AWS API Gateway custom Authorizer strange showing error
Here is the context:
- I set up a resource in the API gateway. /user/company
- This resource have 2 methods. Get and POST.
- I have configured a custom Authorizer for this resource.
The problem:
- I can call the GET method by sending right authorization information and I get the results as expected.
- I try to send a POST request and I get the following error:
{
"message": "User is not authorized to access this resource"
}- If I wait for few minutes, then call the POST method, it will work.
- If after calling the POST method and getting the results I call GET method, it will show the same error as mentioned above.
In addition, I have disabled cache for the authorizer.
What might have caused this issue?
Solution
This could be fixed in two ways that are described in buggy's answer: https://forum.serverless.com/t/rest-api-with-custom-authorizer-how-are-you-dealing-with-authorization-and-policy-cache/3310
Short version:
- Set custom authorizer policy resource as "*"
- Or (if you are ok with no caching) set TTL for custom authorizer to 0
See the answer by Michael for more details
- Is there a way to passthrough header and body of a request to aws step function pipeline?
- How to manage dev and prod environments in a SAM project with CloudFormation Stacks, API Gateway, Lambda, and other AWS services?
- Invoke a Lambda from API Gateway Integration across different stacks using CloudFormation and Serverless Framework
- Setup a basic WebSocket mock in AWS ApiGateway
- API Gateway -> SQS HTTP POST MessageAttributes
- formatting json output from lambda that reads csv from S3
- Missing Authentication Token while accessing API Gateway?
- How can I make ALB forward traffic to API Gateway?
- terraform aws api gateway configure method throttling per each api key
- AWS Lambda Integration with API Gateway 502 errors
- AWS API Gateway WebSocket: connection fails when not selecting Proxy Integration and use Request Templates
- API Gateway throttling -- burst limit vs rate limit?
- How to make inference to a keras model hosted on AWS SageMaker via AWS Lambda function?
- Enable caching for url query parameters in aws api gateway with terraform
- AWS API Gateway - Remove Stage Name From URI
- Is it possible to deploy API Gateway and Lambda in two regions with Serverless?
- AWS API Gateway will I be charged for the request excess the throttling limit?
- XMLHttpRequest error while using http post flutter web
- Cancelling Lambda Invocation from API Gateway Trigger when a Request is Stopped
- How do you add CloudFront in front of API Gateway
- Understanding Allow and Deny statements in AWS permission policies
- Cannot parse API request body in Lambda
- PUT call not working for s3 bucket using a AWS GATEWAY api?
- API Gateway cares about my Authorization header when it shouldn't
- aws api gateway whitelist reactjs app ip address
- how does missing data work in cloudwatch alarm?
- API Gateway Custom Authorizer: Control error message and code
- AWS API Gateway limit beyond 29 seconds - not being respected?
- Is it possible to use wildcards or catch-all paths in AWS API Gateway
- AWS Cognito network traffic flow related question