API Gateway

Question 1

API Gateway – Integrations

Answer 1

Lambda function
HTTP
AWS SEvice

Question 2

API Gateway - Endpoint Types

Answer 2

• Edge-Optimized (default): For global clients
  
  • The API Gateway still lives in only one region
    Regional:
  • For clients within the same region
  • Could manually combine with CloudFront (more control over the
    caching strategies and the distribution)
    Private:
    Can only be accessed from your VPC using an interface VPC endpoint (ENI) Use a resource policy to define access

Question 3

api gateway authentication through :

Answer 3

IAM Roles (useful for internal applications)
* Cognito (identity for external users – example mobile users)
* Custom Authorizer (your own logic)

Question 4

What is a stage in AWS API Gateway?

Answer 4

A stage is a logical reference to a lifecycle state of your API (e.g., dev, staging, production). It allows you to deploy and manage different versions of your API independently.

Question 5

API Gateway – Stage Variables
use cases

Answer 5

Configure HTTP endpoints your stages talk to (dev, test, prod…)
* Pass configuration parameters to AWS Lambda through mapping templates
create a stage variable to indicate the corresponding Lambda alias!!!

Question 6

• Stage variables are passed to the ”…” object in AWS Lambda

Answer 6

context

Question 7

how to enable cannary deployment with Lambda and api gateway?

Answer 7

use lambda versions and api stages and stage variables

Question 8

API Gateway - Integration Types

Answer 8

MOCK
* Integration Type HTTP / AWS (Lambda & AWS Services)
* Integration Type AWS_PROXY (Lambda Proxy):
HTTP_PROXY

Question 9

What is the purpose of the AWS Service Integration type in API Gateway?

Answer 9

It allows you to integrate API Gateway with other AWS services like Lambda, S3, or DynamoDB by using service-specific endpoints, enabling you to invoke these services directly from your A

Question 10

What is the difference between HTTP and HTTP_PROXY integrations?

Answer 10

HTTP: Requires request/response mapping, giving more control over the data transformation.
HTTP_PROXY: Directly passes the client request to the backend without transformations, simplifying integration but with less control.

Question 11

how to integrate JSON to XML with SOAP with api gateway

Answer 11

USE TEMPLATE MAPPIG :
Extract data from the request: either path, payload or header
* Build SOAP message based on request data (mapping template)
* Call SOAP service and receive XML response
* Transform XML response to desired format (like JSON), and respond to the user

Question 12

use cases for Mapping Templates (AWS & HTTP Integration)

Answer 12

• Rename / Modify query string parameters
• Modify body content
• Add headers
• Filter output results (remove unnecessary data)
• Content-Type can be set to application/json or application/xml

Question 13

how to reduce unecessary invalid api calls to backend ?

Answer 13

use api gateway api validation
When the validation fails, API Gateway immediately fails the request
* Returns a 400-error response to the caller

Question 14

Api gateway cache properties

Answer 14

• Default TTL (time to live) is 300 seconds
  (min: 0s, max: 3600s)
• Caches are defined per stage !!!
• Possible to override cache settings per method
• Cache encryption option
• Cache capacity between 0.5GB to 237GB

Question 15

How to invalidate API Gateway Cache

Answer 15

• Clients can invalidate the
  cache with header: Cache- Control: max-age=0 (with
  proper IAM authorization)

Question 16

What are possible solutions to make an API available as an offering ($) to your customers

Answer 16

Usage Plan:
* who can access one or more deployed API stages and methods
* how much and how fast they can access them
* uses API keys to identify API clients and meter access
* configure throttling limits and quota limits that are enforced on individual client

Question 17

what information contains * CloudWatch Logs for api gateway?

Answer 17

Log contains information about request/response bod

Question 18

API Gateway – CloudWatch Metrics

Answer 18

• Metrics are by stage, Possibility to enable detailed metrics
• CacheHitCount & CacheMissCount: efficiency of the cache
• Count: The total number API requests in a given period.
• IntegrationLatency: The time between when API Gateway relays a
  request to the backend and when it receives a response from the
  backend.
• Latency: The time between when API Gateway receives a request from
  a client and when it returns a response to the client. The latency
  includes the integration latency and other API Gateway overhead.
• 4XXError (client-side) & 5XXError (server-side)

Question 19

API Gateway requests time out after … second maximum

Answer 19

29

Question 20

can one api gateway throtlie other apis ?

Answer 20

Just like Lambda Concurrency, one API that is overloaded, if not limited, can cause the other APIs to be throttled

Question 21

how to provider acess within AWS for api

Answer 21

IAM Permissions
Create an IAM policy authorization and attach to User / Role
* Authentication = IAM | Authorization = IAM Policy

Question 22

what Allow for Cross Account Access (combined with
IAM Security) for the aPI

Answer 22

API Gateway
– Resource Policies

Question 23

Q: What are the four primary authentication methods supported by AWS API Gateway?

Answer 23

IAM Authorization
Lambda Authorizers
Amazon Cognito User Pools
API Key Authentication

Question 24

Q: How does API Gateway validate requests using IAM Authorization?

Answer 24

API Gateway validates the AWS Signature Version 4 in the request, ensuring the caller has proper permissions.

Question 25

Q: What is an Amazon Cognito User Pool?

Answer 25

A: An Amazon Cognito User Pool is a managed service for user authentication, providing user sign-up, sign-in, and token-based authentication for API Gateway.

Question 26

Q: How does API Gateway integrate with Amazon Cognito User Pools?

Answer 26

: API Gateway validates tokens issued by Amazon Cognito for authenticated users before granting API access.

Question 27

Q: What is the purpose of an API Gateway Usage Plan?

Answer 27

A usage plan allows API Gateway to associate API keys with limits and throttling rules, controlling API acce

Question 28

Q: What is a common use case for Lambda Authorizers?

Answer 28

: Validating JWT tokens issued by third-party identity providers or implementing custom authentication rules.

Question 29

API Gateway – WebSocket API app use case

Answer 29

Two-way interactive communication between a user’s browser and a server
WebSocket APIs are often used in real- time applications such as chat
applications, collaboration platforms,
multiplayer games, and financial trading
platforms.

Works with AWS Services (Lambda,
DynamoDB) or HTTP endpoints

Question 30

How does routing work in AWS API Gateway WebSocket APIs?

Answer 30

Answer:

Messages are routed using route keys.
Special routes:
* $connect (when a client connects)
* $disconnect (when a client disconnects)
* $default (when no specific route matches)
Custom route keys match message content.
Each route is linked to a backend (e.g., Lambda) to handle the message.

Question 31

To make a Serverless API, you should integrate API Gateway with ………………….

Answer 31

aws lambda

Question 32

API Gateway Caching is defined per ………………… with the default TTL …………………

Answer 32

Stage, 300 seconds

Question 33

How can clients invalidate the cache of an API from the client-side?

Answer 33

Pass the http header Cache-control: max-age=0

Question 34

Which CloudWatch metrics helps you analyze the timeout issues between your API Gateway and a Lambda function?

Answer 34

Integration LAtency