Use tactical assertion AWS4 Signer to access dynamoDB - APIM

book

Article ID: 106115

calendar_today

Updated On:

Products

CA API Gateway (Layer 7) SA94 to API SECURITY STARTER PACK-7 CA Rapid App Security MOBILE API GATEWAY CA Mobile - API Gateway CA API Gateway

Issue/Introduction

The dynamoDB provides low-level https API, so that we can access it from CA APIM gateway.
But it requires AWS 4 signing process.
The AWS4 Signer assertion can sign the dynamoDB requests.

NOTE: As AWS4 Signer is a tactical assertion, you will need to open a support ticket to acquire the assertion.

Environment

Release:
Component: APIGTW

Resolution

Here is an example to configure AWS4 Signer assertion, and route via https assertion,

<Please see attached file for image>

User-added image

<Please see attached file for image>

User-added image

Additional Information


More information can be found from,
https://communities.ca.com/message/242127246-re-lookup-in-dynamodb-from-apigw?commentID=242127246

Amazon documents,
https://docs.aws.amazon.com/amazondynamodb/latest/developerguide/Programming.LowLevelAPI.html
https://docs.aws.amazon.com/general/latest/gr/sigv4-signed-request-examples.html#sig-v4-examples-post

Attachments

1558699532033000106115_sktwi1f5rjvs16js6.jpeg get_app
1558699530121000106115_sktwi1f5rjvs16js5.jpeg get_app