Reputation: 1600
AWS API Gateway with external authentication
I've built a backend which distributed on several EC2 instances (microservice architecture) and I'm using AWS API Gateway to channel all the requests through a single endpoint. I also built a token-based request authentication system, which requires that every request validates a token on the Auth Service before it is completed.
Is there anyway to tell API Gateway to do the verification by calling the Auth Service itself, rather than having to implement it myself on every endpoint of the backend?
Upvotes: 9
Views: 1936
Answers (1)
Reputation: 7344
Api Gateway team here.
Thanks for your feedback. We have this item on our roadmap and we'll definitely work on addressing it. For now, you'll have to implement it outside Api Gateway.
EDIT 2/17
We've now launched custom authorizers, a new feature that adds a Lambda-based auth layer on your API Gateway RestApi.
Blog post - https://aws.amazon.com/blogs/compute/introducing-custom-authorizers-in-amazon-api-gateway/ Docs - http://docs.aws.amazon.com/apigateway/latest/developerguide/use-custom-authorizer.html
Upvotes: 4
Related Questions
- AWS API Gateway Http proxy to call external API with Authentication
- Authorization for API gateway external requests
- API Gateway cross account access
- authorization for API gateway
- AWS API Gateway to External REST API
- How to authenticate api gateway call to another api gateway
- AWS API Gateway to internal Web Service (an API that's not publicly available)
- How to authenticate with API Gateway?
- How to access secured backend API using API Gateway?
- How to authenticate users for AWS API Gateway?