@filevinepros/from-gateway

Verify that a lamba request came from the gateway

1.0.0
latest
npm

Version published: 5 years ago

Maintainers: 1

Created: 5 years ago

Source

from-gateway

Verify that a lamba request came from the gateway

Usage

const fromGateway = require('@filevinepros/from-gateway');

const gatewayToken = process.env.GATEWAY_TOKEN;
const jwtPublicKey = process.env.PUBLIC_KEY;

const authorize = fromGateway(gatewayToken, jwtPublicKey);

// lambda authorizer input
// see https://docs.aws.amazon.com/apigateway/latest/developerguide/api-gateway-lambda-authorizer-input.html
const event = {
  methodArn: 'arn:aws:....',
  headers: {
    Authorization: 'Bearer yourJwtAccessTokenString',
    'x-fv-gateway-token': 'yourProvidedGatewayToken'
  }
}

// lambda authorizer context
const context = {
  // ...
}

// lambda authorizer callback
// see https://docs.aws.amazon.com/apigateway/latest/developerguide/api-gateway-lambda-authorizer-output.html
const callback = (err, iamPolicyAndPrincipal) => {
  // ...
}

// you won't typically invoke the authorize function directly;
// instead you'll export the authorize function and reference
// it in the serverless.yml
authorize(event, context, callback);

FAQs

What is @filevinepros/from-gateway?

Is @filevinepros/from-gateway well maintained?

Package last updated on 11 Jul 2019

Did you know?

Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.

Install

@filevinepros/from-gateway

from-gateway

Usage

Related posts

Input Validation Vulnerabilities Dominate MITRE's 2024 CWE Top 25 List

Risky Business Podcast: Why Open Source Software Needs Better Malware Tracking