How to create AWS API Gateway Resource Policy section by using serverless framework

niladri_maiti · May 31, 2018, 5:23am

Hi,
Since AWS API gateway is publicly accessible we want to apply policies to white-list desired IPs to access API gateway. It can be done from AWS console by add policies in API Gateway -> Resources Policy section. Since we are using serverless framework to setup our project , want to add Resource Policy by using serverless framework.

Can you please inform how can I do it using serverless? If it is not available in serverless do you have any plan to add this functionality.

Thanks
Niladri

buggy · May 31, 2018, 10:41am

It looks like this isn’t supported by CloudFormation yet. Until then you’ll need to use one of the other mechanisms.

github.com/serverless/serverless

API Gateway Resource Policy Support Feature

opened 08:02PM - 20 Apr 18 UTC

closed 12:18AM - 03 Jul 18 UTC

ptrivedi9400

enhancement

# This is a Feature Proposal ## Description Recently API Gateway (April 2nd, 2018) started providing resource policy to handle each API. Which includes blacklisting IP or allowing denying IP. This is currently only supported by the API Gateway API, AWS console, AWS SDK and not yet by CloudFormation, which I'm guessing is why it is not yet supported by Serverless. [Announcement](https://aws.amazon.com/about-aws/whats-new/2018/04/amazon-api-gateway-supports-resource-policies/) [Blog for console-based setup](https://lobster1234.github.io/2018/04/14/amazon-api-gateway-ip-whitelisting/) Probably best to wait for CloudFormation to catch up on this so I'm just registering for a future task. For feature proposals: * IP Blacklisting or allowing a certain type of method. Basically IAM type policy but without creating IAM role/policy. * Json input or parameter based information can be set up. Note ** [Forum Question in relation](https://forum.serverless.com/t/api-gateway-resource-policy/4215 )

mpolitaev · October 25, 2018, 7:28pm

Is this still not implemented? I see in documentation for serverless property “resourcePolicy”
I use serverless 1.24 version but when i specify this “resourcePolicy” property it do not appear in cloudformation template. Why it can be so? Thank you.

Topic		Replies	Views
API Gateway Resource Policy Serverless Framework	3	6931	June 14, 2018
APi gateway resource policy do not appear in cloudformation Serverless Framework api-gateway	1	2285	July 30, 2020
Creating AWS API Gateway with PRIVATE endpointType requires ResourcePolicy Serverless Framework aws , api-gateway	3	15243	November 26, 2020
API Gateway Policy in deployment/service account Serverless Framework aws	0	624	May 16, 2018
How can i add a resource policy to my serverless.yml Serverless Framework aws	1	8124	April 16, 2019

How to create AWS API Gateway Resource Policy section by using serverless framework

Related topics