Skip to main content
CJ Cody Jo Method
Home
Projects ▾
Back Office Fuel CertStudy Selah Scripture TNBM Tarot Search Pattern Analogify Studio + ChromaHaus Cordivent ContiNuum
Founder Blog Collaborate
← Back to Blog
March 28, 2026 Back Office Architecture

Edge Auth Without Lambda@Edge

A multi-agent operations platform that audits, hardens, prioritizes, and tracks work across the rest of the portfolio. Back Office is built around transparent automation, operator control, and privacy-first hardening instead of surveillance-heavy workflow tooling.

#lambda at edge #edge auth #bunny net #cloudfront functions #magic containers #security architecture
Quick Answers

Common questions

What was Lambda@Edge doing in the old stack?

It handled authentication and authorization at the CDN edge before requests reached the origin. That included token validation, redirect logic for unauthenticated users, and header manipulation for downstream services.

Why was Lambda@Edge painful to operate?

Because it was a separate compute layer with its own deployment lifecycle, its own logging region, its own size and timeout constraints, and no straightforward local testing story. Debugging auth failures meant searching CloudWatch logs across multiple regions.

How does Bunny handle edge auth now?

A combination of Bunny's edge rules for simple redirect and header logic, and the Magic Container itself for token validation and session management. Auth is part of the application instead of a separate edge compute layer.

Is the auth less secure without a dedicated edge layer?

No. The auth logic is the same. It just runs inside the container instead of in a separate Lambda function at the CDN edge. The security posture improved because there are fewer moving parts and the auth code is testable alongside the application.

Product Context

Explore Back Office

A multi-agent operations platform that audits, hardens, prioritizes, and tracks work across the rest of the portfolio. Back Office is built around transparent automation, operator control, and privacy-first hardening instead of surveillance-heavy workflow tooling.

View Product More posts
Continue Reading

Related articles

Collapsing Lambda into Containers How I replaced a stack of Lambdas and API Gateway with a single Magic Container that owns its own routing, and why the simpler shape was worth the move. From DynamoDB to Bunny Database How I migrated the portfolio's data layer from DynamoDB to Bunny Database, what changed about access patterns, and why a simpler database on the same platform as the runtime was the right call. Why I Moved My Portfolio from AWS to Bunny.net Why I moved a multi-app portfolio from AWS to Bunny.net: privacy, security, speed, better operator ergonomics, and working with a smaller company that builds with real users.
Cody Jo Method

Operator-built software, a serious body of work, and occasional collaborations when the fit is strong.

Projects

Back Office Fuel CertStudy Selah Scripture TNBM Tarot Search Pattern Analogify Studio + ChromaHaus Cordivent ContiNuum

Navigate

Home Founder Blog Collaborate

Connect

me@codyjo.com
© 2026 Cody Jo Method · codyjo.com · Privacy Useful Systems