AWS WAF with AWS Lambda Function URLs?
Is it possible to set up AWS WAF with AWS Lambda function URLs?
Didn't manage to find any info on it.
- Newest
- Most votes
- Most comments
AWS WAF cannot be configured directly, but using CloudFront, WAF can be integrated and secured. Refer to this blog for more details - https://aws.amazon.com/blogs/compute/securing-lambda-function-urls-using-amazon-cognito-amazon-cloudfront-and-aws-waf/
AWS WAF cannot be configured on Lambda Function URLs.
You can set Lambda Function URLs to CloudFront origin and enable AWS WAF for CloudFront.
Lambda function URLs do not support WAF. If you need WAF, use API Gateway instead of function URLs.
If you use a CloudFront distribution instead, you will need to make sure that the requests are coming from CF. Users may be able to guess the URL and invoke the function directly, bypassing WAF. To prevent that you could add a special header with some secret value in CloudFront and you will need to verify that header in your Lambda functions.
Thanks for the additional info, very useful!
Cheers!
Thanks for the link!
Relevant content
- asked 2 months ago
- asked 7 months ago
AWS OFFICIALUpdated 2 years ago- AWS OFFICIALUpdated 2 years ago
- AWS OFFICIALUpdated a year ago
Sounds good. Thank you!