Using AWS API Gateway Authorizer

Overview

Use AWS API Gateway to control access to your backend. When your routes receive API calls, API Gateway checks the caller's identity and only gives access if the caller is authorized to access the route.

Step-By-Step Guide

Follow the steps below to protect on your AWS resources using the AWS API gateway authorizer:

Step 1: Create Authorizer

Go to the relevant API Gateway section on your AWS console and click on the Authorization tab.


Click on Create and attach authorizer


Fill in the following parameters:

Parameter

Value

Name

Logical name for your to recognize this authorizer

Identity source

In most cases will be the Bearer authentication header. Leave as $request.header.Authorization for this

Issuer URL

In Frontegg, go to Workspace Settings ➜ General

Copy your workspace name and paste it in place of [your-workspace-name] in the following URL: https://[your-workspace-name].frontegg.com

Audience

In Frontegg, go to Workspace Settings ➜ General

Copy your Client ID and use it for Audience


After completing these, click on create and attach.

Your AWS API gateway will now protect your routes based on the identity issued by your Frontegg workspace


Did this page help you?