The HTTP API’s security is a little slimmer, as it’s a slimmed-down offering of the REST API. REST API security is available through IAM, AWS Cognito, VPC Endpoint policies, tag policies, or custom Lambda authorizers. ![]() HTTP APIs, which are simple call-and-response integrations to a backend, typically used with a Lambda integration, and REST APIs, which are the full-featured option, allowing manipulation of the request between the caller and the integration. API Gateway breaks it down into 2 options. Security for WebSockets is done through either IAM or custom Lambda authorizers, but if you need a web socket connection, odds are a custom authorizer is also needed anyway.įor REST APIs the offering is great too. They’re used quite a bit for real-time chat applications, multiplayer games, and things like that. If you’re not familiar, a WebSocket connection is a long-lived connection to a remote resource, which allows for bi-directional communication. It breaks REST APIs into 2 further categories, which I’ll touch on shortly.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |