how to restrict access to serverless api via resource policy?

Question

a serverless api gateway stack built via cloudformation template ( see below) . I added a resource policy to whitelist a particular IP address. Does this block all other IP address, without specifying a black list or do I have add a IpRangeBlacklist values as well?


Resources:
  serverlessapiGateway:
    Type: AWS::Serverless::Api
    Properties:
      Auth:
        ResourcePolicy:
          IpRangeWhitelist:
            - "10.20.30.40"

2

Test it and let us know! – jellycsc Aug 27 '21 at 18:53

score 1 · Accepted Answer · edited Aug 30 '21 at 22:11

1

Verified, only list of IP under IpRangeWhitelist range are allowed. I wonder if there is a way to customize the error message we get, when not allowed.

edited Aug 30 '21 at 22:11

SwissCodeMen

4,222
8
24
34

answered Aug 30 '21 at 16:34

ozil

599
7
31

how to restrict access to serverless api via resource policy?

1 Answers1