SAA
API Gateway
Security
- IAM Permission
- For user has aws account
- Authentication + authorization
- Sigure v4
- Lambda Authorizer
- 3rd party tokens
- Authentication + authorization
- Very flexible in terms of what IAM policy is returned
- Pay per Lambda invocation
- Cognio Uesr Pools
- Google, facebook.. signup / login
- Only authencation
SAP
API Gateway
Limits
- 29 seconds timeout
- 10MB max payload size
Integrations
- HTTP
- Lambda
- AWS Service
- For example, start an AWS Step Function workflow post a message to SQS
- You can control the Authentication, deploy publicly, rate control
- API Gateway has limit about 10 MB max payload size, so it won't be a good solution to upload a object to S3 if size is bigger than the limit.
- Better to use Pre-Signed URL + Lambda to upload a file
- Lambda has 15 mins timeout
- API Gateway has 29 seconds timeout