Managing secrets for your backend application and keeping them secure is a tough matter. In this article, I will discuss how we approached and solved this problem, using the power of CodeDeploy scripts and S3 storage.
CodeDeploy: AWS CodeDeploy is a fully managed deployment service that automates software deployments to a variety of compute services such as Amazon EC2, AWS Fargate, AWS Lambda, and your on-premises servers.
The official AWS WAF (Web Application Firewall) definition by AWS:
AWS WAF is a web application firewall that helps protect your web applications or APIs against common web exploits that may affect availability, compromise security, or consume excessive resources.
In other words, setting up a WAF would not only help you monitor and track the requests reaching your AWS resources, but could let you block or allow them to pass based on a set of rules you specify. That would lead to cleaner server application logs, common attacks mitigation, less traffic on the server instances and most importantly, cost cutting.
Riad Rifai
Full stack developer; interest in cloud solutions and devOps.
