I have successfully implemented a Lambda authorizer for my AWS API Gateway, but I want to pass a few custom properties from it to my Node.js endpoint. My output from my authorizer follows the format specified by AWS, as seen below. <pre class="prettyprint"><code>{ "principalId": "yyyyyyyy", "policyDocument": { "Version": "2012-10-17", "Statement": [ { "Action": "execute-api:Invoke", "Effect": "Allow|Deny", "Resource": "arn:aws:execute-api:<regionId>:<accountId>:<appId>/<stage>/<httpVerb>/[<resource>/<httpVerb>/[...]]" } ] }, "context": { "company_id": "123", ... } } </code></pre> In my case, <code>context</code> contains a few parameters, like <code>company_id</code>, that I would like to pass along to my Node endpoint. If I was to use a Lambda endpoint, I understand that this is done with Mapping Template and something like this: <pre class="prettyprint"><code>{ "company_id": "$context.authorizer.company_id" } </code></pre> However, Body Mapping Template is only available under Integration Request if Lambda is selected as Integration type. Not if HTTP is selected. In short, how do I pass <code>company_id</code> from my Lambda authorizer to my Node API?

Most of the credit goes out to @Michael-sqlbot in the comments to my question, but I'll put the complete answer here if someone else finds this question. Authorizer Lambda It has to return an object in this format, where context contains the parameters you want to forward to your endpoint, as specified in the question. <pre class="prettyprint"><code>{ "principalId": "yyyyyyyy", "policyDocument": { "Version": "2012-10-17", "Statement": [{ "Action": "execute-api:Invoke", "Effect": "Allow|Deny", "Resource": "arn:aws:execute-api:<regionId>:<accountId>:<appId>/<stage>/<httpVerb>/[<resource>/<httpVerb>/[...]]" }] }, "context": { "company_id": "123", <-- The part you want to forward ... } } </code></pre> Method Request Under Method Request / HTTP Request Headers, add the context property you want to forward: <ul> <li>Name: <code>company_id</code> </li> <li>Required: optional </li> <li>Cashing: optional </li> </ul> Integration Request And under Integration Request / HTTP Headers, add: <ul> <li>Name: <code>company_id</code> </li> <li>Mapped from: <code>context.authorizer.company_id</code> </li> <li>Cashing: optional </li> </ul>

If you're using <code>lamda-proxy</code>, you can access the context from your <code>event.requestContext.authorizer.context</code>. So your <code>company_id</code> can be accessed using <code>event.requestContext.authorizer.context.company_id</code>.

How to pass API Gateway authorizer context to a HTTP integration

Tags:

node.js

lambda

amazon-web-services

aws-api-gateway

I have successfully implemented a Lambda authorizer for my AWS API Gateway, but I want to pass a few custom properties from it to my Node.js endpoint.

My output from my authorizer follows the format specified by AWS, as seen below.

{
  "principalId": "yyyyyyyy",
  "policyDocument": {
    "Version": "2012-10-17",
    "Statement": [
      {
        "Action": "execute-api:Invoke",
        "Effect": "Allow|Deny",
        "Resource": "arn:aws:execute-api:<regionId>:<accountId>:<appId>/<stage>/<httpVerb>/[<resource>/<httpVerb>/[...]]"
      }
    ]
  },
  "context": {
    "company_id": "123",
    ...
  }
}

In my case, context contains a few parameters, like company_id, that I would like to pass along to my Node endpoint.

If I was to use a Lambda endpoint, I understand that this is done with Mapping Template and something like this:

{
  "company_id": "$context.authorizer.company_id"
}

However, Body Mapping Template is only available under Integration Request if Lambda is selected as Integration type. Not if HTTP is selected.

In short, how do I pass company_id from my Lambda authorizer to my Node API?

651

asked Aug 11 '17 09:08

Magnus Engdal

2 Answers

Most of the credit goes out to @Michael-sqlbot in the comments to my question, but I'll put the complete answer here if someone else finds this question.

Authorizer Lambda

It has to return an object in this format, where context contains the parameters you want to forward to your endpoint, as specified in the question.

{
  "principalId": "yyyyyyyy",
  "policyDocument": {
    "Version": "2012-10-17",
    "Statement": [{
      "Action": "execute-api:Invoke",
      "Effect": "Allow|Deny",
      "Resource": "arn:aws:execute-api:<regionId>:<accountId>:<appId>/<stage>/<httpVerb>/[<resource>/<httpVerb>/[...]]"
    }]
  },
  "context": {
    "company_id": "123", <-- The part you want to forward
    ...
  }
}

Method Request

Under Method Request / HTTP Request Headers, add the context property you want to forward:

Name: company_id
Required: optional
Cashing: optional

Integration Request

And under Integration Request / HTTP Headers, add:

Name: company_id
Mapped from: context.authorizer.company_id
Cashing: optional

answered Oct 10 '22 19:10

Magnus Engdal

If you're using lamda-proxy, you can access the context from your event.requestContext.authorizer.context.

So your company_id can be accessed using event.requestContext.authorizer.context.company_id.

answered Oct 10 '22 18:10

Noel Llevares

Related questions
                            
                                Unknown key for a START_ARRAY in [fields]. in elasticsearch
                            
                                Node.js and piping a ConnectionListener
                            
                                Node - Tell origin of request
                            
                                javascript get timestamp in system timezone not in UTC
                            
                                can PHP and node.js run on the same server
                            
                                Cancel node-schedule event after it has been set
                            
                                Why can't I get to my javascript files from Expressjs/Nodejs?
                            
                                Should I backup the ".npm" and ".node-gyp" folder?
                            
                                Anyone using Node.js with Amazon SNS and Apple Push Notifications?
                            
                                Convert iso-8859-1 to utf-8 javascript
                            
                                Gulp: Segmentation Fault 11 after Node 4.0 update
                            
                                Can't get multer filefilter error handling to work
                            
                                npm install shows error with git not found
                            
                                How to know the version of currently installed package from yarn.lock
                            
                                Unable to update mongoose model
                            
                                NodeJS spawn stdout string format
                            
                                access to HTTP server object in node.js express
                            
                                Making gulp write files synchronously before moving on to the next task
                            
                                When using Sinon, how to replace stub function in a stub instance?
                            
                                Node-sass does not understand tilde

Donate For Us

If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!

Donate Us With

How to pass API Gateway authorizer context to a HTTP integration

Tags:

node.js

lambda

amazon-web-services

aws-api-gateway

Magnus Engdal

People also ask

2 Answers

Magnus Engdal

Noel Llevares

Recent Activity

Donate For Us