Use tactical assertion AWS4 Signer to access dynamoDB - APIM

Article Id: 106115
Status: Published
Updated On: 11-07-2018 20:14
Products:
STARTER PACK-7 CA Rapid App Security CA API Gateway CA API Gateway
Issue/Introduction:

The dynamoDB provides low-level https API, so that we can access it from CA APIM gateway.
But it requires AWS 4 signing process.
The AWS4 Signer assertion can sign the dynamoDB requests.

NOTE: As AWS4 Signer is a tactical assertion, you will need to open a support ticket to acquire the assertion.

Environment:

Release:
Component: APIGTW

Resolution:

Here is an example to configure AWS4 Signer assertion, and route via https assertion,

<Please see attached file for image>

User-added image

<Please see attached file for image>

User-added image

Additional Information:


More information can be found from,
https://communities.ca.com/message/242127246-re-lookup-in-dynamodb-from-apigw?commentID=242127246

Amazon documents,
https://docs.aws.amazon.com/amazondynamodb/latest/developerguide/Programming.LowLevelAPI.html
https://docs.aws.amazon.com/general/latest/gr/sigv4-signed-request-examples.html#sig-v4-examples-post

insert_drive_file 1558699532033000106115_sktwi1f5rjvs16js6.jpeg
arrow_downward Download
insert_drive_file 1558699530121000106115_sktwi1f5rjvs16js5.jpeg
arrow_downward Download