POST api endpoint

I just bought a Jumpstart Pro license. Looking forward to "jumpstart" our project.

I need to set up a POST endpoint that updates a project. The one that makes the POST request with relevant parameters/info comes from  AWS Lambda and API Gateway. My question is how do I protect the POST endpoint? I don't want anyone to be able to post to it. Should I use authorization token the way that's described in the doc here: https://jumpstartrails.com/docs/api. I could create an api-only user and generate an authorization token for it, then give the authorization token to whatever that's making the POST request. Receiving updates from AWS Lambda/API Gateway is important in our project, so I want to make sure we are doing it correctly in our Jumpstart app.

Thank you in advance. 

Chris Oliver
Hey ! 👋

The API is currently setup to authorize API tokens from users.

You have a couple options:

  1. Use an API Token that is associated with your account in the app. Then effectively the POST requests will be authenticated as you and have your permissions.
  2. Add your own authentication like a http basic auth check. You can skip the API token authentication and use that for your special endpoint since it's more of a system end point, not something that needs a user connected to it.
Notifications
You’re not receiving notifications from this thread.
© 2022 Jumpstart Pro by GoRails, LLC