I have an ASP.NET web api running on an instance of Windows EC2 along with a DynamoDB data layer. I was looking for alternative aws options to protect my web application.
To this end, I am reading AWS STS and API Gateway docs. The API gateway is the first choice, but I would not want to use it because it makes me recognize node.js.
Cognito seems to be the best choice for me, because it will also work with both mobile and web users. I know that Cognito also provides aws resource security.
My question is: Is it possible to protect web interfaces running on EC2 instances without using security tokens. Can cognitively manage all incoming API calls without any additional security steps?
thanks
source share