3回答
- 新しい順
- 投票が多い順
- コメントが多い順
0
You are correct. HTTP tasks do not support private endpoints. To call thise endpoints, you will need to use a Lambda function that you attache to the VPC and let it make the call.
0
API Gateway with private integration wouldn't work as the Step function will not be able to resolve the DNS.
回答済み 25日前
You could block external access to the API with a policy or IAM authentication. It works and it should have a lower latency, but a Lambda function is easier. And if you use Step Functions, probably latency is not a concern
関連するコンテンツ
- AWS公式更新しました 1年前
API Gateway with private integration wouldn't work as the Step function will not be able to resolve the DNS.
Actually, this is another option. API Gateway has private or public endpoints, and also, public or private integrations (using VPC link). In this case the recommendation is to use an API Gateway with a Public endpoint, which can be accessed from EventBridge, and a private integration, using VPC Link, to the internal API.
Creating a public endpoint would no longer mean it is a private and defeats the whole purpose. I implemented this with lambda function attached to the VPC and invoking the private API from that.