使用AWS re:Post即您表示您同意 AWS re:Post 使用条款
AWS re:Postre:Post

Is it possible to chain authorizers in apigateway http api ?

0

Is it possible to chain authorizers in apigateway http api ? In the api gateway ui, I am only allowed to attach only one authorizer. We have 3 user personas, which has their own login and own cognito user pool.

We want to expose only one the new http api gateway and want to attach all the 3 authorizers i.e cognito user pools to authenticate .

I understand from this link, we can do it for rest api but want to understand whether we can do it for new http api gateway end point.

https://stackoverflow.com/questions/58453901/how-to-use-multiple-cognito-user-pools-for-a-single-endpoint-with-aws-api-gateway

主题
无服务器前端 Web 和移动网络和内容交付
标签
亚马逊 API 网关
语言
English
G V Navin
已提问 1 年前346 查看次数
1 回答
2
已接受的回答

You can only have a single authorizer on every endpoint. If you need more than one, you will need to use a Lambda authorizer to verify both.

In addition to the authorizer you can specify a resource policy, include WAF and use mutual TLS. All pf these apply to all endpoints and they are evaluated in addition to the authorizer.

AWS
AWS-User-4371564
已回答 1 年前
profile picture
专家
Antonio_Lagrotteria
已审核 1 年前
  • Uri 专家
    1 年前

    All true, expect HTTP APIs do not support WAF nor resource policies.

您未登录。 登录 发布回答。

一个好的回答可以清楚地解答问题和提供建设性反馈,并能促进提问者的职业发展。

回答问题的准则

相关内容