Posted On: Oct 26, 2018

You can now use a single property setting in the AWS Serverless Application Model (AWS SAM) to define Amazon API Gateway Authorizers and control who can access your Amazon API Gateway APIs.

You can enable authorization for your APIs by defining an Amazon Cognito User Pool or an API Gateway Lambda Authorizer as a property of your API within your SAM template. To get started, visit the visit the examples for Cognito User Pools Authorizers, Lambda Token Authorizers, and Lambda Request Authorizers. For more details on how to use API Gateway Authorizers within your SAM applications, review the release notes and the Authorizers section of the specification.

AWS SAM extends AWS CloudFormation to provide a simplified way of defining the Amazon API Gateway APIs, AWS Lambda functions, and Amazon DynamoDB tables required by your serverless applications. SAM is available under the Apache 2.0 license. Anyone can adopt and incorporate SAM into build, deployment, monitoring, and management tools with a commercial-friendly license. To learn how to build serverless applications using SAM, visit our documentation and check out the model on GitHub.

AWS SAM is available in all regions where AWS Lambda is available. For more information on where Lambda is available, see the AWS region table.