Posted On: Sep 22, 2015
You can now generate client-side SSL certificates in HAQM API Gateway and use the public key to verify that HTTP requests to your backend systems originated from HAQM API Gateway. Currently, integration endpoints for HAQM API Gateway are always publicly accessible to the Internet. Now, HAQM API Gateway can generate SSL certificates, such that you can use the public key of the certificate in your backend to authenticate API requests from HAQM API Gateway. This allows you to control and accept only requests originating from HAQM API Gateway, even if your HTTP backend is publicly accessible. Learn more about using client-side SSL certificates in the HAQM API Gateway Developer Guide.