Greengrass v2 interact with shadows from a nodejs lambda

Is there any way to interact with local shadows in ggv2 from a nodejs lambda? I know IPC is not supported in the js sdk, but maybe an mqtt client in a lambda could connect to the mqtt components. Thanks in advance for any ideas other than a python rewrite which I am working on, but, looking for a solution to get ggv2 running with ggv1 lambdas while working on python conversion.

Topics

Internet of Things (IoT)Serverless Compute

Tags

AWS IoT Greengrass AWS Lambda Internet of Things (IoT)

Language

English

JAG

asked 2 years ago341 views

1 Answer

Newest
Most votes
Most comments

Are these answers helpful? Upvote the correct answer to help the community benefit from your knowledge.

Accepted Answer

Currently IPC is the only available method for communicating with the local shadow manager. However, the next release of Shadow Manager will support a PubSub API (code) which will enable you to access shadows via MQTT (as long as you configure the appropriate routes in the MQTT Bridge component).

There are downsides to your approach, as you'll need to model your lambda as a client device and give it a private key / cert. But it should serve as a stop gap solution.

JoeAtAWS

answered 2 years ago

EXPERT

Sedat Salman

reviewed 10 months ago

JAG
2 years ago
Awesome! I tried creating a device and using the certs and the aws-iot-device-sdk-v2 js mqtt client from a lambda but I get an AWS_IO_TLS_ERROR_NEGOTIATION_FAILURE TLS (SSL) Negotiation failed. Is this expected until the updates you mention? I have not been able to get a lambda function as a device to connect to the local MQTT broker. Thanks for all your responses.
JoeAtAWS
2 years ago
You won't be able to get this working end-to-end until the next Shadow Manager release. However, you should be able to get the MQTT connection to work.

We have a detailed tutorial on how to set up client devices here: https://docs.aws.amazon.com/greengrass/v2/developerguide/client-devices-tutorial.html

TLS failures are usually caused by your client using an incorrect CA, or Greengrass not having sufficient permissions in the certificate policy to verify the client certificate. Both are covered in the above tutorial.
JoeAtAWS
2 years ago
You can check greengrass.log for hints. Anything along the lines of "bad_ca" points to an issue with the client. Otherwise it's likely a Greengrass configuration issue and the logs should point you in the right direction.

Relevant content

IoT thing shadow and Greengrass component
lacteolus
asked 3 years ago
Greengrass V2 Shadow + MQTT (Moquette)
Accepted Answer
Casey
asked 2 years ago
accessing local shadows from withing lambda
clogwog
asked 3 years ago
How do you use the local shadow service from a connected device in GG v2?
jjvic
asked 3 years ago
Why is my CloudWatch canary failing with the error "Cannot find module '/opt/nodejs/node_modules/myfunction"?
AWS OFFICIALUpdated 2 years ago
How do I troubleshoot HTTP 504 errors from an API Gateway REST API with a Lambda backend?
AWS OFFICIALUpdated a year ago
How do I use layers to integrate the latest version of the AWS SDK for JavaScript into my Node.js Lambda function?
AWS OFFICIALUpdated 4 months ago
How do I resolve HTTP 502 errors from API Gateway REST APIs with Lambda proxy integration?
AWS OFFICIALUpdated 2 years ago
How to use JWT tokens for authorization with AWS KMS in NodeJs Lambdas
EXPERT
Antonio_Lagrotteria
published a month ago
Interact with your Smart Contract on Polygon Mumbai with AMB Access
EXPERT
Simon Goldberg
published 3 months ago