Missing headers when calling API Gateway

aspha9 · March 20, 2018, 9:44am

Hi All!
we have a problem with Authorization COGNITO_USER_POOLS.

If I set in the Authorization header as the token received by signing in a user registered in a cognito user pool, I get the following error by performing a request using postman setting the Authorization header with a valid session token.

{
   "message": "Authorization header requires 'Credential' parameter. Authorization header requires 'Signature' parameter. Authorization header requires 'SignedHeaders' parameter. Authorization header requires existence of either a 'X-Amz-Date' or a 'Date' header. Authorization=TOKEN"
 }

I enabled standard CORS and no token validation

events:
      - http:
          authorizer: ${self:custom.cognitoAuthorizer}
          path: todo/{id}
          method: get
          cors:
            origin: '*'
            headers:
              - Authorization

custom:
  cognitoPoolArn: "arn:aws:cognito-idp:eu-central-1:user_id:userpool/ID_POOL"
  cognitoAuthorizer:
    arn: ${self:custom.cognitoPoolArn}

any idea?

bill · March 25, 2018, 3:51am

Not sure this is the right reference.

if you need reference cognitoPoolArn, it should be:

authorizer: ${self:custom.cognitoPoolArn}

If you need reference cognitoAuthorizer’s arn, it should be:

authorizer: ${self:custom.cognitoAuthorizer.arn}

Topic		Replies	Views
Anyone have a good modern example of using a cognito user pool authorizer? Serverless Framework	4	3934	August 9, 2020
Cognito authorizer not being set for API gateway Serverless Framework lambda	5	2984	August 18, 2023
Problem accessing AWS API (with Lambda) using cognito user pool Serverless Framework aws	1	1026	November 12, 2017
API Authentication with Cognito Serverless Framework aws	7	12848	December 18, 2018
How do I authorize CognitoIdentityCredentials for my API? Serverless Framework aws , api-gateway , iam	1	1379	October 18, 2018

Missing headers when calling API Gateway

Related Topics