Is it a good way to implement custom authorization logic(like an API call to validate header parameters) in Lambda Authorizers?

Hi,

I want to add some authorization logic in every API Gateway other than token authentication to secure my APIs. My custom logic includes call an API to validate my header parameters. If the user have that permission it will generate an allow policy. Is it is possible to implement in custom authorizer? Or is there any other methods available to validate my custom header?

Can we throw custom message from Lambda Authorizer based on our requirement?

Thanks

주제

서버리스 컴퓨팅 프론트엔드 웹 및 모바일 네트워킹 및 콘텐츠 전송

태그

AWS Lambda 아마존 API 게이트웨이

언어

English

AWS-User-9476241

질문됨 2년 전488회 조회

1개 답변

최신
최다 투표
가장 많은 댓글

Hi.

You can use the header verification function for simple regular expressions.
If you need custom validation using an external API, I think the Lambda authorizer is a good choice.

What does custom message throw mean? Please tell me the scenario.

전문가

iwasa

답변함 2년 전

AWS-User-9476241

2년 전

Hi,

Thanks for the answer.

I want message format like this

 {
    "errorCode": "xyz_12#",
    "errorType": "Constraint error",
    "errorMessage": "Need administrative permisssion to perform this action"
};

This error message may be dynamic based on the user role.

Thanks

Is it a good way to implement custom authorization logic(like an API call to validate header parameters) in Lambda Authorizers?

관련 콘텐츠