Week 5 Worklog

Objectives of Week 5

  • Deploy the database on AWS.
  • Secure sensitive system information.
  • Configure HTTPS and a custom domain for the application.

Tasks Completed During the Week

DayTaskStart DateEnd DateReferences
1- Initialize Amazon RDS (PostgreSQL)
  + Deploy in Private Subnet
  + Configure appropriate instance type		06/04/202606/04/2026RDS in VPC Guide, DB Subnet Groups
2- Perform database migration
  + Connect ECS Service to RDS
  + Apply database schema		07/04/202607/04/2026ECS to RDS Connectivity, TypeORM Migration Guide
3- Set up AWS Secrets Manager
  + Store database credentials securely
  + Remove hardcoded secrets from source code		08/04/202608/04/2026Secrets Manager Best Practices, ECS Secrets Injection
4- Configure VPC Endpoint
  + Gateway Endpoint for S3
  + Optimize internal traffic routing		09/04/202609/04/2026S3 Gateway Endpoints, Gateway vs Interface Endpoints
5- Configure HTTPS
  + Request SSL certificate via ACM
  + Attach certificate to ALB		10/04/202610/04/2026AWS Certificate Manager Guide, ALB HTTPS Listeners
6- Configure custom domain
  + Map domain using Route 53
  + Connect to ALB and Amplify		11/04/202611/04/2026Route 53 Alias Records, Amplify Custom Domains
7- Perform security audit
  + Close unnecessary ports
  + Review Security Group rules		12/04/202612/04/2026-

Weekly Achievements

  • Database is running reliably within a private network.
  • Sensitive information is securely managed using AWS Secrets Manager.
  • The system now supports HTTPS with a custom domain.

Challenges & Lessons Learned

  • Challenge: Managing connections between ECS and RDS to avoid database overload.
  • Solution: Monitor connection usage and apply controlled migration strategies.
  • Lesson Learned: Security should be implemented from the early stages, not as an afterthought.

Plan for Next Week

  • Set up system monitoring using CloudWatch.
  • Perform performance testing.
  • Configure cost monitoring and alerts.