Book Image

Building Serverless Microservices in Python

By : Richard Takashi Freeman
Book Image

Building Serverless Microservices in Python

By: Richard Takashi Freeman

Overview of this book

Over the last few years, there has been a massive shift from monolithic architecture to microservices, thanks to their small and independent deployments that allow increased flexibility and agile delivery. Traditionally, virtual machines and containers were the principal mediums for deploying microservices, but they involved a lot of operational effort, configuration, and maintenance. More recently, serverless computing has gained popularity due to its built-in autoscaling abilities, reduced operational costs, and increased productivity. Building Serverless Microservices in Python begins by introducing you to serverless microservice structures. You will then learn how to create your first serverless data API and test your microservice. Moving on, you'll delve into data management and work with serverless patterns. Finally, the book introduces you to the importance of securing microservices. By the end of the book, you will have gained the skills you need to combine microservices with serverless computing, making their deployment much easier thanks to the cloud provider managing the servers and capacity planning.
Table of Contents (13 chapters)
Title Page
Dedication

Securing your serverless microservice

In this section, we are going to talk about the security required to build your first microservice. Specifically, we are going to look at the security around Lambda functions, API Gateway, and DynamoDB, and then we are going to discuss the ways you can use monitoring and alerting upon detecting suspicious events.

Lambda security

In lambda security, there are two types of IAM roles:

  • Invoking the lambda: This means having the permissions to actually invoke and run a lambda function. For example, this could be from an API Gateway or another service.
  • Granting lambda function read and write access to specific AWS resources: For example, you would allow a Lambda function to read from a DynamoDB table...