Define authorization scopes for cognito user pool

bmccann36 · April 13, 2018, 2:15pm

my question is in reference to this issue https://github.com/serverless/serverless/issues/4661

since there currently seems to be no way to define Oauth scopes in your serverless configuration each time I re-deploy my API I have to go back into the aws api gateway UI and re-set the scopes for the authorization defined for my route. I was wondering if anyone has come up with a clever work around?

Once I make the changes in the UI the changes are reflected in the swagger.json that you can export from api gateway. I’m wondering if there is a way I can update this configuration as part of my deploy process or prevent this setting from being overridden each time I re-deploy.

this is how I have the endpoint configured in the serverless.yml

    events:
  - http:
      method: get
      path: customer
      request:
        parameters:
          querystrings:
            ACCT_NUM: true
      cors: true
      authorizer:
        name: authorizer
        arn: arn:aws:cognito-idp:us-east-1xxxxx
        identitySouce: method.request.header.Authorization

mkhoudary · July 10, 2024, 8:33am

I know that this is an old post, but the way to define scopes would be:

authorizer:
name: CognitoUserPoolAuthorizer
type: COGNITO_USER_POOLS
scopes: ordering-services/placement
identitySource: method.request.header.Authorization
arn: {ARN}

Topic		Replies	Views
Oauth scopes setup for API gateway Serverless Framework api-gateway	3	3139	May 16, 2019
Anyone have a good modern example of using a cognito user pool authorizer? Serverless Framework	4	4032	August 9, 2020
Cognito authorizer not being set for API gateway Serverless Framework lambda	5	3104	August 18, 2023
Configure ApiGateway v2 authorizers Serverless Framework api-gateway	2	1758	May 7, 2020
Cognito as Authorizer Serverless Framework aws , lambda , cloudformation , api-gateway	0	1345	August 18, 2023

Define authorization scopes for cognito user pool

Related topics