Handlers

AWS - HTTPS

Overview

The AWS handler exposes an HTTP proxy which will authenticate requests made to AWS without revealing access keys to the consumer.

Handler Parameters

  • type
    Required
    This parameter indicates the type of service proxied by the handler. For AWS, the value of type should always be aws.

  • match
    Required
    An array of regex patterns which match a request URI, either partially or fully. Requests which are matched by a regex in this array will be authenticated by this handler.

Credentials

  • accessKeyID
    Required
    AWS access key ID

  • secretAccessKey
    Required
    AWS secret access key

  • accessToken
    Required
    AWS session token

Examples

Authenticate all requests

listeners:
  - name: http_listener
    protocol: http
    address: 0.0.0.0:8080

handlers:
  - name: aws_handler
    listener: http_listener
    type: aws
    match:
      - .*
    debug: true
    credentials:
      - name: accessKeyId
        value:
          environment: AWS_ACCESS_KEY_ID
      - name: secretAccessKey
        value:
          environment: AWS_SECRET_ACCESS_KEY

Only authenticate requests to Amazon EC2

listeners:
  - name: http_listener
    protocol: http
    address: 0.0.0.0:8080

handlers:
  - name: aws_handler
    listener: http_listener
    type: aws
    match:
      - ^https\:\/\/ec2\..*\.amazonaws.com
    debug: true
    credentials:
      - name: accessKeyId
        provider: env
        id: AWS_ACCESS_KEY_ID
      - name: secretAccessKey
        provider: env
        id: AWS_SECRET_ACCESS_KEY

Ready to use Secretless Broker in your Kubernetes environment? Check out our Kubernetes tutorial or our deployment guides!