Secure API Gateway HTTP APIs endpoints with JWT authorizer using Cognito

preview_player
Показать описание
how you can secure Amazon API Gateway HTTP endpoints with JSON web token (JWT) authorizers. Amazon API Gateway helps developers create, publish, and maintain secure APIs at any scale, helping manage thousands of API calls. There are no minimum fees, and you only pay for the API calls you receive.
This video includes step-by-step guidance for setting up JWT authorizers using Amazon Cognito as the identity provider, configuring HTTP APIs to use JWT authorizers, and examples to test the entire setup using POSTMAN.

  1. Raaviblog
  2. api gateway jwt example
  3. api gateway jwt authorizer cognito
  4. aws api gateway jwt authentication
  5. aws api gateway authentication best practices
  6. api gateway
Рекомендации по теме
Secure API Gateway 0:10:30

Secure API Gateway HTTP APIs endpoints with JWT authorizer using Cognito

REST vs HTTP 0:11:25

REST vs HTTP APIs in API Gateway (1/2)

Secure Your AWS 0:15:01

Secure Your AWS API Gateway with API Keys | AWS Tutorial

API Gateway HTTP 0:11:13

API Gateway HTTP JWT Authoriser with OAuth2 (eg. Auth0) | Serverless Security

Secure API Gateway 0:29:51

Secure API Gateway using Cognito Authorizer (NEW)

Secure API Gateway 0:33:32

Secure API Gateway using Lambda Authorizer (NEW)

Secure your API 0:24:31

Secure your API Gateway with Lambda Authorizer | Step by Step AWS Tutorial

How to create 0:05:34

How to create a Http API Gateway in AWS and mapped it to the downstream http endpoints

Amazon API GATEWAY 0:41:04

Amazon API GATEWAY - How To Build HTTP APIs | AWS LAMBDA SERIES | .NET ON AWS

Use JWT Authorizers 0:13:48

Use JWT Authorizers with Amazon Cognito and API Gateway

Top 12 Tips 0:09:47

Top 12 Tips For API Security

API Gateway - 0:15:40

API Gateway - HTTP Integration

AWS re:Invent 2020: 0:28:44

AWS re:Invent 2020: Serverless API authentication for HTTP APIs on AWS

What is an 0:10:19

What is an API Gateway?

This is the 0:09:25

This is the best way to protect your APIs

Tutorial: How to 0:13:10

Tutorial: How to add security to a REST API using JWT Authorizers and Amazon Cognito | JWT Token

AWS API Gateway 0:27:35

AWS API Gateway to Lambda Tutorial in Python | Build a HTTP API (2/2)

How do I 0:10:38

How do I implement IAM authentication for APIs in API Gateway?

AWS API Gateway 0:11:17

AWS API Gateway to Lambda Tutorial in Python | Build a REST API

Google Cloud's API 0:02:12

Google Cloud's API Gateway

Connect AWS Lambda 0:11:42

Connect AWS Lambda to API Gateway for REST APIs

Secure the AWS 0:20:05

Secure the AWS API Gateway with Cognito User Pools & Cognito Authorizer

AWS API Gateway 0:50:47

AWS API Gateway Tutorial | How to Create REST API With API Gateway | AWS Training | Edureka

API Gateway LAMBDA 0:42:54

API Gateway LAMBDA AUTHORIZER (Custom Authorizer) | REST APIs | .NET ON AWS | AWS Serverless

Комментарии
Автор

Okay, thanks for the explanations. But what I was waiting for is this:

* User (not yet signed in) uses the web browser (e.g. Firefox) and calls a URL that is protected.
* Then I want the login dialogue to pop up (the one that you used in the Cognito pool to sign in) and the user can enter credentials.
* When credentials are okay, then the browser proceeds to the protected URL and shows the content.

So how do I achieve this? What you were explaining seems to be going on below the surface. I cant expect my users to manually launch the hosted UI from the AWS console... they dont have access to the account where the pool is in...?!

CotopaxiAH
Автор

Hello Ravi, thanks for this video session. I have one query. When we have only read only scooe, how aws cognito knows that post operation is not allowed

atul.kaulgud