6:["$","div",null,{"className":"py-5","children":[["$","div",null,{"className":"flex flex-wrap items-center gap-3","children":[["$","span",null,{"className":"inline-flex size-9 shrink-0 items-center justify-center rounded-xl bg-muted text-lg text-primary","children":["$","i",null,{"className":"fa-jelly fa-regular fa-comment","aria-hidden":"true"}]}],["$","h3",null,{"className":"text-lg font-semibold tracking-tight text-foreground","children":"Comments"}],"$undefined"]}],["$","$L30",null,{"initialItems":[{"postId":"641a15097b483d01e1b3f3f7","slug":"how-to-automatically-generate-request-models-from-typescript-interfaces","title":"How to Automatically Generate Request Models from TypeScript Interfaces","publishedAt":"2023-03-21T20:35:21.909Z","authorName":"Matt Martz","authorUsername":"martzmakes","authorAvatarUrl":"https://cdn.hashnode.com/res/hashnode/image/upload/v1603563423488/bTbc2ul6x.jpeg?w=80&h=80&fit=crop&crop=faces&auto=compress,format&format=webp","commentType":"reply","commentSource":"post","commentPermalink":"/posts/how-to-automatically-generate-request-models-from-typescript-interfaces/5f9c625a65cd015fab581392/comment/641a0090e592dd06478de2ca#reply-641a15097b483d01e1b3f3f7","parentThreadTitle":"How to Automatically Generate Request Models from TypeScript Interfaces","parentThreadSlug":"how-to-automatically-generate-request-models-from-typescript-interfaces","parentThreadHref":"/posts/how-to-automatically-generate-request-models-from-typescript-interfaces/5f9c625a65cd015fab581392","contentHtml":"

Thanks!

\n","upvotes":0},{"postId":"63dafa71f5b65869f5efdecc","slug":"how-to-automatically-generate-request-models-from-typescript-interfaces","title":"How to Automatically Generate Request Models from TypeScript Interfaces","publishedAt":"2023-02-01T23:49:05.954Z","authorName":"Matt Martz","authorUsername":"martzmakes","authorAvatarUrl":"https://cdn.hashnode.com/res/hashnode/image/upload/v1603563423488/bTbc2ul6x.jpeg?w=80&h=80&fit=crop&crop=faces&auto=compress,format&format=webp","commentType":"reply","commentSource":"post","commentPermalink":"/posts/how-to-automatically-generate-request-models-from-typescript-interfaces/5f9c625a65cd015fab581392/comment/63d1b73b2086bff3543caee5#reply-63dafa71f5b65869f5efdecc","parentThreadTitle":"How to Automatically Generate Request Models from TypeScript Interfaces","parentThreadSlug":"how-to-automatically-generate-request-models-from-typescript-interfaces","parentThreadHref":"/posts/how-to-automatically-generate-request-models-from-typescript-interfaces/5f9c625a65cd015fab581392","contentHtml":"

Thanks! I prefer the code-first approach. I hate writing specs and would much rather the code generate them. I talk about this a little bit in the next article: https://matt.martz.codes/openapi-specs-from-cdk-stack-without-deploying-first

But I have since moved more towards Event Driven Documentation: https://matt.martz.codes/automate-documenting-api-gateways-in-eventcatalog

Both still rely on converting typescript interfaces to json schemas... but in the more recent post I shift to downloading the spec from the deployed version of the API Gateway. Thanks for the feedback though, that's totally a valid approach... just not my preferred one.

\n","upvotes":0},{"postId":"61ca35c98787d923bc663318","slug":"lock-down-dynamodb-with-iam-policy-conditions","title":"Lock Down DynamoDB with IAM Policy Conditions","publishedAt":"2021-12-27T21:53:13.997Z","authorName":"Matt Martz","authorUsername":"martzmakes","authorAvatarUrl":"https://cdn.hashnode.com/res/hashnode/image/upload/v1603563423488/bTbc2ul6x.jpeg?w=80&h=80&fit=crop&crop=faces&auto=compress,format&format=webp","commentType":"reply","commentSource":"post","commentPermalink":"/posts/lock-down-dynamodb-with-iam-policy-conditions/6006e59c094f2b30301dd952/comment/61c97b5d1de80a7fb227ffb1#reply-61ca35c98787d923bc663318","parentThreadTitle":"Lock Down DynamoDB with IAM Policy Conditions","parentThreadSlug":"lock-down-dynamodb-with-iam-policy-conditions","parentThreadHref":"/posts/lock-down-dynamodb-with-iam-policy-conditions/6006e59c094f2b30301dd952","contentHtml":"

No, there aren't any credentials in the DDB key. The IAM policy that the Lambda uses to get read access to DDB includes a constraint that restricts what it can see. In the example above you can see the PK is just simply Tenant#1. The JWT includes the tenant number so the condition in the policy:

'dynamodb:LeadingKeys': [`Tenant#${who}`],\n

means that when the lambda is invoked where "who" is 1... they'd only see the Tenant#1 records.

\n","upvotes":0}],"initialHasMore":false,"loadMoreUrl":"/api/profile/comments?limit=10&userId=5f946f9e40346172a86c1d1d","author":{"name":"Matt Martz","username":"martzmakes","avatarUrl":"https://cdn.hashnode.com/res/hashnode/image/upload/v1603563423488/bTbc2ul6x.jpeg?w=80&h=80&fit=crop&crop=faces&auto=compress,format&format=webp"}}]]}]

Matt Martz

About

Available for

Matt Martz's blogs

Search Hashnode

Matt Martz

About

Available for

Matt Martz's blogs

Comments