article by Adam Elmore: https://adamelmore.medium.com/descent-into-cloud-madness-12-aws-certifications-in-6-weeks-965de12c626d

- Luciano’s post about AWS Solution Architect Associate exam notes and tips: https://loige.co/aws-solution-architect-associate-exam-notes-tips

- Udemy and Tutorialspoint: https://udemy.com, https://www.tutorialspoint.com

- Adrian Cantrill’s AWS certification training material: https://cantrill.io

- A Cloud Guru: https://acloudguru.com

This episode is also available on YouTube: https://www.youtube.com/AWSBites

You can listen to AWS Bites wherever you get your podcasts:

- Apple Podcasts: https://podcasts.apple.com/us/podcast/aws-bites/id1585489017

- Spotify: https://open.spotify.com/show/3Lh7PzqBFV6yt5WsTAmO5q

- Google: https://podcasts.google.com/feed/aHR0cHM6Ly9hbmNob3IuZm0vcy82YTMzMTJhMC9wb2RjYXN0L3Jzcw==

- Breaker: https://www.breaker.audio/aws-bites

- RSS: ​​https://anchor.fm/s/6a3312a0/podcast/rss

Do you have any AWS questions you would like us to address?

Leave a comment here or connect with us on Twitter:
- https://twitter.com/eoins
- https://twitter.com/loige

In this episode of AWS Bites podcast, Luciano and Eoin talk about what the serverless Developer Experience (DX) is like and whether we should consider it still immature or not.

In this context we discuss some of the struggles with local development, what are some tools that can make our lives easier and how we can improve the overall serverless experience.

In this episode we mentioned the following resources:

- LocalStack: https://localstack.cloud/

- Serverless offline plugin: https://github.com/dherault/serverless-offline

- SAM Local: https://docs.aws.amazon.com/serverless-application-model/latest/developerguide/sam-cli-command-reference-sam-local-start-api.html

- SAM Accelerate: https://aws.amazon.com/blogs/compute/accelerating-serverless-development-with-aws-sam-accelerate/

- CDK HotSwap / CDK Watch: https://aws.amazon.com/blogs/developer/increasing-development-speed-with-cdk-watch/

- SST: https://docs.serverless-stack.com/

This episode is also available on YouTube: https://www.youtube.com/AWSBites

You can listen to AWS Bites wherever you get your podcasts:

- Apple Podcasts: https://podcasts.apple.com/us/podcast/aws-bites/id1585489017

- Spotify: https://open.spotify.com/show/3Lh7PzqBFV6yt5WsTAmO5q

- Google: https://podcasts.google.com/feed/aHR0cHM6Ly9hbmNob3IuZm0vcy82YTMzMTJhMC9wb2RjYXN0L3Jzcw==

- Breaker: https://www.breaker.audio/aws-bites

- RSS: ​​https://anchor.fm/s/6a3312a0/podcast/rss

Do you have any AWS questions you would like us to address?

Leave a comment here or connect with us on Twitter:

- https://twitter.com/eoins
- https://twitter.com/loige

In this episode of AWS Bites, Eoin and Luciano discuss some interesting strategies to take a workload to the cloud. Most of this episode is built around “6 Strategies for Migrating Applications to the Cloud” by Stephen Orban: (https://aws.amazon.com/blogs/enterprise-strategy/6-strategies-for-migrating-applications-to-the-cloud/) in which you can find the concepts of the “6 Rs for cloud migrations”: Retire or Retain, Re-purchase, Re-host, Re-platform and Re-architecture.

Throughout the episode we share our take on this approach and we try to provide our perspective and suggestions on how to apply this strategy and get some significant ROI for this project. Moving to the cloud is never a trivial thing and there are many elements to consider, especially in a medium/big organisation. This episode will help you to lay out all the elements that matter the most and come up with a solid plan for your next cloud migration.

In this episode we mentioned the following resources:

- 6 Strategies for Migrating Applications to the Cloud: https://aws.amazon.com/blogs/enterprise-strategy/6-strategies-for-migrating-applications-to-the-cloud/

This episode is also available on YouTube: https://www.youtube.com/AWSBites

You can listen to AWS Bites wherever you get your podcasts:

- Apple Podcasts: https://podcasts.apple.com/us/podcast/aws-bites/id1585489017

- Spotify: https://open.spotify.com/show/3Lh7PzqBFV6yt5WsTAmO5q

- Google: https://podcasts.google.com/feed/aHR0cHM6Ly9hbmNob3IuZm0vcy82YTMzMTJhMC9wb2RjYXN0L3Jzcw==

- Breaker: https://www.breaker.audio/aws-bites

- RSS: ​​https://anchor.fm/s/6a3312a0/podcast/rss

Do you have any AWS questions you would like us to address?

Leave a comment here or connect with us on Twitter:

- https://twitter.com/eoins
- https://twitter.com/loige

In this episode of AWS Bites podcast, Luciano and Eoin talk about some ideas to stay update with the evergreen world of AWS. This is a much less structured episode than usual and we informally discuss some of our favourite resources including blogs, articles, YouTube channels, other podcasts and Twitter profiles.

In this episode we mentioned the following resources:

- AWS what’s new (official): https://aws.amazon.com/new/

- AWS Podcast ​​https://aws.amazon.com/podcasts/aws-podcast/

- Werner Vogel’s blog: https://www.allthingsdistributed.com/

- Jeremy Daly’s Off by None Newsletter: https://offbynone.io/

- Cloudonaut’s blog: https://cloudonaut.io/

- Cloudonaut’s YouTube channel: https://www.youtube.com/cloudonaut

- Yan Cui’s blog: https://theburningmonk.com/

- Yan Cui’s Real World Serverless: https://realworldserverless.com/

- AWS Builder Library: https://aws.amazon.com/builders-library/

- Borislav Hadzhiev’s blog: https://bobbyhadz.com/

- Marcia Villalba’s Foobar on YouTube: https://www.youtube.com/c/FooBar_codes

- Adam Elmore’s AWS.fm podcast https://aws.fm/

- Emily Shea on Twitter: https://twitter.com/em__shea

- Emily Shea’s re:Invent 2021 “Getting started building your first serverless web application”: https://www.youtube.com/watch?v=DdyhdnWVukc

- Danilo Poccia on Twitter: https://twitter.com/danilop

- Heitor Lessa on Twitter: https://twitter.com/heitor_lessa

This episode is also available on YouTube: https://www.youtube.com/AWSBites

You can listen to AWS Bites wherever you get your podcasts:

- Apple Podcasts: https://podcasts.apple.com/us/podcast/aws-bites/id1585489017

- Spotify: https://open.spotify.com/show/3Lh7PzqBFV6yt5WsTAmO5q

- Google: https://podcasts.google.com/feed/aHR0cHM6Ly9hbmNob3IuZm0vcy82YTMzMTJhMC9wb2RjYXN0L3Jzcw==

- Breaker: https://www.breaker.audio/aws-bites

- RSS: ​​https://anchor.fm/s/6a3312a0/podcast/rss

Do you have any AWS questions you would like us to address?

Leave a comment here or connect with us on Twitter:

- https://twitter.com/eoins
- https://twitter.com/loige

In this episode, Eoin and Luciano explore the various pros and cons of AWS Cloud Development Kit (CDK).

We start by describing what CDK is and what it is used for. Then we spend a bit of time covering the details of how CDK actually works defining L1, L2 and L3 (patterns) constructs and the integration with CloudFormation.

In the central part of the episode we deep dive into a bunch of pros and cons of CDK, mostly trying to describe the tradeoffs and the pitfalls.

Finally, we close the episode by giving a piece of advice on what we believe is the best way to get started with CDK to minimize the surprises and be able to reap all the benefits of this amazing tools.

In this episode we mentioned the following resources:

- CDK: https://aws.amazon.com/cdk/

- CloudFormation: https://aws.amazon.com/cloudformation/

- Terraform: https://www.terraform.io/

- CDK PIpelines: https://docs.aws.amazon.com/cdk/api/latest/docs/pipelines-readme.html

- CDK Patterns: https://cdkpatterns.com/

- Create Resources conditionally with CDK: https://loige.co/create-resources-conditionally-with-cdk

This episode is also available on YouTube: https://www.youtube.com/AWSBites

You can listen to AWS Bites wherever you get your podcasts:

- Apple Podcasts: https://podcasts.apple.com/us/podcast/aws-bites/id1585489017

- Spotify: https://open.spotify.com/show/3Lh7PzqBFV6yt5WsTAmO5q

- Google: https://podcasts.google.com/feed/aHR0cHM6Ly9hbmNob3IuZm0vcy82YTMzMTJhMC9wb2RjYXN0L3Jzcw==

- Breaker: https://www.breaker.audio/aws-bites

- RSS: ​​https://anchor.fm/s/6a3312a0/podcast/rss

Do you have any AWS questions you would like us to address?

Leave a comment here or connect with us on Twitter:

- https://twitter.com/eoins
- https://twitter.com/loige

In this extended episode, Luciano and Eoin try to cover a recurring topic around Serverless: is it a good or bad idea for startups?

We start by giving a brief description of the different definitions and perspectives on serverless. Then, we try to explore some cases in which we believe serverless might not be the best fit for a startup. We follow on by revisiting some cases where instead we believe serverless can actually be a great fit. We finish by discussing some suggestions on how a startup (or even a more established company) could start approaching serverless in a more cautious and incremental way.

In this episode we mentioned the following resources:

- Auth0: https://auth0.com/

- Algolia: https://www.algolia.com/

- Firebase: https://firebase.google.com/

- Laravel: https://laravel.com/

- Django: https://www.djangoproject.com/

- Express: https://expressjs.com/

- AWS Amplify: https://aws.amazon.com/amplify/

- Our previous episode on Amplify: https://www.youtube.com/watch?v=W9ZTYIVQWjQ

This episode is also available on YouTube: https://www.youtube.com/AWSBites

You can listen to AWS Bites wherever you get your podcasts:

- Apple Podcasts: https://podcasts.apple.com/us/podcast/aws-bites/id1585489017

- Spotify: https://open.spotify.com/show/3Lh7PzqBFV6yt5WsTAmO5q

- Google: https://podcasts.google.com/feed/aHR0cHM6Ly9hbmNob3IuZm0vcy82YTMzMTJhMC9wb2RjYXN0L3Jzcw==

- Breaker: https://www.breaker.audio/aws-bites

- RSS: ​​https://anchor.fm/s/6a3312a0/podcast/rss

Do you have any AWS questions you would like us to address?

Leave a comment here or connect with us on Twitter:

- https://twitter.com/eoins
- https://twitter.com/loige

In this extended episode, Eoin and Luciano talk about Amplify with a particular focus on Amplify Studio, a new visual way to manage Amplify applications announced at the recent re:Invent event during Werner Vogels’ keynote.

In this episode we mentioned the following:

- Amplify Studio: https://aws.amazon.com/amplify/studio/

- Figma: https://www.figma.com/

- The 2021 AWS re:Invent Werner Vogels keynote segment on Amplify Studio: https://youtu.be/8_Xs8Ik0h1w?t=3346

- Ali Spittel: https://www.youtube.com/watch?v=7MKVCmNKT1c

This episode is also available on YouTube: https://www.youtube.com/AWSBites

You can listen to AWS Bites wherever you get your podcasts:

- Apple Podcasts: https://podcasts.apple.com/us/podcast/aws-bites/id1585489017

- Spotify: https://open.spotify.com/show/3Lh7PzqBFV6yt5WsTAmO5q

- Google: https://podcasts.google.com/feed/aHR0cHM6Ly9hbmNob3IuZm0vcy82YTMzMTJhMC9wb2RjYXN0L3Jzcw==

- Breaker: https://www.breaker.audio/aws-bites

- RSS:

https://anchor.fm/s/6a3312a0/podcast/rss

Do you have any AWS questions you would like us to address?

Leave a comment here or connect with us on Twitter:

- https://twitter.com/eoins
- https://twitter.com/loige

In this special episode, Eoin and Luciano talk about their impression on the announcements from the first day of AWS re:invent 2021.

1. AWS Lambda now supports event filtering for Amazon SQS, Amazon DynamoDB, and Amazon Kinesis as event sources: https://aws.amazon.com/about-aws/whats-new/2021/11/aws-lambda-event-filtering-amazon-sqs-dynamodb-kinesis-sources/
2. Amazon CodeGuru Reviewer now detects hardcoded secrets in Java and Python repositories: https://aws.amazon.com/about-aws/whats-new/2021/11/amazon-codeguru-reviewer-hardcoded-secrets-java-python/
3. Amazon ECR announces pull through cache repositories: https://aws.amazon.com/about-aws/whats-new/2021/11/amazon-ecr-cache-repositories/
4. Introducing recommenders optimized to deliver personalized experiences for Media & Entertainment and Retail with Amazon Personalize:
5. https://aws.amazon.com/about-aws/whats-new/2021/11/recommenders-optimized-personalized-media-entertainment-retail-amazon-personalize/AWS Chatbot now supports management of AWS resources in Slack (Preview): https://aws.amazon.com/about-aws/whats-new/2021/11/aws-chatbot-management-resources-slack/
6. Amazon CloudWatch Evidently: https://aws.amazon.com/about-aws/whats-new/2021/11/amazon-cloudwatch-evidently-feature-experimentation-safer-launches/
7. AWS Migration Hub Refactor Spaces - Preview: https://aws.amazon.com/about-aws/whats-new/2021/11/aws-migration-hub-refactor-spaces/
8. CloudWatch Real User Monitoring:
9. https://aws.amazon.com/about-aws/whats-new/2021/11/amazon-cloudwatch-rum-applications-client-side-performance/
10. CloudWatch Metrics Insights: https://aws.amazon.com/about-aws/whats-new/2021/11/amazon-cloudwatch-metrics-insights-preview/
11. AWS Karpenter: https://github.com/aws/karpenter
12. S3 Event Notifications with EventBridge: https://aws.amazon.com/blogs/aws/new-use-amazon-s3-event-notifications-with-amazon-eventbridge/
13. S3 Event Notifications for S3 Lifecycle, S3 Intelligent-Tiering, object tags, and object access control lists: https://aws.amazon.com/about-aws/whats-new/2021/11/amazon-s3-event-notifications-s3-lifecycle-intelligent-tiering-object-tags-object-access-control-lists/
14. Amazon Athena ACID Transactions (Preview): https://aws.amazon.com/about-aws/whats-new/2021/11/amazon-athena-acid-apache-iceberg/
15. AWS Control Tower introduces Terraform account provisioning and customization: https://aws.amazon.com/about-aws/whats-new/2021/11/aws-control-tower-terraform/

Leave a comment here or connect with us on Twitter:

- https://twitter.com/eoins
- https://twitter.com/loige

In this special episode, Eoin and Luciano talk about their wishlist for AWS re:invent 2021. Based on our experience and personal AWS pain points, we share some of our wishes for new announcements during the biggest cloud event of the year. We also discuss some of the biggest announcements of last year and a few tips on how to get ready to follow the announcements of the next few days.

CORRECTION: The changes in data transfer were not reported accurately in this episode. The monthly data transfer free tier limit has changed from 1 GB/month per region to 100GB/month for all regions. Data transfer out of CloudFront is now free for 1TB/month, up from 50GB/month. See the official announcements linked below.

In this episode we mentioned the following resources:

- Serverless Airline booking app example: https://github.com/aws-samples/aws-serverless-airline-booking

- AWS Wild Rydes example: http://www.wildrydes.com/

- AWS Workshops: https://workshops.aws/

- Data transfer free tier increase:  1) https://aws.amazon.com/blogs/aws/aws-free-tier-data-transfer-expansion-100-gb-from-regions-and-1-tb-from-amazon-cloudfront-per-month/ and 2) https://aws.amazon.com/about-aws/whats-new/2021/11/aws-price-reduction-data-transfers-internet/

- Export Amplify projects to CDK: https://aws.amazon.com/about-aws/whats-new/2021/11/aws-amplify-export-amplify-backends-cdk-stacks-integrate-cdk-based-pipelines/

- CDK hotswap: https://aws.amazon.com/about-aws/whats-new/2021/11/aws-cdk-new-releases-api-apprunner-hotswap-amazon-ecs-step-functions

- Partial SQS batch response: https://aws.amazon.com/about-aws/whats-new/2021/11/aws-lambda-partial-batch-response-sqs-event-source/

This episode is also available on YouTube: https://www.youtube.com/AWSBites

You can listen to AWS Bites wherever you get your podcasts:

- Apple Podcasts: https://podcasts.apple.com/us/podcast/aws-bites/id1585489017

- Spotify: https://open.spotify.com/show/3Lh7PzqBFV6yt5WsTAmO5q

- Google: https://podcasts.google.com/feed/aHR0cHM6Ly9hbmNob3IuZm0vcy82YTMzMTJhMC9wb2RjYXN0L3Jzcw==

- Breaker: https://www.breaker.audio/aws-bites

- RSS: ​​https://anchor.fm/s/6a3312a0/podcast/rss

Do you have any AWS questions you would like us to address? Connect with us on Twitter:

- https://twitter.com/eoins

- https://twitter.com/loige

In this episode, Eoin and Luciano talk about how to manage AWS credentials and different ways to manage them. From the more traditional (and not recommended) IAM credentials to SSO.

In this episode we mentioned the following resources:

- GitHub integration with OIDC: https://docs.github.com/en/actions/deployment/security-hardening-your-deployments/configuring-openid-connect-in-amazon-web-services

- MFA access for assumed roles: https://docs.aws.amazon.com/IAM/latest/UserGuide/id_credentials_mfa_configure-api-require.html

- AWS vault: https://github.com/99designs/aws-vault

- AWS SSO utils: https://github.com/benkehoe/aws-sso-util

- AWS SSO export credentials: https://github.com/benkehoe/aws-export-credentials

This episode is also available on YouTube: https://www.youtube.com/AWSBites

You can listen to AWS Bites wherever you get your podcasts:

- Apple Podcasts: https://podcasts.apple.com/us/podcast/aws-bites/id1585489017

- Spotify: https://open.spotify.com/show/3Lh7PzqBFV6yt5WsTAmO5q

- Google: https://podcasts.google.com/feed/aHR0cHM6Ly9hbmNob3IuZm0vcy82YTMzMTJhMC9wb2RjYXN0L3Jzcw==

- Breaker: https://www.breaker.audio/aws-bites

- RSS: ​​https://anchor.fm/s/6a3312a0/podcast/rss

Do you have any AWS questions you would like us to address?

Leave a comment here or connect with us on Twitter:

- https://twitter.com/eoins
- https://twitter.com/loige

In this episode, Luciano and Eoin discuss the good and the bad of the AWS Management Console (a.k.a. the web console) and why you should consider migrating to Infrastructure as Code (IaC) as soon as possible, especially for your production applications.

In this episode we mentioned the following resources:

- Cloudformation: https://aws.amazon.com/cloudformation/

- CDK: https://aws.amazon.com/cdk/

- Serverless Framework: https://www.serverless.com/

- SAM: https://aws.amazon.com/serverless/sam

- Terraform: https://www.terraform.io/

- Former2: https://former2.com/

- Import or create (e.g. if the resource already exists in production). With CDK: https://loige.co/create-resources-conditionally-with-cdk

This episode is also available on YouTube: https://www.youtube.com/AWSBites

You can listen to AWS Bites wherever you get your podcasts:

- Apple Podcasts: https://podcasts.apple.com/us/podcast/aws-bites/id1585489017

- Spotify: https://open.spotify.com/show/3Lh7PzqBFV6yt5WsTAmO5q

- Google: https://podcasts.google.com/feed/aHR0cHM6Ly9hbmNob3IuZm0vcy82YTMzMTJhMC9wb2RjYXN0L3Jzcw==

- Breaker: https://www.breaker.audio/aws-bites

- RSS: ​​https://anchor.fm/s/6a3312a0/podcast/rss

Do you have any AWS questions you would like us to address?

Leave a comment here or connect with us on Twitter:

- https://twitter.com/eoins

- https://twitter.com/loige

In this episode, Eoin and Luciano try to explain whether you should consider Lambda or Fargate for containers.

We start by clarifying what we really mean by containers and what kind of container support you get in both Lambda and Fargate. Then we go into more detail about the characteristics of both services including limits and pricing. By the end of this episode you should be able to understand how the two services compare and which one might be more suitable for your next project!

In this episode we mentioned the following resources:

• AWS Lambda: https://aws.amazon.com/lambda/
• AWS Fargate: https://aws.amazon.com/fargate/
• Container Image Support in AWS Lambda Deep Dive: https://dev.to/eoinsha/container-image-support-in-aws-lambda-deep-dive-2keh
• Container Image Support on AWS Lambda Bridges the Gap to Much Wider Adoption: https://www.fourtheorem.com/blog/container-image-lambda
• Lambda, EC2 or Fargate? https://eoins.medium.com/lambda-ec2-or-fargate-1e4a4f633cd2
• Why AWS Lambda pricing has to change for the enterprise: https://www.infoq.com/articles/aws-lambda-price-change/

This episode is also available on YouTube: https://www.youtube.com/AWSBites

You can listen to AWS Bites wherever you get your podcasts:

• Apple Podcasts: https://podcasts.apple.com/us/podcast/aws-bites/id1585489017
• Spotify: https://open.spotify.com/show/3Lh7PzqBFV6yt5WsTAmO5q
• Google: https://podcasts.google.com/feed/aHR0cHM6Ly9hbmNob3IuZm0vcy82YTMzMTJhMC9wb2RjYXN0L3Jzcw==
• Breaker: https://www.breaker.audio/aws-bites
• RSS:
  
  https://anchor.fm/s/6a3312a0/podcast/rss

Do you have any AWS questions you would like us to address?

Leave a comment here or connect with us on Twitter:

• https://twitter.com/eoins
• https://twitter.com/loige

In this episode, Eoin and Luciano try to answer a beginner question: how to get started with AWS. Special thanks to Adam Mann (https://www.linkedin.com/in/adam-e-mann/) for suggesting this question!

AWS is so big that it doesn’t make any sense to try to learn it all! It’s better to learn the fundamentals and then focus on specific areas of interest to get the best out of AWS.

But what are these fundamentals and where do I start if I have a background as a web developer? Check out this episode to find out!

In this episode we mentioned the following resources:

• IAM: https://aws.amazon.com/iam/
• S3: https://aws.amazon.com/s3/
• CloudFormation: https://aws.amazon.com/cloudformation/
• The Serverless framework: https://www.serverless.com/

This episode is also available on YouTube: https://www.youtube.com/AWSBites

You can listen to AWS Bites wherever you get your podcasts:

• Apple Podcasts: https://podcasts.apple.com/us/podcast/aws-bites/id1585489017
• Spotify: https://open.spotify.com/show/3Lh7PzqBFV6yt5WsTAmO5q
• Google: https://podcasts.google.com/feed/aHR0cHM6Ly9hbmNob3IuZm0vcy82YTMzMTJhMC9wb2RjYXN0L3Jzcw==
• Breaker: https://www.breaker.audio/aws-bites
• RSS: https://anchor.fm/s/6a3312a0/podcast/rss

Do you have any AWS questions you would like us to address?

Leave a comment here or connect with us on Twitter:

• https://twitter.com/eoins
• https://twitter.com/loige

In this Halloween-themed episode, Eoin and Luciano tell some AWS horror stories! Get ready for some trick or treat!

Of course we have to start with billing and we tell some of our failures with predicting cost ending up with a nightmarishly bad billing surprise! We also discuss some horror stories from the perspective of AWS developer experience and finally we touch on some Cloudformation terrors!

In this episode we mentioned the following resources:

• AWS NAT Gateway: https://docs.aws.amazon.com/vpc/latest/userguide/vpc-nat-gateway.html
• AWS High Performance Block Storage https://aws.amazon.com/ebs/
• Cloudformation UPDATE_ROLLBACK_FAILED state: https://aws.amazon.com/premiumsupport/knowledge-center/cloudformation-update-rollback-failed/

This episode is also available on YouTube: https://www.youtube.com/AWSBites

You can listen to AWS Bites wherever you get your podcasts:

- Apple Podcasts: https://podcasts.apple.com/us/podcast/aws-bites/id1585489017

- Spotify: https://open.spotify.com/show/3Lh7PzqBFV6yt5WsTAmO5q

- Google: https://podcasts.google.com/feed/aHR0cHM6Ly9hbmNob3IuZm0vcy82YTMzMTJhMC9wb2RjYXN0L3Jzcw==

- Breaker: https://www.breaker.audio/aws-bites

- RSS: ​​https://anchor.fm/s/6a3312a0/podcast/rss

Do you have any AWS questions you would like us to address?

Leave a comment here or connect with us on Twitter:

- https://twitter.com/eoins