You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Copy file name to clipboardexpand all lines: README.md
+19-7
Original file line number
Diff line number
Diff line change
@@ -3,7 +3,25 @@
3
3
An AWS Custom Authorizer for AWS API Gateway that support Auth0 JWT Bearer tokens.
4
4
5
5
> **⚠⚠ WARNING ⚠⚠**
6
-
> You almost certainly don't want to use this project. Use the native [JWT authorizer](https://docs.aws.amazon.com/apigateway/latest/developerguide/http-api-jwt-authorizer.html) instead. Bear in mind that REST API in API Gateway doesn't support native JWT authorizers so if this is the case the project is still relevant.
6
+
> This project is no longer supported.
7
+
>
8
+
> For many use cases, you are better off using the AWS HTTP API Gateway with native [JWT authorizer](https://docs.aws.amazon.com/apigateway/latest/developerguide/http-api-jwt-authorizer.html) instead. See the Auth0 blog post [Securing AWS HTTP APIs with JWT Authorizers](https://auth0.com/blog/securing-aws-http-apis-with-jwt-authorizers/#Create-an-HTTP-API-on-AWS) (Oct 2021)
9
+
>
10
+
> If you insist on using the AWS REST API Gateway, consider one of the alternatives below
11
+
12
+
## Alternatives to lambda-auth0-authorizer?
13
+
14
+
The find folks at Auth0 (somewhat sneakily) [forked this repo](https://github.com/auth0-samples/jwt-rsa-aws-custom-authorizer) to:
You can find it referenced in their documentation [Secure AWS API Gateway Endpoints Using Custom Authorizers](https://auth0.com/docs/customize/integrations/aws/aws-api-gateway-custom-authorizers).
19
+
20
+
Auth0 uses JWTs. There are several Custom Authorizers for JWTs:
21
+
22
+
*<https://github.com/byu-oit-appdev/aws-jwt-auth>
23
+
*<https://github.com/kopertop/lambda-jwt>
24
+
7
25
8
26
## About
9
27
@@ -29,12 +47,6 @@ Auth0 offers a number of SDKs as well as integrations with AWS.
29
47
30
48
This package gives you the code for a Custom Authorizer that will, with a little configuration, perform Auth0 authentication on API Gateway requests.
31
49
32
-
### What alternatives are there to this lambda-auth0-authorizer?
33
-
34
-
Auth0 uses JWTs. There are several Custom Authorizers for JWTs:
0 commit comments