Amazon API Gateway Now Supports Tag-Based Access Control and Tags on WebSocket APIs
Amazon API Gateway now offers tag-based access control for WebSocket APIs using AWS Identity and Access Management (IAM) policies, enabling you to easily categorize API Gateway resources for WebSocket APIs by purpose, owner, or other criteria.
Tags are simple key-value pairs that you can define on API Gateway resources. Previously, API Gateway supported tags on REST API related resources. With the addition of tag-based access control to WebSocket resources, you can now give permissions to WebSocket resources at various levels by creating policies based on tags. For example, you can grant full access to admins to while limiting access to developers. To see the complete list of top-level API Gateway resources and to learn more about how to use tags to control access, read our documentation.
You can tag API Gateway resources using the API Gateway console, AWS CLI, or AWS SDK. For more information about API Gateway, visit the product page. Tag-based access control is available in all regions where API Gateway is available. To see all regions where API Gateway is available, see the AWS region table.