API Gateway with Custom Domain Name Returning 403 Unless Host Header Defined

Asked May 21 '21 at 18:56

Active May 21 '21 at 21:28

Viewed 1,517 times

We are getting 403s (forbidden) from API Gateway when we use a custom domain name (public API). However, if we add the host header to the request which points to the AWS invoke URL it works fine. The customer has stated that this is unsatisfactory as they do not want to pass the host header, which makes sense since it seems pointless using a custom domain name if the host has to be specified.

Therefore, is there a way to make this work without setting the host header? The only header we use currently is for the API key (x-api-key).

For context, the environment consists of a REST API that triggers a Lambda function within a VPC.

Grateful for any support on this, thanks.

edited May 21 '21 at 21:28

asked May 21 '21 at 18:56

Daniel Campailla

Are you using Private API or Regional/Edge API? – Balu Vyamajala May 21 '21 at 19:56
It’s a regional API. – Daniel Campailla May 21 '21 at 21:26
Managed to find the solution to this: https://stackoverflow.com/questions/44897421/aws-api-gateway-lambda-custom-domain-route53-missing-authentication-token – Daniel Campailla May 22 '21 at 08:41

API Gateway with Custom Domain Name Returning 403 Unless Host Header Defined

0 Answers0