https://us-east-1.console.aws.amazon.com/lambda/home?region=us-east-1#/functions/Lambda2prgram?newFunction=true&tab=configureAWS API Gateway - Okta and Auth0
- The client application will invoke Okta /token endpoint using OAuth2 client_credentials grant to get a JWT access token
- Okta will return a JWT access token
- Invoke the API configured in AWS API Gateway by passing the Okta JWT token in Authorization header
- AWS API gateway’s built-in JWT Authorizer will validate the JWT token by getting the public key from Okta’s jwks_uri. There are some additional validations that are performed.
- Refer https://docs.aws.amazon.com/apigateway/latest/developerguide/http-api-jwt-authorizer.html
- Built-in JWT Authorizer will return the status of token validation to AWS API gateway. This happens in the background.
- API gateway will forward the request to target API endpoint if all the validations are successful. If the token is invalid or the required scopes are not present, API gateway will return an error response.
- API endpoint will return the response back to API gateway.
- API gateway will return the response back to client application.
Reference
- https://awskarthik82.medium.com/part-3-securing-aws-api-gateway-using-jwt-authorizer-okta-jwt-access-token-cb2c9425b026
- https://docs.aws.amazon.com/apigateway/latest/developerguide/api-gateway-create-api-from-example.html
- http://petstore-demo-endpoint.execute-api.com/petstore/pets
- https://manage.auth0.com/dashboard/us/dev-wep4jrzjzvzf2yj5/apis/6388e37a59bc461aaf52c7bc/permissions
- https://jwt.io/
- https://us-east-1.console.aws.amazon.com/apigateway
- https://us-east-1.console.aws.amazon.com/lambda/
- https://us-east-1.console.aws.amazon.com/console/
- https://docs.aws.amazon.com/apigateway/latest/developerguide/getting-started.html
No comments:
Post a Comment