Add web-app-rds sample

Author: dmacvicar

web-app-rds/python/README.md

@@ -0,0 +1,48 @@
+# Web App RDS
+
+AWS equivalent of Azure's `web-app-sql-database` sample.
+
+This sample demonstrates a web application using RDS (PostgreSQL) for relational data storage.
+
+## Architecture
+
+```
+┌─────────┐      HTTP      ┌─────────────┐      SQL      ┌─────────┐
+│ Client  │ ─────────────▶ │    Lambda   │ ────────────▶ │   RDS   │
+└─────────┘                │  (Web App)  │               │(Postgres)│
+                           └─────────────┘               └─────────┘
+```
+
+## Overview
+
+The web application provides a REST API backed by a PostgreSQL database:
+- Full CRUD operations
+- SQL query execution
+- Database migrations
+
+## Prerequisites
+
+- LocalStack Pro running with `LOCALSTACK_AUTH_TOKEN`
+- AWS CLI or awslocal installed
+- Python 3.10+
+
+## Deployment
+
+```bash
+cd scripts
+./deploy.sh
+```
+
+## Testing
+
+```bash
+cd scripts
+./test.sh
+```
+
+## Files
+
+- `src/app.py` - Web application Lambda
+- `src/database.py` - Database utilities
+- `scripts/deploy.sh` - Deployment script
+- `scripts/test.sh` - Test script

web-app-rds/python/cdk/app.py

@@ -0,0 +1,194 @@
+#!/usr/bin/env python3
+"""Web App RDS Sample - CDK Stack."""
+
+import os
+import aws_cdk as cdk
+from aws_cdk import (
+    Stack,
+    aws_lambda as lambda_,
+    aws_iam as iam,
+    aws_rds as rds,
+    aws_ec2 as ec2,
+    CfnOutput,
+    Duration,
+    RemovalPolicy,
+)
+from constructs import Construct
+
+
+class WebAppRdsStack(Stack):
+    """CDK Stack for Web App RDS sample."""
+
+    def __init__(self, scope: Construct, construct_id: str, **kwargs) -> None:
+        super().__init__(scope, construct_id, **kwargs)
+
+        db_name = "appdb"
+        db_user = "admin"
+        db_password = "localstack123"
+
+        # Lambda execution role
+        role = iam.Role(
+            self, "LambdaRole",
+            role_name="webapp-rds-cdk-role",
+            assumed_by=iam.ServicePrincipal("lambda.amazonaws.com"),
+            managed_policies=[
+                iam.ManagedPolicy.from_aws_managed_policy_name(
+                    "service-role/AWSLambdaBasicExecutionRole"
+                )
+            ],
+        )
+
+        # VPC for RDS (required by CDK)
+        vpc = ec2.Vpc(
+            self, "Vpc",
+            max_azs=2,
+            nat_gateways=0,
+            subnet_configuration=[
+                ec2.SubnetConfiguration(
+                    name="private",
+                    subnet_type=ec2.SubnetType.PRIVATE_ISOLATED,
+                )
+            ],
+        )
+
+        # RDS PostgreSQL instance
+        db_instance = rds.DatabaseInstance(
+            self, "PostgresInstance",
+            instance_identifier="webapp-postgres-cdk",
+            engine=rds.DatabaseInstanceEngine.postgres(
+                version=rds.PostgresEngineVersion.VER_13_4
+            ),
+            instance_type=ec2.InstanceType.of(
+                ec2.InstanceClass.T3, ec2.InstanceSize.MICRO
+            ),
+            vpc=vpc,
+            vpc_subnets=ec2.SubnetSelection(subnet_type=ec2.SubnetType.PRIVATE_ISOLATED),
+            database_name=db_name,
+            credentials=rds.Credentials.from_username(
+                db_user,
+                password=cdk.SecretValue.unsafe_plain_text(db_password)
+            ),
+            allocated_storage=20,
+            removal_policy=RemovalPolicy.DESTROY,
+            deletion_protection=False,
+        )
+
+        # Lambda function with inline code
+        handler_code = '''
+import json
+import logging
+import os
+from datetime import datetime
+
+logger = logging.getLogger()
+logger.setLevel(logging.INFO)
+
+DB_HOST = os.environ.get("DB_HOST", "localhost")
+DB_PORT = os.environ.get("DB_PORT", "5432")
+DB_NAME = os.environ.get("DB_NAME", "appdb")
+DB_USER = os.environ.get("DB_USER", "admin")
+DB_PASSWORD = os.environ.get("DB_PASSWORD", "password")
+
+ITEMS = {}
+
+def handler(event, context):
+    logger.info("Received event: %s", json.dumps(event))
+    http_method = event.get("httpMethod", "GET")
+    path = event.get("path", "/")
+    path_params = event.get("pathParameters") or {}
+    body = event.get("body")
+
+    if body and isinstance(body, str):
+        try:
+            body = json.loads(body)
+        except json.JSONDecodeError:
+            pass
+
+    try:
+        if path == "/items" and http_method == "GET":
+            return response(200, {"items": list(ITEMS.values())})
+        elif path == "/items" and http_method == "POST":
+            item_id = body.get("id") if body else f"item-{datetime.utcnow().strftime('%Y%m%d%H%M%S%f')}"
+            item = {"id": item_id, "name": body.get("name", ""), "description": body.get("description", ""),
+                    "category": body.get("category", "general"), "price": body.get("price", 0),
+                    "created_at": datetime.utcnow().isoformat(), "updated_at": datetime.utcnow().isoformat()}
+            ITEMS[item_id] = item
+            return response(201, item)
+        elif path.startswith("/items/") and http_method == "GET":
+            item_id = path_params.get("id") or path.split("/")[-1]
+            item = ITEMS.get(item_id)
+            if not item:
+                return response(404, {"error": f"Item {item_id} not found"})
+            return response(200, item)
+        elif path.startswith("/items/") and http_method == "PUT":
+            item_id = path_params.get("id") or path.split("/")[-1]
+            if item_id not in ITEMS:
+                return response(404, {"error": f"Item {item_id} not found"})
+            item = ITEMS[item_id]
+            for field in ["name", "description", "category", "price"]:
+                if body and field in body:
+                    item[field] = body[field]
+            item["updated_at"] = datetime.utcnow().isoformat()
+            return response(200, item)
+        elif path.startswith("/items/") and http_method == "DELETE":
+            item_id = path_params.get("id") or path.split("/")[-1]
+            if item_id not in ITEMS:
+                return response(404, {"error": f"Item {item_id} not found"})
+            del ITEMS[item_id]
+            return response(204, None)
+        elif path == "/health":
+            return response(200, {"status": "healthy", "database": "simulated", "timestamp": datetime.utcnow().isoformat()})
+        else:
+            return response(404, {"error": "Not found"})
+    except Exception as e:
+        logger.error("Error: %s", e)
+        return response(500, {"error": str(e)})
+
+def response(status_code, body):
+    resp = {"statusCode": status_code, "headers": {"Content-Type": "application/json", "Access-Control-Allow-Origin": "*"}}
+    if body is not None:
+        resp["body"] = json.dumps(body)
+    return resp
+'''
+
+        fn = lambda_.Function(
+            self, "Handler",
+            function_name="webapp-rds-cdk",
+            runtime=lambda_.Runtime.PYTHON_3_12,
+            handler="index.handler",
+            code=lambda_.Code.from_inline(handler_code),
+            role=role,
+            timeout=Duration.seconds(30),
+            memory_size=128,
+            environment={
+                "DB_HOST": db_instance.db_instance_endpoint_address,
+                "DB_PORT": db_instance.db_instance_endpoint_port,
+                "DB_NAME": db_name,
+                "DB_USER": db_user,
+                "DB_PASSWORD": db_password,
+            },
+        )
+
+        # Function URL with public access
+        fn_url = fn.add_function_url(
+            auth_type=lambda_.FunctionUrlAuthType.NONE,
+        )
+
+        # Outputs
+        CfnOutput(self, "FunctionName", value=fn.function_name)
+        CfnOutput(self, "FunctionArn", value=fn.function_arn)
+        CfnOutput(self, "FunctionUrl", value=fn_url.url)
+        CfnOutput(self, "DBInstanceId", value=db_instance.instance_identifier)
+        CfnOutput(self, "DBHost", value=db_instance.db_instance_endpoint_address)
+        CfnOutput(self, "DBPort", value=db_instance.db_instance_endpoint_port)
+
+
+app = cdk.App()
+WebAppRdsStack(
+    app, "WebAppRdsStack",
+    env=cdk.Environment(
+        account=os.environ.get("CDK_DEFAULT_ACCOUNT", "000000000000"),
+        region=os.environ.get("CDK_DEFAULT_REGION", "us-east-1"),
+    ),
+)
+app.synth()

web-app-rds/python/cdk/cdk.context.json

@@ -0,0 +1,10 @@
+{
+  "availability-zones:account=000000000000:region=us-east-1": [
+    "us-east-1a",
+    "us-east-1b",
+    "us-east-1c",
+    "us-east-1d",
+    "us-east-1e",
+    "us-east-1f"
+  ]
+}

web-app-rds/python/cdk/cdk.json

@@ -0,0 +1,6 @@
+{
+  "app": "python3 app.py",
+  "context": {
+    "@aws-cdk/core:enablePartitionLiterals": true
+  }
+}

web-app-rds/python/cdk/deploy.sh

@@ -0,0 +1,87 @@
+#!/bin/bash
+set -euo pipefail
+
+SCRIPT_DIR="$(cd "$(dirname "${BASH_SOURCE[0]}")" && pwd)"
+STACK_NAME="WebAppRdsStack"
+REGION="${AWS_DEFAULT_REGION:-us-east-1}"
+
+echo "Deploying Web App RDS Sample via CDK"
+echo "  Stack: $STACK_NAME"
+echo "  Region: $REGION"
+
+cd "$SCRIPT_DIR"
+
+# Determine CDK CLI to use
+if command -v cdklocal &> /dev/null; then
+    CDK="cdklocal"
+else
+    echo "Warning: cdklocal not found, using cdk (may not work with LocalStack)"
+    CDK="cdk"
+fi
+
+AWS="aws --endpoint-url=http://localhost.localstack.cloud:4566"
+
+# Install Python dependencies
+echo ""
+echo "Step 1: Installing CDK dependencies..."
+uv pip install --system -r requirements.txt --quiet 2>/dev/null || true
+
+# Bootstrap CDK (if needed)
+echo "Step 2: Bootstrapping CDK..."
+$CDK bootstrap --quiet 2>/dev/null || true
+
+# Deploy stack
+echo "Step 3: Deploying CDK stack..."
+$CDK deploy --require-approval never --outputs-file cdk-outputs.json
+
+# Wait for RDS to be available
+echo "Step 4: Waiting for RDS instance..."
+DB_INSTANCE_ID=$(jq -r ".$STACK_NAME.DBInstanceId" cdk-outputs.json)
+MAX_ATTEMPTS=30
+ATTEMPT=1
+
+while [[ $ATTEMPT -le $MAX_ATTEMPTS ]]; do
+    STATUS=$($AWS rds describe-db-instances \
+        --db-instance-identifier "$DB_INSTANCE_ID" \
+        --query 'DBInstances[0].DBInstanceStatus' \
+        --output text \
+        --region "$REGION" 2>/dev/null || echo "pending")
+
+    if [[ "$STATUS" == "available" ]]; then
+        echo "  RDS instance is available"
+        break
+    fi
+    echo "  Status: $STATUS (attempt $ATTEMPT/$MAX_ATTEMPTS)"
+    sleep 2
+    ATTEMPT=$((ATTEMPT + 1))
+done
+
+# Extract outputs
+echo "Step 5: Extracting outputs..."
+FUNCTION_NAME=$(jq -r ".$STACK_NAME.FunctionName" cdk-outputs.json)
+FUNCTION_URL=$(jq -r ".$STACK_NAME.FunctionUrl" cdk-outputs.json)
+LAMBDA_ARN=$(jq -r ".$STACK_NAME.FunctionArn" cdk-outputs.json)
+DB_HOST=$(jq -r ".$STACK_NAME.DBHost" cdk-outputs.json)
+DB_PORT=$(jq -r ".$STACK_NAME.DBPort" cdk-outputs.json)
+
+# Save config for test script (shared with scripts/)
+cat > "$SCRIPT_DIR/../scripts/.env" << EOF
+FUNCTION_NAME=$FUNCTION_NAME
+FUNCTION_URL=$FUNCTION_URL
+LAMBDA_ARN=$LAMBDA_ARN
+DB_INSTANCE_ID=$DB_INSTANCE_ID
+DB_HOST=$DB_HOST
+DB_PORT=$DB_PORT
+DB_NAME=appdb
+DB_USER=admin
+REGION=$REGION
+STACK_NAME=$STACK_NAME
+EOF
+
+echo ""
+echo "Deployment complete!"
+echo "  Function Name: $FUNCTION_NAME"
+echo "  Function URL: $FUNCTION_URL"
+echo "  RDS Instance: $DB_INSTANCE_ID"
+echo ""
+echo "Run tests with: ../scripts/test.sh"

web-app-rds/python/cdk/requirements.txt

@@ -0,0 +1,2 @@
+aws-cdk-lib>=2.100.0
+constructs>=10.0.0

web-app-rds/python/cdk/teardown.sh

@@ -0,0 +1,28 @@
+#!/bin/bash
+set -euo pipefail
+
+SCRIPT_DIR="$(cd "$(dirname "${BASH_SOURCE[0]}")" && pwd)"
+PROJECT_DIR="$(dirname "$SCRIPT_DIR")"
+STACK_NAME="WebAppRdsStack"
+
+echo "Tearing down Web App RDS Sample (cdk)"
+
+cd "$SCRIPT_DIR"
+
+if command -v cdklocal &> /dev/null; then
+    CDK="cdklocal"
+else
+    CDK="cdk"
+fi
+
+# Destroy CDK stack
+$CDK destroy --force 2>/dev/null || true
+
+# Clean up outputs
+rm -f cdk-outputs.json
+rm -rf cdk.out
+
+# Clean up .env
+rm -f "$PROJECT_DIR/scripts/.env"
+
+echo "Teardown complete!"