slic-starter

slic-starter copied to clipboard

- in accordance with the User Pool password policy configuration

direnakkoc

The full README guide and the QUICK_START guides are both reasonably lengthy but also lack lots of detail and explanation. It will be difficult to add detail without making these...

eoinsha

It would be good to have lambda functions configured to handle idempotency as well

s1mrankaur

Add password reset / force password change

1

Integrate Cognito support

eoinsha

eoinsha

Feedback from the SLIC Starter internal presentation at AWS. Consider CloudMap for service discovery. https://aws.amazon.com/cloud-map/features/

eoinsha

eoinsha

eoinsha

Solve for this: https://theburningmonk.com/2019/10/the-api-gateway-security-flaw-you-need-to-pay-attention-to/

eoinsha

CORS Developer Resources - Include some docs?

1

https://github.com/fourTheorem/slic-starter/blob/28c0d98e4a13c69061c5addfe523b56b0cb9df7f/user-service/lib/response.js#L6 https://github.com/fourTheorem/slic-starter/blob/28c0d98e4a13c69061c5addfe523b56b0cb9df7f/user-service/sls-functions.yml#L9 Maybe worth including a security subheading in the readme including some references to CORS? Developer References: 1 https://developer.mozilla.org/en-US/docs/Web/HTTP/CORS 2 https://serverless.com/framework/docs/providers/aws/events/apigateway#enabling-cors

harveymatt