Triage and Remediation
Check Cause
Using Console
Using Console
- Sign in to the AWS Management Console and open the Amazon API Gateway console at https://console.aws.amazon.com/apigateway/.
- In the navigation pane, choose ‘APIs’.
- In the APIs pane, select the API you want to check.
- In the API details pane, choose ‘Stages’.
-
In the Stages pane, select the stage you want to check. If the ‘Invoke URL’ ends with
/{proxy+}, the Default Execution Endpoint is enabled.
Using CLI
Using CLI
-
Install and configure AWS CLI: Before you can start using AWS CLI, you need to install it on your local system and configure it with your AWS account credentials. You can do this by running the following commands:
Installation:
Configuration:You will be prompted to provide your AWS Access Key ID, Secret Access Key, Default region name, and Default output format.
-
List all the APIs: Once the AWS CLI is configured, you can list all the APIs in your account by running the following command:
This command will return a list of all the REST APIs in your account.
-
Check the default execution endpoint: For each API in the list, you can check the default execution endpoint by running the following command:
Replace
<rest-api-id>with the ID of the API you want to check. This command will return a list of all the stages for the specified API. -
Check if the default execution endpoint is enabled: In the output of the previous command, look for the
defaultRouteSettingsfield. If thedataTraceEnabledfield is set totrue, then the default execution endpoint is enabled. If it’s set tofalse, then it’s not enabled.
Using Python
Using Python
- Install the necessary Python libraries: Before you start, make sure you have the AWS SDK for Python (Boto3) installed, which allows you to write software that makes use of services like Amazon S3, Amazon EC2, etc.
- Set up AWS credentials: You need to configure your AWS credentials. You can do this by setting the following environment variables: AWS_ACCESS_KEY_ID, AWS_SECRET_ACCESS_KEY, and AWS_SESSION_TOKEN. The AWS SDK for Python uses these variables to authenticate your applications.
- Write a Python script to list all the APIs and check if the default execution endpoint is enabled:
- Run the Python script: Save the script in a file, for example, check_api_gateway.py, and then run it using Python.