Logo Questions Linux Laravel Mysql Ubuntu Git Menu
HTML CSS JAVASCRIPT SQL PYTHON PHP BOOTSTRAP JAVA JQUERY R React Kotlin
 

How to access http headers in custom authorizer AWS lambda function

Tags:

amazon-web-services

aws-lambda

aws-api-gateway

From API Gateway, I created a custom authorizer for my API using Lambda function in python. API Gateway hands over the incoming auth token using a header I configure(method.request.header.Authorization). However I also need the other headers of the original http request inside my lambda function. How do I access them? I did not see the headers on event object input to my lambda function.

Note that this is not a duplicate of How to access HTTP headers for request to AWS API Gateway using Lambda?. The question is about custom authorizer lambda function. I do not see any configuration option to pass the incoming http headers to authorizer lambda function.

As per AWS Documentation, API Gateway calls Custom Authorizer with below input. Base on the the below, I assume my ask is not possible. But want to check if there is a workaround.


{
    "type":"TOKEN",
    "authorizationToken":"",
    "methodArn":"arn:aws:execute-api:<regionId>:<accountId>:<apiId>/<stage>/<method>/<resourcePath>"
}
like image 964
suman j Avatar asked Jul 26 '16 17:07

suman j

1 Answers

This is now possible by using an Authoriser of type 'Request' instead of Token

Full details are here: https://docs.aws.amazon.com/apigateway/latest/developerguide/apigateway-use-lambda-authorizer.html

Fundamentally, all headers are passed in the event object for a Request authorisation

ie headers object on event 


    "headers": {
        "X-wibble": "111",
        "X-wobble": "222",
        "x-amzn-ssl-client-hello": "*Deleted*",
        "Via": "1.1 .cloudfront.net (CloudFront)",
        "CloudFront-Is-Desktop-Viewer": "true",
        "CloudFront-Is-SmartTV-Viewer": "false",
        "CloudFront-Forwarded-Proto": "https",
        "X-Forwarded-For": "*Deleted*",
        "CloudFront-Viewer-Country": "GB",
        "Accept": "*/*",
        "User-Agent": "curl/7.55.1",
        "X-Amzn-Trace-Id": "Root=*Deleted*",
        "Host": "*Deleted*.execute-api.eu-west-1.amazonaws.com",
        "X-Forwarded-Proto": "https",
        "X-Amz-Cf-Id": "*Deleted*",
        "CloudFront-Is-Tablet-Viewer": "false",
        "X-Forwarded-Port": "443",
        "CloudFront-Is-Mobile-Viewer": "false"
    }
like image 66
GlynD Avatar answered Sep 26 '22 03:09

GlynD
Sign in to Comment

Related questions

DynamoDB API: How can I build an "add JSON attribute if not present" update request?
SES error missing final '@domain'
Upload file to Amazon S3 from Android slow
Inform browser clients when Lambda function is done using Amazon SQS
using aws-sdk to upload images to s3 using nodejs
Access AWS S3 bucket from another account using roles
Running a simple HTTPS Node JS Server on Amazon EC2
How to encrypt AWS Lambda environment variables using CloudFormation
Refresh AWS Quicksight automatically [closed]
How to debug "Missing Authentication Token" in AWS API Gateway?
Auto Delete SQS queue
AWS Java SDK: AbortedException on call to AmazonSQSClient.receiveMessage
Netflix Zuul/Ribbon/Eureka vs AWS ELB/ALB & ECS
How to fix intermittent 503 Service Unavailable after idling/redeployments on AWS HTTP API Gateway & Fargate/ECS?
RDS Database storage runs out of space
How to create a Vagrantfile that matches Elastic Beanstalk?
Is ssl termination at AWS load balancer ELB secure?
How to response non-latin characters in AWS lambda?
Connection Pooling with PostgreSQL and AWS
Is boto3.Bucket.upload_file blocking or non-blocking?

Donate For Us

If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!