Project overview
Unified Techs partnered with an American multinational manufacturer of electronic circuit board assemblies to build a secure, scalable serverless internal application — an SPA on Amazon S3 with Okta identity and AWS Lambda backends.
Challenges
- Secure user authentication and authorization via Okta
- Scalable, reliable API management with a single entry point
- Robust, scalable data layer with Amazon RDS for PostgreSQL
- Performance and cost efficiency with a serverless architecture
- High availability and fault tolerance
Our approach
We delivered the SPA on S3/CloudFront, integrated Okta for OAuth 2.0 / OIDC, and routed API traffic through API Gateway with JWT validation into Lambda backends.
Architecture
- SPA hosted on Amazon S3 with CloudFront global distribution
- Okta as IdP using OAuth 2.0 and OIDC; SDK-based auth in the SPA
- API Gateway as central entry point with JWT authorizer for Okta tokens
- AWS Lambda for backend business logic
- Amazon RDS for PostgreSQL with Multi-AZ deployment and automated backups
- HTTPS everywhere; least-privilege IAM throughout
Outcomes
- Improved security via Okta + JWT validation at API Gateway
- High availability and elasticity from Lambda, API Gateway and S3
- Cost savings from pay-as-you-go serverless model
- Enhanced performance via CloudFront edge caching
- Future-ready, modular design for new features