Chapter 9. Implementing an authentication service
This chapter covers
- Implementing the serverless architecture for a sample authentication service
- Creating the back end using Lambda functions
- Using HTML with JavaScript running in a browser to implement the client application
- Using AWS CLI to automate initialization and deployment
- Having a central configuration and sharing code among multiple Lambda functions
- Using Amazon SES to send emails without servers to manage
In the previous chapter, you designed the serverless architecture for a sample authentication service that you can use to create new users, validate email, change or reset passwords, and log in as an Amazon Cognito Developer Authenticated Identity.
You learned many things in the previous chapters, and this is the right time to use that knowledge in a more complex scenario. You now know how to create Lambda functions, call them from client applications, and subscribe their execution to events happening on AWS, such as a new or updated file on Amazon S3 or a file written to a database on Amazon DynamoDB.
It’s time to implement such a service using multiple Lambda functions together with Amazon DynamoDB to store user profiles, and Amazon Simple Email Service (SES) to deliver emails for validation, as described in figure 9.1.