Secure an API with Amazon API Gateway
In this lab, you’ll practice several ways to secure AWS APIs with API Gateway and associated AWS ecosystem resources. When you’re finished with this lab, you’ll have a basic API secured with industry best practices.
Terms and conditions apply.
Challenge
Configure REST API Access Control with Cognito
Restrict access to your API to only authenticated users leveraging AWS's built-in Cognito service. No custom authentication or additional lambda function required.
Challenge
Set up API Request Validation
To prevent unnecessary load and exposure on back-end resources and integrations you need to set up API request validation that will validate and respond to invalid requests with an error at the gateway before the requested is forwarded on.
Challenge
Customize Default API Gateway Responses
Attackers can gain valuable information about the underlying application from the error responses provided by your API. To prevent this and cut off an attack in its initial phase, you need to customize the gateway resources.
Challenge
Generate and Configure Client Certificates
Generate and deploy client certificates to the application API gateway to enable certificate-based authentication between the API and backend resources, so that the API calls to the backend cannot be imitated by other services.
Challenge
Use AWS WAF to Protect Your APIs
Just like any other external-facing web application, you need to protect your API from common threats and attacks with a web application firewall. Using the AWS Web Application Firewall you will protect your API with the OWASP Core Rule Set.
Challenge
Throttle API Requests
Whether by a malicious actor attempting to (D)DOS your application, or simply an unforeseen surge, your API can be overwhelmed by too many requests too quickly. To protect it from this possibility, enable account request throttling limit settings.
Provided environment for hands-on practice
We will provide the credentials and environment necessary for you to practice right within your browser.
Guided walkthrough
Follow along with the author’s guided walkthrough and build something new in your provided environment!
Did you know?
On average, you retain 75% more of your learning if you get time for practice.
Recommended prerequisites
- API s
- API Gateway
- Rest API