Reputation: 3736
access AWS API gateway using access token from identityserver
We have our identity server implemented using identity server
https://github.com/IdentityServer/IdentityServer3 or https://github.com/IdentityServer/IdentityServer4
And user will authenticate and get the access token from the identity server. We have some APIs developed in AWS api gateway. Just wondering what is the common practice to implement the authentication / authorization in the aws api gateway. We would prefer to use the existing access token from the identity server in the API gateway.
Upvotes: 2
Views: 1527
Answers (1)
Reputation: 2452
You will need to configure a custom authorizer on your API Gateway. The Custom Authorizer will use a Lambda Function to validate the Access Token. You will need to configure the Lambda Function to validate accordingly to your token. Here are some resources to help you configure the API Gateway Custom Authorizer with Lambda Function:
Upvotes: 1
Related Questions
- API Gateway Cognito Authorizer not authorizing Access Token but will authorize Id Token: 401 Unauthorized
- AWS API Gateway - using Access Token with Cognito User Pool authorizer?
- AWS API Gateway Authorizer using Cognito Identity Pool
- Amazon API Gateway authorization AWS_IAM
- API Gateway Authorizer Accepts ID_token But Not Access_Token
- How can I authenticate my api gateway with cognito?
- How can integrate Cognito Identity Pool with API Gateway?
- AWS Cognito and API Gateway Authentication
- AWS ApiGateway cognito user pool authorization works without required id token
- Authorizing AWS API Gateway requests from token in query string