1 Antwort
- Neueste
- Die meisten Stimmen
- Die meisten Kommentare
1
API Gateway Websockets APIs do not support private APIs so you can't really prevent access to the API from any location. Saying that, you mention CloudFront as the way to access the API. If you use CloudFront, the requests are not routed via a VPC.
One way to achieve that only requests that came from CloudFront are handled by API Gateway is to add sone secret between CloudFront and API GW. This can be done by adding a new header with a specific value in CloudFront and create a Lambda Authorizer in API GW that verifies the value in the header.
Relevanter Inhalt
- AWS OFFICIALAktualisiert vor einem Jahr
- AWS OFFICIALAktualisiert vor 2 Jahren
- Wie aktiviere ich CloudWatch Logs zur Fehlerbehebung meiner API-Gateway-REST-API oder WebSocket-API?AWS OFFICIALAktualisiert vor 2 Jahren