1 Answer
- Newest
- Most votes
- Most comments
1
You can try to validate the external token in the "Authorization" header using a Lambda Authorizer.
Then a batch of operations you can run are the following:
- Generate the internal authorization token within the Lambda function.
- Return the internal token as part of the authorization context or in a custom header from the Lambda Authorizer.
- Use a custom header (e.g., "X-Internal-Authorization") to map and pass the internal token to the ECS backend in API Gateway's Integration Request settings.
Relevant content
- asked 2 years ago
- Accepted Answerasked 2 years ago
- AWS OFFICIALUpdated 5 months ago
- AWS OFFICIALUpdated 2 years ago
- AWS OFFICIALUpdated 2 years ago
- AWS OFFICIALUpdated 2 years ago
Thanks ,Giovanni . I am not sure why HTTP APIs behave differently to REST APIs in this regard. I wanted to avoid creating a custom header rather wanted to use standard Authorization header. Nevertheless it seems there isn't any other option available.
Try with that one. Let me know