By using AWS re:Post, you agree to the AWS re:Post Terms of Use
AWS re:Postre:Post

session validation in Lambda authorizer

0

Hi, I've a B2B system that authenticate users using spring security (store tokens in Redis & set session cookie as same site, secure, http only).

I want that the authorize process will do a Lambda authorizer.

How can the lambda authorizer get this token from Redis using the session cookie & validate it?

Any oen face this issues?

Thanks!

Topics
ServerlessDatabaseComputeFront-End Web & MobileNetworking & Content DeliveryAWS Well-Architected Framework
Tags
ServerlessAmazon ElastiCache for RedisAWS LambdaAmazon API GatewaySecurity
Language
English
AWS-User-1922136
asked a year ago426 views
1 Answer
0

Your Lambda authorizer function should be attached to the VPC where Redis is running. You will include in the function a Redis SDK that will create a connection to the Redis cluster. You should create the connection outside the Lambda handler so it will be reused across all invocations.

You need to configure API Gateway to pass the Cookies header to the Lambda authorizer. When the function is invoked, it extracts the appropriate cookie from the header and validates it agains Redis. It will then return an appropriate resource policy that allows or denies the access.

profile pictureAWS
EXPERT
Uri
answered a year ago

You are not logged in. Log in to post an answer.

A good answer clearly answers the question and provides constructive feedback and encourages professional growth in the question asker.

Guidelines for Answering Questions

Relevant content