Authorizing DynamoDB Access
Traditional web applications often enforce data access policies with application logic. This typically means performing a database query to fetch user profile information, and then based on that information and the type and content of the request, either rejecting the request or executing it. Any such checks need to run in a secure environment, such as an application server, in order to be effective.
As we’ll see in the next chapter, it’s possible for serverless applications to perform arbitrary security checks with application logic, but another solution is to control access in a completely data-driven fashion. With our application, for example, we can do that using the fine-grained access control[59] facilities ...
Get Serverless Single Page Apps now with the O’Reilly learning platform.
O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.
