🔥 3-day streak
AWS Certified Developer - Associate46 / 150
Question 46 of 150

A developer is building a serverless REST API using Amazon API Gateway backed by AWS Lambda. Users sign in through an Amazon Cognito user pool, and the mobile app receives tokens after successful authentication. The API must reject any request that does not carry a valid, non-expired user identity, and the solution should require minimal custom code. Which approach should the developer implement?

Reviewed for accuracy · Report an issueNext question