What you’ll learn The problem BFF solves If multiple clients (web, mobile, partner apps) call the same “generic” backend, you often end up with: Backend for Frontend (BFF) fixes this by creating a backend tailored to a specific frontend: BFF in one sentence A BFF is a client-specific backend that aggregates and shapes data exactly… Read More »
This blog provides a comprehensive overview of one of the most popular serverless architectural patterns on AWS: a REST API powered by API Gateway, AWS Lambda, and DynamoDB. This pattern is ideal for building scalable, cost-effective CRUD (Create, Read, Update, Delete) APIs without managing any servers. 1. Architecture Overview The flow is designed for high… Read More »
Introduction Once SAML SSO authentication is complete and an auth code has been generated, the next critical phase begins: Authorization. This comprehensive guide explores how the one-time auth code is securely exchanged for access tokens, how those tokens enable API access control through AWS Lambda authorizers, and how role-based permissions are enforced throughout the system.… Read More »
Introduction Single Sign-On (SSO) has become the cornerstone of secure enterprise authentication, enabling users to access multiple applications with a single set of credentials. This comprehensive guide explores the implementation of SAML (Security Assertion Markup Language) SSO in a real-world financial services scenario where TechCorp acts as an Identity Provider (IdP) for users accessing the… Read More »
AWS Serverless Application Model (SAM) is a framework for building serverless applications on AWS. SAM provides a simplified way of defining the Amazon API Gateway APIs, AWS Lambda functions, and Amazon DynamoDB tables needed by your serverless application. SAM also provides a command-line interface (CLI) for deploying and managing your serverless application on AWS. In… Read More »