Reputation: 121
How to configure Keycloak in AWS API Gateway
I am setting up a Keycloak server to authorize the api requests. Keycloak also need to be configured in AWS API Gateway.
If I configure the Keycloak endpoint using HTTP proxy method, some of the page redirection are not working properly.
Can you please suggest the guideliness to configure Keycloak admin web page via API Gateway?
Upvotes: 2
Views: 9988
Answers (3)
Reputation: 1
Abdennours answer is only for HTTP APIs. If you want to use REST API then you have to use Lambda Authorizer. Your Lambda Authorizer must do the validation against your keycloak server.
Upvotes: 0
Reputation: 93193
Besides Lambda, JWT is now available as built-in authorizer:
Upvotes: 1
Reputation: 701
You can add custom authorizers to your API-Gateway. Basically you send a request to keycloak in order to get for example your JWT-Token. API-Gateway then has a custom authorizer (a lambda) which validates the token and returns an IAM policy.
See https://aws.amazon.com/de/blogs/compute/introducing-custom-authorizers-in-amazon-api-gateway/ for more information.
Upvotes: 3
Related Questions
- Creating API gateway api keys in Lambda
- How to use the AWS API Gateway Java SDK to access a Webservice
- Send AWS API Gateway Key Name to Server
- How to fetch API Key using aws CLI
- aws api gateway api key access
- How to automate creation of api keys in AWS API Gateway?
- AWS API Gateway get Api key
- Using Api keys with AWS API Gateway
- How to enable apiKey required to true using the aws-sdk?
- aws api gateway enable api_key for authentication