The AWS API Gateway allows to use a custom authoriser for handling AWS Lambda endpoint authentication and authorisation logic. This is useful when a third-party is used to provide authorisation or specific authorisation logic needs to be executed. Serverless allows to specify the authoriser used for each lambda endpoint. This post tries to give a quick overview of how custom lambda endpoint authorisers can be used to handle a varied range of requests when deploying with Serverless.