- Mais recentes
- Mais votos
- Mais comentários
AWS WAF cannot be configured directly, but using CloudFront, WAF can be integrated and secured. Refer to this blog for more details - https://aws.amazon.com/blogs/compute/securing-lambda-function-urls-using-amazon-cognito-amazon-cloudfront-and-aws-waf/
AWS WAF cannot be configured on Lambda Function URLs.
You can set Lambda Function URLs to CloudFront origin and enable AWS WAF for CloudFront.
Lambda function URLs do not support WAF. If you need WAF, use API Gateway instead of function URLs.
If you use a CloudFront distribution instead, you will need to make sure that the requests are coming from CF. Users may be able to guess the URL and invoke the function directly, bypassing WAF. To prevent that you could add a special header with some secret value in CloudFront and you will need to verify that header in your Lambda functions.
Thanks for the additional info, very useful!
Cheers!
Thanks for the link!
Conteúdo relevante
- AWS OFICIALAtualizada há 10 meses
- AWS OFICIALAtualizada há 4 meses
- AWS OFICIALAtualizada há 2 anos
Sounds good. Thank you!