Through request parameters including paths, query strings, headers, context variables and stage variables you can now pass information to Amazon API Gateway custom Authorizers. API Gateway custom Authorizer is an Amazon Web Service Lambda Function that provides complete control access to the APIs that uses bearer token authentication strategies such as the SAML or OAuth. Earlier you had only passed one authorization token determined in the custom header in the initial client request made to the custom authorizer. With the new update of Enhanced Request Authorizers now more information will be available to the AWS Lambda Authoriser function which will allow integrating more complicated authorization schemes such as the validation of the multiple headers and signature verification.
No comments:
Post a Comment