HTTP endpoints in API Gateway have the ability to secure resources by first validating a JWT token.
In this example, we’ll use Amazon cognito’s hosted UI to to create a JWT and configure an API Gateway to only provide a lambda response if it’s valid.
cognito issuer endpoint:
https://cognito-idp.your-region.amazonaws.com/your-region_identity-pool-id
grabbing the jwt from the url:
location.href.split(‘=’)[1].split(‘&’)[0]
Comments