protect http API GW when CF has S3 as origin

Hi team,

Is it possible to prevent users to hit directly my HTTP API GW if my HTTP GW doesn't support WAF AND my CF distribution doesn't have a custom origin (that can support WAF), my CF origin is an S3 bucket.

so I don't have any way to prevent users hit directly HTTP API GW.

主題

運算安全性、身分識別與合規無伺服器前端網頁與行動裝置網路與內容交付微型服務

標籤

網站佈建 AWS WAF Amazon API Gateway Amazon CloudFront 微型服務

語言

English

Jess

已提問 2 年前檢視次數 238 次

1 個回答

最新
最多得票
最多評論

You can use Custom Headers with CloudFront and API Gateway to prevent hit the API directly.

https://wellarchitectedlabs.com/security/300_labs/300_multilayered_api_security_with_cognito_and_waf/3_prevent_requests_from_accessing_api_directly/

Marco

已回答 2 年前

protect http API GW when CF has S3 as origin

相關內容