At the end of this exercise, we have achieved the following:
- Set up a VPC with public and private subnets, NAT Gateway, and appropriate security groups
- Moved RDS to the private subnet
- Moved Lambda to the private subnet
- Enabled Lambda to access the internet
- Connected Lambda to RDS through security groups
- Modified Lambda to source configuration parameters from environment variables
- Used KMS to encrypt the environment variables and decoded them in lambda
- Throttled the API Gateway usage through API Key and Usage plans