En utilisant AWS re:Post, vous acceptez les AWS re:Post Conditions d’utilisation
AWS re:Postre:Post

Correct Architecture Set Up for a Public and Private API?

0

I have a monolith that I run on ECS - within this monolith I have a user (public) api and a admin (private) api.

My ECS service sits behind an Internal ALB - if I want the admin api to only be available through a Private API Gateway inside the VPC and the user api to be available through a Public API Gateway outside the VPC - but both have a Cognito authorizer and point to the same Internal ALB - is the diagram attached the correct set up or is there a better way to do this?

Thanks for your help!

Example Architecture

Sujets
Sans serveurWeb et mobile front-endRéseaux et diffusion de contenuSécurité, identité et conformité
Balises
Passerelle API AmazonAmazon Cognito
Langue
English
taxmann
demandé il y a 4 mois2441 vues
1 réponse
3
Réponse acceptée

This is the correct setup, however, REST APIs do not support VPC Link to ALB. You will need to go via NLB. HTTP API does support connecting to ALB, but you can't make it private. So you will need to change ALB to NLB.

profile pictureAWS
EXPERT
Uri
répondu il y a 4 mois
profile picture
EXPERT
Oleksii Bebych
vérifié il y a 2 mois
  • taxmann
    il y a 4 mois

    Thank you for your answer Uri, and for clarifying I need to use an NLB - this is so helpful as it's my first time setting it up! :)

Vous n'êtes pas connecté. Se connecter pour publier une réponse.

Une bonne réponse répond clairement à la question, contient des commentaires constructifs et encourage le développement professionnel de la personne qui pose la question.

Instructions pour répondre aux questions

Contenus pertinents