Amazon API Gateway

  • Published on Sep 1, 2024
  • 1 minute(s) read
Prev Next

PlainID offers an API Access Authorization Pattern for this third-party vendor. For more information, see API Access Authorization Pattern.

The Amazon API Gateway enables developers to create, publish and monitor RESTful and WebSocket APIs to allow real-time communication between two applications (for example, the Platform and your Organization's application).

Use Example

image.png

Explanation

  1. The end user access the app.
  2. The user is redirected to complete the authentication process on the IDP.
  3. The app access services/APIs in AWS. The API call is intercepted by the AWS API GW.
  4. API Gateway calls the PlainID Authorizer (a PlainID-provided Lambda function).
  5. The PlainID Authorizer requests an access decision from the PlainID PDP which responds with a dynamically calculated access decision based on the policies configured within the PlainID Authorization Platform.
  6. Access Decisions is enforced at the API Gateway. Request can be denied or permitted as-is.
  7. The client can access resources such as AWS Lambdas and API resources.