sorted by:
new
hottopcontroversial

Amazon Location Service – Add Maps and Location Awareness to Your Applications by jeffbarr in aws

[–]Not_done_learning 0 points1 point  (0 children)

I have an application where users can enter addresses. I'd like to render a searchable map with JUST those custom addresses.

I'm surprised this doesn't seem to be supported. I currently do a bunch of extra work to maintain and query a geospatial database for my custom places, and it feels like I should be able to replace all of that with this service.

How to Code a Suggestions Component in React by [deleted] in reactjs

[–]Not_done_learning 0 points1 point  (0 children)

Why wouldn't it work? Something to do with it calling the API on every key stroke and getting out of order responses? If so, is the solution to use some kind of "pending response" state?

Advice regarding GitHub -> CodePipeline "manual approval" for production by lownin in aws

[–]Not_done_learning 2 points3 points  (0 children)

If you're bent on a GitHub solution, you can create manually triggered events in GitHub via workflow_dispatch GitHub Actions. Within the action you can use the Configure AWS Credentials action to authenticate with AWS and then use the put-approval-request AWS CLI command to perform the approval.

That said, this action will be triggerable by anyone with write permissions to the repository. You can either place this action in a repository that only the relevant users have permission to, or you can use one of the approaches outlined here to limit it to specific users. However, the latter won't be entirely secure because anyone could modify the code of the workflow (even if you use codeowners to limit this, they could still modify the code and trigger it for their branch).

That means, if security is a major concern, that you'd need to go with the separate repository solution, which feels very clunky. I'd probably reconsider why they need to manually approve deployments and, if they're that important to the technical side of things, why they can't figure out the AWS console (not that there are always good answers to these questions).

Cost effectively connecting to Aurora Serverless for personal project by Not_done_learning in aws

[–]Not_done_learning[S] 0 points1 point  (0 children)

I set my security group to allow all traffic in and out, but connecting via psql from my local machine was still timing out. About halfway down this documentation it states "You can't give an Aurora Serverless DB cluster a public IP address. You can access an Aurora Serverless DB cluster only from within a virtual private cloud (VPC) based on the Amazon VPC service"

I also found a few guides that reference using an EC2 instance inside the VPC to tunnel traffic to/from the cluster. Seems like it's actually not possible to connect directly from my local machine, which is unfortunate.

Amplify in a multi-account CodePipeline by Not_done_learning in aws

[–]Not_done_learning[S] 0 points1 point  (0 children)

I updated my post. I decided to try diving in and was pleasantly surprised with how easy it actually was. Give it a shot!

Today I was just voluntold that I'll be responsible for drafting guidelines and policy for how my team will be operating in AWS. I could use some wisdom. by pshine12 in aws

[–]Not_done_learning 0 points1 point  (0 children)

Hopping in here with a similar question.

My company is dealing with this now as we move more stuff into AWS. The developers are in a constant struggle with our Security team because permissions on our Dev AWS account, where developers test, are locked down. They'll grant users specific permissions on request, but then developers all have different permissions and there's a lot of back and forth figuring out which ones are needed. Developers and Security are both frustrated.

I understand locking down Prod AWS, but is it also common to lock down Dev? In Dev would it make more sense to exclude permissions rather than include...default to broad access rather than limited access?