AWS apigateway documentation change
Summary
Added $context.customDomain.routingRuleIdMatched variable and updated link text for API mappings documentation
Security assessment
The addition of $context.customDomain.routingRuleIdMatched provides visibility into routing rules matched during requests, which aids in auditing and monitoring. While this enhances observability (a security best practice), there is no evidence it addresses a specific security vulnerability.
Diff
diff --git a/apigateway/latest/developerguide/api-gateway-variables-for-access-logging.md b/apigateway/latest/developerguide/api-gateway-variables-for-access-logging.md index c47a35919..4c7c8f479 100644 --- a//apigateway/latest/developerguide/api-gateway-variables-for-access-logging.md +++ b//apigateway/latest/developerguide/api-gateway-variables-for-access-logging.md @@ -44 +44,2 @@ Calling `$context.authorizer.key` returns the `"value"` string, calling `$contex -`$context.customDomain.basePathMatched` | The path for an API mapping that an incoming request matched. Applicable when a client uses a custom domain name to access an API. For example if a client sends a request to `https://api.example.com/v1/orders/1234`, and the request matches the API mapping with the path `v1/orders`, the value is `v1/orders`. To learn more, see [Map API stages to a custom domain name for REST APIs](./rest-api-mappings.html). +`$context.customDomain.basePathMatched` | The path for an API mapping that an incoming request matched. Applicable when a client uses a custom domain name to access an API. For example if a client sends a request to `https://api.example.com/v1/orders/1234`, and the request matches the API mapping with the path `v1/orders`, the value is `v1/orders`. To learn more, see [Use API mappings to connect API stages to a custom domain name for REST APIs](./rest-api-mappings.html). +`$context.customDomain.routingRuleIdMatched` | The routing rule that an incoming request matched. Applicable when a client uses a custom domain name to access an API. To learn more, see [Routing rules to connect API stages to a custom domain name for REST APIs](./rest-api-routing-rules.html).