Securing SaaS Applications Built on Serverless Microservices

In this session, we crack open the IDE to secure a multi-tenant SaaS platform built on a ReactJS web app and NodeJS serverless microservices. We use Amazon API Gateway and Amazon Cognito to simplify the operation and security of the service's API and identity functionality. We enforce tenant isolation and data partitioning with OAuth's JWT tokens. We'll then abstract the security complexity from developers to keep operational burden to a minimum, maximising developer productivity, and maintaining a great developer experience.

Speaker:
Gerardo Estaba, Senior Partner Solutions Architect, Amazon Web Services

View slideshare »

Resources:

Previous Video

Create Modern Serverless Web Applications in Minutes Using the AWS Amplify Framework

AWS Amplify makes it easy for you to create, configure, and implement scalable mobile and web apps powered ...

Next Video

Deep Dive into Firecracker: Using Virtual Machines to Enhance the Container Security Boundaries

Firecracker is an open source virtualisation technology which enables secure and fast microVMs for serverle...

Securing SaaS Applications Built on Serverless Microservices

Previous Video

Next Video

Other Content in this stream

This talk will feature a list of quick-hitting pro tips aimed at improving your day-to-day life building on AWS. This session will cover tips on: working effectively with the AWS CLI and other third-p

AWS Amplify makes it easy for you to create, configure, and implement scalable mobile and web apps powered by AWS. In this session we will explore how you can create, manage, and operate a full-stack,

Firecracker is an open source virtualisation technology which enables secure and fast microVMs for serverless computing. Firecracker was developed at Amazon Web Services to improve efficiency and cust

Business are continuously looking for ways to leverage artifical intelligence to help scale their customer service and support departments. In this session we will step through the process of building

2018 was an exciting year for the Java Development community on the AWS platform. Several major releases occurred that made building Java-based applications on AWS simpler, faster, and more correct. C

Heating, Ventilation and Air Conditioning (HVAC) is responsible for keeping us warm and comfortable indoors. In a modern building, data such as weather, occupancy, and equipment use are collected rout

Modern applications are often composed of multiple microservices that each perform a specific function. Reliable service-to-service communication is achievable with a service mesh which removes the co

Developer eXperience (DX) is very personal, with every developer preferring to customise the way they work and the tooling they use - from choosing their indentation, to the colour scheme and key bind

There are a great set of methods to integrate your favourite Microsoft DevOps tools like Team Foundation Server (TFS) and Azure DevOps with AWS to create CI/CD pipelines. In this session, you will lea