Overview

This release provides a complete AWS Serverless Application Repository (SAR) template for deploying Tolling Vision ANPR/MMR processing infrastructure with enterprise-grade security, scalability, and monitoring capabilities.

What's Included

Core Infrastructure

• Private VPC architecture with public Application Load Balancer entry point
• Auto Scaling Groups via Lambda custom resources for SAR compatibility
• Multi-AZ deployment with automatic failover across availability zones
• ARM64 and x86-64 support for optimal cost/performance

Security Features

• Container-level JWT authentication using AWS Cognito
• Optional WAF protection with IP allowlisting and AWS Managed Rules
• Private subnets for all compute resources with no public IPs
• HTTPS termination at the load balancer with ACM certificate support

Monitoring & Operations

• CloudWatch operational dashboard with key metrics and health indicators
• SNS email notifications for critical alerts
• Custom application metrics for container lifecycle and processing
• Comprehensive logging with CloudWatch Logs integration

Developer Experience

• Automated deployment scripts with intelligent size detection
• Detailed documentation covering deployment, operations, and troubleshooting
• Parameter examples for different environments
• API testing tools with JWT authentication support

Deployment Options

This template can be deployed via:

1. AWS Serverless Application Repository (recommended)
2. AWS SAM CLI for local testing and deployment
3. AWS CloudFormation for direct stack management

Key Parameters

Required

• LicenseKey - Your Tolling Vision license key
• MaxSize - Maximum number of instances for auto-scaling

Optional

• ProcessCount - Processing threads per instance (1-64)
• DomainName - Custom domain for the API endpoint
• CertificateArn - ACM certificate for HTTPS
• CognitoUserPoolId - For JWT authentication
• EnableWAF - Enable WAF protection
• EnableDNS - Automatic Route53 DNS management

Getting Started

Quick Deploy via SAR

1. Find "tolling-vision" in AWS Serverless Application Repository
2. Configure required parameters
3. Deploy with one click

Deploy via CloudFormation

aws cloudformation create-stack \
  --stack-name tolling-vision-prod \
  --template-body file://template.yaml \
  --parameters file://my-parameters.json \
  --capabilities CAPABILITY_IAM

Using Deployment Scripts

./scripts/deploy-template.sh tolling-vision-prod my-parameters.json

Documentation

• README.md - Project overview and features
• docs/USAGE.md - Comprehensive usage guide
• docs/DEPLOYMENT-GUIDE.md - Detailed deployment procedures
• docs/OPERATIONS-GUIDE.md - Daily operations and monitoring
• docs/JWT-AUTHENTICATION-GUIDE.md - JWT setup and testing
• docs/ENHANCED-MONITORING-GUIDE.md - Advanced monitoring features
• docs/SAR-TROUBLESHOOTING-GUIDE.md - Common issues and solutions

What's New in v1.0.0

Infrastructure

• Lambda custom resources for Auto Scaling Groups, VPC Links, and WAF (SAR compatible)
• Automatic instance type selection based on ProcessCount and architecture
• Configurable spot instance support for cost optimization
• Enhanced VPC networking with dual NAT gateways for high availability

Security

• Container-level JWT authentication without API Gateway JWT authorizer
• WAF integration with customizable IP allowlisting
• Private subnet architecture with strict security groups
• Secrets Manager integration for sensitive configuration

Monitoring

• Pre-built CloudWatch operational dashboard
• Custom application metrics namespace (TollingVision/Application)
• SNS notification system for critical alerts
• Enhanced error detection and log pattern matching

Developer Tools

• Intelligent deployment script with automatic size detection (direct vs S3)
• Template size monitoring and validation tools
• SAR publishing automation script
• Comprehensive API testing examples

Architecture

Internet → ALB (Public) → Private Instances (VPC)
           ↓ HTTPS              ↓ HTTP
        WAF (Optional)    Auto Scaling Group
        Certificate       (Lambda-created)

System Requirements

• Valid Tolling Vision license key
• AWS account with CloudFormation permissions
• (Optional) ACM certificate for HTTPS
• (Optional) Cognito User Pool for JWT authentication
• (Optional) Route53 hosted zone for DNS management

Known Limitations

• Template size: 96KB (requires S3-based deployment for CloudFormation)
• Maximum template size for SAR: 450KB
• Lambda custom resources have 15-minute timeout for resource creation

Support

• GitHub Issues: Report bugs and feature requests
• Documentation: Comprehensive guides in the docs/ directory
• Website: https://tollingvision.com

License

This project is licensed under the MIT License - see the LICENSE file for details.

Important: Docker container images are commercial software and require a separate license from Smart Cloud Solutions Inc.

Full Changelog: https://github.com/tollingvision/sar-cluster/commits/v1.0.0