AWS Mobile SDK
Unity Developer Guide

AWS Lambda

AWS Lambda is a compute service that runs your code in response to requests or events and automatically manages the compute resources for you, making it easy to build applications that respond quickly to new information. AWS Lambda functions can be called directly from mobile, IoT, and Web apps and sends a response back synchronously, making it easy to create scalable, secure, and highly available backends for your mobile apps without the need to provision or manage infrastructure.

AWS Lambda can execute your Lambda functions in response to one of the following:

  • Events, such as discrete updates (for example, object-created events in Amazon S3 or CloudWatch alerts), or streaming updates (for example, website clickstreams or outputs from connected devices).

  • JSON inputs or HTTPS commands from your custom applications.

AWS Lambda executes your code only when needed and scales automatically, from a few requests per day to thousands per second. With these capabilities, you can use Lambda to easily build triggers for AWS services like Amazon S3 and Amazon DynamoDB, process streaming data stored in Amazon Kinesis, or create your own back-end that operates at AWS scale, performance, and security.

To learn more about how AWS Lambda works, see AWS Lambda: How It Works.

Permissions

There are two types of permissions related to Lambda functions:

  • Execution permissions — The permissions that your Lambda function needs to access other AWS resources in your account. You grant these permissions by creating an IAM role, known as an execution role.

  • Invocation permissions — The permissions that the event source needs to communicate with your Lambda function. Depending on the invocation model (push or pull model), you can grant these permissions using either the execution role or resource policies (the access policy associated with your Lambda function).

Project Setup

Set Permissions for AWS Lambda

  1. Open the AWS IAM Console.

  2. Attach this custom policy to your roles, which allows your application to make calls to AWS Lambda.

{ "Version": "2012-10-17", "Statement": [ { "Effect": "Allow", "Action": [ "lambda:*" ], "Resource": "*" } ] }

Create a New Execution Role

This role applies to the Lambda function that you will create in the next step and determines which AWS resources that function can access.

  1. Open the AWS IAM Console.

  2. Click Roles.

  3. Click Create New Roles.

  4. Follow the on-screen instructions to select the services and corresponding policies that your Lambda function will need access to. For example, if you want your Lambda function to create an S3 bucket, your policy will need write access to S3.

  5. Click Create Role.

Creating a Function in AWS Lambda

  1. Open the AWS Lambda Console.

  2. Click Create a Lambda function.

  3. Click Skip to skip creating a blueprint.

  4. Configure your own function on the next screen. Enter the function name, a description, and choose your runtime. Follow the on-screen instructions based on your chosen runtime. Specify your execution permissions by assigning your newly created execution role to your function.

  5. When finished, click Next.

  6. Click Create Function.

Create a Lambda Client

var credentials = new CognitoAWSCredentials(IDENTITY_POOL_ID, RegionEndpoint.USEast1); var Client = new AmazonLambdaClient(credentials, RegionEndpoint.USEast1);

Create a Request Object

Create a request object to specify the invocation type and the function name:

var request = new InvokeRequest() { FunctionName = "hello-world", Payload = "{\"key1\" : \"Hello World!\"}", InvocationType = InvocationType.RequestResponse };

Invoke Your Lambda Function

Call invoke, passing the request object:

Client.InvokeAsync(request, (result) => { if (result.Exception == null) { Debug.Log(Encoding.ASCII.GetString(result.Response.Payload.ToArray())); } else { Debug.LogError(result.Exception); } });