Lambda Access Rights

Understand how to assign specific access rights to AWS Lambda functions by modifying IAM policies. Learn to separate functions based on their security needs to reduce risks and manage permissions effectively when connecting to external storage resources.

We'll cover the following...

Security requirements
ShowFormFunction
ProcessFormFunction

Security requirements

AWS does not trust a Lambda function to access a database or an S3 bucket just because they belong to the same account. You need to explicitly allow the use of each external resource from a Lambda function. To do that, you’ll need to modify the IAM policy associated with a function.

Your function currently has two actions:

Displaying a form
Processing the form

The form processing action will need access to an S3 bucket, but the form display action does not need any specific security access. When two different actions need different security levels, it’s usually a good time to start thinking about breaking them into different Lambda functions. ...

1.Getting Started

2.Setup Tools for Local Development

3.Creating a Web Service

Cloud Lab

4.Development and Troubleshooting

5.Core Features of AWS Lambda

6.Handling HTTP Requests

7.Using External Storage

8.Cheaper, Faster, Serverless

9.Handling Platform Events

10.Using Application Components

11.Managing Sessions and User Workflows

12.Designing Robust Applications

13.Deployment Options

Cloud Lab

Lambda Access Rights

Security requirements