1 réponse
- Le plus récent
- Le plus de votes
- La plupart des commentaires
1
Hi,
I think that in this case you should add the Access-Control-Allow-Origin
header at the predefined API Gateway response section and not in your API method response, since it is the gateway who is responding for authorization failure before your method is executed.
Contenus pertinents
- demandé il y a un an
- demandé il y a un an
- Réponse acceptéedemandé il y a un an
- AWS OFFICIELA mis à jour il y a 4 mois
- AWS OFFICIELA mis à jour il y a 2 ans
I have it for 401 status in tab "Method responses" enabled headers Access-Control-Allow-Origin
CloudFormationPart
{ "ResponseParameters": { "method.response.header.Access-Control-Allow-Origin": true }, "ResponseModels": {}, "StatusCode": "401" }
Not on your method response, but in the API Gateway default responses. I recommend that you take a look at the link in the previous comment.
Thank you! Sorry, didn't read it carefully. But why, even if I put extra header in method response header still didn't present in response?
maybe response from authorizer avoid response integration step
Exactly, when the API fails because the authorizer or request validation, among others, your method is not executed and the API gateway returns the appropriate default response.