Join GitHub today
GitHub is home to over 50 million developers working together to host and review code, manage projects, and build software together.
Sign upDeploying to "private" API Gateway with dedicated VPC endpoint #897
Comments
|
Marking as a feature request. Unfortunately creating your own API Gateway private endpoint is not supported in Chalice yet. Chalice currently only supports running a Lambda function in your own VPC, but I do think it would be really valuable to be able to setup a private endpoint as well. |
|
Currently creating open API endpoints causes internet traversals adding network latency ~100ms on top of lambda execution, also a lot of our API's are internal facing and not exposed to public endpoints. This feature if implemented will increase chalice usage to a great extent for anyone who's developing micro-services which are consumed internally and would be able to do so with low latency. |
|
Would also love to see this added. As-is, |
|
Just fixing the issue that @mtslzr noted with |
|
Bump, I'm wondering if this can be marked important, an identical issue on SAM was aws/serverless-application-model#480 increased in priority. If this is going to take a lot of time to get done, I would appreciate some workarounds. Currently it's a showstopper for adoption of chalice in our deploy pipeline. |
|
After digging through the code, it looks like adding this would require swagger support for this functionality. Or are there options in the code for setting custom ApiGateway options? Sorry, I'm still learning the codebase! |
|
After a little more digging, tit seems this might be added to |
|
Tagged this in #976 because we will need the ability to attach a resource policy for the VPCE. With |
|
added a pr that will allow deploying to private api endpoints (api endpoint configuration type), however this won't configure a vpc endpoint as that resource is shared across multiple apis and has variance for vpc/subnet/security groups independent of chalice configuration. |
Hi,
I have created a dedicated VPC endpoint in order to be able to deploy a Chalice micro-service to a private API Gateway instance (meaning only accessible on a particular VPC within AWS), but I am not seeing anything in the document, nor issues which outlines how it is possible or not to specify the API Gateway resource policy (where you normally specify the VPC endpoint). I am following AWS's documentation here: https://docs.aws.amazon.com/apigateway/latest/developerguide/apigateway-private-apis.html#apigateway-private-api-set-up-resource-policy
Thank you in advance for any pointers or guidance.