CloudFront function or Lambda@edge


I am attempting to validate a jwt. Should I used CloudFront function or Lambda@edge?

preguntada hace un año769 visualizaciones
3 Respuestas
Respuesta aceptada

Using Lambda@Edge is preferred because it allows you to utilize libraries that may not be available on CloudFront Functions.

Here is a good article describing this in detail:

profile picture
respondido hace un año
profile pictureAWS
revisado hace un año

In terms of JWT validation, in my opinion you might want to consider CloudFront Functions as it provides the lowest possible latency with available free tier pricing.

Here's a quick comparison table in the document:

Meanwhile, here's example CloudFront Functions that validates a JWT in the query string of a request which might be of help:

respondido hace un año
profile picture
revisado hace 2 meses

Another thing to consider is security. The CloudFront Function can't access KMS or Secrets Manager so you have to store the secret key in the source code. LambdaEdge will allow you to make use of purpose built secure storage to reduce the risk of key exposure. If you ever need to rotate the key, add a new key, etc. This is all a configuration change versus new code.

profile pictureAWS
respondido hace un año

No has iniciado sesión. Iniciar sesión para publicar una respuesta.

Una buena respuesta responde claramente a la pregunta, proporciona comentarios constructivos y fomenta el crecimiento profesional en la persona que hace la pregunta.

Pautas para responder preguntas