Finalize dev environment

[briri]

Steps to take to finalize our Dev build

• [ ] Review activity logs and update IAM settings so that we're only allowing what we need to
• [ ] Drop sample data from the DynamoDB
• [ ] Finalize CloudFormation template
• [ ] Run rake task against live DMPHub dev to extract DMPs
• [ ] Backup Cognito user pools if necessary
• [ ] Test CloudFormation (do we need to nuke everything in dev or can we do this in parallel in stage/prod)
• [ ] If all looks good:
  • [ ] Import DMP items into the DynamoDB via script
  • [ ] DNS cutover for dmphub-dev.cdlib.org to point to our new API Gateway
  • [ ] Update DMPTool dev to use new Cognito credentials
  • [ ] Test DMPTool connection

[briri]

We should consider using this pattern to place Cloudfront and WAF in front of the Cognito user pools since they allow direct access and we are going to be using client_credentials workflows: https://aws.amazon.com/blogs/security/protect-public-clients-for-amazon-cognito-by-using-an-amazon-cloudfront-proxy/

[briri]

closing as these are now replced by tickets in the dmp-hub-cfn repo