Reputation: 2304
Is the HTTPS required between API Gateway and Elastic Beanstalk?
I have Elastic Beanstalk (EB) with Elastic Load Balancers (ELB) in public subnet and EC2 instances in private subnet. API Gateway sends requests to ELB via HTTP.
I've set the Client-Side Cert. on EB that only requests from API Gateway are acceptable, so access to my EB is restricted.
Do I need set also typical HTTPS between API Gateway and EB? Or the configuration with HTTP is save enough when access to EB is restricted only to API Gateway?
Upvotes: 2
Views: 1030
Answers (1)
Reputation: 9020
While HTTPS is not strictly necessary, it is definitely preferred.
There is currently no way to restrict access to your EB such that only API Gateway can access it. We are working on VPC support which would obviate the need for making your EB publicly accessible (and with HTTPS), but I can't comment as to when this would be available.
In the meantime, our current suggested best practice is HTTPS with your backend configured to accept client certificates.
Upvotes: 4
Related Questions
- How to enable HTTPS for Elastic Beanstalk url
- How do I enable HTTPS for my Elastic Beanstalk Java application?
- Allowing https for Elastic Beanstalk
- AWS API gateway and Load balancer secure communication
- Enabling HTTPS and HTTP with Elastic Beanstalk application
- HTTPS AWS Elastic Beanstalk
- Https configuration in AWS Elastic Beanstalk
- Https on Elastic Beanstalk Without Load Balancer
- Api Gateway connection with Elastic Beanstalk (client-side SSL Certificate)
- SSL on Elastic Beanstalk