API Gateway's REST API authentication using App ID, App Secret

0

I have gone through the PetStore example in API Gateway multiple rounds, it's able to perform simple GET/POST to public API. But how can i onboard and achieve the API authentication in AWS where i could easily do it in Postman (as below)? Enter image description here

  • How to maintain AppID, Secret which generated from 3rd party platform
  • Based on the guides, the API is secured in method level using IAM, how to relate them in API Gateway where each external API calls is supported by active token Enter image description here

Thanks for the pointers

Regards, newbie weilies :D

1개 답변
0

Since you are using a third party identity provider (Idp) as authenticator, you can use Lambda Authorizer for access control of your API.

https://docs.aws.amazon.com/apigateway/latest/developerguide/apigateway-use-lambda-authorizer.html

A Lambda authorizer is useful if you want to implement a custom authorization scheme that uses a bearer token authentication strategy such as OAuth or SAML, or that uses request parameters to determine the caller's identity.
profile picture
HS
답변함 8달 전

로그인하지 않았습니다. 로그인해야 답변을 게시할 수 있습니다.

좋은 답변은 질문에 명확하게 답하고 건설적인 피드백을 제공하며 질문자의 전문적인 성장을 장려합니다.

질문 답변하기에 대한 가이드라인

관련 콘텐츠