Reputation: 1012
Authenticate the caller to a lambda function
I have a web app. The login process is done with cognito (AWS javascript SDK) in the client side. This works fine. The user can register, login and edit his attributes in cognito.
I have a Lambda function. The Lambda function is triggered via an API gateway.
The question: What is the best practice for authenticating the calling user in Lambda?
What do I need to pass in my HTTP request? Is it the accessToken from the client?
Upvotes: 0
Views: 198
Answers (1)
Reputation: 87
You pass that in the header Authorization: Bearer {yourtoken}
{yourtoken} is the idToken in AuthenticationResult when you request CognitoIdentityServiceProvider
If you want the caller in your lambda function you can pass it to your lambda function with $context.authorizer.claims.email in API Gateway request template
Upvotes: 1
Related Questions
- Send username to aws Lambda function triggered by aws Cognito user confirm
- Cognito authorizing a user through AWS lambda function
- Get I Access Cognito Identity in Lambda function? Full example with some part of the puzzle missing
- How to get AWS Cognito user data inside a lambda function protected by a cognito authorizer on API gateway
- How to get a Cognito authenticated user info in a AWS Lambda function?
- AWS: Restrict Cognito Authorized User to specific Lambda Functions
- Use custom authorization logic with AWS Cognito authentication
- Is it possible to invoke a Lambda function with a cognito userpool identity?
- How to authenticate users using Lambda functions and AWS Cognito?
- How to do Cognito authentication in lambda function?