java.lang.Object
- no.unit.commons.apigateway.authentication.RequestAuthorizer

All Implemented Interfaces:

com.amazonaws.services.lambda.runtime.RequestHandler<com.amazonaws.services.lambda.runtime.events.APIGatewayCustomAuthorizerEvent,AuthorizerResponse>

Direct Known Subclasses:

DefaultRequestAuthorizer
```
public abstract class RequestAuthorizer
extends java.lang.Object
implements com.amazonaws.services.lambda.runtime.RequestHandler<com.amazonaws.services.lambda.runtime.events.APIGatewayCustomAuthorizerEvent,AuthorizerResponse>
```
Abstract class for implementing a Request Authorizer. Implementation is based on the AWS examples found in the following page : "https://docs.aws.amazon.com/apigateway/latest/developerguide/apigateway-use-lambda-authorizer .html".

Field Summary

Fields
Modifier and Type	Field	Description
`static java.lang.String`	`ALL_PATHS`
`static java.lang.String`	`ALLOW_EFFECT`
`static java.lang.String`	`ANY_HTTP_METHOD`
`static java.lang.String`	`ANY_RESOURCE`
`static int`	`API_GATEWAY_IDENTIFIER_INDEX`
`static java.lang.String`	`AUTHORIZATION_HEADER`
`static java.lang.String`	`COULD_NOT_READ_PRINCIPAL_ID_ERROR`
`static java.lang.String`	`EXECUTE_API_ACTION`
`static java.lang.String`	`PATH_DELIMITER`
`static int`	`STAGE_INDEX`

Constructor Summary

Constructors
Modifier Constructor Description

protected RequestAuthorizer()

Method Summary

All Methods Instance Methods Abstract Methods Concrete Methods
Modifier and Type	Method	Description
`protected boolean`	`callerIsAllowedToPerformAction(com.amazonaws.services.lambda.runtime.events.APIGatewayCustomAuthorizerEvent requestInfo)`
`protected AuthPolicy`	`createAllowAuthPolicy(java.lang.String methodArn)`
`protected AuthPolicy`	`createDenyAuthPolicy()`
`protected abstract java.lang.String`	`fetchSecret()`
`protected java.lang.String`	`formatPolicyResource(java.lang.String methodArn)`	This method can be overridden to change the template of the accessed resource.
`AuthorizerResponse`	`handleRequest(com.amazonaws.services.lambda.runtime.events.APIGatewayCustomAuthorizerEvent input, com.amazonaws.services.lambda.runtime.Context context)`
`protected abstract java.lang.String`	`principalId()`

Methods inherited from class java.lang.Object
clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

Field Detail

EXECUTE_API_ACTION

public static final java.lang.String EXECUTE_API_ACTION

See Also:: Constant Field Values

ALLOW_EFFECT

public static final java.lang.String ALLOW_EFFECT

See Also:: Constant Field Values

ANY_RESOURCE

public static final java.lang.String ANY_RESOURCE

See Also:: Constant Field Values

ANY_HTTP_METHOD

public static final java.lang.String ANY_HTTP_METHOD

See Also:: Constant Field Values

ALL_PATHS

public static final java.lang.String ALL_PATHS

See Also:: Constant Field Values

PATH_DELIMITER

public static final java.lang.String PATH_DELIMITER

See Also:: Constant Field Values

API_GATEWAY_IDENTIFIER_INDEX
```
public static final int API_GATEWAY_IDENTIFIER_INDEX
```
See Also:

Constant Field Values

STAGE_INDEX
```
public static final int STAGE_INDEX
```
See Also:

Constant Field Values

AUTHORIZATION_HEADER

public static final java.lang.String AUTHORIZATION_HEADER

See Also:: Constant Field Values

COULD_NOT_READ_PRINCIPAL_ID_ERROR

public static final java.lang.String COULD_NOT_READ_PRINCIPAL_ID_ERROR

See Also:: Constant Field Values

Constructor Detail
- RequestAuthorizer
```
protected RequestAuthorizer()
```

Method Detail
- handleRequest
```
public AuthorizerResponse handleRequest(com.amazonaws.services.lambda.runtime.events.APIGatewayCustomAuthorizerEvent input,
                                        com.amazonaws.services.lambda.runtime.Context context)
```
  Specified by:
  
  handleRequest in interface com.amazonaws.services.lambda.runtime.RequestHandler<com.amazonaws.services.lambda.runtime.events.APIGatewayCustomAuthorizerEvent,AuthorizerResponse>
- formatPolicyResource
```
protected java.lang.String formatPolicyResource(java.lang.String methodArn)
```
  This method can be overridden to change the template of the accessed resource. The resource that access will be allowed to. It can contain wildcards.
  Example methodARN: arn:aws:execute-api:eu-west-1:884807050265:2lcqynkwke/Prod/GET/some/path/to/resource Example output: arn:aws:execute-api:eu-west-1:884807050265:2lcqynkwke/Prod\/*\/*
  Another possible output is: "*"
  
  Parameters:
  
  methodArn - the method ARN as provided by the API gateway
  
  Returns:
  
  a resource for the policy
- createAllowAuthPolicy
```
protected AuthPolicy createAllowAuthPolicy(java.lang.String methodArn)
```
- createDenyAuthPolicy
```
protected AuthPolicy createDenyAuthPolicy()
```
- principalId
```
protected abstract java.lang.String principalId()
```
- fetchSecret
```
protected abstract java.lang.String fetchSecret()
                                         throws ForbiddenException
```
  Throws:
  
  ForbiddenException
- callerIsAllowedToPerformAction
```
protected boolean callerIsAllowedToPerformAction(com.amazonaws.services.lambda.runtime.events.APIGatewayCustomAuthorizerEvent requestInfo)
                                          throws ForbiddenException
```
  Throws:
  
  ForbiddenException

Class RequestAuthorizer

Field Summary

Constructor Summary

Method Summary

Methods inherited from class java.lang.Object

Field Detail

EXECUTE_API_ACTION

ALLOW_EFFECT

ANY_RESOURCE

ANY_HTTP_METHOD

ALL_PATHS

PATH_DELIMITER

API_GATEWAY_IDENTIFIER_INDEX

STAGE_INDEX

AUTHORIZATION_HEADER

COULD_NOT_READ_PRINCIPAL_ID_ERROR

Constructor Detail

RequestAuthorizer

Method Detail

handleRequest

formatPolicyResource

createAllowAuthPolicy

createDenyAuthPolicy

principalId

fetchSecret

callerIsAllowedToPerformAction