Whether you're taking your first steps with Kubernetes or you're an experienced practitioner looking to sharpen your skills, our Amazon EKS workshop series delivers practical, real-world experience that moves you forward. Learn directly from AWS solutions architects and EKS specialists through hands-on sessions designed to build your confidence with Kubernetes. Register now and start building with Amazon EKS!
How can I secure my Amazon API Gateway WebSocket API?
I want to secure my Amazon API Gateway WebSocket API.
Short description
Use Amazon API Gateway to control and manage access to WebSocket APIs through AWS Identity and Access Management (IAM) authorization or the AWS Lambda REQUEST authorizer function.
Resolution
IAM authorization
For WebSocket APIs, make sure that your routes use an ARN in the following format:
arn:aws:execute-api:region:account-id:api-id/stage-name/route-key
For more information, see Control access to WebSocket APIs with IAM authorization.
Lambda authorizer function
You can't use path variables (event.pathParameters) with Lambda authorizer functions for WebSocket APIs because the path is fixed. Make sure that the methodArn ends with "$connect" in the following format:
arn:aws:execute-api:region:account-id:api-id/stage-name/$connect
For more information, see Control access to WebSocket APIs with AWS Lambda REQUEST authorizers.
Related information
How can I set up a custom domain name for my API Gateway API?
- Language
- English
Relevant content
- asked 2 years ago
- asked 2 years ago
- AWS OFFICIALUpdated 5 months ago
