dReAmEr
Reputation: 7196
How to return 401 ("Unauthorized") from AWS Lambda Authorizer
We are using AWS Lambda Authorizer with API Gateway to protect our downstream API's.
Below is the code snippet from our Java based lambda authorizer
Statement statement = Statement.builder()
.resource(input.getMethodArn()).effect(effect)
.build();
PolicyDocument policyDocument = PolicyDocument.builder()
.statements(
Collections.singletonList(statement)
).build();
return AuthorizerResponse.builder()
.principalId(userId)
.policyDocument(policyDocument)
.context(ctx)
.build();
With correct token (effect = "Allow"): getting proper API response from API
With incorrect token (effect = "Deny") Getting 403 HTTP response code.
We need 401 ("Unauthorized") as a response, Can someone pls help how to do this ? we have lambda authorizer written in java.
Upvotes: 3
Views: 1617
Answers (2)
user2681304
Reputation: 129
You can throw RuntimeException with Unauthorized message. One thing is to be in mind, you can not throw checked exception like Exception("Unauthorized"). Because handleRequest method signature of RequestHandler interface don't allow to do so.
if(isInvalidToken){
throw new RuntimeException("Unauthorized");
}
Upvotes: 1
Related Questions
- Custom Authorizer returns 403 but not calling lambda
- AWS HTTP Api Gateway lambda authorizer how to return 401 if a token is expired
- How to return 401 from AWS lambda authorizer without raising an exception
- Using AWS Lambda Authorizer in API Gateway
- lambda authorizer is not invoked
- Custom response Lambda Authorizer for 401
- Lambda Authorizer not respecting Resource
- API Gateway custom authorizer
- 401 ERROR AWS API Gateway with Custom Authorizer for Auth0
- Authorize AWS API Gateway by a Lambda