Reputation: 43
How to authorize APIs with mixing Cognito Identity & User Pool in API Gateway
I have a resource in AWS API Gateway, currently it included:
- 01 group of APIs need authenticated & authorized through Cognito User Pool
- Another group of APIs need authorized using developer authenticated identities enhanced flow with Cognito Identity Pool & validate authorize through AWS_IAM
The problem is AWS API Gateway only support to configure 01 resource with 01 authorizer (Cognito User Pool or AWS_IAM). So, what is solution to support validate authorize with both methods (Cognito User Pool and AWS_IAM)?
I have an idea that using Lambda function for authorizer but I am not sure that it is support validate authorize with AWS_IAM. If it is possible could someone help me with a sample code Nodejs for Lambda function?
Thanks.
Upvotes: 0
Views: 492
Answers (1)
Reputation: 1179
This assumption is not correct.
An authorizer can be added at API Gateway level, but authorization type can be selected for each API, it can be either IAM or it can be Cognito.
So, as requested, a set of APIs can have IAM as authorizer and another can have Cognito as the authorizer.
Upvotes: 0
Related Questions
- Authenticate users in AWS Api Gateway with Cognito
- AWS API Gateway - using Access Token with Cognito User Pool authorizer?
- AWS API Gateway Authorizer using Cognito Identity Pool
- How to integrate API Gateway with Cognito Federated Identity and Cognito User Pools
- AWS Cognito + API Gateway, Authorize based on username
- How can integrate Cognito Identity Pool with API Gateway?
- AWS Cognito and API gateway using Lambda authorizer
- AWS Cognito and API Gateway Authentication
- API Gateway with Cognito User Pool Authorizer and Lambda
- Additional authorization logic for Cognito User Pools User