The only problem with lambda authorizer is that when rate limit rule is applied and request is throttled in response we get unauthorized/forbidden response which does not tell us that we were throttled. Maybe it's okay in some cases but it would be better if we could return proper 429 HTTP status code to indicate that we are making to many requests and also provide proper rate limiting headers. We can allow reqeust from authorizer and include some kind of meta info in authorizer context and then handle it in lambda and throttle request from there. but stilll it sounds not so good (((((

Thank you for this tutorial! I'm a newbie to AWS and your videos really help me better understand the flow of the design process! Cheers!!

thanks

If there are thousands of requests, won't we run out of lambda authorizers? There are only 1k of lambda concurrent invocations.

Excellent work. Hats off to you.

bro is using ai for his face video

Hey can you please tell me what program you used to create your diagrams?

It would be great to have a deep dive video into the new AuthZ AWS solution: Verified Permissions!

Great video… thank you for sharing 👌🏻

1. how what is actually returned by the lambda? Is there an expectation from the gateway to have the lambda return the api key 2. How does this solution prevent the noisy neighbor, because even though the client has golden badge his excessive request will affect others?

this ai face video gives weird vibez

Again a great video on mastering kubernetes. It makes a lot of sense to continue, we are going at a very good pace for someone wanting to learn kubernetes.

Can someone please explain me why can't we just use one id( the tenantId or the cID) ?