Getting Started with AWS Lambda Functions and API Gateway
In recent years, serverless computing has emerged as a revolutionary concept that’s shaping the landscape of cloud computing. By providing developers the freedom to focus solely on their code, and liberating them from server management or capacity planning, it’s significantly streamlining the application development process.
Let’s look into some of the concepts of serverless computing, how it works, its pros and cons, and then a practical example using AWS Lambda.
What is Serverless Computing?
Contrary to the term, serverless computing doesn’t mean computing without servers. Rather, it refers to a model where developers can build and run applications without having to worry about the underlying infrastructure. In the serverless model, the cloud provider manages the servers and dynamically allocates the resources as per the workload requirements.
With serverless computing, the infrastructure scales up and down automatically, and you only pay for the compute time you consume. This eliminates the need for server provisioning and maintenance, resulting in faster development cycles and lower costs.
Serverless Architecture
Let’s dive a little deeper into the serverless architecture and understand its key components.
Function as a Service (FaaS)
FaaS is the cornerstone of the serverless architecture. It lets you execute a piece of code (a function) in response to events (like a file upload to a cloud storage bucket, an API gateway call, or a change in a database table). The FaaS platform manages all the physical resources, and developers only have to focus on writing the code for the function.
Backend as a Service (BaaS)
In serverless architectures, third-party services (BaaS) are often used to manage server-side logic and state. These could be databases (like DynamoDB or Firestore), authentication services (like AWS Cognito or Firebase Authentication), or storage services (like S3 or Google Cloud Storage).
Event Sources
Event sources are the triggers for the functions in a serverless architecture. An event source can be a HTTP request, a modification in a database, or a system status change, among others.
Pros and Cons of Serverless Architecture
Like any technology, serverless architecture has its benefits and drawbacks.
Pros
Scalability
Serverless applications can scale automatically based on the workload. This means no idle resources and cost savings for your business.
Productivity
With the infrastructure managed by the provider, developers can focus solely on writing the code, leading to improved productivity.
Cost-Effective
You only pay for the compute time you consume, making serverless architecture a cost-effective choice for small to large scale applications.
Cons
Cold Start
The first request to a serverless function can experience a delay known as a cold start. This delay can impact user experience, especially for real-time applications.
Debugging and Monitoring
Debugging serverless applications can be challenging due to the distributed nature of the system. Moreover, monitoring these applications requires specific tools and practices.
Vendor Lock-In
Applications built on serverless architectures can be highly dependent on the cloud provider’s capabilities and services, making migration challenging….
Creating a Serverless API with AWS Lambda and API Gateway
Let’s walk through an example of creating a serverless API using AWS Lambda and API Gateway. In this example, we’ll create an API that retrieves user data from a mock database.
First, you need to install the AWS CLI and AWS SDK for your preferred language. You can find the installation instructions in the AWS Documentation.
Create a Lambda Function using Go
We’ll start by creating a Lambda function in Go using the AWS Lambda packages for Go:
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
package main
import (
"encoding/json"
"fmt"
"github.com/aws/aws-lambda-go/events"
"github.com/aws/aws-lambda-go/lambda"
"net/http"
"strconv"
)
type User struct {
Name string
Age int
}
func handleRequest(request events.APIGatewayProxyRequest) (events.APIGatewayProxyResponse, error) {
// Mock response
userData := map[int]User{
123: {Name: "Alice", Age: 25},
456: {Name: "Bob", Age: 32},
789: {Name: "Charlie", Age: 29},
}
userId, err := strconv.Atoi(request.PathParameters["userId"])
if err != nil {
return events.APIGatewayProxyResponse{}, err
}
if user, ok := userData[userId]; ok {
userJson, _ := json.Marshal(user)
return events.APIGatewayProxyResponse{
Body: string(userJson),
StatusCode: http.StatusOK,
}, nil
} else {
return events.APIGatewayProxyResponse{
Body: fmt.Sprintf(`{"error": "User %d not found"}`, userId),
StatusCode: http.StatusNotFound,
}, nil
}
}
func main() {
lambda.Start(handleRequest)
}
This function accepts a userId and returns the corresponding mock user data. If the user is not found, it returns a 404 error.
We use the github.com/aws/aws-lambda-go/events and github.com/aws/aws-lambda-go/lambda packages, which provide types and functions for working with AWS Lambda and API Gateway events.
The handleRequest function takes an events.APIGatewayProxyRequest and returns an events.APIGatewayProxyResponse. The user data is stored in a map, and the userId from the request parameters is used to look up the user. If the user is found, the function returns a response with the user’s data; otherwise, it returns a “User not found” error.
Finally, the main function starts the Lambda function by calling lambda.Start with our handleRequest function.
Deploy the Lambda Function
To deploy this function, navigate to the AWS Lambda console, click “Create Function”, and follow the instructions. You can name the function getUserData.
Create an API Gateway
Now, let’s create an API Gateway that triggers our Lambda function. Navigate to the API Gateway console, click “Create API”, select “REST API”, and follow the instructions. You can name the API userDataAPI.
After the API is created, you need to create a resource and a GET method. For the resource name, enter user, and for the resource path, enter {userId}. This allows us to pass the userId as a parameter in the URL.
For the GET method, select the getUserData Lambda function as the integration point.
Deploy the API Gateway
Finally, deploy the API Gateway by clicking “Actions” and then “Deploy API”. You need to create a new deployment stage. You can name it dev.
Once the API is deployed, you will get an invoke URL. You can use this URL to test the API:
1
curl https://<api-id>.execute-api.<region>.amazonaws.com/dev/user/123
Replace
<api-id>with your API ID and<region>with your AWS region. The final part of the URL (/user/123) is the path to the resource and theuserId.
Automate with Terraform
We can also fully automate the process of creating the Lambda Function and API Gateway using Terraform.
Providers:
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
# Providers
terraform {
required_providers {
aws = {
source = "hashicorp/aws"
version = ">= 5.7.0"
}
archive = {
source = "hashicorp/archive"
version = "2.4.0"
}
}
required_version = "~> 1.0"
}
provider "aws" {
region = "eu-central-1"
}
S3 Bucket:
1
2
3
4
5
6
7
8
9
10
11
12
13
resource "aws_s3_bucket" "lambda_bucket" {
bucket_prefix = "lambda-bucket-"
force_destroy = true
}
resource "aws_s3_bucket_public_access_block" "lambda_bucket" {
bucket = aws_s3_bucket.lambda_bucket.id
block_public_acls = true
block_public_policy = true
ignore_public_acls = true
restrict_public_buckets = true
}
Lambda Function:
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
# Lambda execution role
resource "aws_iam_role" "getuserdata_lambda_exec_role" {
name = "getuserdata_lambda_exec_role"
assume_role_policy = jsonencode({
Version = "2012-10-17"
Statement = [
{
Action = "sts:AssumeRole"
Effect = "Allow"
Sid = ""
Principal = {
Service = "lambda.amazonaws.com"
}
}
]
})
}
resource "aws_iam_role_policy_attachment" "getuserdata_lambda_policy" {
role = aws_iam_role.getuserdata_lambda_exec_role.name
policy_arn = "arn:aws:iam::aws:policy/service-role/AWSLambdaBasicExecutionRole" # Minumum permissions for function to run
}
# Lambda function
resource "aws_lambda_function" "getuserdata" {
function_name = "getuserdata"
s3_bucket = aws_s3_bucket.lambda_bucket.id
s3_key = aws_s3_object.lambda_getuserdata.key
runtime = "go1.x"
handler = "main"
source_code_hash = data.archive_file.getuserdata.output_base64sha256
role = aws_iam_role.getuserdata_lambda_exec_role.arn
}
# CloudWatch Log Group
resource "aws_cloudwatch_log_group" "getuserdata" {
name = "/aws/lambda/${aws_lambda_function.getuserdata.function_name}"
retention_in_days = 14
}
# Below will typically be handled by CI
# Zip the source code
data "archive_file" "getuserdata" {
type = "zip"
source_dir = "../${path.module}/getuserdata"
output_path = "../${path.module}/getuserdata.zip"
}
# Upload the zip to S3
resource "aws_s3_object" "lambda_getuserdata" {
bucket = aws_s3_bucket.lambda_bucket.id
key = "getuserdata.zip"
source = data.archive_file.getuserdata.output_path
etag = filemd5(data.archive_file.getuserdata.output_path)
}
API Gateway:
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
# Gateway
resource "aws_apigatewayv2_api" "main" {
name = "main"
protocol_type = "HTTP"
}
# Stage
resource "aws_apigatewayv2_stage" "dev" {
api_id = aws_apigatewayv2_api.main.id
name = "dev"
auto_deploy = true
access_log_settings {
destination_arn = aws_cloudwatch_log_group.getuserdata.arn
format = jsonencode({
requestId = "$context.requestId"
sourceIp = "$context.identity.sourceIp"
requestTime = "$context.requestTime"
httpMethod = "$context.httpMethod"
routeKey = "$context.routeKey"
status = "$context.status"
protocol = "$context.protocol"
responseLength = "$context.responseLength"
integrationLatency = "$context.integrationLatency"
integrationErrorMessage = "$context.integrationErrorMessage"
})
}
}
# CloudWatch Log Group
resource "aws_cloudwatch_log_group" "main_api_gateway" {
name = "/aws/apigateway/${aws_apigatewayv2_api.main.name}"
retention_in_days = 14
}
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
# Lamda function integrated with API Gateway
resource "aws_apigatewayv2_integration" "lambda_getuserdata" {
api_id = aws_apigatewayv2_api.main.id
integration_uri = aws_lambda_function.getuserdata.invoke_arn
integration_type = "AWS_PROXY"
integration_method = "POST" # Forward request to Lambda as POST requests
}
# GET /user/{userId}
resource "aws_apigatewayv2_route" "lambda_getuserdata" {
api_id = aws_apigatewayv2_api.main.id
route_key = "GET /user/{userId}"
target = "integrations/${aws_apigatewayv2_integration.lambda_getuserdata.id}"
}
# Lambda permissions
resource "aws_lambda_permission" "api_gateway" {
statement_id = "AllowExecutionFromAPIGateway"
action = "lambda:InvokeFunction"
function_name = aws_lambda_function.getuserdata.function_name
principal = "apigateway.amazonaws.com"
source_arn = "${aws_apigatewayv2_api.main.execution_arn}/*/*"
}
output "getuserdata_api_gateway_url" {
value = aws_apigatewayv2_stage.dev.invoke_url
}
Conclusion
Serverless computing has the potential to transform how we build and deploy applications in the cloud. By handling server management and capacity planning, serverless architectures allow developers to focus on writing code, resulting in faster delivery times and lower operational costs.
However, serverless is not a one-size-fits-all solution, and it’s essential to consider its potential drawbacks, like cold starts and vendor lock-in, when designing your systems.
There’s much more to explore with serverless technologies, including integration with databases, data processing pipelines, and machine learning models. The sky’s the limit when it comes to what you can build with serverless!