I am creating a simple HTTP API in AWS API Gateway.
I am looking to limit POST requests to the API so they can only be sent from my Atlassian Forge app.
I can see that AWS API Gateway has an option to add JWT authorizers for API routes, with the fields:
- Identity source
- Issuer URL
I’m fairly new to the world of API creation and JWT. I came across this helpful tutorial for Auth0, (as well as some documentation from Atlassian) — I am wondering if anyone with some experience in this could explain some of the steps for creating / mapping for these fields to work with a Forge app.
Thanks in advance!