Reputation: 1089
Restrict Access for FLASK Application deployed to AWS ElasticBeanStalk
I want to restrict access to view my Flask Webpage to only specified AWS users. Say I am doing a project for school, I follow the Aws Tutorial for deploying flask app, however once the app is published. Anyone can consume and post to the flask restful service.
I want to do the following
- Lock it down so only logged specific IAM users can view and run the rest service.
I am aware and tried using SSH to lockdown the in/out bound traffic to a specific IP. however I want to only lock it down to specific IAM groups for now. so say when someone tries to go to my application, amazon redirects for them login.
the site is the following, I want to restrict access to only specific roles or groups http://XXXX-XXXX.us-east-1.elasticbeanstalk.com/
Thanks.
Upvotes: 0
Views: 882
Answers (1)
Reputation: 10664
You could for example use AWS API Gateway in front of your app using IAM Authorization: https://aws.amazon.com/premiumsupport/knowledge-center/iam-authentication-api-gateway/
To configure the API Gateway to use IAM authorization from the console, go to the resources and click on your method. Then click on the Method Request and choose AWS_IAM in the Authorization dropdown:
Upvotes: 1
Related Questions
- python flask application in AWS EC2
- AWS Elastic Beanstalk - Flask deployment
- Deploying Flask App in AWS Elastic Beanstalk
- Restrict HTTP Access to Elastic Beanstalk
- Create and Secure AWS EB Application with multiple Environments
- Restrict access to one Elastic Beanstalk app from another
- Deploying Flask app to via Elastic Beanstalk which interacts with S3
- Secure access of webassets with Flask and AWS S3
- Deploying Flask app on EC2 for localhost access
- How to access Flask app using Amazon AWS