Dr. Marc
Reputation: 125
How can I authenticate AWS Lambda without an API Gateway?
I've got an iOS Shopping App and want to send crash dumps to an AWS Lambda Function.
To save costs for an API Gateway I want to send them directly to Lambda.
How can I authenticate the App and configure it so no other App can send crash dumps to my Lambda Function?
Upvotes: 0
Views: 452
Answers (2)
Othmane El Massari
Reputation: 1
I'll tell you what i have do for a similar problem:
- create an AWS user for the app, so the app has access to
AWS_SECRET_KEY_IDandAWS_SECRET_ACCESS_KEY - In the app, (for safety) encrypt a crafted json with aws credentials using a KMS key for example
- Invoke the lambda function with the encrypted payload as parameter, decrypt the payload and get user identity as following:
session = boto3.Session(
aws_access_key_id=session['access_key'],
aws_secret_access_key=session['secret_access_key'],
aws_session_token=session['security_token']
)
client = session.client('sts')
response = client.get_caller_identity()
Upvotes: 0
yuriy polonskiy
Reputation: 31
- AWS Cognito https://aws.amazon.com/cognito/
- Manually develop all the auth code. OAuth 2.0 with JWT tokens for example. In that case your Lambda can be executed by anyone (Bad idea), still you can limit concurrent executions.
Upvotes: 1
Related Questions
- Is it possible to use AWS API without Authentication Token
- How do you access an AWS Lambda with credentials using API Gateway?
- Authorization using Api gateway and Lambda
- Can I call AWS Lambda directly without Gateway API?
- AWS API gateway authentication without using Cognito
- Handling "Missing Authentication Token" after setting up AWS Lambda with API Gateway
- How to authenticate with API Gateway?
- Secure AWS API Gateway with Lambda Integration
- Authorize AWS API Gateway by a Lambda
- Implement oauth in AWS API Gateway