API Gateway Authorizer is not Enabled

Overview

An API Gateway without an authorizer allows connections to potentially trigger any of the supported APIs. Unless other API authorization techniques are used behind the API Gateway this could allow excessive access and security exposures to the underlying APIs and applications

Vendor

AWS

Cloud Service

API Gateway

Severity

Item Types

AWS::ApiGateway::RestApi

Overview​

Vendor​

Cloud Service​

Severity​

Item Types​

Overview

Vendor

Cloud Service

Severity

Item Types