how to restrict access to serverless api via resource policy?

a serverless api gateway stack built via cloudformation template ( see below) . I added a resource policy to whitelist a particular IP address. Does this block all other IP address, without specifying a black list or do I have add a IpRangeBlacklist values as well?


Resources:
  serverlessapiGateway:
    Type: AWS::Serverless::Api
    Properties:
      Auth:
        ResourcePolicy:
          IpRangeWhitelist:
            - "10.20.30.40"

Solution

Verified, only list of IP under IpRangeWhitelist range are allowed. I wonder if there is a way to customize the error message we get, when not allowed.

How to enable "ApiKeyRequired" property in SAM without explicit swagger definition?
502 "Internal Server Error" with API Gateway + Lambda when deploying
Setup a basic WebSocket mock in AWS ApiGateway
Testing AWS CDK Applications Locally
CDK split API Gateway stack into 2 small stacks
AWS API Gateway : Execution failed due to configuration error: No match for output mapping and no default output mapping configured
AWS lambda api gateway error "Malformed Lambda proxy response"
How to pass multi value query string parameter to lambda on api gateway?
Signature expired: is now earlier than error : InvalidSignatureException
How to pass API Gateway authorizer context to a HTTP integration
AWS API Gateway Access vs Id Token
What is a "stage" in the context of Amazon API Gateway?
cdk api gateway route53 lambda custom domain name not working
Why do I get a CORS error on AWS Api Gateway & Lambda POST?
XMLHttpRequest error in flutter web [Enabling CORS AWS API gateway]
How to use an existing stage in API Gateway deployments in AWS CDK?
Issue with slashes for Integrating API Gateway with CloudSearch
Preflight request is succeeds, but GET request fails with CORS error status code 200 OK
AWS Terraform Multiple deployments to single apigateway stage
AWS API Gateway / AWS Network Load Balancer: request ends in 500 InternalServerErrorException, How to specify the port to forward to?
Snowflake is returning date column as integer values to AWS API server
AWS Cloudformation Stack API Gateway having Cors error when taking request from React App Locally
pull data from s3 bucket in json format via api call
Public Route53 CNAME Record to Private API Gateway
REST API (Lambda integration) deployment using Terraform - POST is giving 200, but GET is giving 500
Deploying an OpenAPI-based API gateway via Terraform?
AWS Cognito authoriser gives 403 error with the valid token
Download a file from external website to AWS S3 bucket
Is there a way to passthrough header and body of a request to aws step function pipeline?
How can I configure the "Use Stage Variable" parameter for a VPC Link using CloudFormation?