Creating function policy using SAM

5minutes2start · December 25, 2018, 8:34am

Hi there,

What would be the fastest way to attach function policy to Lambda?

I hoped that we can do it while creating Lambda:
(allow Lambda to be invoked only by Cognito)

Resources:
  SomeFunction:
    Type: AWS::Serverless::Function
    Properties:
      CodeUri: URL
      FunctionName: SomeFunction
      Policies:
        - Statement:
          - StatementId: AllowToInvokeFromCognito
            Effect: Allow
            Action: lambda:InvokeFunction
            Principal: cognito-idp.amazonaws.com

But I gor errors about malformed policy.
Do I need to first create role?

Topic		Replies	Views
Allow any lambda to invoke lambda with resource policy? Serverless Framework aws	4	4982	July 30, 2019
Lambda-function-public-access-prohibited Actions Serverless Framework	1	2328	October 12, 2020
How to setup lambda functions authorization for authenticated and unauthenticated users Serverless Framework	2	447	August 20, 2021
Generate IAM permissions for invoking lambda from lambda Serverless Framework aws	8	23889	May 29, 2020
adminCreateUser in a lambda function Serverless Framework lambda	0	1083	November 17, 2019

Creating function policy using SAM

Related topics