Service Integrations

Discover how to integrate other AWS services with the API gateway.

We'll cover the following

Integration request and integration response
Cross-Origin Resource Sharing (CORS)
Example: Integrating DynamoDB with API Gateway

Press + to interact

Another way is directly integrating the DynamoDB table with the API Gateway and eliminating the middleman, the Lambda function. This approach, though significantly reduces cost and latency, raises a question: How will API Gateway modify the request data according to the DynamoDB table?

Matching the data formats of the client and server is a main concern in service integrations. To address this mismatch, the API gateway maps the requests and responses. Let’s learn how these integrations work.

Integration request and integration response

Integration request is the interface provided by the REST and WebSocket API to map the requests that arrive at the gateway according to the requests expected by the server. Similarly, integration response is the interface used to map the response from the server that arrives at the API Gateway to the response expected by the client.

To understand the mapping of the request or response, it’s necessary to know the parameters of the payload that arrives at the API Gateway. Let’s quickly review the commonly used parameters in a request payload.

Header value: Headers contain metadata about the request. Header values could include information like the content type, authentication tokens, or any custom metadata associated with the request.
Query string values: The query string is a part of a URL that contains key-value pairs. It usually starts after the ? symbol and is used to send additional parameters or data to the server.
Path parameters: Path parameters are placeholders in the URL path that capture specific values. For example, in the URL /users/{userId}, userId is a path parameter.
Request body: The request body contains the payload of the HTTP request. It sends data to the server, typically in POST or PUT requests.

To transform the data to the desired format, we use Mapping Templates written in VTL. Velocity Template Language (VTL) is a scripting language used within Amazon API Gateway to transform incoming and outgoing requests during the API request/response life cycle. It allows us to customize and manipulate the data being passed between clients and backend services.

Press + to interact

Cross-Origin Resource Sharing (CORS)

When working with API Gateways, we may notice a very recurring error:

“Blocked by CORS policy. No Access-Control-Allow-Origin header is present on the requested resource.”

Cross-Origin Resource Sharing (CORS) protection is a feature implemented by most web browsers to safeguard content. It acts as a preventive measure to ensure that a website cannot make unauthorized calls to an API hosted by a different domain.

To achieve this state-of-the-art security methodology, the browser uses an OPTIONS request. This is a preflight request to which the server responds with the values it requires in the header. If the header of the request from the client does not include those headers, the browser does not forward the request to the server.

API Gateway needs to be configured to handle CORS. This involves setting up the appropriate headers in the API’s responses to the preflight and actual requests. If the preflight request is successful and the actual request is allowed, the browser proceeds to make the HTTP request to the API Gateway endpoint.

Press + to interact

This URL gets the Cloud Labs stored on the DynamoDB table. We want to access this endpoint from the web application hosted on https://www.educative.io. To secure our endpoint from attacks, we enable CORS on API Gateway to only allow requests from the URL https://www.educative.io by specifying it in Access-Control-Allow-Origin.

When a user accesses the web application hosted on https://www.educative.io, the browser sends an HTTP request to the /cloudlabs endpoint of our API Gateway. Before making the actual request, the browser first sends a preflight OPTIONS request to check if the actual request is safe to send. API Gateway responds to the preflight request with the CORS headers, indicating that the actual request is allowed. After receiving a successful response to the preflight request, the browser sends the actual request (e.g., GET, POST) to the /cloudlabs endpoint of your API Gateway.

Get hands-on with 1300+ tech skills courses.

Introduction

AWS Fundamentals

Understanding Cloud Computing Essentials— From Zero to Hero

Identity and Access Management

Securing AWS Resources: Managing Access with IAM

AWS IAM Permission Boundaries

Using AWS IAM Access Analyzer

Compute Services

Understanding AWS Compute Services — From Zero to Hero

Amazon EC2: Elastic Compute Cloud

Working with Instances: An Amazon EC2 Walkthrough

Managing Instance Volumes Using EBS

Networking

Understanding Networking Services in AWS—From Zero to Hero

Controlling VPC Traffic Using Network ACLs

Managing Peer Connections between Amazon Virtual Private Clouds

Accessing AWS Services over AWS PrivateLink Using VPC Endpoints

Monitoring IP Traffic Using VPC Flow Logs

Route 53

Serverless Computing

Getting to Know AWS Lambda

Building and Deploying Serverless Applications with AWS SAM

Developing RESTful Microservices with API Gateway and DynamoDB

Building a WebSocket-Based Chat Application Using API Gateway

Mastering AWS AppSync Lambda Resolvers

Application Integration

Getting Started with Amazon Simple Queue Service (SQS)

Handling Amazon SNS Notifications with AWS Lambda

Build a Fanout Serverless Architecture using SNS, SQS, and Lambda

Decoupling Serverless Applications with Amazon EventBridge

Getting Started with AWS Step Functions

Containers

Getting Started with Amazon ECS

Create an EKS Cluster and Deploy an Application

High Availability and Scalability

Managing Application Traffic Using Elastic Load Balancers

Understanding Auto Scaling Group (ASG) in AWS

Mastering Amazon EC2 Dynamic Scaling Policies

Storage

Understanding AWS Storage Options—From Zero to Hero

Simple Storage Service (S3)

Working with AWS S3 Cross-Region Replication

Resizing Images with S3 Batch Operations and AWS Lambda

Managing Data Access with Amazon S3 Access Points

File Storage and Transfer

Getting Started with Amazon FSx for Windows File Server

Databases

Working with Relational Databases: A Beginner's Guide to AWS RDS

Getting Started with Amazon Aurora Database Engine

Working with NoSQL Databases: A Beginner's Guide to AWS DynamoDB

Exploring Graphs with Amazon Neptune

Getting Started with Amazon Keyspaces

Achieving Ultra-Fast Performance Using Amazon MemoryDB for Redis

Improving Database Performance with Amazon ElastiCache for Redis

Migration and Transfer

Use of AWS Database Migration Service from Aurora MySQL to S3

Security and Compliance

Getting Started with AWS Key Management Service (KMS)

Encrypting S3 Buckets and EBS Volumes Using KMS

Protecting Web Applications Using AWS WAF

Managing Aurora DB Credentials and API Keys Using Secrets Manager

Finding Vulnerabilities on EC2 Instances Using AWS Inspector

Deployment Services

Mastering AWS Deployment Services—From Zero to Hero

CloudFormation

Getting to Know AWS CloudFormation

AWS CloudFormation Updates: Change Sets and Stack Policies

Mastering AWS CloudFormation Helper Scripts

Machine Learning

Understanding Machine Learning Services on AWS—From Zero to Hero

Deploying a Machine Learning Model with Amazon SageMaker

Getting Started with Amazon Fraud Detector

Build an Educative Chatbot with Conversational AI Using AWS Lex

Content Delivery and Optimization

Analytics

Analyzing S3 Data and CloudTrail Logs Using Amazon Athena

Getting Started with Amazon EMR

Getting Started with Amazon Redshift

Building ETL Pipelines on AWS

Create a Data Lake with Lake Formation and Analyze It with Athena