JSPM

  • ESM via JSPM
  • ES Module Entrypoint
  • Export Map
  • Keywords
  • License
  • Repository URL
  • TypeScript Types
  • README
  • Created
  • Published
  • Downloads 152
  • Score
    100M100P100Q77799F
  • License MIT

Ultra-simplified AWS CDK framework for building serverless microservices

Package Exports

  • cdkless
  • cdkless/dist/index.js

This package does not declare an exports field, so the exports above have been automatically detected and optimized by JSPM instead. If any package subpath is missing, it is recommended to post an issue to the original package (cdkless) to support the "exports" field. If that is not possible, create a JSPM override to customize the exports field for this package.

Readme

CdkLess: Ultra-Simplified Serverless Microservices Framework

npm version License: MIT Status: Beta

The simplest way to build serverless microservices with AWS CDK

CdkLess dramatically simplifies the development of serverless microservices on AWS by providing a clean, intuitive API that abstracts away the complexities of the AWS Cloud Development Kit (CDK).

⚠️ Beta Status

CdkLess is currently in beta. While it's functional and usable, please be aware of the following:

  • The API may change without following strict semantic versioning until v1.0
  • Some features are still in development
  • Documentation might be incomplete in some areas
  • Use in production environments at your own risk
  • We welcome feedback, bug reports, and contributions to help stabilize the library

We're actively working to reach a stable 1.0 release and appreciate your understanding and support during this beta phase.

🚀 Installation

npm install cdkless aws-cdk-lib constructs

🎯 Why CdkLess?

CdkLess was created for development teams that need to:

  • Build and deploy microservices quickly without deep AWS expertise
  • Maintain consistent infrastructure patterns across multiple services
  • Focus on business logic rather than infrastructure code
  • Follow best practices without having to reinvent them each time

📊 Comparison with Standard CDK

Standard CDK CdkLess
~200 lines of code ~15 lines of code
4+ files per service 1 file per service
Steep learning curve Minutes to learn
Complex to maintain Simple maintenance
Requires deep AWS knowledge Minimal AWS knowledge required

📋 Quick Start

  1. Create a fully functional serverless microservice in just one file:
// src/app.ts
import { CdkLess } from "cdkless";

const app = new CdkLess("user-services");

app.lambda("src/handlers/users/get-users").get("/users");
app.lambda("src/handlers/users/create-user").post("/users");
app.lambda("src/handlers/users/delete-user").delete("/users");
app.lambda("src/handlers/users/update-user").put("/users");

Note: The handler path provided to .lambda() should be relative to the location of your cdk.json file, which should be placed at the root of your project. If you have any questions, please review the example folder in this repository.

  1. Create a cdk.json file in your project root with the following content:
{
  "app": "npx ts-node src/app.ts"
}
  1. Deploy your service by running:
cdk bootstrap  # Only needed once per AWS account/region
cdk deploy

Your Lambda functions, triggers, API Gateway, and necessary permissions will be automatically deployed to AWS.

🏛️ Architectural Approach

CdkLess follows a specific architectural pattern:

  • Infrastructure Separation: The library is designed with the convention that infrastructure (databases, queues, topics, etc.) is managed in a separate CDK project. This separation of concerns allows infrastructure teams to maintain core resources independently.

  • Service Integration: CdkLess focuses specifically on mounting API Gateway endpoints, Lambda functions, and their triggers by importing existing resources via ARNs. This approach encourages a clean separation between infrastructure and application code.

  • ARN-Based Integration: Instead of creating infrastructure resources directly, CdkLess connects to existing resources using their ARNs. This pattern promotes infrastructure reuse and better governance of cloud resources.

// Example of connecting to existing infrastructure via ARNs
app
  .lambda("src/handlers/orders/process")
  .post("/orders")
  .addTablePermissions("arn:aws:dynamodb:region:account:table/orders-table") // Connect to existing DynamoDB table
  .addSnsTrigger("arn:aws:sns:region:account:topic/order-events"); // Connect to existing SNS topic

🔍 Key Features

🌐 API Gateway Integration

Create HTTP API endpoints with a fluent interface:

// GET endpoint
app.lambda("src/handlers/products/get-product").get("/products/:id");

// POST endpoint
app.lambda("src/handlers/products/create-product").post("/products");

// PUT endpoint
app.lambda("src/handlers/products/update-product").put("/products/:id");

// DELETE endpoint
app.lambda("src/handlers/products/delete-product").delete("/products/:id");

🔐 API Authorization

Secure your endpoints with various types of authorizers:

import {
  HttpJwtAuthorizer,
  HttpLambdaAuthorizer,
} from "aws-cdk-lib/aws-apigatewayv2-authorizers";
import { Function } from "aws-cdk-lib/aws-lambda";

// Creating a Lambda authorizer
const authorizerFunction = new Function(this, "AuthorizerFunction", {
  // function configuration
});

const lambdaAuthorizer = new HttpLambdaAuthorizer(
  "my-lambda-authorizer",
  authorizerFunction,
  {
    authorizerName: "my-lambda-authorizer",
    identitySource: ["$request.header.Authorization"],
  }
);

// Creating a JWT authorizer
const jwtAuthorizer = new HttpJwtAuthorizer(
  "my-jwt-authorizer",
  "https://cognito-idp.us-east-1.amazonaws.com/us-east-1_XXXXXXXXX",
  {
    jwtAudience: ["my-app-client-id"],
  }
);

// Securing routes with authorizers
app
  .lambda("src/handlers/admin/dashboard")
  .get("/admin/dashboard")
  .addAuthorizer(lambdaAuthorizer);

app
  .lambda("src/handlers/users/profile")
  .get("/users/profile")
  .addAuthorizer(jwtAuthorizer, ["profile:read"]);

📊 Database Integration

Connect to DynamoDB tables using ARNs:

app
  .lambda("src/handlers/orders/create-order")
  .post("/orders")
  .addTablePermissions("arn:aws:dynamodb:region:account:table/orders-table");

🔄 Event Triggers and Integration

Create event-driven microservices with SQS, SNS, and S3:

// SQS Queue consumer
app
  .lambda("src/handlers/orders/process-order")
  .addSqsTrigger("arn:aws:sqs:region:account:queue/orders-queue");

// SNS Topic subscriber
app
  .lambda("src/handlers/notifications/send-email")
  .addSnsTrigger("arn:aws:sns:region:account:topic/notifications-topic");

// S3 event handler
app
  .lambda("src/handlers/documents/process-upload")
  .addS3Trigger("arn:aws:s3:region:account:bucket/documents-bucket");

// DynamoDB Streams trigger
app
  .lambda("src/handlers/orders/process-order-changes")
  .addDynamoStreamsTrigger("arn:aws:dynamodb:region:account:table/orders-table", {
    batchSize: 10,
    maxBatchingWindow: 5,
    startingPosition: StartingPosition.TRIM_HORIZON,
    enabled: true,
    retryAttempts: 3,
    reportBatchItemFailures: true
  });

// EventBridge rule trigger
app
  .lambda("src/handlers/scheduled/daily-report")
  .addEventBridgeRuleTrigger({
    scheduleExpression: "cron(0 12 * * ? *)",  // Run daily at 12:00 PM UTC
    description: "Trigger daily report generation"
  });

// EventBridge event pattern trigger
app
  .lambda("src/handlers/events/process-state-change")
  .addEventBridgeRuleTrigger({
    eventPattern: {
      source: ["aws.ec2"],
      detailType: ["EC2 Instance State-change Notification"]
    },
    description: "Process EC2 state changes"
  });

📊 Kafka Integration

Connect your Lambda functions to Kafka topics using either Amazon MSK or Self-Managed Kafka:

// Amazon MSK consumer
app
  .lambda("src/handlers/orders/process-msk-order")
  .addMSKTrigger({
    clusterArn: "arn:aws:kafka:region:account:cluster/your-cluster",
    topic: "orders-topic",
    secretArn: "arn:aws:secretsmanager:region:account:secret/your-secret-name",
    batchSize: 100,
    maximumBatchingWindow: 5,
    consumerGroupId: "orders-consumer-group"
  });

// Self-Managed Kafka consumer (e.g., Confluent Cloud)
app
  .lambda("src/handlers/orders/process-kafka-order")
  .addSMKTrigger({
    bootstrapServers: ["pkc-p11xm.us-east-1.aws.confluent.cloud:9099"],
    topic: "orders-topic",
    secretArn: "arn:aws:secretsmanager:region:account:secret/your-secret-name",
    authenticationMethod: AuthenticationMethod.SASL_SCRAM_512_AUTH,
    batchSize: 100,
    maximumBatchingWindow: 5,
    consumerGroupId: "orders-consumer-group"
  });
Amazon MSK Trigger Configuration
  • clusterArn: ARN of your Amazon MSK cluster
  • topic: Kafka topic to consume from
  • secretArn: ARN of the AWS Secrets Manager secret containing Kafka credentials
  • batchSize: Number of records to process in each batch (default: 10)
  • maximumBatchingWindow: Maximum time to wait for records in seconds (default: 1)
  • startingPosition: Where to start reading from (default: TRIM_HORIZON)
  • enabled: Whether the trigger is enabled (default: true)
  • consumerGroupId: Custom consumer group ID (default: auto-generated)
Self-Managed Kafka Trigger Configuration
  • bootstrapServers: Array of Kafka broker URLs
  • topic: Kafka topic to consume from
  • secretArn: ARN of the AWS Secrets Manager secret containing Kafka credentials
  • authenticationMethod: Authentication method for Kafka (default: SASL_SCRAM_512_AUTH)
    • SASL_SCRAM_512_AUTH: SASL/SCRAM authentication with SHA-512
    • SASL_SCRAM_256_AUTH: SASL/SCRAM authentication with SHA-256
    • SASL_PLAIN_AUTH: SASL/PLAIN authentication
    • BASIC_AUTH: Basic authentication
    • CLIENT_CERTIFICATE_TLS_AUTH: TLS certificate authentication
    • OAUTHBEARER_AUTH: OAuth Bearer authentication
  • batchSize: Number of records to process in each batch (default: 10)
  • maximumBatchingWindow: Maximum time to wait for records in seconds (default: 1)
  • startingPosition: Where to start reading from (default: TRIM_HORIZON)
  • enabled: Whether the trigger is enabled (default: true)
  • consumerGroupId: Custom consumer group ID (default: auto-generated)
DynamoDB Streams Trigger Configuration

The DynamoDB Streams trigger allows processing real-time changes from a DynamoDB table. The configuration includes:

interface DynamoStreamsConfig {
  /** ARN of the DynamoDB table with streams enabled */
  tableArn: string;
  /** Batch size for messages (default: 10) */
  batchSize?: number;
  /** Maximum waiting time to accumulate messages in a batch (in seconds) */
  maxBatchingWindow?: number;
  /** Starting position for the stream consumer */
  startingPosition?: StartingPosition;
  /** Whether the integration is enabled (default: true) */
  enabled?: boolean;
  /** Number of retry attempts for failed records */
  retryAttempts?: number;
  /** Whether to report individual batch item failures */
  reportBatchItemFailures?: boolean;
}

Example usage with all options:

app
  .lambda("src/handlers/orders/process-order-changes")
  .addDynamoStreamsTrigger("arn:aws:dynamodb:region:account:table/orders-table", {
    batchSize: 10,                    // Process 10 records per batch
    maxBatchingWindow: 5,             // Wait up to 5 seconds to accumulate records
    startingPosition: StartingPosition.TRIM_HORIZON,  // Start from the beginning of the stream
    enabled: true,                    // Enable the trigger
    retryAttempts: 3,                 // Retry 3 times in case of failure
    reportBatchItemFailures: true     // Report individual batch item failures
  });

⚙️ Environment Configuration

Add environment variables to your Lambda functions:

app.lambda("src/handlers/payment/process").post("/payments").environment({
  PAYMENT_API_KEY: "secret-key",
  STAGE: this.stage,
  LOG_LEVEL: "INFO",
});

By default, CdkLess uses the STAGE environment variable to determine the deployment stage (e.g., 'dev', 'staging', 'prod'). If not set, it defaults to 'dev'.

🌐 VPC Configuration

Configure your Lambda functions to run within a VPC:

// Basic VPC configuration
app.lambda("src/handlers/users/get-user")
  .addVpcConfig({
    vpcId: "vpc-1234567890abcdef0"
  });

// Full VPC configuration with subnets and security groups
app.lambda("src/handlers/users/get-user")
  .addVpcConfig({
    vpcId: "vpc-1234567890abcdef0",
    subnetIds: ["subnet-1234567890abcdef0", "subnet-0987654321fedcba0"],
    securityGroupIds: ["sg-1234567890abcdef0"]
  });

The VPC configuration supports:

  • vpcId: The ID of the VPC to place the Lambda function in
  • subnetIds: Optional array of subnet IDs where the Lambda function will be placed
  • securityGroupIds: Optional array of security group IDs to associate with the Lambda function

🏷️ Resource Tagging

CdkLess provides a simple way to manage tags for both your stack and individual resources:

// Create a stack
const app = new CdkLess("user-services");

// Add tags to the stack
app.addStackTags({
  ProjectName: "user-services",
  Owner: "tmd_ledger",
  Critical: "false",
  Environment: "dev",
  CostCenter: "12345",
  StackType: "production"
});

// Add tags to all resources
app.addResourceTags({
  ProjectName: "user-services",
  Environment: "dev",
  Department: "IT",
  ManagedBy: "cdkless",
  Version: "1.0.0"
});

// Add specific tags to a Lambda function
app.lambda("src/handlers/users/create-user")
  .post("/users")
  .addTags({
    Service: "user-service",
    Component: "user-management"
  });

Tag Inheritance

  • Stack tags are applied only to the stack itself
  • Resource tags are applied to all resources in the stack
  • Lambda-specific tags are applied only to that specific Lambda function
  • Tags are merged in the following order:
    1. Stack resource tags
    2. Lambda-specific tags

🔑 Adding Permissions to Lambda Functions

Grant your Lambda functions access to AWS resources with a simple, chainable API:

// Add Grant DynamoDB table permissions
app
  .lambda("src/handlers/users/create-user")
  .post("/users")
  .addTablePermissions("arn:aws:dynamodb:region:account:table/users-table");

// Add differents permissions
app
  .lambda("src/handlers/files/upload")
  .post("/files")
  .addPolicy("arn:aws:s3:region:account:bucket/uploads-bucket", [
    "s3:GetObject",
    "s3:PutObject",
  ])
  .addPolicy("arn:aws:sns:us-east-1:123456789012:mi-topic", ["SNS:Publish"]);

✏️ Naming Lambda Functions

By default, CdkLess assigns a name to each Lambda function based on the filename containing the handler. However, it's recommended to specify custom names for better clarity and to avoid duplication errors when deploying:

// Set a custom Lambda function name
app
  .lambda("src/handlers/users/create-user")
  .name(`${APP_NAME}-create-user-lambda`)
  .post("/users");

// Multiple configurations can be chained
app
  .lambda("src/handlers/orders/process-order")
  .name(`${APP_NAME}-process-order-lambda`)
  .post("/orders")
  .addTablePermissions("arn:aws:dynamodb:region:account:table/orders-table");

🏗️ Microservice Architecture Best Practices

CdkLess encourages microservice best practices:

1. Single Responsibility Principle

Each Lambda function should handle a specific task. For example:

// User service
app.lambda("src/handlers/users/get-user").get("/users/:id");
app.lambda("src/handlers/users/create-user").post("/users");
app.lambda("src/handlers/users/update-user").put("/users/:id");
app.lambda("src/handlers/users/delete-user").delete("/users/:id");

// Order service
app.lambda("src/handlers/orders/get-order").get("/orders/:id");
app.lambda("src/handlers/orders/create-order").post("/orders");

2. Domain-Driven Design

Organize your handlers by domain:

src/
  handlers/
    users/
      get-user.ts
      create-user.ts
    orders/
      get-order.ts
      create-order.ts
    payments/
      process-payment.ts

3. Shared Resources

Resources are shared automatically. For example, all HTTP endpoints will share a single API Gateway.

🐞 Local Development and Testing

For local Lambda function testing, we recommend using lambda-running, a lightweight and easy-to-configure library:

# Install globally
npm install -g lambda-running

# Setting
lambda-run init

# Start UI mode with web interface
lambda-run ui

# Or use interactive CLI mode
lambda-run i

# Or run a specific handler directly
lambda-run run src/handlers/users/get-users.js handler --event '{"pathParameters": {"id": "123"}}'

Key features of lambda-running:

  • 🎨 Modern web interface for testing Lambda functions
  • 🔍 Real-time logs and execution results
  • 💾 Save and reuse test events
  • 🔄 Automatic .env file loading

📄 API Reference

For detailed API documentation, please visit our API Reference page.

🌟 Core Principles

CdkLess is built on these core principles:

  1. Everything in One Place: Define, configure, and deploy from a single file
  2. Fluent API: Chain methods for intuitive Lambda configuration
  3. Convention Over Configuration: Sensible defaults for everything
  4. Automatic Building: No need to call .build() or .synth()
  5. Minimal Magic: No hidden configuration
  6. Encapsulated Dependencies: The framework handles all CDK dependencies

🤔 FAQ

How does CdkLess compare to other frameworks like Serverless Framework?

CdkLess builds directly on top of AWS CDK, giving you the full power of CDK with a simplified interface. Unlike configuration-based frameworks, CdkLess uses a code-first approach, which provides greater flexibility and type safety.

Can I access the underlying CDK constructs?

Yes, CdkLess doesn't hide the underlying CDK. You can always access the shared API or other resources.

How does deployment work?

CdkLess handles the CDK synthesis process automatically when your application runs. Just execute your application with cdk deploy and it will deploy to AWS.

What does the beta status mean for my project?

During the beta phase, we recommend using CdkLess for non-critical projects, proofs of concept, or in environments where you can tolerate potential API changes. We're working hard to stabilize the API for a 1.0 release, but until then, you should expect possible breaking changes between minor versions. We recommend pinning to exact versions in your package.json during the beta period.

📋 Requirements

  • Node.js 22+
  • AWS CLI configured
  • AWS CDK CLI (npm install -g aws-cdk)

🙏 Contributing

We welcome contributions! Please feel free to submit a Pull Request.

📝 License

This project is licensed under the MIT License - see the LICENSE file for details.