AWS Transform for mainframe refactor

AWS DevOps Regression Testing Snapshots (RTS)

Version 12.0.10

Security implementation:

  • Added SSL (https) to access RTS Manager (API & Web UI.)
  • Added AWS Cognito user pool to manage RTS Manager users with two roles:
    • Standard role who can read servers & snapshots and perform a snapshot restoration.
    • Admin role who can perform all actions.
  • Added SSL to access PostgreSQL databases on EC2.
  • PostgreSQL administrator password has been moved to AWS Secrets Manager
  • Added connection throttling, by default the limit is set to 20 concurrent requests per seconds. Thus reducing the chances of reaching requests exceeded limits on AWS API.
  • Added max connection security, by default the limit is set to 50 concurrent requests.
  • Server API request sanitization, thus making RTS API more robust.

Installation:

  • Installation process has been reviewed and is now integrated in AWS Blu Age Standard Delivery Environment CDK installation.

  • Fixed issue on AWS Cloud Development Kit, where CDK did not delete AWS Cognito user pool when the stack were destroyed.

    Version 12.0.9

    Reviewed the whole Redis cache strategy:

  • Redis client is now instantiated once (implementing the client for every request was causing connection issues).
  • Only one database is now used (this reduces the risk of selecting the wrong database on concurrent access).
  • Global cache keys for EC2, RDS instances and Snapshots are used, once those keys expires they trigger a full reload of instances and snapshots (Global TTL is set to 10 minutes.)

Fix parameter reload, it removes the parameter store key cache in Redis forcing a reload of parameters from AWS System Manager Parameters Store Key. Fix an issue on server creation pop up windows. Where as when a blank disk creation was selected, it was causing an issue when doing a second server creation with an existing snapshot.

Version 12.0.8

Removed use of custom image to create EC2 instances and switched to standard Amazon Linux 2023 image. The gain of using a custom image was too small comparing to the efforts needed to maintain that image up to date. Instead of using an image, installation scripts are run every time an EC2 instance is created. Added auto configuration for PostgreSQL engine depending on the type of instances.

Version 12.0.7

Redesigned the back-end, the business logic is now separated in a different package from the back-end application server, allowing it to be used in a lambda or directly for another application type (CI/CD, electron application....).