ALB + JWT verification πͺ
https://docs.aws.amazon.com/elasticloadbalancing/latest/application/listener-verify-jwt.html
#ALB
https://docs.aws.amazon.com/elasticloadbalancing/latest/application/listener-verify-jwt.html
ALB will validate the token signature and requires two mandatory claims: 'iss' (issuer) and 'exp' (expiration). Additionally, if present in the token, ALB will also validate 'nbf' (not before) and 'iat' (issued at time) claims. You can configure up to 10 additional claims for validation.
These claims support three formats:
πΉ Single-string: A single text value
πΉ Space-separated values: Multiple values separated by spaces (maximum 10 values)
πΉ String-array: An array of text values (maximum 10 values)
If the token is valid, the load balancer forwards the request with token as is to the target. Otherwise, it rejects the request.
#ALB
π₯17π5
Forwarded from AWS User Group Armenia
Good evening, people jan! π€
Before we all head into βweekdays closing Friday ceremony :D))β mode, quick heads up on a pretty cool update:
AWS Application Load Balancer now supports JWT verification - which basically means :
π«΄ Your ALB can now verify JSON Web Tokens in request headers automatically
π«΄ Handles token signatures, expiration times, and claims - zero code changes
π«΄ ALB does all that OAuth 2.0 token validation for you now
π«΄ Works with Client Credentials Flow and other OAuth 2.0 flows
So just simplify your life - no more writing token validation logic in every service. π
Already available in all AWS Regions where ALB runs.
π Full details here , if you want to dig in over the weekend (or you know, maybe just enjoy your weekend instead π)
Have a great weekend, everyone! π
Before we all head into βweekdays closing Friday ceremony :D))β mode, quick heads up on a pretty cool update:
AWS Application Load Balancer now supports JWT verification - which basically means :
π«΄ Your ALB can now verify JSON Web Tokens in request headers automatically
π«΄ Handles token signatures, expiration times, and claims - zero code changes
π«΄ ALB does all that OAuth 2.0 token validation for you now
π«΄ Works with Client Credentials Flow and other OAuth 2.0 flows
So just simplify your life - no more writing token validation logic in every service. π
Already available in all AWS Regions where ALB runs.
π Full details here , if you want to dig in over the weekend (or you know, maybe just enjoy your weekend instead π)
Have a great weekend, everyone! π
π8β€1
Lambda + Rust π
https://aws.amazon.com/blogs/compute/building-serverless-applications-with-rust-on-aws-lambda/
#Lambda
https://aws.amazon.com/blogs/compute/building-serverless-applications-with-rust-on-aws-lambda/
#Lambda
Amazon
Building serverless applications with Rust on AWS Lambda | Amazon Web Services
Today, AWS Lambda is promoting Rust support from Experimental to Generally Available. This means you can now use Rust to build business-critical serverless applications, backed by AWS Support and the Lambda availability SLA.
π11π2β€1π₯1π
1
He canβt recommend Grafana anymore
https://henrikgerdes.me/blog/2025-11-grafana-mess/
πΈ Rapid product changes and deprecations
πΉ Breaking changes to Helm charts and dashboards
πΈ Constant introduction of new tools/operators
πΉ Complexity from "All-in-One" solutions
πΈ Major architectural shifts without predictability
πΉ Grafana Cloud
πΈ Lack of stability
πΉ Complex software lifecycle management
πΈ Management problems
https://henrikgerdes.me/blog/2025-11-grafana-mess/
πΈ Rapid product changes and deprecations
πΉ Breaking changes to Helm charts and dashboards
πΈ Constant introduction of new tools/operators
πΉ Complexity from "All-in-One" solutions
πΈ Major architectural shifts without predictability
πΉ Grafana Cloud
πΈ Lack of stability
πΉ Complex software lifecycle management
πΈ Management problems
henrikgerdes.me
The Grafana trust problem
The Grafana Stack can be an incredible powerful monitoring solution, but through my experience I found out how maintenance intensive it is and how uncertain theβ¦
π€7π―2β€1