- Authorization Control Plane
- Open Banking
-
Features
- OAuth
- Workspaces
- Tenants
- Data Lineage
- Policies
- Services
- User portals
- Secrets management
- Privacy
- BYOID
- Access Control for Devices
- IDP discovery
- Authorization for GraphQL
- Dynamic scopes
- Extensions
- Stateful authZ
- Standalone Authorizer
- AuthZ for Istio
- AuthZ for Kong
- Keys management
- Search and filters
- Multi-tenant authorizers
- Transactional MFA
- Audit events
-
Guides
- Quick start
- Workspace administrator
-
Developer
- Encryption
- mTLS client
- DCR
- API security
- Extensions
-
Open Banking
- Custom consent for OB UK
- CDR Arrangement Amendment
- CDR Consumer Consent Withdrawal
- CDR ADR Client Management
- CDR DH API protection
- Implementing OB Brazil consent pages
- CDR consent app
- CDR consumer dashboards
- Enabling custom consent
- Integrating custom consent
- OB DCR
- Setting AMR and ACR claims
- Use reference consent self-service and admin portals
- APIs
- External services APIs
Protecting APIs on the AWS gateway
Protecting APIs deployed behind the AWS API Gateway
Instructions on how to protect your APIs deployed behind the AWS API Gateway using ACP’s AWS Lambda Authorizer. You will learn how to create an AWS API Gateway Lambda Authorizer in ACP. You will configure AWS Lambda service and its permissions. You will learn how to connect a service to ACP from your gateway or your service. Then, you will test your integration by applying authorization policies and confirming access control enforcement.
AWS Lambda Authorizer configuration reference
Learn how you can configure settings for your AWS Lambda Authorizer by using environment variables in your AWS Lambda settings.
Acquiring authentication context from Lambda Authorizers
Instructions on how to use the INJECT_CONTEXT variable to enable the services to retrieve authentication context from ACP’s access tokens.