Is it possible to chain authorizers in apigateway http api ?

0

Is it possible to chain authorizers in apigateway http api ? In the api gateway ui, I am only allowed to attach only one authorizer. We have 3 user personas, which has their own login and own cognito user pool.

We want to expose only one the new http api gateway and want to attach all the 3 authorizers i.e cognito user pools to authenticate .

I understand from this link, we can do it for rest api but want to understand whether we can do it for new http api gateway end point.

https://stackoverflow.com/questions/58453901/how-to-use-multiple-cognito-user-pools-for-a-single-endpoint-with-aws-api-gateway

feita há um ano346 visualizações
1 Resposta
2
Resposta aceita

You can only have a single authorizer on every endpoint. If you need more than one, you will need to use a Lambda authorizer to verify both.

In addition to the authorizer you can specify a resource policy, include WAF and use mutual TLS. All pf these apply to all endpoints and they are evaluated in addition to the authorizer.

AWS
respondido há um ano
profile picture
ESPECIALISTA
avaliado há um ano
  • All true, expect HTTP APIs do not support WAF nor resource policies.

Você não está conectado. Fazer login para postar uma resposta.

Uma boa resposta responde claramente à pergunta, dá feedback construtivo e incentiva o crescimento profissional de quem perguntou.

Diretrizes para responder a perguntas