AWS IoT Core expands Custom Authentication options
AWS IoT Core now enables customers to use Custom Authentication to authenticate and authorize messages from IoT devices on MQTT connections. In addition, customers using HTTP or WebSockets to connect to AWS IoT Core can now customize which headers or query parameters they use to pass device credentials to their Authorizers. For example, customers can now pass credentials via the Authorization header or access_token query parameter commonly used in OAuth implementations.
Source:: Amazon AWS