serverless.yaml

# "org" ensures this Service is used with the correct Serverless Framework Access Key.
org: nananah
service: curve-lend-telegram-bot
provider:
  name: aws
  runtime: nodejs20.x
  memorySize: 1024 # optional, in MB, default is 1024
  timeout: 10 # optional, in seconds, default is 6
  versionFunctions: false # optional, default is true
  tracing:
    lambda: true # optional, enables tracing for all functions (can be true (true equals 'Active') 'Active' or 'PassThrough')
  environment:
    BOT_TOKEN_DEV: ${env:BOT_TOKEN_DEV}
    BOT_TOKEN_PROD: ${env:BOT_TOKEN_PROD}
    DRPC_KEY: ${env:DRPC_KEY}
    AWS_ACCOUNT_ID: ${env:AWS_ACCOUNT_ID}
    SQS_URL: ${construct:address-queue-worker.queueUrl}
    SLS_STAGE: ${sls:stage}
  iam:
    role:
      statements:
        - Effect: 'Allow'
          Action:
            - 'dynamodb:PutItem'
            - 'dynamodb:Get*'
            - 'dynamodb:BatchGetItem'
            - 'dynamodb:Scan*'
            - 'dynamodb:Query*'
            - 'dynamodb:UpdateItem'
            - 'dynamodb:DeleteItem'
            - 'dynamodb:DescribeTable'
          Resource: arn:aws:dynamodb:${aws:region}:${aws:accountId}:table/${sls:stage}-WatchedAddresses
        - Effect: 'Allow'
          Action:
            - 'dynamodb:PutItem'
            - 'dynamodb:Get*'
            - 'dynamodb:BatchGetItem'
            - 'dynamodb:Scan*'
            - 'dynamodb:Query*'
            - 'dynamodb:UpdateItem'
            - 'dynamodb:DeleteItem'
            - 'dynamodb:DescribeTable'
          Resource: arn:aws:dynamodb:${aws:region}:${aws:accountId}:table/${sls:stage}-WatchedAddressesHealth
        - Effect: 'Allow'
          Action:
            - 'dynamodb:PutItem'
            - 'dynamodb:Scan*'
            - 'dynamodb:DeleteItem'
            - 'dynamodb:DescribeTable'
          Resource: arn:aws:dynamodb:${aws:region}:${aws:accountId}:table/${sls:stage}-NewlyAddedAddresses
        - Effect: "Allow"
          Resource: "*"
          Action:
            - "sns:*"
            - "cloudwatch:PutMetricData"

functions:
  echo:
    handler: functions/chat.handler
    name: ${sls:stage}-curve-lend-telegram-bot-chat
    logRetentionInDays: 7
    timeout: 20
    events:
      - httpApi:
          method: POST
          path: /telegraf
  address-queue-publisher:
    handler: functions/sqs-publisher.handler
    name: ${sls:stage}-curve-lend-telegram-bot-sqs-publisher
    logRetentionInDays: 7
    events:
      - schedule:
          rate: rate(5 minutes)
  new-address-worker:
    handler: functions/sns-worker.handler
    name: ${sls:stage}-curve-lend-telegram-bot-sns-worker
    logRetentionInDays: 7
    events:
      - sns: ${sls:stage}-dispatch-new-address
  new-address-list-trimmer:
    handler: functions/new-address-list-trimmer.handler
    name: ${sls:stage}-curve-lend-telegram-bot-new-address-list-trimmer
    logRetentionInDays: 7
    events:
      - schedule:
          rate: rate(1 hour)
  dynamodb-item-count-to-cloudwatch:
    handler: functions/dynamodb-item-count-to-cloudwatch.handler
    name: ${sls:stage}-curve-lend-telegram-bot-dynamodb-stats-to-cloudwatch
    logRetentionInDays: 1
    events:
      - schedule:
          rate: rate(6 hours)

constructs:
  address-queue-worker:
    type: queue
    worker:
      handler: functions/sqs-worker.handler
      name: ${sls:stage}-curve-lend-telegram-bot-address-queue-worker
      logRetentionInDays: 7
      timeout: 120
    alarm:  ${env:SQS_DEAD_LETTER_QUEUE_NOTIFICATION_EMAIL}
    encryption: 'kmsManaged'
    batchSize: 20 # Get 100 queued items at a time; IF this number needs to go higher, then sqs-worker.js and its associated getUsersData.js will need to be reworked because BatchGetCommand allows max 100 entries requested at once
    maxBatchingWindow: 60 # Seconds (consume 100 items at a time, or less if threshold not reached after 60s)
    maxConcurrency: 2 # At most 2 concurrent lambdas invoked at once

resources:
  Resources:
    WatchedAddresses:
      Type: AWS::DynamoDB::Table
      Properties:
        TableName: ${sls:stage}-WatchedAddresses
        BillingMode: PAY_PER_REQUEST
        AttributeDefinitions:
          - AttributeName: telegram_user_id
            AttributeType: N
        KeySchema:
          - AttributeName: telegram_user_id
            KeyType: HASH
        SSESpecification:
          SSEEnabled: true
    WatchedAddressesHealth:
      Type: AWS::DynamoDB::Table
      Properties:
        TableName: ${sls:stage}-WatchedAddressesHealth
        BillingMode: PAY_PER_REQUEST
        AttributeDefinitions:
          - AttributeName: telegram_user_id
            AttributeType: N
        KeySchema:
          - AttributeName: telegram_user_id
            KeyType: HASH
        SSESpecification:
          SSEEnabled: true
    NewlyAddedAddresses:
      Type: AWS::DynamoDB::Table
      Properties:
        TableName: ${sls:stage}-NewlyAddedAddresses
        BillingMode: PAY_PER_REQUEST
        AttributeDefinitions:
          - AttributeName: user_id_and_address
            AttributeType: S
        KeySchema:
          - AttributeName: user_id_and_address
            KeyType: HASH
        SSESpecification:
          SSEEnabled: true

plugins:
  - serverless-lift