Service to service OAuth2.0 Client Credentials Flow using AWS Cognito and API Gateway

References:
https://aws.amazon.com/blogs/mobile/u...
https://oauth.net/2/grant-types/clien...

Amazon API Gateway is a fully managed service that makes it easy for developers to create, publish, maintain, monitor, and secure APIs at any scale. APIs act as the "front door" for applications to access data, business logic, or functionality from your backend services. Using API Gateway, you can create RESTful APIs and WebSocket APIs that enable real-time two-way communication applications. API Gateway supports containerized and serverless workloads, as well as web applications.

API Gateway handles all the tasks involved in accepting and processing up to hundreds of thousands of concurrent API calls, including traffic management, CORS support, authorization and access control, throttling, monitoring, and API version management. API Gateway has no minimum fees or startup costs. You pay for the API calls you receive and the amount of data transferred out and, with the API Gateway tiered pricing model, you can reduce your cost as your API usage scales.

Amazon Cognito allows app developers to create their own OAuth2. 0 resource servers and define custom scopes in them. Custom scopes can then be associated with a client, and the client can request them in OAuth2. 0 authorization code grant flow, implicit flow, and client credentials flow.

#AWSAPIGateway #APIGateway #AWSCognito #OAuth2