Learn how to configure AWS Lambda for production and secure the applications you deploy. By the end of this chapter, you will be able to tune Lambda memory, timeout, concurrency, layers, and VPC access, authenticate end users with Amazon Cognito, authorize service-to-service calls with IAM roles, and manage encryption and certificates with AWS KMS, AWS Certificate Manager, and AWS Private CA.
Exercise 1: Configuring AWS Lambda for productionExercise 2: Pick the right error-handling strategyExercise 3: Match Lambda configuration knobs to outcomesExercise 4: Tune a Lambda function for a workloadExercise 5: Authenticating end users with Amazon CognitoExercise 6: Pick the right Cognito tokenExercise 7: Match Cognito components to use casesExercise 8: Identify the federated identity flowExercise 9: Authorizing service access with IAMExercise 10: Pick the right credential strategyExercise 11: Identify the policy that grants accessExercise 12: Classify IAM conceptsExercise 13: Encryption and certificate management on AWSExercise 14: Request an ACM certificateExercise 15: Classify encryption conceptsExercise 16: Pick the right KMS key rotation strategy