API Gateway LAMBDA AUTHORIZER (Custom Authorizer) | REST APIs | .NET ON AWS | AWS Serverless

preview_player
Показать описание
Hey 👋🏽When building serverless APIs with AWS Lambda and API Gateway, one of the most critical questions is how to secure the API.
Lambda Authorizers are a feature provided by API Gateway that helps us separate the authentication logic from our business logic in our function code.

In this video, we will learn about Lambda Authorizers in Amazon API Gateway, how to build one using .NET and how to set it up with API Endpoints. We will look into the different types of custom authorizers, how to cache authorizer responses, and also how to pass data from the authorizer to our Functions containing business logic.

This video is sponsored by AWS and is part of the .NET on AWS Series.

00:00 - Introduction
03:51 - Lambda Authorizer
04:43 - Adding Lambda Function
09:49 - Setup API Lambda Authorizer
13:08 - Validate Request Headers
15:41 - Validate Token In Lamda Function
23:52 - Test Authorizer
25:10 - Authorize POST Endpoint
27:09 - Caching
29:45 - Caching & Policy Conflicts
32:18 - Context Parameters
37:34 - Request Authorizer Type
41:53 - Conclusion

Additional Watching

Come say hi! ✋

  1. Rahul Nath
  2. building rest api using api gateway
  3. lambda proxy integration api gateway
  4. lambda proxy integration
  5. build an api gateway rest api with lambda integration
  6. aws api gateway .net rest api
Рекомендации по теме
Secure your API 0:24:31

Secure your API Gateway with Lambda Authorizer | Step by Step AWS Tutorial

Secure API Gateway 0:12:57

Secure API Gateway with Lambda Authorizer | How to add Lambda Authorizer to API Gateway | Hands-On

Secure API Gateway 0:18:45

Secure API Gateway with a Lambda authorizer - Implementing a custom authorizer

Secure API Gateway 0:33:32

Secure API Gateway using Lambda Authorizer (NEW)

API Gateway LAMBDA 0:42:54

API Gateway LAMBDA AUTHORIZER (Custom Authorizer) | REST APIs | .NET ON AWS | AWS Serverless

API Gateway Lambda 0:11:01

API Gateway Lambda Request Custom Authorizer | Serverless Security

API Gateway Lambda 0:11:23

API Gateway Lambda Token Authorizer | Serverless Security

AWS Sydney Summit 0:17:39

AWS Sydney Summit 2018: Creating an API Gateway Custom Authorizer in .NET Core 2.0

Secure API Gateway 0:32:12

Secure API Gateway using Lambda Authorizer : Hands-On (Part - 2)

Secure your API 0:31:18

Secure your API Gateway with Amazon Cognito User Pools | Step by Step AWS Tutorial

Amazon HTTP API 1:18:01

Amazon HTTP API gateway authorization full hands-on video | JWT | IAM | Lambda - AWS

Attack Vectors for 0:38:42

Attack Vectors for APIs Using AWS API Gateway Lambda Authorizers - Alexandre & Leonardo

Ep3: Using Lambda 0:31:30

Ep3: Using Lambda Authorizer for Rest API Authentication | API GW, Lambda, DynamoDB | Serverless

How do I 0:06:15

How do I authorize access to API Gateway APIs using custom scopes in Amazon Cognito?

API Gateway Security 0:17:12

API Gateway Security Mechanisms | AWS_IAM Vs Cognito User Pool Vs Identity Pool Vs Lambda Authorizer

Use JWT Authorizers 0:13:48

Use JWT Authorizers with Amazon Cognito and API Gateway

Secure API Gateway 0:29:51

Secure API Gateway using Cognito Authorizer (NEW)

AWS re:Invent 2020: 0:28:44

AWS re:Invent 2020: Serverless API authentication for HTTP APIs on AWS

How To: Lambda 0:03:34

How To: Lambda Authorizer For API (3 Min) | Control Access to AWS Http API Using Lambda Function

Securing Your API 0:13:51

Securing Your API with Lambda Authorizer | Step by Step Demo | AWS

API Gateway & 0:06:36

API Gateway & Lambda - how to use API_KEY | Hands-On security Tutorial

API Gateway y 0:09:56

API Gateway y Lambda Authorizer usando la consola

API Gateway Custom 0:13:15

API Gateway Custom Authorizers with Rust & AWS Lambda

Secure the AWS 0:20:05

Secure the AWS API Gateway with Cognito User Pools & Cognito Authorizer

Комментарии
Автор

Great video. Everything related to the custom authorizer is explained in detail with the demo.

shivangigarambha
Автор

Hi raul, as always, your videos are impeccable. They last long enough to include all the dirty details that often are what make something work or not. Congratulations!

MarianoGomezBidondo
Автор

Thank you. This is exactly what I was looking for

proxima
Автор

Hi Rahul, I have been following your videos and they are awesome. Gaining good knowledge and they are vary useful. Thank you.

pardhasaradhivasamsetty
Автор

Great knowledge article Rahul, thanks for sharing it

rahulsalunke
Автор

Do you believe that lambda authoriser along with a lambda for business code would double the cold start issue? Any workaround if you can suggest would be helpful

rahulsalunke
Автор

Hey Rahul, once again awesome video, enough content

dailytech
Автор

Hello, thanks for your videos, Can I use the api keys from the api gateway plus a custom authorizer?

One is for the web app and the custom authorizer for the JWT validation.

When I add the custom authorizer it does not need the api key anymore.

andrescastillo
Автор

Hi rahul great video cheers .. Can I pass token from authorizer to lambda?

vinayakshettar
Автор

Can a Lambda authorizer work with scopes? Like, don't authorize the request if the scope doesn't match the allowed scope for a resource?

markosea
Автор

For Http API gateway I ran into issue when $request.header.Authorization from "Identity Source" is not passed to request.AuthorizationToken of request object.

In postman I setup header (base64 basic auth)
"Authorization": "Basic

In Authorizer settings on aws portal I have $request.header.Authorization

Appreciate any hint

OvRaf
Автор

Hi its great video,
Can any one from your side create API for my RDS?

TechPisat
Автор

Hi, would be nice to see Cognito example. Thank you

cloud_architector
Автор

Is it possible to use lambda authorizer with fargate based API gateway?

SS-hpop
Автор

Hi, missed your videos for some time, now I see you did a course, usually I buy for 10-12$
Can you make a coupon code for this price?

cloud_architector