Missing headers when calling API Gateway

Serverless Framework
,
1

Hi All!
we have a problem with Authorization COGNITO_USER_POOLS.

If I set in the Authorization header as the token received by signing in a user registered in a cognito user pool, I get the following error by performing a request using postman setting the Authorization header with a valid session token.

{
   "message": "Authorization header requires 'Credential' parameter. Authorization header requires 'Signature' parameter. Authorization header requires 'SignedHeaders' parameter. Authorization header requires existence of either a 'X-Amz-Date' or a 'Date' header. Authorization=TOKEN"
 }

I enabled standard CORS and no token validation

events:
      - http:
          authorizer: ${self:custom.cognitoAuthorizer}
          path: todo/{id}
          method: get
          cors:
            origin: '*'
            headers:
              - Authorization

custom:
  cognitoPoolArn: "arn:aws:cognito-idp:eu-central-1:user_id:userpool/ID_POOL"
  cognitoAuthorizer:
    arn: ${self:custom.cognitoPoolArn}

any idea?

3

Not sure this is the right reference.

if you need reference cognitoPoolArn, it should be:

authorizer: ${self:custom.cognitoPoolArn}

If you need reference cognitoAuthorizer’s arn, it should be:

authorizer: ${self:custom.cognitoAuthorizer.arn}
4

I have also gotten the same error. As defined in this StackOverflow answer, it is not about the headers; the endpoint you are making the request doesn’t exist. So, double-check your request URL :+1:
I hope this helps…