Use Amazon Cognito as an OIDC / OAuth Identity provider for API Gateway HTTP APIs JWT Authorizers
2 min readMar 11, 2021
Amazon API Gateway HTTP APIs supports a new type of authorizer called JWT Authorizer.
You deliver JWT tokens to API Gateway and it verifies them with the configured issuer. It’s fairly straight forward to configure.
- Identify the source for the incoming token that has your identity info. This is almost always the
Authorization
header. - Configure your Identity Provider’s
Issuer URL.
This is the domain name and path to the well known metadata…