Please view documentation in Postman under the folder Unit.
Test plan
A GET request on the root should respond "OK" if the database connection is
working. This is monitored by Postman's monitors.
There are CloudWatch alarms when functions:
- Have a high usage
- Start throwing 5xx errors
- Have a high 4xx errors
- Have a high latency
uneet-dev RDS is still open to the world
uneet-{demo,prod} will be locked down via Security Groups, i.e. the database's
default security group will not allow inbound 3306 to All.
The RDS database is protected by a password and a "CIDR whitelist", implemented
sg-0b83472a34bc17400 allows inbound 3306 from sg-0f4dadb564041855b, allowing
the lambda to communicate with the RDS securely. Outbound allows it talk to
services inside the same "RDS" security group.
sg-0f4dadb564041855b allows the lambda to communicate with the outside world
with wildcard 0.0.0.0/0 permissions
Caveat: AWS requires lambdas to be placed in private subnets, in order for
security groups to work.
If you are developing from home using the Docker image, you will probably need
to whitelist your IP manually with default RDS security group if not using uneet-dev.