Is there a way to enable mutual TLS for AWS Lambda function URLs? I would like to do the following - enforce client side TLS cert/key - enforce that the client cert is generated from a particular CA (i.e. root CA) - (optionally) enforce a check on the CN string of the cert (to allow on certain clients to come in) 1st and 2nd is already supported in AWS ApiGateway.

Mutual TLS for AWS Lambda Function URL

Is there a way to enable mutual TLS for AWS Lambda function URLs? I would like to do the following

enforce client side TLS cert/key
enforce that the client cert is generated from a particular CA (i.e. root CA)
(optionally) enforce a check on the CN string of the cert (to allow on certain clients to come in)

1st and 2nd is already supported in AWS ApiGateway.

주제

서버리스 컴퓨팅

태그

AWS Lambda

언어

English

질문됨 2년 전991회 조회

1개 답변

최신
최다 투표
가장 많은 댓글

이 답변이 도움이 되었나요?커뮤니티가 여러분의 지식을 활용할 수 있도록 정답을 찬성하세요.

Lambda function URLs are intended to be very lightweight way if invoking Lambda functions. They have limited capabilities, mutual TLS is not one of them.

If you need mutual TLS you should use API Gateway instead.

전문가

Uri

답변함 2년 전

전문가

Gary Mclean

검토됨 한 달 전

Mike Gill
9달 전
Hello, is there a custom way to implement with a Function URL using python./fast-api as the backend?

Mutual TLS for AWS Lambda Function URL

관련 콘텐츠