# APIs

The application didn't require any APIs so far, as we are managing most of the logic either from front-end or from service configurations.

We will write a bunch of APIs to extend the application and also include the use case of API Gateway and DynamoDB. 

* Add Notes to Files
* Share Files with other users

![Cognito User Authorization with API Gateway](https://1642315733-files.gitbook.io/~/files/v0/b/gitbook-legacy-files/o/assets%2F-MCam2LtfwWxgwwpbHcu%2F-MD3Zl4lEpkOSSb5GfLh%2F-MD3w_C27x8xbx0BXJt8%2Fscenario-api-gateway.png?alt=media\&token=604c3052-9b5c-4d4d-8b50-9222981b9298)

In the current context, the APIs are only validating there is a valid Cognito user making the request, but not checking if the user has the authorization (scope) to actually invoke **add-notes** or **share-files** API. We will look at that during the OAuth 2 Sope integration.