A Pyle of Stories

Extending and Customizing the JWT from Cognito via AWS Lambda using Go

Posted on February 4, 2023by Benjamen Pyle

I’ve been working a lot lately with Cognito and User Pools in AWS as I’ve been wanting to migrate and existing app into a serverless Identity and Access provider. The promise of Cognito is this “Implement secure, frictionless customer identity and access management that scales” – AWS

Honestly there are so many identity providers out there. This article won’t go into the alternatives and other options out there but will specifically touch upon something that I know was a big question for me when I started with Cognito which was, “how can I customize the private claims in a token?”. So let’s discuss that a little further

As usual, if you want to skip straight to code, feel free to jump over to the repository here

AWS Programming Data Go

Unmarshalling a DynamoDB Map into a Go Struct

Posted on February 1, 2023by Benjamen Pyle

Short post on unmarshalling a DynamoDB Map into something strongly typed like a Go struct. If you want to jump straight to some code, here are the Github gists

AWS Programming Data Go Healthlake Infrastructure Programming Serverless

Handling Change with AWS Healthlake

Posted on January 30, 2023by Benjamen Pyle

One of the features that I am currently missing with AWS Healthlake is a proper “event-ing” framework. With DynamoDB you’ve got streams. With RDS you can use DMS. But with Healthlake there is no native change data capture mechanism.

Being that I’m only working on event driven architectures these days, I needed a way to be able to handle change. What I’m going to show you below is not “sanctioned” but it is 100% AWS native and continues with the Serverless theme. With that said, here’s the Github Repository if you just want to jump ahead. The CDK code will deploy a Healthlake instance @ $.27 / hr so please run cdk destroy npx ts-node bin/app.ts` when you are done

AWS AWS Programming Infrastructure Serverless

Mapping AWS State Machine output to API Gateway response with VTL

Posted on January 27, 2023by Benjamen Pyle

This is sort of a continuation back to the previous article I wrote regarding zero code workflows creating Cognito users with Step Functions

Goals of this article are to document some of the tips and things that I picked up along the way.

AWS AWS Programming Infrastructure Programming Serverless

Creating an AWS Cognito User with an Auto-Incrementing ID using AWS Step Functions

Posted on January 25, 2023by Benjamen Pyle

So there are a couple of interesting topics in here.

I’ve been really leaning into code-less workflows with AWS Step Functions and this State Machine has nothing but native SDK integrations which include
- DynamoDB (Put, Delete, Get)
- Cognito/User Pools (AdminCreateUser)
I’ve run into some legacy code that requires a Username to be a bigint and I don’t want to use an RDBMS so I’m using DynamoDB to generate one for me while also being “race condition” proof

As always, if you want to jump straight to the code, here is the Github repository