Benefits of Amazon API Gateway API types Endpoint types Cost for Amazon API Gateway-based applications

About Amazon API Gateway

Amazon API Gateway is a fully-managed service that enables developers to create, publish, maintain, monitor, and secure APIs at any scale. APIs act as the front door for applications to access data, business logic, or functionality from backend services. Using API Gateway, you can create RESTful APIs and WebSocket APIs that enable near real-time, two-way communication applications. API Gateway supports a variety of backend integrations, enabling containerized, serverless, and traditional instance-based workloads.

API Gateway handles all the tasks involved in accepting and processing up to hundreds of thousands of concurrent API calls. This includes traffic management, cross-origin resource sharing (CORS) support, authorization and access control, throttling, monitoring, caching, and API version management. API Gateway has no minimum fees or startup costs. You pay for the API calls you receive, and the amount of data transferred out. With the API Gateway tiered pricing model, your cost per million invocations reduces as your API usage scales.

Benefits of Amazon API Gateway

API Gateway offers a variety of benefits and capabilities:

Unified front door – Use API Gateway to compose unified APIs to a variety of integration types and microservices with advanced routing and transformation features.
Security and governance built in – API Gateway supports authorization using any form of bearer or JSON web tokens (JWTs), integration with AWS Web Application Firewall (AWS WAF) for layer 7 request validation, and integration with AWS CloudTrail and AWS Config to enable auditing, logging, monitoring, and compliance out of the box.
Standards built in – API Gateway supports OpenAPI specification versions 2 and 3 for import and export of APIs, and authorization with native OpenID Connect and OAuth 2.0 token parsing.
Regulatory compliance support – Use API Gateway to build architectures and systems to meet requirements for regulatory compliance attestations including SOC, PCI, ISO, FedRAMP, HIPAA, and more.
Observability built in – Native integrations with Amazon CloudWatch and AWS X-Ray provide extensive Amazon CloudWatch metrics, monitoring and alarming, and end-to-end tracing capabilities.
API lifecycle management – Use API Gateway to run multiple versions of the same API simultaneously, so that applications can continue to call previous API versions even after newer versions are published. API Gateway also helps you manage multiple release stages for each API version, such as alpha, beta, and production. Each API stage can be configured to interact with different backend endpoints based on your API setup. Stage and version management allow you to test new API versions while ensuring backward-compatibility as user communities transition to adopt the latest release.
Streamlined developer experience – An open-source developer portal enables streamlined API registration and onboarding processes. It issues API keys to authenticated users and enables them to interactively explore and test APIs. Third-party developers of your APIs can download generated client SDKs for a number of platforms. You can use these SDKs to test new APIs from your applications and distribute them to third-party developers. The generated SDKs handle API keys and sign requests using AWS credentials. API Gateway can generate client SDKs for numerous programming languages.
Performance at any scale – API Gateway is an always-on, scalable service that supports practically any load with no warm-up limitations. It provides you with the lowest possible latency for API requests and responses using cached content and by accelerating content delivery with global edge network locations using Amazon CloudFront. It can also handle bursts of traffic for your workloads while throttling and authorizing API calls, to help ensure that backend operations can withstand traffic spikes and not be unnecessarily called.
Pay for value pricing – Cost savings are realized at scale through the API Gateway simple, tiered, price-per-million request pricing. You pay only for the requests made to your API, with no minimum.

API types

API Gateway supports multiple API types and a variety of architectural patterns:

HTTP APIs – Build stateless RESTful APIs optimized for serverless workloads and HTTP backends using HTTP APIs. HTTP APIs are the best choice for building APIs that require only API proxy functionality. If your APIs require API proxy functionality and API management features in a single solution, API Gateway also offers REST APIs.
WebSocket APIs – Build real-time, two-way communication applications, such as chat apps and streaming dashboards, with WebSocket APIs. API Gateway maintains a persistent connection to handle message transfer between your backend service and your clients.

Endpoint types

Amazon API Gateway offers three types of endpoints:

Private API endpoints – Can be accessed only from your Amazon Virtual Private Cloud (Amazon VPC) and approved subnets using an interface VPC endpoint.
Regional API endpoints – Offload transport layer security (TLS) within the API deployment in your chosen AWS Region. This is suggested for use cases where API client calls originate in the same region, or for when you want to custom-manage an Amazon CloudFront distribution with a Regional API Gateway endpoint as your origin for dynamic content. This is the default selection for HTTP and WebSocket API Gateway endpoints.
Edge-optimized API endpoints – Provide API access to geographically distributed clients with managed edge network acceleration built-in. This is the default selection for REST API Gateway endpoints. It should not be used for APIs where clients consist of other services within the same Region, or when you require granular control of CloudFront CDN caching behaviors. Client TLS connections end at the CloudFront edge location where the API request is first routed, and AWS manages TLS communication between CloudFront and API Gateway instances.

Cost for Amazon API Gateway-based applications

With API Gateway, you pay only for invocation requests made to your APIs. There are no minimum fees or upfront commitments. For HTTP APIs and REST APIs, you pay only for the API calls you receive and the amount of data transferred out. There are no data transfer out charges for Private APIs, though AWS PrivateLink charges apply when using Private APIs in API Gateway. API Gateway also provides optional data caching, charged at an hourly rate that varies based on the cache size you select. For WebSocket APIs, you pay only when your APIs are in use based on number of messages sent and received and connection minutes, as well as any data transfer.

The API Gateway free tier includes one million HTTP API calls, one million REST API calls, one million messages, and 750,000 connection minutes per month for up to 12 months.

Warning Javascript is disabled or is unavailable in your browser.

To use the Amazon Web Services Documentation, Javascript must be enabled. Please refer to your browser's Help pages for instructions.

Document Conventions

Abstract and introduction

Security design principles