AWS Services
| Service | Purpose |
|---|---|
|
Amazon S3 |
Primary storage for spatial asset files with versioning and lifecycle management |
|
Amazon DynamoDB |
Metadata storage using on-demand billing and point-in-time recovery |
|
Amazon OpenSearch Serverless |
Full-text search and geospatial queries with serverless auto-scaling |
|
Amazon API Gateway |
RESTful API interface with Cognito and IAM authorization |
|
AWS Lambda |
Serverless compute for API handlers and event processing |
|
Amazon Cognito |
User authentication and identity management with user pools |
|
Amazon Verified Permissions |
Fine-grained access control using Cedar policy language |
|
AWS Key Management Service (AWS KMS) |
Customer-managed encryption keys with automatic rotation |
|
AWS Secrets Manager |
Secure storage for sensitive configuration values and credentials |
|
Amazon EventBridge |
Event bus for workflow orchestration and asset change notifications |
|
Amazon SQS |
Asynchronous message processing with queues and dead letter queues |
|
Amazon CloudFront |
Content delivery for web portal with signed URLs for secure access |
|
AWS Certificate Manager (ACM) |
SSL/TLS certificate management for API Gateway and CloudFront |
|
Amazon VPC |
Network isolation with VPC endpoints for private AWS service access |
|
AWS CloudFormation |
Infrastructure deployment and management using nested stacks |
|
AWS Deadline Cloud |
Optional rendering and batch processing for content derivation |
|
Amazon CloudWatch |
Metrics, logs, and dashboards for operational visibility |
|
AWS CloudTrail |
API activity logging for security and compliance auditing |
|
AWS X-Ray |
Distributed tracing for performance analysis and debugging |
