Creating a Step Functions API Using API Gateway - Amazon Step Functions
Step 1: Create an IAM Role for API GatewayStep 2: Create your API Gateway APIStep 3: Test and Deploy the API Gateway API
Services or capabilities described in Amazon Web Services documentation might vary by Region. To see the differences applicable to the China Regions, see Getting Started with Amazon Web Services in China (PDF).

Creating a Step Functions API Using API Gateway

You can use Amazon API Gateway to associate your Amazon Step Functions APIs with methods in an API Gateway API. When an HTTPS request is sent to an API method, API Gateway invokes your Step Functions API actions.

This tutorial shows you how to create an API that uses one resource and the POST method to communicate with the StartExecution API action. You'll use the Amazon Identity and Access Management (IAM) console to create a role for API Gateway. Then, you'll use the API Gateway console to create an API Gateway API, create a resource and method, and map the method to the StartExecution API action. Finally, you'll deploy and test your API.

Note

Although Amazon API Gateway can start a Step Functions execution by calling StartExecution, you must call DescribeExecution to get the result.

Step 1: Create an IAM Role for API Gateway

Before you create your API Gateway API, you need to give API Gateway permission to call Step Functions API actions.

To set up permissions for API Gateway

  1. Sign in to the IAM console and choose Roles, Create role.

  2. On the Select trusted entity page, do the following:

    1. For Trusted entity type, keep the default selection of Amazon Web Service.

    2. For Use case, choose API Gateway from the dropdown list.

  3. Select API Gateway, and then choose Next.

  4. On the Add permissions page, choose Next.

  5. (Optional) On the Name, review, and create page, enter details, such as the role name. For example, enter APIGatewayToStepFunctions.

  6. Choose Create role.

    The IAM role appears in the list of roles.

  7. Choose the name of your role and note the Role ARN, as shown in the following example.

    arn:aws-cn:iam::123456789012:role/APIGatewayToStepFunctions
To attach a policy to the IAM role

  1. On the Roles page, search for your role (APIGatewayToStepFunctions), and then choose the role.

  2. On the Permissions tab, choose Add permissions, and then choose Attach policies.

  3. On the Attach Policy page, search for AWSStepFunctionsFullAccess, choose the policy, and then choose Add permissions.

Step 2: Create your API Gateway API

After you create your IAM role, you can create your custom API Gateway API.

To create the API

  1. Open the Amazon API Gateway console and then choose Create API.

  2. On the Choose an API type page, in the REST API pane, choose Build.

  3. On the Choose the protocol page, keep the default selection for Create new API.

  4. Under Settings, enter StartExecutionAPI for the API name, and then choose Create API.

To create a resource

  1. On the Resources page of StartExecutionAPI, choose Actions, and then choose Create Resource.

  2. On the New Child Resource page, enter execution for Resource Name, and then choose Create Resource.

To create a POST method

  1. On the /execution Methods page, choose Actions, and then choose Create Method.

  2. From the list, choose POST, and then select the check mark.

To configure the integration point for your method

  1. On the /execution - POST - Setup page, for Integration Type, choose Amazon Service.

  2. For Amazon Region, choose a Region from the list.

    Note

    For Regions that currently support Step Functions, see Supported Regions.

  3. For Amazon Service, choose Step Functions from the list.

  4. For HTTP Method, choose POST from the list.

    Note

    All Step Functions API actions use the HTTP POST method.

  5. For Action Type, choose Use action name.

  6. For Action, enter StartExecution.

  7. For Execution role, enter the role ARN of the IAM role that you created earlier, as shown in the following example.

    arn:aws-cn:iam::123456789012:role/APIGatewayToStepFunctions

  8. Choose Save.

    The visual mapping between API Gateway and Step Functions is displayed on the /execution - POST - Method Execution page.

Step 3: Test and Deploy the API Gateway API

Once you have created the API, test and deploy it.

To test the communication between API Gateway and Step Functions

  1. On the /execution - POST - Method Execution page, choose Test.

  2. On the /execution - POST - Method Test page, copy the following request parameters into the Request Body section using the ARN of an existing state machine (or create a new state machine that uses a Lambda function), and then choose Test.

    {
   "input": "{}",
   "name": "MyExecution",
   "stateMachineArn": "arn:aws-cn:states:us-east-1:123456789012:stateMachine:HelloWorld"
}

    For more information, see the StartExecution Request Syntax in the Amazon Step Functions API Reference.

    Note

    If you don't want to include the ARN of your state machine in the body of your API Gateway call, you can configure a body-mapping template, as shown in the following example.

    {
    "input": "$util.escapeJavaScript($input.json('$'))",
    "stateMachineArn": "$util.escapeJavaScript($stageVariables.arn)"
}

    With this approach, you can specify ARNs of different state machines based on your development stage (for example, dev, test, and prod). For more information about specifying stage variables in a body-mapping template, see $stageVariables in the API Gateway Developer Guide.

  3. The execution starts and the execution ARN and its epoch date are displayed under Response Body.

    {
   "executionArn": "arn:aws-cn:states:us-east-1:123456789012:execution:HelloWorld:MyExecution",
   "startDate": 1486768956.878
}
    Note

    You can view the execution by choosing your state machine on the Amazon Step Functions console.

To deploy your API

  1. On the Resources page of StartExecutionAPI, choose Actions, Deploy API.

  2. In the Deploy API dialog box, select [New Stage] from the Deployment stage list, enter alpha for Stage name, and then choose Deploy.

To test your deployment

  1. On the Stages page of StartExecutionAPI, expand alpha, /, /execution, POST.

  2. On the alpha - POST - /execution page, note the Invoke URL, as shown in the following example.

    https://a1b2c3d4e5.execute-api.us-east-1.amazonaws.com/alpha/execution

  3. From the command line, run the curl command using the ARN of your state machine, and then invoke the URL of your deployment, as shown in the following example.

    curl -X POST -d '{"input": "{}","name": "MyExecution","stateMachineArn": "arn:aws-cn:states:us-east-1:123456789012:stateMachine:HelloWorld"}' https://a1b2c3d4e5.execute-api.us-east-1.amazonaws.com/alpha/execution

    The execution ARN and its epoch date are returned, as shown in the following example.

    {"executionArn":"arn:aws-cn:states:us-east-1:123456789012:execution:HelloWorld:MyExecution","startDate":1.486772644911E9}
    Note

    If you get a "Missing Authentication Token" error, make sure that the invoke URL ends with /execution.