Skip to content

Instantly share code, notes, and snippets.

View linhnh90's full-sized avatar

linhnh90

0 followers · 1 following
View GitHub Profile
@linhnh90
linhnh90 / mtls-lambda-authoriser.py
Created January 3, 2023 16:08 — forked from kmkale/mtls-lambda-authoriser.py
AWS API Gw mTLS Lambda Authoriser for certificate revocation check with OCSP & CLR
import json
import os
from certvalidator import CertificateValidator, ValidationContext, errors
import boto3
from asn1crypto import pem
'''
Let's load our truststore from s3. Doing this outside of handler function so that this will be loaded only on coldstart.
If the truststore contents change, you need to update the lambda env var 'TRUSTSTORE_FILE_VERSIONID'
with the new files versionId. And also update the same in 'API Gateway > Custom domain names > Domain details > Truststore version' and wait till Status becomes Available.
@linhnh90
linhnh90 / nginx-tuning.md
Created March 4, 2022 13:37 — forked from denji/nginx-tuning.md
NGINX tuning for best performance

Moved to git repository: https://github.com/denji/nginx-tuning

NGINX Tuning For Best Performance

For this configuration you can use web server you like, i decided, because i work mostly with it to use nginx.

Generally, properly configured nginx can handle up to 400K to 500K requests per second (clustered), most what i saw is 50K to 80K (non-clustered) requests per second and 30% CPU load, course, this was 2 x Intel Xeon with HyperThreading enabled, but it can work without problem on slower machines.

You must understand that this config is used in testing environment and not in production so you will need to find a way to implement most of those features best possible for your servers.