AWS API GW - HTTP API - Authorization Header

We are using AWS API Gateway for hosting our HTTP APIs which are supported by ECS Farget backend .

In API GW we receive externa token in "Authorization" header from caller
Validate that token in "Authorization" header using Lambda Authorizer and determine user context
We intend to create a new internal "Authorization" token and send it to ECS backend
However , we are not able to set "Authorization" header as part parameter mapping with new token as it appears to be reserved header https://docs.aws.amazon.com/apigateway/latest/developerguide/http-api-parameter-mapping.html#http-api-mapping-reserved-headers Has anyone faced similar issue and what is suggested workaround ?

Thanks and Kind Regards, VJ

Topics

Tags

Language

English

asked a month ago532 views

1 Answer

Accepted Answer

You can try to validate the external token in the "Authorization" header using a Lambda Authorizer.

Then a batch of operations you can run are the following:

Generate the internal authorization token within the Lambda function.
Return the internal token as part of the authorization context or in a custom header from the Lambda Authorizer.
Use a custom header (e.g., "X-Internal-Authorization") to map and pass the internal token to the ECS backend in API Gateway's Integration Request settings.

EXPERT

answered a month ago

EXPERT

reviewed 25 days ago

EXPERT

reviewed a month ago

VJ
a month ago
Thanks ,Giovanni . I am not sure why HTTP APIs behave differently to REST APIs in this regard. I wanted to avoid creating a custom header rather wanted to use standard Authorization header. Nevertheless it seems there isn't any other option available.
Giovanni Lauria EXPERT
18 days ago
Try with that one. Let me know

Relevant content