Reputation: 287
AWS API Gateway and AWS Lambda - handling client certificate
I am looking to build an API orchestration layer using API Gateway and Lambda.
For my basic use case I want to have a Python script in Lambda that will just relay the request received at the API Gateway from the client (mobile app in this case) and call an external HTTPS service as the backend.
My question is: Our mobile client uses client certificates to talk to our HTTPS endpoint today. How do I go about intercepting that client certificate in my new API Gateway + Lambda setup?
Upvotes: 13
Views: 8634
Answers (1)
Reputation: 387
Responded here. Copying the answer below for StackOverflow audience-
===
Unfortunately, API Gateway does not support client certificate validation from clients to API Gateway at the moment. We do, however, support client side SSL certificates for authentication by the backends.
Depending on your use-case, you can use various other options in API Gateway to authenticate/authorize your calls from the mobile client; eg API Keys, Custom Authorizers etc. The request from API Gateway to Lambda should already be encrypted.
Hope that helps, Ritisha.
Upvotes: 3
Related Questions
- Access client certificate in AWS lambda
- How to manage client certificates for mutual TLS to be used within AWS Lambda
- Can I use client certificate generated in API Gateway to validate at Lambda?
- AWS API Gateway - Use Client-Side SSL Certificates
- Way to use AWS Certificate Manager cert with API Gateway?
- Authorize AWS API Gateway by a Lambda
- Client certificates with AWS API Gateway
- SSL Client Certificate Amazon API Gateway
- aws api gateway client-side ssl certificate verification with nginx
- AWS Api Gateway - Lambda Function Client Certificate