Otto Kruse ottokruse
ottokruse
/ cdk-snippet.ts
Created
May 25, 2022 07:55
Create an AWS Lambda Layer that includes pandas and pyarrow
View cdk-snippet.ts
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| // Creating an AWS Lambda Layer with pandas and pyarrow is harder than it might seem, | |
| // as simply `pip install pandas pyarrow` will lead to a deployment package that is > 250 MB | |
| // which is not allowed by AWS Lambda. | |
| // In this snippet, that deployment package is trimmed down, to make it fit (and still work) | |
| import * as lambda from "aws-cdk-lib/aws-lambda"; | |
| const layerInstallCommand = [ | |
| "bash", | |
| "-c", |
View main.py
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| import boto3 | |
| session = boto3.Session() | |
| cognito_client = session.client("cognito-identity") | |
| id_token = "<jwt>" | |
| identity_response = cognito_client.get_id( | |
| IdentityPoolId="<identity pool id>", | |
| Logins={"cognito-idp.<region>.amazonaws.com/<user pool id>": id_token}, # Only need to provide this here as well, if the Identity Pool doesn't allow unauthenticated identities |
View index.ts
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| /** | |
| * Let's say our base type is `Person` and we want to create a type like it, | |
| * where some fields are encrypted into a Buffer instead | |
| */ | |
| type Encrypted<Base, EncryptedFields extends keyof Base> = { | |
| [field in keyof Base]: field extends EncryptedFields ? Buffer : Base[field]; | |
| }; | |
| interface Person { |
ottokruse
/ buildspec.yaml
Created
January 11, 2022 13:34
AWS CLI assume role in AWS CodeBuild through ECS credentials
View buildspec.yaml
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| version: '0.2' | |
| phases: | |
| build: | |
| commands: | |
| - | | |
| cat << EOF > aws_config | |
| [profile test] | |
| role_arn = arn:aws:iam::123456789012:role/my-role-to-assume | |
| role_session_name = IntegrationTest | |
| credential_source = EcsContainer |
ottokruse
/ debounce.ts
Last active
April 21, 2022 13:48
TypeScript debounce that keeps argument types of debounced function
View debounce.ts
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| export function debounce<T extends (...args: any[]) => void>( | |
| func: T, | |
| timeout = 300 | |
| ) { | |
| let timer: ReturnType<typeof setTimeout>; | |
| return (...args: Parameters<T>) => { | |
| if (timer) clearTimeout(timer); | |
| timer = setTimeout(() => func(...args), timeout); | |
| }; | |
| } |
ottokruse
/ cw-metric.ts
Last active
March 3, 2021 08:37
Simple AWS Lambda logger that uses CloudWatch Embedded Metric Format to create custom CloudWatch metrics (TypeScript)
View cw-metric.ts
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| // https://docs.aws.amazon.com/AmazonCloudWatch/latest/monitoring/CloudWatch_Embedded_Metric_Format_Specification.html | |
| export function logCustomMetric(metric: { | |
| dimensions: { | |
| [key: string]: string; | |
| }; | |
| namespace: string; | |
| metrics: { | |
| unit: Unit; | |
| name: string; |
ottokruse
/ package_lambda.py
Created
October 12, 2020 10:44
Package Lambda functions and layers with CDK bundling, use cache to prevent unnecessary docker runs
View package_lambda.py
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| from typing import List | |
| import os | |
| import shutil | |
| import hashlib | |
| import tempfile | |
| from aws_cdk import core, aws_lambda | |
| import jsii | |
| from pathlib import Path | |
ottokruse
/ verify-jwt-rs256.ts
Last active
June 18, 2021 19:27
Verify JWT signature, for RS256 in NodeJS (code in TypeScript). Only needs public key modulus and exponent (i.e. not as PEM/DER)
View verify-jwt-rs256.ts
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| /* | |
| This gist's core function is verifyJwt, whose purpose is to verify JWT's signed | |
| using RS256 | |
| The public key needs to be provided as n (modulus) and e (exponent). | |
| JWT algorithm RS256 in fact means RSASSA-PKCS1-v1_5 using SHA-256: | |
| https://tools.ietf.org/html/rfc7518#section-3.1 | |
| The specification of RSASSA-PKCS1-v1_5 specifies the steps to verify signatures: |
ottokruse
/ invoke-aws-api-gateway-with-cognito-client-credentials.py
Last active
August 11, 2020 11:22
Invoke an AWS API Gateway Endpoint using Cognito Client Credentials
View invoke-aws-api-gateway-with-cognito-client-credentials.py
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| """ | |
| This example does a HTTP POST, change it to whatever you want. | |
| The code here assumes that: | |
| - Your API Gateway has been setup with a Cognito User Pool authorizer | |
| - That User Pool authorizer is set up with http header "authorization" as Token Source | |
| - The API Gateway Method you are invoking is set up to require at least one OAuth scope | |
| """ | |
| from urllib.request import Request, urlopen |
ottokruse
/ aws-console
Last active
September 6, 2023 11:33
Python script to launch the AWS console in your webbrowser, using a presigned URL generated from your AWS CLI credentials
View aws-console
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/usr/bin/env python3 | |
| """ | |
| Usage: | |
| - Save this script somewhere on your path (e.g. `vi /usr/local/bin/aws-console && chmod +x /usr/local/bin/aws-console`) | |
| - Make AWS credentials available in one of the usual places where boto3 can find them (~/.aws/credentials, env var, etc.) | |
| - Excute the script: `aws-console --profile myprofile` | |
| - :tada: Your browser opens and you are signed in into the AWS console | |
| """ |
NewerOlder