Cognito User pool with JWT token

Question

Hi,
I am using Custom Authoriser with Cognito User Pool for securing my API gateway. Using the "client_credentials"  grant type to generate the access token. As additional security, I would like to include IP restrictions or IP whitelisting to the Authoriser. Is there is any way that I can include this IP Whitelisting to my custom Cognito Authoriser?

Regards
Jo

Accepted Answer

* The requester's IP can be read via Enhanced Request [Headers](https://aws.amazon.com/blogs/compute/using-enhanced-request-authorizers-in-amazon-api-gateway/) on the Custom Authorizer.
* You can consider the Amazon API Gateway IP Allowlisting with a Resource Policy. See [here](https://lobster1234.github.io/2018/04/14/amazon-api-gateway-ip-whitelisting/) for an example.

Cognito User pool with JWT token

相关内容