Posted On: Jun 4, 2019

Amazon API Gateway now allows you to define VPC Endpoint policies, enabling you to specify which Private APIs a VPC Endpoint can connect to. Using VPC Endpoint policies, you can achieve more fine-grained security control.  

Previously, API Gateway allowed you to define resource policies that specified which principals could access an API. With the addition of VPC Endpoint policies for API Gateway, you can limit connectivity between the VPC Endpoint and approved Private APIs by using it in tandem with API Gateway resource policies. To learn more about how to use VPC Endpoint policies and to see examples, read our documentation.

You can define VPC Endpoint policies using the AWS Management Console, AWS CLI, or AWS SDK for VPC. For more information about API Gateway, visit the product page. VPC Endpoint policies for API Gateway are available in all regions where both VPC Endpoints and API Gateway are available. To see all regions where API Gateway is available, see the AWS region table.