By using AWS re:Post, you agree to the AWS re:Post Terms of Use
AWS re:Postre:Post

AppSync HTTP Resolver: Storing credentials

0

For an AppSync HTTP Resolver / Data Source, is there a recommended approach to retrieve backend credentials that I need to access the source URL? (e.g. API tokens / Basic Authentication)

The only sensible thing I can find is this – https://advancedweb.hu/how-to-call-a-protected-external-api-using-appsync-http-data-source/ – but I'd rather not use that approach (rate limits, latency, KMS costs).

I'm now considering a lambda function that simply caches the credentials and use it as first part of a pipeline resolver, but that seems kinda hacky too.

Topics
ServerlessFront-End Web & MobileApplication IntegrationManagement & Governance
Tags
AWS AppSyncParameter Store
Language
English
apparentorder
asked 9 months ago338 views
1 Answer
0

Hi,

AWS Secrets Manager is the recommended way to securely store and access such credentials: https://aws.amazon.com/secrets-manager/

See https://advancedweb.hu/how-to-read-values-from-ssm-parameter-store-and-secrets-manager-with-appsync-http-data-source/ for guidance on how to do it.

Best,

Didier

profile pictureAWS
EXPERT
Didier_Durand
answered 9 months ago

You are not logged in. Log in to post an answer.

A good answer clearly answers the question and provides constructive feedback and encourages professional growth in the question asker.

Guidelines for Answering Questions

Relevant content