By using AWS re:Post, you agree to the AWS re:Post Terms of Use
AWS re:Postre:Post

API Gateway endpoint Authentication from ServiceNow

0

Hi,

Have a few Services run via API Gateway in multiple AWS accounts. I am trying to invoke API Gateway from the ServiceNow platform, so trying to figure out how can I authenticate API Gateway without storing credentials locally into ServiceNow. There are some limitations on the ServiceNow platform as below:

  • The ServiceNow platform supports only Native JavaScript and cannot import any external packages like aws_auth etc to generate signatures to authenticate API.
  • I do not want to write a whole function to generate Signature4 into ServiceNow which requires a store access key and secret_key to store into ServiceNow.
  • Can we use the IAM role to authenticate API from the external app?

Please suggest on best approach to avoid regular kyes/password rotation, storing locally into ServiceNow.

Topics
ServerlessSecurity, Identity, & ComplianceFront-End Web & MobileNetworking & Content Delivery
Tags
ServerlessSecurity, Identity, & ComplianceAmazon API GatewayAWS IAM Identity Center
Language
English
snowcoder_07
asked 5 months ago287 views
1 Answer
0

Have you looked into lambda authorizers? https://docs.aws.amazon.com/apigateway/latest/developerguide/apigateway-use-lambda-authorizer.html

You could pass a token and api key from service now which then gets validated by the api gateway authorizer

profile picture
EXPERT
Antonio_Lagrotteria
answered 5 months ago

You are not logged in. Log in to post an answer.

A good answer clearly answers the question and provides constructive feedback and encourages professional growth in the question asker.

Guidelines for Answering Questions

Relevant content