Skip to content

rollony/aws-slackbot

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

6 Commits
tests
tests
 
 
Dockerfile
Dockerfile
 
 
README.md
README.md
 
 
app.js
app.js
 
 
db.js
db.js
 
 
package-lock.json
package-lock.json
 
 
package.json
package.json
 
 
security.js
security.js
 
 

Repository files navigation

aws-slackbot

Slackbot using AWS Lamdba, DynamoDB and ECR

  1. Building the Dockerfile
  2. Push to Amazon Elastic Container Registry
  3. Creating an IAM Role for Lamdba function with suitable access permissions
  4. Integration with Lambda function and API Gateway
  5. Integration with DynamoDB for message logging

Building the Dockerfile / Push to Amazon Elastic Container Registry

Configure access to AWS credentials using the CLI

aws ecr get-login-password --region <region> | docker login --username AWS --password-stdin <account>.dkr.ecr.<region>.amazonaws.com

Build the current directory into a Docker image

docker build -t slackbot-test .

Add a suitable tag for the created image

docker tag slackbot-test:latest <account>.dkr.ecr.<region>.amazonaws.com/slackbot-test:latest

Once the image is ready, push to Elastic Container Registry

docker push <account>.dkr.ecr.<region>.amazonaws.com/slackbot-test:latest

Creating an IAM Role for Lamdba function with suitable access permissions

The following policy serves the purpose to grant access of generating logs and allowing actions on the DynamoDB table that is to be created.
Apply the policy to the role that will serve as the default execution role of the Lambda function that will be used.

{
    "Version": "2012-10-17",
    "Statement": [
        {
            "Effect": "Allow",
            "Action": "logs:CreateLogGroup",
            "Resource": "arn:aws:logs:ap-northeast-2:<account>:*"
        },
        {
            "Effect": "Allow",
            "Action": [
                "logs:CreateLogStream",
                "logs:PutLogEvents"
            ],
            "Resource": "arn:aws:logs:ap-northeast-2:<account>:log-group:/aws/lambda/slackbot-test:*"
        },
        {
            "Effect": "Allow",
            "Action": "dynamodb:*",
            "Resource": "arn:aws:dynamodb:ap-northeast-2:<account>:table/todos"
        }
    ]
}

Integration with Lambda function and API Gateway

Create a Lambda function using the container image which we previously pushed into our ECR.
Edit the default execution role to use the existing one made earlier, so the Lambda function is given the necessary permissions.
Create an API Gateway (HTTP API is recommended) that integrates the Lambda function we just created and edit the configurated routes to only allow POST methods.
After configuring the API Gateway, the function overview in the Lambda section will look like this.
slackbot-jpg3

Integration with DynamoDB for message logging

Create a DynamoDB table with the exact name stated in the policy we created earlier.
It will now be possible to write messages into the DynamoDB table by using the mention function in Slack.

slackbot-jpg

Messages will appear in the DynamoDB table as the below image indicates. slackbot-jpg2

References

https://github.com/antonputra/tutorials/tree/main/lessons/076

About

Slackbot using AWS Lamdba, DynamoDB and ECR

Resources

Readme

Security policy

Security policy
Activity

Stars

0 stars

Watchers

1 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages