[{"data":1,"prerenderedAt":82},["ShallowReactive",2],{"pattern-apigw-http-api-waf-cloudfront-terraform":3},{"id":4,"title":5,"architectureURL":6,"cleanup":7,"contributors":10,"deploy":12,"description":15,"extension":16,"framework":17,"gitHub":18,"highlight":6,"introBox":24,"language":28,"level":29,"meta":30,"patternArch":31,"resources":69,"s3URL":6,"services":6,"stem":77,"testing":78,"videoId":6,"__hash__":81},"patterns\u002Fpatterns\u002Fapigw-http-api-waf-cloudfront-terraform.json","Protect Amazon API Gateway with Amazon CloudFront and AWS WAF",null,{"text":8},[9],"See the GitHub repo for detailed cleanup instructions.",[11],"content\u002Fcontributors\u002Fmehdi-amrane.json",{"text":13},[14],"See the GitHub repo for detailed deployment instructions.","Provision an Amazon API Gateway (with Amazon CloudFront and AWS WAF) using Terraform","json","Terraform",{"template":19},{"repoURL":20,"templateURL":21,"projectFolder":22,"templateFile":23},"https:\u002F\u002Fserverlessland.com\u002Fpatterns\u002Fapigw-http-api-waf-cloudfront-terraform","serverless-patterns\u002Fapigw-http-api-waf-cloudfront-terraform","apigw-http-api-waf-cloudfront-terraform","main.tf",{"headline":25,"text":26},"How it works",[27],"This pattern demonstrates how to increase the security posture of HTTP API Gateways against common attack patterns such as SQL injection, cross-site scripting (XSS) or DDOS attacks","Python","300",{},{"icon4":32,"icon1":37,"icon2":41,"icon3":45,"icon5":49,"icon6":52,"line1":54,"line2":58,"line3":60,"line4":63,"line5":66},{"x":33,"y":34,"service":35,"label":36},10,70,"waf","AWS WAF",{"x":38,"y":34,"service":39,"label":40},33,"cloudfront","Amazon CloudFront",{"x":42,"y":34,"service":43,"label":44},60,"apigw","Amazon API Gateway",{"x":46,"y":34,"service":47,"label":48},90,"lambda","AWS Lambda",{"x":42,"y":50,"service":47,"label":51},20,"Lambda@Edge",{"x":46,"y":50,"service":47,"label":53},"Authorizer",{"from":55,"to":56,"label":57},"icon4","icon1","",{"from":56,"to":59,"label":57},"icon2",{"from":59,"to":61,"label":62},"icon3","Get unique key",{"from":56,"to":64,"label":65},"icon5","Retrieve unique key for header",{"from":59,"to":67,"label":68},"icon6","Validate key",{"bullets":70},[71,74],{"text":72,"link":73},"HTTP API Gateway","https:\u002F\u002Fdocs.aws.amazon.com\u002Fapigateway\u002Flatest\u002Fdeveloperguide\u002Fhttp-api.html",{"text":75,"link":76},"How AWS WAF works with Amazon CloudFront features","https:\u002F\u002Fdocs.aws.amazon.com\u002Fwaf\u002Flatest\u002Fdeveloperguide\u002Fcloudfront-features.html","patterns\u002Fapigw-http-api-waf-cloudfront-terraform",{"text":79},[80],"See the GitHub repo for detailed testing instructions.","_-sUBEgn281tXM04ex_Q0v2PvuIwooZ11xITST3TTfs",1778846881929]