apigw-lambda-dsql

Author: jojo786

apigw-lambda-dsql/README.md

@@ -0,0 +1,60 @@
+# AWS Service 1 to AWS Service 2
+
+This pattern << explain usage >>
+
+Learn more about this pattern at Serverless Land Patterns: << Add the live URL here >>
+
+Important: this application uses various AWS services and there are costs associated with these services after the Free Tier usage - please see the [AWS Pricing page](https://aws.amazon.com/pricing/) for details. You are responsible for any AWS costs incurred. No warranty is implied in this example.
+
+## Requirements
+
+* [Create an AWS account](https://portal.aws.amazon.com/gp/aws/developer/registration/index.html) if you do not already have one and log in. The IAM user that you use must have sufficient permissions to make necessary AWS service calls and manage AWS resources.
+* [AWS CLI](https://docs.aws.amazon.com/cli/latest/userguide/install-cliv2.html) installed and configured
+* [Git Installed](https://git-scm.com/book/en/v2/Getting-Started-Installing-Git)
+* [AWS Serverless Application Model](https://docs.aws.amazon.com/serverless-application-model/latest/developerguide/serverless-sam-cli-install.html) (AWS SAM) installed
+
+## Deployment Instructions
+
+1. Create a new directory, navigate to that directory in a terminal and clone the GitHub repository:
+    ``` 
+    git clone https://github.com/aws-samples/serverless-patterns
+    ```
+1. Change directory to the pattern directory:
+    ```
+    cd _patterns-model
+    ```
+1. From the command line, use AWS SAM to deploy the AWS resources for the pattern as specified in the template.yml file:
+    ```
+    sam deploy --guided
+    ```
+1. During the prompts:
+    * Enter a stack name
+    * Enter the desired AWS Region
+    * Allow SAM CLI to create IAM roles with the required permissions.
+
+    Once you have run `sam deploy --guided` mode once and saved arguments to a configuration file (samconfig.toml), you can use `sam deploy` in future to use these defaults.
+
+1. Note the outputs from the SAM deployment process. These contain the resource names and/or ARNs which are used for testing.
+
+## How it works
+
+Explain how the service interaction works.
+
+## Testing
+
+Provide steps to trigger the integration and show what should be observed if successful.
+
+## Cleanup
+ 
+1. Delete the stack
+    ```bash
+    aws cloudformation delete-stack --stack-name STACK_NAME
+    ```
+1. Confirm the stack has been deleted
+    ```bash
+    aws cloudformation list-stacks --query "StackSummaries[?contains(StackName,'STACK_NAME')].StackStatus"
+    ```
+----
+Copyright 2024 Amazon.com, Inc. or its affiliates. All Rights Reserved.
+
+SPDX-License-Identifier: MIT-0

apigw-lambda-dsql/example-pattern.json

@@ -0,0 +1,62 @@
+{
+  "title": "Amazon API Gateway, AWS Lambda and Amazon Aurora DSQL",
+  "description": "Creates an API Gateway REST API integrated with an AWS Lambda function that connects to an Amazon Aurora DSQL PostgreSQL cluster",
+  "language": "Python",
+  "level": "200",
+  "framework": "AWS SAM",
+  "introBox": {
+    "headline": "How it works",
+    "text": [
+      "This sample project demonstrates how to use a Lambda function (invoked by API Gateway), that stores and retrieves data from an Amazon Aurora DSQL PostgreSQL cluster.",
+      "Aurora DSQL enables you to build always available applications with virtually unlimited scalability, the highest availability, and zero infrastructure management.",
+      "This pattern deploys a API Gateway REST API, Lambda function and an Aurora DSQL PostgreSQL cluster."
+    ]
+  },
+  "gitHub": {
+    "template": {
+      "repoURL": "https://github.com/aws-samples/serverless-patterns/tree/main/apigw-lambda-dsql",
+      "templateURL": "serverless-patterns/apigw-lambda-dsql",
+      "projectFolder": "apigw-lambda-dsql",
+      "templateFile": "template.yaml"
+    }
+  },
+  "resources": {
+    "bullets": [
+      {
+        "text": "Amazon Aurora DSQL, the fastest serverless distributed SQL database is now generally available",
+        "link": "https://aws.amazon.com/blogs/aws/amazon-aurora-dsql-is-now-generally-available/"
+      },
+      {
+        "text": "DSQL Vignette: Aurora DSQL, and A Personal Story",
+        "link": "https://brooker.co.za/blog/2024/12/03/aurora-dsql.html/"
+      },
+      {
+        "text": "Amazon Aurora DSQL samples",
+        "link": "https://github.com/aws-samples/aurora-dsql-samples/tree/main/python"
+      }
+    ]
+  },
+  "deploy": {
+    "text": [
+      "sam deploy"
+    ]
+  },
+  "testing": {
+    "text": [
+      "See the GitHub repo for detailed testing instructions."
+    ]
+  },
+  "cleanup": {
+    "text": [
+      "sam delete"
+    ]
+  },
+  "authors": [
+    {
+      "name": "Yusuf Mayet",
+      "image": "https://d2908q01vomqb2.cloudfront.net/9e6a55b6b4563e652a23be9d623ca5055c356940/2021/11/24/Yusuf-mayet-aws.jpg",
+      "bio": "I am a Solutions Architect at AWS, where I help customers realise that true transformation lies at the intersection of Cloud, DevOps cultural practices, Agile principles, modular and scalable architectures, and efficient team structures.",
+      "linkedin": "yusufmayet"
+    }
+  ]
+}

apigw-lambda-dsql/src/app.py

@@ -0,0 +1,74 @@
+#Copyright Amazon.com, Inc. or its affiliates. All Rights Reserved.
+#SPDX-License-Identifier: MIT-0
+
+import json
+import boto3
+import psycopg2
+import psycopg2.extensions
+import os
+
+cluster_endpoint = os.environ['cluster_endpoint']
+region = os.environ['AWS_REGION']
+
+client = boto3.client("dsql", region_name=region)
+
+def lambda_handler(event, context):
+    # Generate a fresh password token for each connection, to ensure the token is not expired when the connection is established
+    password_token = client.generate_db_connect_admin_auth_token(cluster_endpoint, region)
+
+    conn_params = {
+        "dbname": "postgres",
+        "user": "admin",
+        "host": cluster_endpoint,
+        "port": "5432",
+        "sslmode": "require",
+        "password": password_token
+    }
+
+     # Use the more efficient connection method if it's supported.
+    if psycopg2.extensions.libpq_version() >= 170000:
+        conn_params["sslnegotiation"] = "direct"
+
+     # Make a connection to the cluster
+    conn = psycopg2.connect(**conn_params)
+
+    try:
+        with conn.cursor() as cur:
+            conn.commit()
+    except Exception as e:
+        conn.close()
+        raise e
+
+    conn.set_session(autocommit=True)
+
+    cur = conn.cursor()
+    
+    cur.execute("DROP TABLE IF EXISTS users")
+    
+    cur.execute(b"""
+        CREATE TABLE IF NOT EXISTS users(
+            id uuid NOT NULL DEFAULT gen_random_uuid(),
+            name varchar(30) NOT NULL,
+            city varchar(80) NOT NULL,
+            telephone varchar(20) DEFAULT NULL,
+            PRIMARY KEY (id))"""
+        )
+
+    # Insert some rows
+    cur.execute("INSERT INTO users(name, city, telephone) VALUES('John', 'LA', '555-555-0150')")
+
+    # Read back what we have inserted
+    cur.execute("SELECT * FROM users")
+    row = cur.fetchone()
+    print(row)
+
+    # return JSON back to API Gateway
+    return {
+        'statusCode': 200,
+        'body': json.dumps({
+            'id': str(row[0]),
+            'name': row[1],
+            'city': row[2],
+            'telephone': row[3]
+        })
+    }

apigw-lambda-dsql/src/requirements.txt

@@ -0,0 +1,3 @@
+psycopg2-binary>=2.9
+botocore>=1.35.74
+boto3>=1.35.74

apigw-lambda-dsql/template.yaml

@@ -0,0 +1,58 @@
+AWSTemplateFormatVersion: '2010-09-09'
+Transform: AWS::Serverless-2016-10-31
+Description: Serverless patterns - Amazon API Gateway, AWS Lambda and Amazon Aurora DSQL
+
+# More info about Globals: https://github.com/awslabs/serverless-application-model/blob/master/docs/globals.rst
+# Global values that are applied to all applicable resources in this template
+Globals:
+  Function:
+    CodeUri: ./src
+    Runtime: python3.13
+    MemorySize: 128
+    Timeout: 3
+    LoggingConfig:
+      LogGroup: !Sub /aws/lambda/${AWS::StackName}
+      LogFormat: JSON
+    Architectures:
+      - arm64
+    Tags:
+      project: "apigw-lambda-dsql"  
+    
+Resources:
+  UsersFunction:
+    Type: AWS::Serverless::Function # More info about Function Resource: https://github.com/awslabs/serverless-application-model/blob/master/versions/2016-10-31.md#awsserverlessfunction
+    Properties:
+      Handler: app.lambda_handler
+      Policies: # Creates an IAM Role that defines the services the function can access and which actions the function can perform
+        - Statement:
+            - Effect: Allow
+              Action:
+                - dsql:DbConnectAdmin
+              Resource:
+                - !Sub arn:${AWS::Partition}:dsql:${AWS::Region}:${AWS::AccountId}:cluster/${DSQL}
+      Environment: # Function environment variables
+        Variables:
+          REGION: !Sub ${AWS::Region}
+          cluster_endpoint: !Sub ${DSQL}.dsql.${AWS::Region}.on.aws
+      Events:
+        Users:
+          Type: Api # More info about API Event Source: https://github.com/awslabs/serverless-application-model/blob/master/versions/2016-10-31.md#api
+          Properties:
+            Path: /users
+            Method: get
+
+  DSQL:
+    Type: AWS::DSQL::Cluster
+    Properties:
+      DeletionProtectionEnabled: false
+      Tags:
+        - Key: project
+          Value: "apigw-lambda-dsql"
+
+Outputs:
+  # ServerlessRestApi is an implicit API created out of Events key under Serverless::Function
+  # Find out more about other implicit resources you can reference within SAM
+  # https://github.com/awslabs/serverless-application-model/blob/master/docs/internals/generated_resources.rst#api
+  UsersApi:
+    Description: API Gateway endpoint URL for Prod stage for Users function
+    Value: !Sub "https://${ServerlessRestApi}.execute-api.${AWS::Region}.amazonaws.com/Prod/users/"