DVA-C02 - Security - Section 2.4
Secure applications and APIs using bearer tokens such as JSON Web Tokens and OAuth, validated through API Gateway authorisers.
Secure APIs by validating JSON Web Tokens and OAuth 2.0 bearer tokens using Amazon API Gateway authorisers - either a Cognito user pool authoriser or a Lambda authoriser for custom token logic. Recognise the structure of Amazon Cognito tokens and how the authoriser caches policy decisions to reduce latency.
JSON Web TokenOAuth 2.0Amazon Cognito tokensAPI Gateway authorisers
More in this domain
Back to all Security objectives, or the DVA-C02 cert hub.
Examworthy is not affiliated with or endorsed by Amazon Web Services. Original, blueprint-aligned practice material only.