Managing secrets for your backend application and keeping them secure is a tough matter. In this article, I will discuss how we approached and solved this problem, using the power of CodeDeploy scripts and S3 storage.

CodeDeploy: AWS CodeDeploy is a fully managed deployment service that automates software deployments to a variety of compute services such as Amazon EC2, AWS Fargate, AWS Lambda, and your on-premises servers.

The official AWS WAF (Web Application Firewall) definition by AWS:

AWS WAF is a web application firewall that helps protect your web applications or APIs against common web exploits that may affect availability, compromise security, or consume excessive resources.

In other words, setting up a WAF would not only help you monitor and track the requests reaching your AWS resources, but could let you block or allow them to pass based on a set of rules you specify. That would lead to cleaner server application logs, common attacks mitigation, less traffic on the server instances and most importantly, cost cutting.

Riad Rifai

Full stack developer; interest in cloud solutions and devOps.

Get the Medium app

A button that says 'Download on the App Store', and if clicked it will lead you to the iOS App store
A button that says 'Get it on, Google Play', and if clicked it will lead you to the Google Play store