1 Risposta
- Più recenti
- Maggior numero di voti
- Maggior numero di commenti
0
According to the documentation you are correct. Only the headers/parameters are passed into the Authorizer which would make sense as during a POST you wouldn’t be sending a body as such and would only be interested in variables.
You would usually pass through a bearer token as such which would check to see if you have valid credentials and allow or deny you. You still need another authentication process to obtain a token to supply to api gateway.
https://docs.aws.amazon.com/apigateway/latest/developerguide/http-api-lambda-authorizer.html
Contenuto pertinente
- AWS UFFICIALEAggiornata un anno fa
- AWS UFFICIALEAggiornata un anno fa