### Introduction to Building Modern Applications on AWS

Here is some asic knowledge of AWS. 
* Basics of the AWS global infrastructure like what regions and availability zones are.
* AWS Identity and Access Management, or IAM,and how it is used to control access to AWS resources.
* what an Amazon EC2 instance is (using Amazon EC2 as your virtual machines), what Amazon S3 is, what a VPC is, as well as other core AWS terminology.
* using Docker containers and container hosting services like Amazon Elastic Container Service, or Amazon Elastic Kubernetes Service.

In this course, we'll be covering how to build a modern greenfield serverless backend on AWS. This means we will not be covering Amazon EC2 or AWS Container services. Instead we are going to, from scratch, build a serverless backend using AWS cloud-native tools and services.

We will explore how to build an API-driven application using Amazon API Gateway for serverless API hosting, AWS Lambda for serverless compute, and Amazon Cognito for serverless authentication.

You'll learn about how the authorization flow works with Cognito and how to build it into your APIs. From there, we will add a Lambda backend that will be triggered by API Gateway. The Lambda functions that we will be using will be using the AWS SDKs
to perform various data processing tasks. You'll learn about the different configurations that exist for Lambda, and we will show you how to create and manage Lambda functions.

Some of the features of our API will require multiple Lambda functions to execute in a specific order, like a workflow.
And we will be using AWS Step Functions to create a serverless workflow.

Finally, we will talk about how to optimize your APIs at every layer using AWS features. As you can see, we aren't going to be talking about front-end application development much in this course. We are mostly focusing on the backend aspect of this application, where we'll be standing up an API that a client or front-end can then consume.

### Exercises

In the exercises, you will start by installing and configuring the AWS CLI, installing the AWS SDK, exploring the source code, and setting up AWS resources that the application will use. A frontend website (that you can use to interact with the backend API) is provided.

Then, you will begin to build the backend API with Amazon API Gateway, add authentication to that API, create the backend compute functions with AWS Lambda, and create an asynchronous workflow with AWS Step Functions. You will also implement distributed tracing with AWS X-Ray, use monitoring features, and improve performance for the distributed application.

AWS services used:

* Amazon Simple Storage Service (Amazon S3)
* Amazon API Gateway
* Amazon Cognito
* AWS Lambda
* AWS Step Functions
* AWS X-Ray
* AWS Systems Manager Parameter Store.

Exercise 1: You will install and configure the AWS CLI and the AWS SDK. Then, you will create an S3 bucket and deploy a web application to the bucket. Finally, you will set up data in Amazon S3, and configure AWS Systems Manager parameters for the Dragons application.

Exercise 2: You will set up a mock backend API by using Amazon API Gateway REST APIs. You will then set up three API endpoints, which will respond to requests with mocked data. As a final step, you will test the mock API.

Exercise 3: You will secure the API that you built in Lab 2 by adding authentication through Amazon Cognito user pools.

Exercise 4: You will create Lambda functions to host the backend for your API. Then, you will configure the secured API that you built in Lab 3 so that it invokes the Lambda functions instead of the mock integrations.

Exercise 5: You will create an asynchronous state machine with AWS Step Functions to orchestrate the add dragon feature of the API. You will then configure the API to run this state machine when a request reaches an API endpoint that you built in the previous labs.

Exercise 6: You will use X-Ray to trace requests through your distributed application. You will also make improvements to your application by using various AWS service features.

### Demo Code

The demo code you will need for this course can be found below. Please download it now as you will refer to it later i

https://courses.edx.org/asset-v1:AWS+OTP-AWSD10+2T2020+type@asset+block@BuildingModernAppsDemoCode.zip

## Building Our Environment

### Architecture for the Cloud

What we're going to build is an API that allows you to query data being stored in Amazon S3. The data being stored in S3 is a record of dragons being sighted all around the world. We have a JSON file that contains information about each dragon that we are aware of. 

This is an example of one dragon record represented in JSON.
Dragons have a name, description, family, and location like country, state, city, and neighborhood.

So we have this data in JSON and people want to query the data and consume it. We are going to design a system to make that possible. Now, for various security and design reasons you generally don't want to expose your data directly to your consumers.
Instead, you want to expose your data to your consumers via an API, or application programming interface.

We don't want to allow people to query the data from our S3 bucket directly. Instead, we are going to build out an API using Amazon API Gateway to expose that data securely. Users who want to work with our data in S3 will need to send requests through API Gateway to do so.

![image.png](attachment:9bdb3557-e6dd-4cef-ae35-4c99b83cfc2a.png)

Knowing that our data is being stored in S3 and we will be using API Gateway as a front door to our backend, we will create an end point for these /dragons resource in API Gateway.
You will be able to get a list of all dragons using the GET HTTP method on the dragons resource. 
API Gateway will accept the requests, perform authorization using Amazon Cognito, validate the payload, and if all that passes,
it will invoke the backend to query the dragon data.
That backend for the GET request will be hosted by AWS Lambda.
The Lambda function will be reading the JSON data file in S3 using the API for S3 Select.

The other feature our API supports is we will allow people to report new dragon sightings. The way users will interact with this feature is by sending a POST HTTP request to the /dragons resource in API Gateway.
For the report dragon feature, we will be using AWS Step Functions, AWS Lambda and Amazon Simple Notification Service, or SNS,
to create an asynchronous dragon reporting system.
This reporting process is asynchronous because we need to do some backend data validation that could take some time and we don't want people waiting on an immediate response. Instead, we alert the user when the process has completed.

This is a good example to show you how to set up a workflow that would kick off when a request hits your API, then your backend would do whatever work needs to be done and return the response when it's ready via SNS. This is known as "request offloading" and it allows you to respond to your client without the entire process having finished yet.

Let's take a closer look at this reporting process.
First, you can see that we will need to kick off a Lambda function that will do validation on the data that was submitted to ensure the dragon hasn't already been reported. If the dragon already exists in the system, we will send the user a text using SNS telling them their request failed. If the dragon is a new dragon to be added, a Lambda function will be invoked to add the data to the file being stored in S3. Then move on to the next step, which is to alert the person who reported the dragon, again, using SNS, that the process was successful. The orchestration and scaling of the validation, error conditions, adding the new dragon and the alerting will be handled by creating a state machine with AWS Step Functions.

We then will discuss various ways to potentially optimize this API at every layer using features like API Gateway Response Caching, optimizing your Lambda configuration as well as other tips and tricks along the way, like using Amazon CloudWatch 
for CloudWatch logs and AWS X-Ray for distributed tracing.


### Introduction to AWS Cloud 9


AWS Cloud9 is a cloud-based integrated development environment, or IDE, that lets you write, run, and debug your code within your browser. It includes a code editor, debugger, and terminal. 
Cloud9 comes pre-packaged with essential tools for popular programming languages, including JavaScript, Python, PHP and more,
so you don't need to install files or configure your development machine to start new projects.

Cloud9 also provides a seamless experience for developing serverless applications, enabling you to easily define resources,
debug, and switch between local and remote execution of serverless applications.

With Cloud9, you can quickly share your development environment with your team, enabling you to pair programs and track each other's inputs in real time.

One of the other major benefits of Cloud9 is the ability to work with the AWS command line tools with little to no setup or configuration of the tools themselves.