AWS Security ChangesHomeSearch

AWS apigateway documentation change

Service: apigateway · 2025-06-04 · Documentation low

File: apigateway/latest/developerguide/api-gateway-variables-for-access-logging.md

Summary

Added $context.customDomain.routingRuleIdMatched variable and updated link text for API mappings documentation

Security assessment

The addition of $context.customDomain.routingRuleIdMatched provides visibility into routing rules matched during requests, which aids in auditing and monitoring. While this enhances observability (a security best practice), there is no evidence it addresses a specific security vulnerability.

Diff

diff --git a/apigateway/latest/developerguide/api-gateway-variables-for-access-logging.md b/apigateway/latest/developerguide/api-gateway-variables-for-access-logging.md
index c47a35919..4c7c8f479 100644
--- a//apigateway/latest/developerguide/api-gateway-variables-for-access-logging.md
+++ b//apigateway/latest/developerguide/api-gateway-variables-for-access-logging.md
@@ -44 +44,2 @@ Calling `$context.authorizer.key` returns the `"value"` string, calling `$contex
-`$context.customDomain.basePathMatched` |  The path for an API mapping that an incoming request matched. Applicable when a client uses a custom domain name to access an API. For example if a client sends a request to `https://api.example.com/v1/orders/1234`, and the request matches the API mapping with the path `v1/orders`, the value is `v1/orders`. To learn more, see [Map API stages to a custom domain name for REST APIs](./rest-api-mappings.html).  
+`$context.customDomain.basePathMatched` |  The path for an API mapping that an incoming request matched. Applicable when a client uses a custom domain name to access an API. For example if a client sends a request to `https://api.example.com/v1/orders/1234`, and the request matches the API mapping with the path `v1/orders`, the value is `v1/orders`. To learn more, see [Use API mappings to connect API stages to a custom domain name for REST APIs](./rest-api-mappings.html).  
+`$context.customDomain.routingRuleIdMatched` | The routing rule that an incoming request matched. Applicable when a client uses a custom domain name to access an API. To learn more, see [Routing rules to connect API stages to a custom domain name for REST APIs](./rest-api-routing-rules.html).