Introduction to our Client
Our client is the world's leading electronic measurement company, transforming today's measurement experience through innovations in wireless, modular, and software solutions. Our client delivers solutions in wireless communications, aerospace and defense and semiconductor markets with world-class platforms, software and consistent measurement science.
Our client wanted to keep their web data information private and wanted to restrict direct access. The access had to be role-based with attached permissions. Also, a certain level of security had to be established to avoid deliberate or accidental irregularities.
Aspire NXT suggested to use an API Gateway wherein anyone trying to access any AWS resource had to go through this gateway. The following operations are being sent to the API Gateway; which in turn execute the requests using lambda functions:
1. Read/Write to S3
2. Backend AWS Fargate Application Service Calls
3. IAM role-based calls
4. REST API Calls from on-premise to AWS Service
5. API calls to Cognito
By using API Gateway, they were able to create, publish, maintain, monitor, and secure REST and WebSocket APIs at any scale. Moreover, the access to AWS Cloud Storage is also possible only via API Gateway. It uses powerful and flexible authentication mechanisms, such as AWS Cognito User Pools and Lambda authorizer functions. API gateway is set up to request authorization and verify request to AWS services. The AWS Lambda function is used to verify tokens and if validated the access is granted to the API. As with all the services included in AWS, the Amazon API gateway also provides the option of pay as you go. The service does not require any monthly or annual.