ExerQ - AI Driven Web App

Check out the project here: ExerQ

Abtract#

This project delivers a responsive workout routine tool using DevOps and CI/CD pipelines for efficient, scalable deployment. It provides real-time, personalized workout recommendations based on user preferences like duration, difficulty, equipment, and fitness goals.

Automated pipelines ensure fast updates to the frontend and backend, while cloud deployment supports high availability. A dynamic exercise database and user accounts enable tailored routines and saved favorites.

By applying modern DevOps practices, the project streamlines development and ensures a smooth, user-friendly experience.

Demonstration

Tool Analysis#

We used GitHub Automation to manage deployment and build our CI/CD pipelines. It worked well overall, though we encountered one issue where a deployment appeared successful on GitHub but triggered an error in AWS Amplify. With some team troubleshooting, we resolved it quickly.

AWS’s wide range of services was a major asset during development, offering flexibility and convenience. However, this also added complexity, as getting familiar with the platform took time.

Choosing the right AI model was critical, since our website’s content is entirely generated by it. We selected a Cohere model, available through AWS, which simplified setup and was well-suited for our prompt-based use case.

Final Tool Selection

HTML5: to define the page structure and UI elements
CSS3: to enable visual design, layout, and responsive behavior
JavaScript: to enable user interaction and input validation
GitHub: to store and manage our codebase
Git: to enable version control
GitHub Actions: to enable CI/CD workflows
AWS: to deploy our web application

Amazon Web Service (AWS)#

Identity and Access Management (IAM)#

For our team project, only three of us needed explicit access to AWS, following the principle of least privilege, we distributed what was necessary to complete a specific task. I was responsible for the AWS infrastructure so I had admin access to all the services necessary for the project: Lambda, DynamoDB, API Gateway, Amplify, and Bedrock. Other team members were given read access for demonstration recording and write access to Lambda for assistance with writing the function.

We also utilized a role that would allow each of these services to communicate with each other: LambdaRoutines.

Amplify#

AWS Amplify is a cloud-based service provided by Amazon Web Services that allows developers to easily build, deploy, and host full-stack web and mobile applications. It provides frontend hosting, backend support (like APIs and authentication), and smooth integration with GitHub for automated deployments.

Bedrock#

Amazon Bedrock is a fully managed service that allows us to build and scale generative AI applications using foundation models via an API, without needing to manage infrastructure. It supports models from providers like AI21 Labs, Anthropic, Cohere, Meta, Stability AI, and Amazon’s own Titan models. We requested access to on-demand Cohere AI models which are designed for enterprise-level natural language processing tasks such as text classification and summarization with a focus on fast, secure, and customizable language model deployment.

Lambda#

Next, we created our Lambda function that our script.js will call when someone clicks the search button. AWS Lambda is a serverless compute service that lets us run code in response to events (like API calls or file uploads) without managing servers. We uploaded our lamba_function.py code, and Lambda automatically handles the rest.

Essentially, when we do a certain act on the web application, we set up an Invoke API call to API Gateway which sends the user input to Lambda. From there it calls our Cohere Bedrock model and send that information back to the web app to be displayed for the user.

1
import boto3
2
import json
3
from time import gmtime, strftime
4

5
def lambda_handler(event, context):
6
    bedrock = boto3.client(
7
        service_name='bedrock-runtime',
8
        region_name='us-east-1',
9
    )
10
    dynamodb = boto3.resource("dynamodb", region_name='us-east-1')
11
    table = dynamodb.Table("Routines")
12

13
    try:
14
        print(f"Event: {event}")
15
        duration = str(event.get("minutes", ""))
16
        difficulty = str(event.get("difficulty", ""))
17
        focus = str(event.get("muscleGroups", ""))
18

19
        if not duration or not difficulty or not focus:
20
            return {
21
                "statusCode": 400,
22
                "body": json.dumps({"error": "Missing input data"})
23
            }
24

25
        # Construct the prompt
26
        user_prompt = (
27
            f"Create a {duration}-minute {difficulty} workout routine focusing on {focus}. "
28
        )
29

30
        cohere_body = {
31
            "prompt": user_prompt,
32
            "max_tokens": 500,
33
            "temperature": 0.7
34
        }
35

36
        response = bedrock.invoke_model(
37
            modelId="cohere.command-text-v14",
38
            body=json.dumps(cohere_body),
39
            contentType="application/json",
40
            accept="application/json"
41
        )
42

43
        # Read response
44
        result = json.loads(response["body"].read())
45
        workout = result["generations"][0]["text"].strip()
46

47
        # Store in DynamoDB
48
        now = strftime("%a, %d %b %Y %H:%M:%S +0000", gmtime())
49
        routine_id = f"{difficulty}-{duration}min-{focus}"
50

51
        table.put_item(Item={
52
            "ID": routine_id,
53
            "GeneratedAt": now,
54
            "Prompt": user_prompt,
55
            "Workout": workout
56
        })
57

58
        return {
59
            "statusCode": 200,
60
            "headers": {
61
                "Access-Control-Allow-Origin": "https://main.d3iv8nh98y2vwl.amplifyapp.com",
62
                "Access-Control-Allow-Headers": "Content-Type",
63
                "Access-Control-Allow-Methods": "OPTIONS,POST"
64
            },
65
            "body": json.dumps({"workout": workout})
66
        }
67

68
    except Exception as e:
69
        print(f"Error: {e}")
70
        return {
71
            "statusCode": 500,
72
            "headers": {
73
                "Access-Control-Allow-Origin": "https://main.d3iv8nh98y2vwl.amplifyapp.com",
74
                "Access-Control-Allow-Headers": "Content-Type",
75
                "Access-Control-Allow-Methods": "OPTIONS,POST"
76
            },
77
            "body": json.dumps({"error": str(e)})
78
        }

The great thing about lambda was that, we were able to test our function within the service: Lambda Test

DynamoDB#

Amazon DynamoDB is a fully managed NoSQL database that stores data flexibly and at scale. Its schema-less structure was ideal for testing our data setup. We created a “Routines” table using the UI, with the partition key set to ID.

An example data entry would be as follows:

ID: extra-hard-15 minmin-Glutes
Time: Wed, 30 Apr 2025 23:09:33 +0000
Prompt: Create a 15 min-minute extra hard workout routine focusing on Glutes. This should be in bullet points. Less description.
Workout: Certainly! Below is a 15-minute extra-hard glute workout with minimal descriptions: Glute Bridge - 3 sets of 10 reps, Single-Leg Deadlift - 3 sets of 8 rep

API Gateway#

AWS API Gateway connects the web app to Lambda, handling HTTP requests (like POST) and managing routing, validation, and authorization. This allows secure, serverless interaction between the frontend and backend.

We created a POST API to trigger the Lambda function, using the OPTIONS method to set necessary headers. CORS was enabled to allow secure cross-domain communication between the frontend and AWS services.

CloudWatch#

Dashboards are key in DevSecOps for real-time visibility into system health, security, and performance. We used Amazon CloudWatch to track logs, metrics, and alarms, helping us detect issues quickly.

Dashboard

Our dashboard monitors Lambda requests, latency, errors, database item counts, and key usage to ensure everything runs securely and efficiently.

DevSecOps Principles Utilized#

Continuous Integration and Continuous Delivery (CI/CD)
Automation
Collaboration
Version Control
Monitoring & Traceability
Scalability
End-to-End Responsibility
Identity Management

Conclusion#

We built the ExerQ web app using key DevSecOps principles, managing CI/CD with GitHub Actions and AWS Amplify for seamless deployment. Version control tools supported collaboration across features.

To ensure scalability, we set usage alerts and planned for increasing AI invocation limits. User privacy was prioritized—data is tracked anonymously, and team access was limited with strict permissions.

We leveraged AWS services like Amplify, Lambda, Bedrock, CloudWatch, and DynamoDB to enhance performance and track analytics. This project reinforced the value of strong infrastructure and team collaboration.

Final Version

Reflection
This was my first AWS project ever, I was a complete beginner. Though I accomplished a lot even with no experience, this was the catalyst to my interest in the cloud. Some things that I would have liked to do with more time:

Clean up the UI

Add optional user inputs such as equipment or style of exercises (pilates, calisthenics, powerlifting, etc.)

Add a page for users to explore previously generated routines which would use our DynamoDB database to maintain

Use infrastructure as code (IaC) to build and maintain the web app