Terraform Scaffold: The lambda code
Intro
I last wrote about an API gateway and lambda function in AWS. I wanted to expand on that and walk through the lambda function in more detail.
TLDR - The github repo
Th lambda function can be anything, but in my case it takes a JSON input and passes certain fields to another API endpoint. This is most useful for being able to perform transformations on data.
You can clone the repo with all of the working code here:
Why is this important?
Having a generic lambda function that can take input, reformat that input, and then send more data on to another function is the starting point of all integrations. If I want to integrate between platforms, this is the building block that I can use.
The basic scaffold
The basic scaffold that I share here is agnostic and can be used for any project, be it more complex or less complex.
A starting point.
My standard scaffold looks like this:
I do some standard imports here.
I import the json library as I’m accepting JSON input. I import the urllib3 library. This is interesting because in AWS at least, when you change the python version to a newer version, the requests library that I normally use is deprecated. I import the logging library as I like to write out some logs so that I can see the requests in cloudtrail.
import json
import urllib3
import logging
logger = logging.getLogger()
logger.setLevel(logging.INFO)
At this point I set up the basics of a function. The function takes two inputs, event and context. The context object is an inbuild lambda object that contains methods and objects about the invocation of the function.
The event is the JSON blob that I am sending to the function itself.
The next steps are to set up some variables that define the endpoint that I am going to send my transformed data to.
Function setup
def lambda_handler(event, context):
raw_event = event['body']
uri_path = event['path'].strip("/")
logger.info(event)
json_event = json.loads(raw_event)
logger.info(json_event)
# In the event that you want to POST the data to either an authenticated or unauthenticated API
# You would invoke something like below
# Let's do a POST to an external API endpoint with data
# defining the api-endpoint
API_ENDPOINT = "https://httpbin.org/post"
# your API key here
API_KEY = "XXXXXXXXXXXXXXXXX"
This includes defining the endpoint address and any API key that you may need to talk to that endpoint. In my case, I am using httpbin as a way to demonstrate how this integration works.
The next piece of code takes the inputs and sends the response as a POST request to the endpoint that was defined in our variable above.
Note that I am setting the content type as part of the request. This is set as an object, so that any other headers that are required to be passed (such as API key) can be passed easily. The POST request includes the headers object.
This is important because there are times when you will need to POST to another service that has requirements around specific headers being set.
# sending post request and saving response as response object
# inside lambda we need to encode the data object as json before sending
http = urllib3.PoolManager()
data = json.dumps(json_event).encode('utf8')
headers = {
'Content-Type': 'application/json'
}
response = http.request(
'POST',
API_ENDPOINT,
body = data,
headers = headers
)
Function logging
The very last thing that we do is we put a log entry into the cloudwatch logs. This is useful for debugging purposes.
Then we return a 200 with the response of the other API.
# extracting response text
logger.info('Response from external API resp : %s', response)
logger.info('Response from external API resp : %s', response.status)
return {
'statusCode' : '200',
'body': response.data.decode("utf-8")
The full code
The full code is below.
import json
import urllib3
import logging
logger = logging.getLogger()
logger.setLevel(logging.INFO)
def lambda_handler(event, context):
raw_event = event['body']
uri_path = event['path'].strip("/")
logger.info(event)
json_event = json.loads(raw_event)
logger.info(json_event)
# At this point I can take the path variable uri_path and write the alert to a bucket that is for a
# specific customer or whatever the case may be.
# In the event that you want to POST the data to either an authenticated or unauthenticated API
# You would invoke something like below
# Let's do a POST to an external API endpoint with data
# defining the api-endpoint
API_ENDPOINT = "https://httpbin.org/post"
# your API key here
API_KEY = "XXXXXXXXXXXXXXXXX"
# sending post request and saving response as response object
# inside lambda we need to encode the data object as json before sending
http = urllib3.PoolManager()
data = json.dumps(json_event).encode('utf8')
headers = {
'Content-Type': 'application/json'
}
response = http.request(
'POST',
API_ENDPOINT,
body = data,
headers = headers
)
# extracting response text
logger.info('Response from external API resp : %s', response)
logger.info('Response from external API resp : %s', response.status)
return {
'statusCode' : '200',
'body': response.data.decode("utf-8")
}
The response
If we send a curl request to our new endpoint, we end up with the following response. This response
{
"args": {},
"data": "{\"foo\": \"bar\"}",
"files": {},
"form": {},
"headers": {
"Accept-Encoding": "identity",
"Content-Length": "14",
"Content-Type": "application/json",
"Host": "httpbin.org",
"User-Agent": "python-urllib3/1.26.18",
"X-Amzn-Trace-Id": "Root=1-666cd94b-10665b2e1218e03e7f28a9f6"
},
"json": {
"foo": "bar"
},
"origin": "13.239.47.129",
"url": "https://httpbin.org/post"
}
Conclusion
This is a neat way to set up a webhook in AWS. The webhook essentially acts as a proxy, sending requests through to the endpoint defined in the function. This means that we can do transformations between any other API endpoint and our own endpoint. This is a powerful way to integrate between systems.
I hope someone finds this useful, if you do, drop me an email :)