By using AWS re:Post, you agree to the AWS re:Post Terms of Use
AWS re:Postre:Post

need access token as header in cognito

0

We need access token as header in cognito authorizer https://aws.amazon.com/premiumsupport/knowledge-center/api-gateway-cognito-401-unauthorized/ is the only way is to add custom scope to do it? How custom scope can be configured in sam template? "

Topics
ServerlessSecurity, Identity, & Compliance
Tags
ServerlessAmazon Cognito
Language
English
AWS-User-2831799
asked 2 years ago269 views
1 Answer
1

If there are no scopes defined the API Gateway Cognito Authorizer will require the ID Token. If you require to use the Access Token then you will need to define one or more scopes in your Method Request OAuth scopes. These scopes will also need to be in your Access Token. Scopes can be defined with CloudFormation reference AWS::ApiGateway::Method then see AuthorizationScopes.

profile pictureAWS
Mike_P
answered 2 years ago

You are not logged in. Log in to post an answer.

A good answer clearly answers the question and provides constructive feedback and encourages professional growth in the question asker.

Guidelines for Answering Questions

Relevant content