Design Considerations for Your Entitlement Service
When you design the entitlement service for your application, there are several factors to consider:
Authentication mechanism — How will you authenticate user credentials? Will you use an external service such as Login with Amazon (LWA), or an internal data store? If you have an existing log on process defined for your customers, you can integrate it with your entitlement service for a seamless customer experience when you add applications to your offerings.
Web service hosting—Your entitlement service is a web service and must be continuously available to clients. If your entitlement service becomes unavailable, clients will not be able to create new connections. Because of this, you should host your entitlement service on a reliable platform. You can choose to host it on a physical server or in the cloud, on AWS infrastructure.
Service health monitoring—Because your entitlement service is a crucial part of your product, you should monitor the health of your entitlement service and set alarms that trigger if it becomes slow to respond or unavailable. If you are hosting your entitlement service on AWS, you can use CloudWatch to monitor your entitlement service.