AWS API Gateway - Use Client-Side SSL Certificates

I am trying to test API Gateway certificates locally to provide a proof of concept with no luck.I have created a localhost IIS server and configured it up using the following help pages (provided by AWS support team): https://medium.com/@hafizmohammedg/configuring-client-certificates-on-iis-95aef4174ddbhttps://blogs.msdn.microsoft.com/asiatech/2014/02/12/how-to-configure-iis-client-certificate-mapping-authentication-for-iis7/In a nutshell, my IIS is setup to use a test website, that has Anonymous access disabledSSL settings set to requiredConfiguration editor configured to ...

Authorizing AWS API Gateway requests from token in query string

I have API Gateway set up with a Cognito authorizer that correctly authorizes any request with the id token in the header. This is fine when requests are XHR based as I can add the header when preparing the request. However I can't add this when using <audio src="http://api-gateway/..."> which is made directly by the browser.The best I can do is append the token in the querystring (?token=...) but Cognito only accepts tokens in the headers. Is there any way to get Cognito to authorize requests when they come from HTML/CSS? Unfortunately API Gateway does not support...

AWS Custom Domain Name for Lambdas

I'm working with AWS Lambdas and I deploy them using Serverless. Everytime I deploy any function I receive this kind of URL to hit the service:https://mh6r122dq1.execute-api.us-east-1.amazonaws.com/{stage}/{function}where 'stage' is either dev or qa, and 'function' is the name of my lambda function.I'm trying to access to my lambdas using a more friendly URL. I followed this tutorial from AWS docs:http://docs.aws.amazon.com/apigateway/latest/developerguide/how-to-custom-domains.htmlI can not make it work. I have already the certificates created, my company did it. So to me,...

AWS Elastic Beanstalk - add load balancer to app retroactively

I got a new domain and want to change my Elastic Beanstalk app name from domain-name.elasticbeanstalk.com to www.domain-name.com. When I created the EB app, I chose Single Instance.I followed these instructions to set up the domain. I selected my load balancer, but my domain seems to map to another app I have. This seems to be because I only created one load balancer with another EB app, and not the current app I am trying to map the domain to.My questions are:1) How can I use the single load balancer (associated with a different app) to point the domain correctly? This is ...

Subdomain pointing to EC2 instance while domain is on S3

I have a root domain like example.com. It's now hosted on Amazon S3. For that I followed this tutorial:http://docs.aws.amazon.com/AmazonS3/latest/dev/website-hosting-custom-domain-walkthrough.htmlWhat would I have to do to have a subdomain like client.example.com to point to a EC2 instance? client.example.com => ec2-XXX.us-west-2.compute.amazonaws.comIs there like a tutorial out there explaining the steps? Two simple steps:You would just need to add a new 'A' record to assign the ec2 ip address to that subdomain in your amazon route 53 dns (or whatever dns provider you a...

Is it possible to make an HTTP request from one Lambda function, and handle the response in another?

AWS Lambda functions are supposed to respond quickly to events. I would like to create a function that fires off a quick request to a slow API, and then terminates without waiting for a response. Later, when a response comes back, I would like a different Lambda function to handle the response. I know this sounds kind of crazy, when you think about what AWS would have to do to hang on to an open connection from one Lambda function and then send the response to another, but this seems to be very much in the spirit of how Lambda was designed to be used.Ideas:Send messages to ...

Store data in AWS SimpleDB with a html form, is it possible?

I'm noob with AWS and I need help to store data in simpleDB, I really dont know how to begin. Is there a way (tutorial, examples) to do this?I've been searching on amazon docs but I don't understand anything. I need help please.What I need is a html form to send data to simpleDB (insert, delete, update). Any help is greatly appreciated. Amazon SimpleDB can be useful for those who need a non-relational database for storage of smaller, non-structural data. Amazon SimpleDB has restricted storage size to 10GB per domain and it can achieve up to 25 writes/second. Amazon Simpl...

How to determine that a jvm app does more GC than normal work?

We recently had a problem that our EC2 instances had 90-100 percent cpu load cause of a bug in a library we include that created to many objects instead of reusing them (which was easy solvable), so we spent too much time in GC.Unfortunately the AWS health checks and instance status metrics didn't cause the overloaded instances to be stopped and then new ones restarted, so after some time we hit the max autoscaling number and....died. Also our own health checks inside the app which are used for the ELB are so simple that they answered often enough to obviously not cause the...

AWS EBS Snapshot to EFS

We are in the process of migrating from EBS to EFS for our data storage solution. We are having Terabytes of data. Currently we are mounting the EFS to the same EC2 instance and running a copying/rsync operation to copy data from EBS to EFS. Just wanted to know if there is a way to restore a EBS Snapshot directly to EFS so complete data set goes to EFS. As of today, the only option is to attach the EFS to the EC2 instances and copy or rsync the data.You are already doing this. You may want to write a script to perform these operations across all your EBS volumes to hel...

AWS Application Load Balancing: Seeing extremely long initial connection time

From observer's perspective, symptoms are identical to the issue hereScenario is the same as well: Angular app which sends preflight requests to REST api, and preflight requests take in roughly 50% of times up to 1.3 seconds (illustration is the same as in the linked question).Also, websocket was frequently timing out until socket-io finally succeeded in establishing connection. Problem was more pronounced in Chrome and less in Safari/Firefox.However, we are using ALB and not ELB, and all our subnets are public. Solution we found working was that all subnets needed to go...

AWS: None of the Instances are sending data

I'm trying to set up an Elastic Beanstalk application with Amazon Web Services however I'm receiving a load of errors with the message None of the instances are sending data. I've tried deleting the Elastic Beanstalk Application and the EC2 instance several times with the sample application and trying again but I get the same error.I also tried uploading a flask application with AWS Elastic Beanstalk command line tools but then I received the error below:Environment health has transitioned from Pending to Severe. 100.0 % of the requests to the ELB are failing with HTTP 5xx....

AWS CLI using Instance Profile Credentials

How do I specify that I want to use Instance profile credentials when using the AWS CLI from within my EC2 instance? the docs say:Instance profile credentials – these credentials can be used on EC2instances with an assigned instance role, and are delivered throughthe Amazon EC2 metadata service.Is this automatic or do I need to call the metadata service and save the returned credentials to the ~/.aws/credentials file...then make the call? You are talking about IAM Roles. These are attached to the EC2 instance and the keys are rolled/rotated every four hours.You do not ne...

AWS Beanstalk environment creation issue.Failed to launch environment.Environment must have instance profile associated with it

I am trying to create environment in AWS Elastic Beanstalk Application using both CLI and Java API. After running the CLI command I am seeing the following error logs in the AWS console,2017-07-18 10:26:22 UTC+0530 INFO Deleting SNS topic for environment MySampleApplicationThree-env.2017-07-18 10:26:20 UTC+0530 ERROR Failed to launch environment.2017-07-18 10:26:20 UTC+0530 ERROR Environment must have instance profile associated with it.2017-07-18 10:26:19 UTC+0530 INFO Using elasticbeanstalk-ap-south-1-839135229895 as Amazon S3 storage bucket for envi...

Ansible file module error - chown failed: failed to look up user

I am trying to change the owner of a file using file module. I tried this piece of code:---- hosts: super_group remote_user: ec2-user tasks: - name: Checking the user name shell: /usr/bin/whoami register: username - name: Debugging the whoami username debug: msg={{ username }} - name: Changing the owner of a file file: path=/home/ec2-user/test owner={{ username }}Error:TASK [Changing the owner of a file] ********************************************fatal: [test]: FAILED! => {"changed": false, "failed": true, "gid": 0, "group": "root", "mode": "0644", "msg...

Deleted Route53 Hosted zone then recreated. Doesn't work?

I can't really figure this out and have scoured all through Amazon's documentation looking for anything and still can't get it. I'm hoping someone has dealt with this before.So I was trying to get a Route53 domain to forward to an S3 bucket. The default 'Hosted Zone' that Route53 makes after registering a domain didn't seem to get the Alias of my S3 bucket, and the Amazon instructions said to make a new Hosted zone. So I deleted the Hosted Zone made by default and made a new one, which it then could get the alias to my S3 bucket and I set it up to forward to my S3 bucket.Bu...

Make domain purchased on dataflame resolve to Elastic Beanstalk application Pricing

I have an application deployed via amazon Elastic Beanstalk, and a domain bought on dataflame.co.ukNow, what I want to do is to make the domain name on dataflame resolve to my application on Elastic Beanstalk.I figured out that there's two ways I can do that:1 - create an hosted zone on Route 53 and a traffic policy that will resolve the DNS to my EB application, and then modifying the NAME SERVERS pointer on dataflame to make it point to the Route 53 ones.Cost of the operation: 50$/month2 - migrate the domain from dataflame to Route 53, this is what amazon suggests, but th...

Page 1 of 783  |  Show More Pages:  Top Prev Next Last