Serverless To-Do List Application

This project demonstrates a serverless application architecture using AWS services. It's a simple To-Do List application that showcases:

AWS Lambda - For serverless compute
API Gateway - For API management
AWS WAF - For API security
IAM - For secure access control
CloudWatch - For logging and monitoring

Additional services:

DynamoDB for data storage
AWS Amplify for hosting the frontend
GitHub Actions for CI/CD

Architecture Overview

The application follows a serverless architecture pattern:

React frontend hosted on AWS Amplify
API Gateway providing RESTful endpoints
Lambda functions for backend business logic
DynamoDB for data persistence
WAF for API protection
CloudWatch for monitoring and logging

Features

Create, read, update, and delete to-do items
Secure API with API keys and WAF protection
Automated deployments with GitHub Actions
Comprehensive logging with CloudWatch

Prerequisites

AWS Account
GitHub Account
AWS CLI installed and configured
Node.js and npm
AWS SAM CLI

Local Development

Clone the repository:

git clone https://github.com/yourusername/todo-serverless-app.git
cd todo-serverless-app

Install dependencies:

# For Lambda functions
cd lambda
npm init -y
npm install aws-sdk uuid
cd ..

# For frontend
npm install

Start the frontend locally:
```
npm start
```
Test Lambda functions locally:
```
sam local invoke GetTodosFunction
```

Deployment

Manual Deployment

Deploy the backend with SAM:
```
sam build
sam deploy --guided
```

Build and deploy the frontend to Amplify:

npm run build
# Then deploy to Amplify Console manually or using the AWS CLI

Automated Deployment with GitHub Actions

Set up the following secrets in your GitHub repository:
- AWS_ACCESS_KEY_ID
- AWS_SECRET_ACCESS_KEY
- AWS_REGION

Push changes to the main branch to trigger the workflow:

git add .
git commit -m "Update application"
git push origin main

Security Considerations

This application implements several security measures:

IAM roles with least privilege principle
API Keys for API access control
WAF for protecting against common web exploits
CloudWatch logging for audit and monitoring

Monitoring and Logging

All Lambda functions log to CloudWatch Logs
API Gateway access logs are stored in CloudWatch
WAF logs are available for security monitoring

Name		Name	Last commit message	Last commit date
Latest commit History 15 Commits
.aws-sam		.aws-sam
.github/workflows		.github/workflows
lambda		lambda
node_modules		node_modules
public		public
todo-frontend		todo-frontend
README.md		README.md
amplify.yml		amplify.yml
package-lock.json		package-lock.json
package.json		package.json
samconfig.toml		samconfig.toml
template.yaml		template.yaml
template.yaml.backup		template.yaml.backup

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Repository files navigation

Serverless To-Do List Application

Architecture Overview

Features

Prerequisites

Local Development

Deployment

Manual Deployment

Automated Deployment with GitHub Actions

Security Considerations

Monitoring and Logging

About

Uh oh!

Releases

Packages

Uh oh!

Uh oh!

Contributors

Uh oh!

Languages

Folders and files

Latest commit

History

Repository files navigation

Serverless To-Do List Application

Architecture Overview

Features

Prerequisites

Local Development

Deployment

Manual Deployment

Automated Deployment with GitHub Actions

Security Considerations

Monitoring and Logging

About

Resources

Uh oh!

Stars

Watchers

Forks

Releases

Packages 0

Uh oh!

Uh oh!

Contributors

Uh oh!

Languages

Packages