Cloud Integration Quickstart

AWS Bedrock + xLink in 5 Minutes

Replace IAM roles and access keys with cryptographic identity. Invoke Claude, Llama, Titan, and Jurassic models without AWS credentials. Zero IAM complexity.

Cloud Integration Layer Zero AWS Credentials Cross-Account Access

01 — Installation

Install xLink Cloud Integration

xLink includes a cloud integration layer that handles AWS Bedrock authentication without IAM roles or access keys.

# Install xLink with cloud integration support
npm install @private.me/xlink @private.me/cloud-integrations

# Or using yarn
yarn add @private.me/xlink @private.me/cloud-integrations

Note: The cloud integration layer requires xLink Basic tier or higher. Free tier supports local development only.

02 — Cloud Integration Setup

Configure AWS Bedrock Access

xLink uses cryptographic identity to authenticate with AWS Bedrock. No IAM roles, no access keys, no credential rotation.

import { configureCloudIntegration } from '@private.me/cloud-integrations';

// One-time setup: register your xLink identity with AWS Bedrock
await configureCloudIntegration({
  provider: 'aws-bedrock',
  region: 'us-east-1',
  identity: await connect('bedrock-access') // xLink identity
});

What Happens Under the Hood

Identity Generation: xLink creates a cryptographic identity (DID) for your application
Cloud Registration: The integration layer registers your DID with AWS Bedrock
Zero Credentials: No access keys, secret keys, or session tokens are generated
Cross-Account: Works across AWS accounts without VPC peering or transit gateways

03 — Code Example

Invoke Bedrock Models with xLink

Replace AWS SDK authentication with xLink identity. Same API, zero IAM complexity.

import { connect } from '@private.me/xlink';

// Connect to Bedrock via xLink identity
const bedrock = await connect('bedrock-access');

// Invoke Claude 3.5 Sonnet on AWS Bedrock
const response = await bedrock.value.agent.send({
  to: 'anthropic.claude-3-5-sonnet-20241022-v2:0',
  payload: {
    messages: [
      { role: 'user', content: 'Explain quantum computing in simple terms' }
    ],
    max_tokens: 1024,
    temperature: 0.7
  }
});

console.log(response.value.content);

// Invoke Meta Llama 3.3 70B Instruct
const llamaResponse = await bedrock.value.agent.send({
  to: 'meta.llama3-3-70b-instruct-v1:0',
  payload: {
    prompt: 'Write a haiku about machine learning',
    max_gen_len: 512
  }
});

console.log(llamaResponse.value.generation);

Traditional AWS SDK Approach (What You Replace)

// OLD: IAM roles, credentials, session tokens
import { BedrockRuntimeClient, InvokeModelCommand } from '@aws-sdk/client-bedrock-runtime';

const client = new BedrockRuntimeClient({
  region: 'us-east-1',
  credentials: {
    accessKeyId: process.env.AWS_ACCESS_KEY_ID,     // Leaked = breach
    secretAccessKey: process.env.AWS_SECRET_ACCESS_KEY, // Rotated = cascade
    sessionToken: process.env.AWS_SESSION_TOKEN     // Expired = outage
  }
});

const command = new InvokeModelCommand({
  modelId: 'anthropic.claude-3-5-sonnet-20241022-v2:0',
  body: JSON.stringify({ /* ... */ })
});

const response = await client.send(command);
// ^ IAM policies, VPC endpoints, KMS keys, CloudTrail logs...

xLink Approach (Zero IAM)

// NEW: Cryptographic identity, zero credentials
const bedrock = await connect('bedrock-access');
const response = await bedrock.value.agent.send({ to, payload });
// ^ No IAM, no credentials, no cascade failures

04 — Why xLink for AWS Bedrock

Zero IAM Complexity

xLink eliminates the most complex parts of AWS Bedrock deployment.

No IAM Roles

No trust policies, no assume-role chains, no cross-account headaches. Identity is cryptographic, not policy-based.

No Access Keys

Zero credentials to leak, rotate, or expire. No cascading failures when session tokens expire.

Cross-Account by Default

Access Bedrock models across AWS accounts without VPC peering, transit gateways, or PrivateLink.

Audit Trail Built-In

Every Bedrock invocation is signed by xLink identity. No CloudTrail configuration needed.

Serverless-Native

Works in Lambda, Fargate, ECS, Kubernetes. No VPC endpoints, no NAT gateways.

Zero Trust by Design

Every request is authenticated and signed. No implicit trust based on network location.

05 — Supported Models

All AWS Bedrock Models

xLink works with every model available on AWS Bedrock. Just change the to field.

Anthropic Claude Models

anthropic.claude-3-5-sonnet-20241022-v2:0 — Claude 3.5 Sonnet (latest)
anthropic.claude-3-opus-20240229-v1:0 — Claude 3 Opus
anthropic.claude-3-haiku-20240307-v1:0 — Claude 3 Haiku (fastest)
anthropic.claude-instant-v1 — Claude Instant (legacy)

Meta Llama Models

meta.llama3-3-70b-instruct-v1:0 — Llama 3.3 70B Instruct
meta.llama3-1-405b-instruct-v1:0 — Llama 3.1 405B Instruct
meta.llama3-1-70b-instruct-v1:0 — Llama 3.1 70B Instruct
meta.llama3-1-8b-instruct-v1:0 — Llama 3.1 8B Instruct

Amazon Titan Models

amazon.titan-text-express-v1 — Titan Text Express
amazon.titan-text-lite-v1 — Titan Text Lite
amazon.titan-embed-text-v1 — Titan Embeddings

AI21 Labs Jurassic Models

ai21.j2-ultra-v1 — Jurassic-2 Ultra
ai21.j2-mid-v1 — Jurassic-2 Mid

Cohere Models

cohere.command-text-v14 — Command (text generation)
cohere.embed-english-v3 — Embed English (embeddings)

06 — Next Steps

Resources

xLink Full Documentation — Complete M2M identity guide
Anthropic Quickstart — Direct Anthropic API integration
OpenAI Quickstart — OpenAI + xLink in 5 minutes
AWS Bedrock Docs — Official Bedrock documentation
Get xLink — Start with 3-month free trial

Production Deployment: Contact contact@private.me for enterprise support, cross-account setup assistance, and compliance guidance (FedRAMP, HIPAA, SOC 2).