Help us improve the AWS re:Post Knowledge Center by sharing your feedback in a brief survey. Your input can influence how we create and update our content to better support your AWS journey.
AWS WAF with AWS Lambda Function URLs?
Is it possible to set up AWS WAF with AWS Lambda function URLs?
Didn't manage to find any info on it.
- Language
- English
- Newest
- Most votes
- Most comments
AWS WAF cannot be configured directly, but using CloudFront, WAF can be integrated and secured. Refer to this blog for more details - https://aws.amazon.com/blogs/compute/securing-lambda-function-urls-using-amazon-cognito-amazon-cloudfront-and-aws-waf/
AWS WAF cannot be configured on Lambda Function URLs.
You can set Lambda Function URLs to CloudFront origin and enable AWS WAF for CloudFront.
Lambda function URLs do not support WAF. If you need WAF, use API Gateway instead of function URLs.
If you use a CloudFront distribution instead, you will need to make sure that the requests are coming from CF. Users may be able to guess the URL and invoke the function directly, bypassing WAF. To prevent that you could add a special header with some secret value in CloudFront and you will need to verify that header in your Lambda functions.
Thanks for the additional info, very useful!
Cheers!
Thanks for the link!
Relevant content
- asked 2 years ago
- asked a year ago
- asked 4 years ago
- AWS OFFICIALUpdated 3 years ago
Sounds good. Thank you!