# Foundational Solutions Architect Use Cases

## **Web & API Solutions**

### Static Website Hosting with HTTPS

* **Services**: S3, CloudFront, ACM, Route 53
* **Objective**: Host a static website with a custom domain and SSL certificate.
* **Learning**: Understand global content delivery, DNS setup, and how to secure static content delivery at scale.

### Basic REST API with Authentication

* **Services**: API Gateway, Lambda, Cognito
* **Objective**: Build a simple serverless API protected by user authentication.
* **Learning**: Learn API management, integrating authentication, and managing serverless compute for APIs.

### HTTP Redirects via Lambda\@Edge

* **Services**: CloudFront, Lambda\@Edge
* **Objective**: Create URL redirection rules at the edge for legacy paths.
* **Learning**: Explore edge compute, latency reduction, and custom logic deployment close to users.

***

### Global Multi-Region Web App Deployment

* **Services**: CloudFront, Route 53, Global Accelerator, Lambda
* **Objective**: Deliver a high-availability web app with global failover.
* **Learning**: Design for global availability, failover, and performance optimization.

### GraphQL API with Real-Time Subscriptions

* **Services**: AppSync, DynamoDB Streams, Lambda
* **Objective**: Serve real-time data updates via GraphQL subscriptions.
* **Learning**: Architect real-time APIs and understand event-driven integration.

### Multi-Tenant SaaS API with Rate Limiting

* **Services**: API Gateway, Lambda, Cognito, Usage Plans
* **Objective**: Provide controlled API access for multiple tenants.
* **Learning**: Design for multi-tenancy, usage throttling, and security boundaries.

***

## **Automation & Event Workflows**

### Scheduled File Cleanup in S3

* **Services**: EventBridge, Lambda
* **Objective**: Automate file deletion from S3 on a schedule.
* **Learning**: Understand serverless automation and event-driven scheduling.

### Image Upload Trigger for Thumbnail Creation

* **Services**: S3, Lambda
* **Objective**: Automatically create image thumbnails upon upload.
* **Learning**: Implement reactive workflows using S3 event triggers.

### Send Notification on EC2 Start

* **Services**: CloudTrail, EventBridge, SNS
* **Objective**: Notify admins when EC2 instances start.
* **Learning**: Build event-driven monitoring with proactive alerting.

***

### Order Processing with Dead Letter Queue (DLQ)

* **Services**: SQS, Lambda, DynamoDB
* **Objective**: Process customer orders asynchronously with failure handling.
* **Learning**: Architect for resilience, decoupling, and error recovery.

### CI/CD Event Triggers Across Accounts

* **Services**: EventBridge (Cross-account), Lambda
* **Objective**: Trigger actions in one AWS account based on events in another.
* **Learning**: Cross-account event orchestration and governance.

### Automated Compliance Remediation

* **Services**: Config Rules, Lambda, SNS
* **Objective**: Detect and fix non-compliant resources automatically.
* **Learning**: Implement self-healing infrastructure and governance automation.

***

## **Data & Storage Use Cases**

### S3 Lifecycle Management for Archiving

* **Services**: S3, Glacier
* **Objective**: Automatically archive old files to Glacier.
* **Learning**: Optimize storage cost and design data lifecycle strategies.

### Pre-Signed URL Generation for File Access

* **Services**: S3, Lambda, API Gateway
* **Objective**: Secure temporary access to private files.
* **Learning**: Implement secure, scalable file access control.

### Basic CRUD with DynamoDB

* **Services**: API Gateway, Lambda, DynamoDB
* **Objective**: Store and manage items using serverless architecture.
* **Learning**: Model NoSQL data and understand API integration.

***

### Serverless Data Lake with Querying

* **Services**: S3, Glue, Athena, QuickSight
* **Objective**: Store and analyze large datasets without servers.
* **Learning**: Design data lakes and implement serverless analytics.

### Data Replication and Backup Across Regions

* **Services**: S3 Replication, DynamoDB Global Tables
* **Objective**: Ensure data availability across multiple AWS regions.
* **Learning**: Build for disaster recovery and high availability.

### Data Ingestion Pipeline with ETL

* **Services**: Kinesis, Lambda, Glue, Redshift
* **Objective**: Stream and transform data into a warehouse.
* **Learning**: Design scalable, real-time ETL pipelines.

***

## **Security & Identity Management**

### IAM Role with Least Privilege

* **Services**: IAM
* **Objective**: Create a secure, minimal access policy.
* **Learning**: Apply principle of least privilege and access control.

***

### Centralized Security Monitoring Hub

* **Services**: Security Hub, GuardDuty, Config
* **Objective**: Aggregate security alerts across accounts.
* **Learning**: Centralize governance and threat detection.

### Federated Access with SAML and SSO

* **Services**: IAM Identity Center, SAML Provider
* **Objective**: Enable external identity federation.
* **Learning**: Architect for cross-organization identity management.

### Multi-Tenant Identity Isolation with Cognito

* **Services**: Cognito, KMS, IAM
* **Objective**: Secure user data in a multi-tenant app.
* **Learning**: Design identity isolation and tenant-level security.

***

## **Monitoring & Operational Insights**

### CloudWatch Alarm on EC2 Metrics

* **Services**: CloudWatch, EC2
* **Objective**: Alert on high CPU usage.
* **Learning**: Implement monitoring and proactive alerting.

### Log Processing and Alerting

* **Services**: CloudWatch Logs, Lambda
* **Objective**: Analyze logs and trigger actions.
* **Learning**: Design reactive log-based workflows.

### Resource Monitoring Dashboard

* **Services**: CloudWatch Dashboards
* **Objective**: Visualize system health in one view.
* **Learning**: Aggregate metrics for operational awareness.

***

### Distributed Tracing Across Microservices

* **Services**: X-Ray, API Gateway, Lambda, ECS
* **Objective**: Trace user requests across services.
* **Learning**: Identify performance bottlenecks and trace flow.

### Real-Time Alerting and Auto-Remediation

* **Services**: CloudWatch, EventBridge, Lambda
* **Objective**: Auto-heal resources based on alerts.
* **Learning**: Build self-healing architectures.

### Log Aggregation and Analysis with OpenSearch

* **Services**: CloudWatch Logs, Firehose, OpenSearch
* **Objective**: Search and analyze large-scale logs.
* **Learning**: Design centralized log analytics.

***

## **Deployment & Infrastructure Automation**

### Deploy Lambda with CloudFormation

* **Services**: CloudFormation, Lambda
* **Objective**: Automate serverless deployments.
* **Learning**: Apply infrastructure-as-code (IaC).

### CI/CD Pipeline for Web App

* **Services**: CodeCommit, CodeBuild, CodePipeline
* **Objective**: Automate app build and deployment.
* **Learning**: Design pipelines for repeatable deployments.

### Infrastructure Provisioning with CDK

* **Services**: AWS CDK
* **Objective**: Provision infra using TypeScript/Python.
* **Learning**: Use code for scalable infra management.

***

### Multi-Account CI/CD Pipeline

* **Services**: CodePipeline, StackSets
* **Objective**: Deploy apps across multiple AWS accounts.
* **Learning**: Manage complex environments and governance.

### Blue/Green Deployment for ECS

* **Services**: ECS, ALB, CodeDeploy
* **Objective**: Deploy updates with zero downtime.
* **Learning**: Implement safe deployment strategies.

### Parameterized CloudFormation Stacks

* **Services**: CloudFormation, SSM
* **Objective**: Deploy reusable templates across environments.
* **Learning**: Build modular and flexible IaC.