Pre migration:
Get Cogonito user pool configured
Get Admins API-Gateway configured
Get Admins-UI on CloudFront configured (pipeline should be done on another branch)
Get revalidation config PR ready and Reval API-Gateway PR ready (ready means approved, or merged and not applied yet)
Get UserManagement fully tested locally (or on Alpha?)(give errors to admins when user does not exist on Cognito?)
Give notice to all users in advance
Mid migration:
Give notice to users to inform the migration start
Restrict access of UserManagement (Modify API-Gateway to only allow some specific get reqeusts? Or remove user permission/roles temporarily? Or remove mapping annotation on the endpoints (POST/DELETE)?)
Switch Admins-UI DNS to use the app on CloudFront (new Admins API-Gateway), mind the TTL
Switch Reval to the new user pool and get Reval API-Gateway configured
Switch UserManagement to Cognito and release the UserManagement to users
Rollback plan:
3. If Admins-UI becomes unaccessible, switch DNS back
4. If Reval becomes unaccessible and cannot get resolved for 1(?) hour, roll back Reval and do 3
5. If UserManagement cannot be setup properly, try to find the issue and fix it within 1-2days?
Post migration (if the migration has done)
Some scenario to resolve:
Given user management has switched to manage Cognito users
When an admin comes to a user details page that hasn't been migrated to Cognito yet
Then should we provide a button for the admin to create this user on Cognito? Or provide an error message for admins?
0 Comments