aws-samples
diff --git a/‎apigw-dynamodb-python-cdk/README.md‎
Lines changed: 82 additions & 0 deletions b/‎apigw-dynamodb-python-cdk/README.md‎
Lines changed: 82 additions & 0 deletions
diff --git a/‎apigw-dynamodb-python-cdk/apigw-dynamodb-python-cdk.json‎
Lines changed: 71 additions & 0 deletions b/‎apigw-dynamodb-python-cdk/apigw-dynamodb-python-cdk.json‎
Lines changed: 71 additions & 0 deletions
diff --git a/‎apigw-dynamodb-python-cdk/apigw_dynamodb_python_cdk/__init__.py‎ b/‎apigw-dynamodb-python-cdk/apigw_dynamodb_python_cdk/__init__.py‎
diff --git a/‎apigw-dynamodb-python-cdk/apigw_dynamodb_python_cdk/api_key_usage_plan_construct.py‎
Lines changed: 62 additions & 0 deletions b/‎apigw-dynamodb-python-cdk/apigw_dynamodb_python_cdk/api_key_usage_plan_construct.py‎
Lines changed: 62 additions & 0 deletions
@@ -0,0 +1,82 @@
+
+# API Gateway direct integration to DynamoDB
+
+This pattern shows how to create an API Gateway with direct integration to DynamoDB. 
+The pattern showcase transformation of request/response using VTL and CDK and implement examples for using Cognito, Lambda authorizer and API keys. 
+
+Learn more about this pattern at Serverless Land Patterns: [Serverless Land Patterns](https://serverlessland.com/patterns/apigw-dynamodb-python-cdk).
+
+Important: this application uses various AWS services and there are costs associated with these services after the Free Tier usage - please see the [AWS Pricing page](https://aws.amazon.com/pricing/) for details. You are responsible for any AWS costs incurred. No warranty is implied in this example.
+
+![alt text](image.png)
+
+## Requirements
+
+* [Create an AWS account](https://portal.aws.amazon.com/gp/aws/developer/registration/index.html) if you do not already have one and log in. The IAM user that you use must have sufficient permissions to make necessary AWS service calls and manage AWS resources.
+* [Git Installed](https://git-scm.com/book/en/v2/Getting-Started-Installing-Git)
+* [AWS Cloud Development Kit](https://docs.aws.amazon.com/cdk/latest/guide/cli.html) (AWS CDK) installed
+
+## Deployment Instructions
+
+1. Create a new directory, navigate to that directory in a terminal and clone the GitHub repository:
+```
+git clone https://github.com/aws-samples/serverless-patterns/ 
+```
+2. Change directory
+```
+cd serverless-patterns/apigw-dynamodb-python-cdk
+```
+3. To manually create a virtualenv on MacOS and Linux:
+```
+python3 -m venv .venv
+```
+4. After the init process completes and the virtualenv is created, you can use the following to activate virtualenv.
+```
+source .venv/bin/activate
+``` 
+6. After activating your virtual environment for the first time, install the app's standard dependencies:
+```
+python -m pip install -r requirements.txt
+```
+7. Install jwt package for Lambda:
+```
+cd src; pip install pyjwt --target . 
+```
+8. Zip the Lambda function and dependencies 
+```
+zip -r lambda.zip . ; cd
+```
+9. To generate a cloudformation templates (optional)
+```
+cdk synth
+```
+10. To deploy AWS resources as a CDK project
+```
+cdk deploy 
+```
+
+## How it works
+At the end of the deployment the CDK output will list stack outputs, and an API Gateway URL. In the customer's AWS account, a REST API along with an authorizer, Cognito user pool, and a DynamoDB table will be created.
+Put resource - uses Lambda authorizer to authenticate the client and send allow/deny to API Gateway. 
+Get resource - uses API key to control the rate limit. Need to provide valid key for the request with x-api-key header.
+Delete resource - uses Cognito to authenticate the client. Cognito token need to be provided with Authorization header. 
+
+## Testing
+1. Run pytest
+```
+pytest tests/test_apigw_dynamodb_python_stack.py 
+```
+## Cleanup
+ 
+1. Delete the stack
+    ```bash
+   cdk destroy
+    ```
+1. Confirm the stack has been deleted
+    ```bash
+    cdk list
+    ```
+----
+Copyright 2024 Amazon.com, Inc. or its affiliates. All Rights Reserved.
+
+SPDX-License-Identifier: MIT-0
@@ -0,0 +1,71 @@
+{
+    "title": "API Gateway direct integration to DynamoDB",
+    "description": "Direct integration with API Gateway to DynamoDB with transformation using VTL and CDK and examples for Cognito, Lambda authorizer and API keys.",
+    "language": "Python",
+    "level": "300",
+    "framework": "CDK",
+    "introBox": {
+        "headline": "How it works",
+        "text": [
+            "This pattern shows how to create an API Gateway with direct integration to DynamoDB.",
+            "The pettern showcase transformation of request/response using VTL and CDK and implement examples for using Cognito, Lambda authorizer and API keys."
+        ]
+    },
+    "gitHub": {
+        "template": {
+            "repoURL": "https://github.com/aws-samples/serverless-patterns/tree/main/apigw-dynamodb-python-cdk",
+            "templateURL": "serverless-patterns/apigw-dynamodb-python-cdk",
+            "projectFolder": "apigw-dynamodb-python-cdk",
+            "templateFile": "apigw_dynamodb_python_cdk_stack.py"
+        }
+    },
+    "resources": {
+        "bullets": [
+            {
+                "text": "API Gateway Integrations",
+                "link": "https://docs.aws.amazon.com/apigateway/latest/developerguide/how-to-integration-settings.html"
+            }
+        ]
+    },
+    "deploy": {
+        "text": [
+            "cdk deploy"
+        ]
+    },
+    "testing": {
+        "text": [
+            "See the GitHub repo for detailed testing instructions."
+        ]
+    },
+    "cleanup": {
+        "text": [
+            "Delete the stack: <code>cdk delete</code>."
+        ]
+    },
+    "authors": [
+        {
+            "name": "Maya Morav Freiman",
+            "image": "https://avatars.githubusercontent.com/u/11615439?v=4",
+            "bio": "Technical Account Manager at AWS",
+            "linkedin": "mayaaws"
+        }
+    ],
+    "patternArch": {
+        "icon1": {
+            "x": 20,
+            "y": 50,
+            "service": "apigw",
+            "label": "API Gateway REST API"
+        },
+        "icon2": {
+            "x": 80,
+            "y": 50,
+            "service": "dynamodb",
+            "label": "Amazon DynamoDB"
+        },
+        "line1": {
+            "from": "icon1",
+            "to": "icon2"
+        }
+    }
+}
@@ -0,0 +1,62 @@
+from constructs import Construct
+import aws_cdk.aws_apigateway as apigateway
+
+
+class UsagePlanConstruct(Construct):
+    def __init__(self, scope: Construct, id: str, apigateway_construct, plan_name, plan_config ,**kwargs) -> None:
+        super().__init__(scope, id, **kwargs)
+
+        # Map the period of the usage plan from the config to apigateway.Period.XXX
+        period_enum = self.get_period_enum(plan_config['quota']['period'])
+
+        # Create usage plan dynamically using the context data
+        usage_plan = apigateway_construct.api.add_usage_plan(plan_name,
+            name=plan_name,
+            throttle=apigateway.ThrottleSettings(
+                rate_limit=plan_config['throttle']['rate_limit'],
+                burst_limit=plan_config['throttle']['burst_limit']
+            ),
+            quota=apigateway.QuotaSettings(
+                limit=plan_config['quota']['limit'],
+                period=period_enum
+            )
+        )
+
+        # Create API key 
+        api_key = apigateway.ApiKey(self, f"ApiKey-{plan_name}",
+                                    api_key_name=f"ApiKey-{plan_name}")
+        self.api_key_id = api_key.key_id
+        usage_plan.add_api_key(api_key)
+
+        # If method is configured in the context assign the API key to the relevant API method
+        if plan_config['method']:
+            def get_method(method_name):
+                method_mapping = { # Change the method to fit your API
+                    "GET": apigateway_construct.get_method,
+                    "POST": apigateway_construct.put_method,
+                    "DELETE": apigateway_construct.delete_method
+                }
+                return method_mapping.get(method_name.upper())
+            usage_plan.add_api_stage(
+            stage=apigateway_construct.api.deployment_stage,
+            throttle=[apigateway.ThrottlingPerMethod(
+                method=get_method(plan_config['method']),
+                throttle=apigateway.ThrottleSettings(
+                    rate_limit=100,
+                    burst_limit=1
+                ))]
+            )
+
+        
+
+
+    @staticmethod
+    def get_period_enum(period: str) -> apigateway.Period:
+        period_mapping = {
+            "DAY": apigateway.Period.DAY,
+            "WEEK": apigateway.Period.WEEK,
+            "MONTH": apigateway.Period.MONTH
+        }
+        return period_mapping.get(period.upper())
+
+