Connecting DynamoDB to Serverless APIs with AWS SAM
Integrating DynamoDB with serverless APIs using AWS SAM unlocks scalable, low-latency data solutions for modern applications. This comprehensive guide walks through configuring DynamoDB tables, establishing secure IAM permissions, and implementing CRUD operations in Lambda functions – all defined through infrastructure-as-code.
Key Insight:
AWS SAM simplifies connecting DynamoDB to serverless APIs by automating resource provisioning and permission management, reducing configuration time by up to 70% compared to manual setups.
Why DynamoDB for Serverless APIs?
DynamoDB’s serverless architecture makes it ideal for API-driven applications:
- Automatic scaling with request volume
- Single-digit millisecond latency
- Pay-per-request pricing model
- Seamless integration with Lambda functions
- Built-in high availability and durability
Step-by-Step Implementation
1 SAM Template Configuration
Define DynamoDB table and Lambda function in template.yaml:
Resources:
MyDynamoDBTable:
Type: AWS::DynamoDB::Table
Properties:
TableName: Products
AttributeDefinitions:
- AttributeName: productId
AttributeType: S
KeySchema:
- AttributeName: productId
KeyType: HASH
BillingMode: PAY_PER_REQUEST
ProductAPI:
Type: AWS::Serverless::Function
Properties:
CodeUri: product-api/
Handler: index.handler
Runtime: nodejs18.x
Policies:
- DynamoDBCrudPolicy:
TableName: !Ref MyDynamoDBTable
Environment:
Variables:
TABLE_NAME: !Ref MyDynamoDBTable2 IAM Permission Strategy
AWS SAM simplifies permission management:
- Use predefined policies like
DynamoDBCrudPolicy - Granular control with custom policy statements
- Automatic permission scoping to specific resources
- Environment variable injection for table names
For complex scenarios, see our Serverless Security Guide.
3 Lambda CRUD Operations
Node.js example for creating items:
const AWS = require('aws-sdk');
const dynamo = new AWS.DynamoDB.DocumentClient();
exports.handler = async (event) => {
const params = {
TableName: process.env.TABLE_NAME,
Item: JSON.parse(event.body)
};
try {
await dynamo.put(params).promise();
return {
statusCode: 201,
body: JSON.stringify({message: 'Item created'})
};
} catch (error) {
return { statusCode: 500, body: error.message };
}
};Performance Optimization Techniques
Maximize DynamoDB efficiency in serverless environments:
| Technique | Implementation | Impact |
|---|---|---|
| Batched Writes | batchWriteItem operation | Reduces write costs by up to 50% |
| DAX Caching | DynamoDB Accelerator integration | Microsecond response times for reads |
| Adaptive Capacity | Automatic throughput management | Prevents throttling during spikes |
| Global Tables | Multi-region replication | <1s cross-region data access |
| Lambda Tuning | Memory and timeout configuration | Reduces cold start impact |
Error Handling Best Practices
Implement robust error management for production APIs:
Transient Error Retries
const dynamo = new AWS.DynamoDB.DocumentClient({
maxRetries: 3,
retryDelayOptions: { base: 200 }
});Conditional Writes
await dynamo.put({
TableName: 'Products',
Item: newItem,
ConditionExpression: 'attribute_not_exists(productId)'
}).promise();Batch Failure Handling
const result = await dynamo.batchWrite(params).promise();
if (result.UnprocessedItems.length > 0) {
// Implement retry logic
}Pro Tip:
Use AWS SAM’s sam local to test DynamoDB integrations offline with local DynamoDB instances before deployment.
Production-Ready SAM Template
Complete example with monitoring and security:
Resources:
ProductsTable:
Type: AWS::DynamoDB::Table
Properties:
TableName: Products
AttributeDefinitions:
- AttributeName: pk
AttributeType: S
- AttributeName: sk
AttributeType: S
KeySchema:
- AttributeName: pk
KeyType: HASH
- AttributeName: sk
KeyType: RANGE
BillingMode: PAY_PER_REQUEST
SSESpecification:
SSEEnabled: true
Tags:
- Key: Environment
Value: Production
ProductApiFunction:
Type: AWS::Serverless::Function
Properties:
FunctionName: ProductService
CodeUri: src/
Handler: index.handler
Runtime: nodejs18.x
Timeout: 15
MemorySize: 1024
Tracing: Active
Policies:
- Version: '2012-10-17'
Statement:
- Effect: Allow
Action:
- dynamodb:GetItem
- dynamodb:PutItem
- dynamodb:UpdateItem
- dynamodb:DeleteItem
- dynamodb:Query
Resource: !GetAtt ProductsTable.Arn
Environment:
Variables:
TABLE_NAME: !Ref ProductsTable
POWERTOOLS_METRICS_NAMESPACE: ProductAPIAdvanced Integration Patterns
Scale your implementation with these architectures:
- Event-Driven Processing: Trigger Lambda from DynamoDB Streams
- Transactional Operations: ACID compliance with TransactWriteItems
- Global Data Access: Multi-region deployment with Global Tables
- Change Data Capture: Real-time analytics with Kinesis Data Streams
For complex workflows, explore our guide on AWS SAM with Step Functions.
Monitoring and Troubleshooting
Essential observability practices:
- Enable X-Ray tracing in SAM template
- Monitor DynamoDB throttling with CloudWatch
- Set alarms for consumed read/write capacity
- Analyze latency with CloudWatch Metrics
- Implement structured logging with Lambda Powertools
Performance Insight:
Properly configured AWS SAM DynamoDB integrations can handle over 10,000 requests per second with consistent single-digit millisecond latency – ideal for high-traffic APIs.
Conclusion
Connecting DynamoDB to serverless APIs with AWS SAM provides a scalable, cost-effective foundation for modern applications. By leveraging SAM’s infrastructure-as-code approach, developers can implement production-ready data solutions in hours rather than days.
For next steps, explore our AWS SAM best practices or learn about SAM vs CloudFormation differences.
