#include <CreateAuthorizerRequest.h>
Inheritance diagram for Aws::ApiGatewayV2::Model::CreateAuthorizerRequest:
Additional Inherited Members | |
| Protected Member Functions inherited from Aws::ApiGatewayV2::ApiGatewayV2Request | |
| virtual Aws::Http::HeaderValueCollection | GetRequestSpecificHeaders () const |
| Protected Member Functions inherited from Aws::AmazonWebServiceRequest | |
| virtual void | DumpBodyToUrl (Aws::Http::URI &uri) const |
Detailed Description
Creates a new Authorizer resource to represent an authorizer.
See Also:
Definition at line 28 of file CreateAuthorizerRequest.h.
Constructor & Destructor Documentation
◆ CreateAuthorizerRequest()
| Aws::ApiGatewayV2::Model::CreateAuthorizerRequest::CreateAuthorizerRequest | ( | ) |
Member Function Documentation
◆ AddIdentitySource() [1/3]
|
inline |
The identity source for which authorization is requested.
For a REQUEST authorizer, this is optional. The value is a set of one or more mapping expressions of the specified request parameters. The identity source can be headers, query string parameters, stage variables, and context parameters. For example, if an Auth header and a Name query string parameter are defined as identity sources, this value is route.request.header.Auth, route.request.querystring.Name for WebSocket APIs. For HTTP APIs, use selection expressions prefixed with $, for example, $request.header.Auth, $request.querystring.Name. These parameters are used to perform runtime validation for Lambda-based authorizers by verifying all of the identity-related request parameters are present in the request, not null, and non-empty. Only when this is true does the authorizer invoke the authorizer Lambda function. Otherwise, it returns a 401 Unauthorized response without calling the Lambda function. For HTTP APIs, identity sources are also used as the cache key when caching is enabled. To learn more, see Working with AWS Lambda authorizers for HTTP APIs.
For JWT, a single entry that specifies where to extract the JSON Web Token (JWT) from inbound requests. Currently only header-based and query parameter-based selections are supported, for example $request.header.Authorization.
Definition at line 641 of file CreateAuthorizerRequest.h.
◆ AddIdentitySource() [2/3]
|
inline |
The identity source for which authorization is requested.
For a REQUEST authorizer, this is optional. The value is a set of one or more mapping expressions of the specified request parameters. The identity source can be headers, query string parameters, stage variables, and context parameters. For example, if an Auth header and a Name query string parameter are defined as identity sources, this value is route.request.header.Auth, route.request.querystring.Name for WebSocket APIs. For HTTP APIs, use selection expressions prefixed with $, for example, $request.header.Auth, $request.querystring.Name. These parameters are used to perform runtime validation for Lambda-based authorizers by verifying all of the identity-related request parameters are present in the request, not null, and non-empty. Only when this is true does the authorizer invoke the authorizer Lambda function. Otherwise, it returns a 401 Unauthorized response without calling the Lambda function. For HTTP APIs, identity sources are also used as the cache key when caching is enabled. To learn more, see Working with AWS Lambda authorizers for HTTP APIs.
For JWT, a single entry that specifies where to extract the JSON Web Token (JWT) from inbound requests. Currently only header-based and query parameter-based selections are supported, for example $request.header.Authorization.
Definition at line 665 of file CreateAuthorizerRequest.h.
◆ AddIdentitySource() [3/3]
|
inline |
The identity source for which authorization is requested.
For a REQUEST authorizer, this is optional. The value is a set of one or more mapping expressions of the specified request parameters. The identity source can be headers, query string parameters, stage variables, and context parameters. For example, if an Auth header and a Name query string parameter are defined as identity sources, this value is route.request.header.Auth, route.request.querystring.Name for WebSocket APIs. For HTTP APIs, use selection expressions prefixed with $, for example, $request.header.Auth, $request.querystring.Name. These parameters are used to perform runtime validation for Lambda-based authorizers by verifying all of the identity-related request parameters are present in the request, not null, and non-empty. Only when this is true does the authorizer invoke the authorizer Lambda function. Otherwise, it returns a 401 Unauthorized response without calling the Lambda function. For HTTP APIs, identity sources are also used as the cache key when caching is enabled. To learn more, see Working with AWS Lambda authorizers for HTTP APIs.
For JWT, a single entry that specifies where to extract the JSON Web Token (JWT) from inbound requests. Currently only header-based and query parameter-based selections are supported, for example $request.header.Authorization.
Definition at line 689 of file CreateAuthorizerRequest.h.
◆ ApiIdHasBeenSet()
|
inline |
The API identifier.
Definition at line 50 of file CreateAuthorizerRequest.h.
◆ AuthorizerCredentialsArnHasBeenSet()
|
inline |
Specifies the required credentials as an IAM role for API Gateway to invoke the authorizer. To specify an IAM role for API Gateway to assume, use the role's Amazon Resource Name (ARN). To use resource-based permissions on the Lambda function, don't specify this parameter. Supported only for REQUEST authorizers.
Definition at line 99 of file CreateAuthorizerRequest.h.
◆ AuthorizerPayloadFormatVersionHasBeenSet()
|
inline |
Specifies the format of the payload sent to an HTTP API Lambda authorizer. Required for HTTP API Lambda authorizers. Supported values are 1.0 and 2.0. To learn more, see Working with AWS Lambda authorizers for HTTP APIs.
Definition at line 172 of file CreateAuthorizerRequest.h.
◆ AuthorizerResultTtlInSecondsHasBeenSet()
|
inline |
The time to live (TTL) for cached authorizer results, in seconds. If it equals 0, authorization caching is disabled. If it is greater than 0, API Gateway caches authorizer responses. The maximum value is 3600, or 1 hour. Supported only for HTTP API Lambda authorizers.
Definition at line 243 of file CreateAuthorizerRequest.h.
◆ AuthorizerTypeHasBeenSet()
|
inline |
The authorizer type. Specify REQUEST for a Lambda function using incoming request parameters. Specify JWT to use JSON Web Tokens (supported only for HTTP APIs).
Definition at line 274 of file CreateAuthorizerRequest.h.
◆ AuthorizerUriHasBeenSet()
|
inline |
The authorizer's Uniform Resource Identifier (URI). For REQUEST authorizers, this must be a well-formed Lambda function URI, for example, arn:aws:apigateway:us-west-2:lambda:path/2015-03-31/functions/arn:aws:lambda:us-west-2:<replaceable>{account_id}</replaceable>:function:<replaceable>{lambda_function_name}</replaceable>/invocations. In general, the URI has this form: arn:aws:apigateway:<replaceable>{region}</replaceable>:lambda:path/<replaceable>{service_api}</replaceable>
, where <replaceable></replaceable>{region} is the same as the region hosting the Lambda function, path indicates that the remaining substring in the URI should be treated as the path to the resource, including the initial /. For Lambda functions, this is usually of the form /2015-03-31/functions/[FunctionARN]/invocations. Supported only for REQUEST authorizers.
Definition at line 335 of file CreateAuthorizerRequest.h.
◆ EnableSimpleResponsesHasBeenSet()
|
inline |
Specifies whether a Lambda authorizer returns a response in a simple format. By default, a Lambda authorizer must return an IAM policy. If enabled, the Lambda authorizer can return a boolean value instead of an IAM policy. Supported only for HTTP APIs. To learn more, see Working with AWS Lambda authorizers for HTTP APIs
Definition at line 452 of file CreateAuthorizerRequest.h.
◆ GetApiId()
|
inline |
The API identifier.
Definition at line 45 of file CreateAuthorizerRequest.h.
◆ GetAuthorizerCredentialsArn()
|
inline |
Specifies the required credentials as an IAM role for API Gateway to invoke the authorizer. To specify an IAM role for API Gateway to assume, use the role's Amazon Resource Name (ARN). To use resource-based permissions on the Lambda function, don't specify this parameter. Supported only for REQUEST authorizers.
Definition at line 90 of file CreateAuthorizerRequest.h.
◆ GetAuthorizerPayloadFormatVersion()
|
inline |
Specifies the format of the payload sent to an HTTP API Lambda authorizer. Required for HTTP API Lambda authorizers. Supported values are 1.0 and 2.0. To learn more, see Working with AWS Lambda authorizers for HTTP APIs.
Definition at line 163 of file CreateAuthorizerRequest.h.
◆ GetAuthorizerResultTtlInSeconds()
|
inline |
The time to live (TTL) for cached authorizer results, in seconds. If it equals 0, authorization caching is disabled. If it is greater than 0, API Gateway caches authorizer responses. The maximum value is 3600, or 1 hour. Supported only for HTTP API Lambda authorizers.
Definition at line 235 of file CreateAuthorizerRequest.h.
◆ GetAuthorizerType()
|
inline |
The authorizer type. Specify REQUEST for a Lambda function using incoming request parameters. Specify JWT to use JSON Web Tokens (supported only for HTTP APIs).
Definition at line 267 of file CreateAuthorizerRequest.h.
◆ GetAuthorizerUri()
|
inline |
The authorizer's Uniform Resource Identifier (URI). For REQUEST authorizers, this must be a well-formed Lambda function URI, for example, arn:aws:apigateway:us-west-2:lambda:path/2015-03-31/functions/arn:aws:lambda:us-west-2:<replaceable>{account_id}</replaceable>:function:<replaceable>{lambda_function_name}</replaceable>/invocations. In general, the URI has this form: arn:aws:apigateway:<replaceable>{region}</replaceable>:lambda:path/<replaceable>{service_api}</replaceable>
, where <replaceable></replaceable>{region} is the same as the region hosting the Lambda function, path indicates that the remaining substring in the URI should be treated as the path to the resource, including the initial /. For Lambda functions, this is usually of the form /2015-03-31/functions/[FunctionARN]/invocations. Supported only for REQUEST authorizers.
Definition at line 319 of file CreateAuthorizerRequest.h.
◆ GetEnableSimpleResponses()
|
inline |
Specifies whether a Lambda authorizer returns a response in a simple format. By default, a Lambda authorizer must return an IAM policy. If enabled, the Lambda authorizer can return a boolean value instead of an IAM policy. Supported only for HTTP APIs. To learn more, see Working with AWS Lambda authorizers for HTTP APIs
Definition at line 442 of file CreateAuthorizerRequest.h.
◆ GetIdentitySource()
|
inline |
The identity source for which authorization is requested.
For a REQUEST authorizer, this is optional. The value is a set of one or more mapping expressions of the specified request parameters. The identity source can be headers, query string parameters, stage variables, and context parameters. For example, if an Auth header and a Name query string parameter are defined as identity sources, this value is route.request.header.Auth, route.request.querystring.Name for WebSocket APIs. For HTTP APIs, use selection expressions prefixed with $, for example, $request.header.Auth, $request.querystring.Name. These parameters are used to perform runtime validation for Lambda-based authorizers by verifying all of the identity-related request parameters are present in the request, not null, and non-empty. Only when this is true does the authorizer invoke the authorizer Lambda function. Otherwise, it returns a 401 Unauthorized response without calling the Lambda function. For HTTP APIs, identity sources are also used as the cache key when caching is enabled. To learn more, see Working with AWS Lambda authorizers for HTTP APIs.
For JWT, a single entry that specifies where to extract the JSON Web Token (JWT) from inbound requests. Currently only header-based and query parameter-based selections are supported, for example $request.header.Authorization.
Definition at line 497 of file CreateAuthorizerRequest.h.
◆ GetIdentityValidationExpression()
|
inline |
This parameter is not used.
Definition at line 695 of file CreateAuthorizerRequest.h.
◆ GetJwtConfiguration()
|
inline |
Represents the configuration of a JWT authorizer. Required for the JWT authorizer type. Supported only for HTTP APIs.
Definition at line 737 of file CreateAuthorizerRequest.h.
◆ GetName()
|
inline |
The name of the authorizer.
Definition at line 773 of file CreateAuthorizerRequest.h.
◆ GetServiceRequestName()
|
inlineoverridevirtual |
Implements Aws::AmazonWebServiceRequest.
Definition at line 37 of file CreateAuthorizerRequest.h.
◆ IdentitySourceHasBeenSet()
|
inline |
The identity source for which authorization is requested.
For a REQUEST authorizer, this is optional. The value is a set of one or more mapping expressions of the specified request parameters. The identity source can be headers, query string parameters, stage variables, and context parameters. For example, if an Auth header and a Name query string parameter are defined as identity sources, this value is route.request.header.Auth, route.request.querystring.Name for WebSocket APIs. For HTTP APIs, use selection expressions prefixed with $, for example, $request.header.Auth, $request.querystring.Name. These parameters are used to perform runtime validation for Lambda-based authorizers by verifying all of the identity-related request parameters are present in the request, not null, and non-empty. Only when this is true does the authorizer invoke the authorizer Lambda function. Otherwise, it returns a 401 Unauthorized response without calling the Lambda function. For HTTP APIs, identity sources are also used as the cache key when caching is enabled. To learn more, see Working with AWS Lambda authorizers for HTTP APIs.
For JWT, a single entry that specifies where to extract the JSON Web Token (JWT) from inbound requests. Currently only header-based and query parameter-based selections are supported, for example $request.header.Authorization.
Definition at line 521 of file CreateAuthorizerRequest.h.
◆ IdentityValidationExpressionHasBeenSet()
|
inline |
This parameter is not used.
Definition at line 700 of file CreateAuthorizerRequest.h.
◆ JwtConfigurationHasBeenSet()
|
inline |
Represents the configuration of a JWT authorizer. Required for the JWT authorizer type. Supported only for HTTP APIs.
Definition at line 743 of file CreateAuthorizerRequest.h.
◆ NameHasBeenSet()
|
inline |
The name of the authorizer.
Definition at line 778 of file CreateAuthorizerRequest.h.
◆ SerializePayload()
|
overridevirtual |
Convert payload into String.
Implements Aws::AmazonSerializableWebServiceRequest.
◆ SetApiId() [1/3]
|
inline |
The API identifier.
Definition at line 55 of file CreateAuthorizerRequest.h.
◆ SetApiId() [2/3]
|
inline |
The API identifier.
Definition at line 60 of file CreateAuthorizerRequest.h.
◆ SetApiId() [3/3]
|
inline |
The API identifier.
Definition at line 65 of file CreateAuthorizerRequest.h.
◆ SetAuthorizerCredentialsArn() [1/3]
|
inline |
Specifies the required credentials as an IAM role for API Gateway to invoke the authorizer. To specify an IAM role for API Gateway to assume, use the role's Amazon Resource Name (ARN). To use resource-based permissions on the Lambda function, don't specify this parameter. Supported only for REQUEST authorizers.
Definition at line 108 of file CreateAuthorizerRequest.h.
◆ SetAuthorizerCredentialsArn() [2/3]
|
inline |
Specifies the required credentials as an IAM role for API Gateway to invoke the authorizer. To specify an IAM role for API Gateway to assume, use the role's Amazon Resource Name (ARN). To use resource-based permissions on the Lambda function, don't specify this parameter. Supported only for REQUEST authorizers.
Definition at line 117 of file CreateAuthorizerRequest.h.
◆ SetAuthorizerCredentialsArn() [3/3]
|
inline |
Specifies the required credentials as an IAM role for API Gateway to invoke the authorizer. To specify an IAM role for API Gateway to assume, use the role's Amazon Resource Name (ARN). To use resource-based permissions on the Lambda function, don't specify this parameter. Supported only for REQUEST authorizers.
Definition at line 126 of file CreateAuthorizerRequest.h.
◆ SetAuthorizerPayloadFormatVersion() [1/3]
|
inline |
Specifies the format of the payload sent to an HTTP API Lambda authorizer. Required for HTTP API Lambda authorizers. Supported values are 1.0 and 2.0. To learn more, see Working with AWS Lambda authorizers for HTTP APIs.
Definition at line 181 of file CreateAuthorizerRequest.h.
◆ SetAuthorizerPayloadFormatVersion() [2/3]
|
inline |
Specifies the format of the payload sent to an HTTP API Lambda authorizer. Required for HTTP API Lambda authorizers. Supported values are 1.0 and 2.0. To learn more, see Working with AWS Lambda authorizers for HTTP APIs.
Definition at line 190 of file CreateAuthorizerRequest.h.
◆ SetAuthorizerPayloadFormatVersion() [3/3]
|
inline |
Specifies the format of the payload sent to an HTTP API Lambda authorizer. Required for HTTP API Lambda authorizers. Supported values are 1.0 and 2.0. To learn more, see Working with AWS Lambda authorizers for HTTP APIs.
Definition at line 199 of file CreateAuthorizerRequest.h.
◆ SetAuthorizerResultTtlInSeconds()
|
inline |
The time to live (TTL) for cached authorizer results, in seconds. If it equals 0, authorization caching is disabled. If it is greater than 0, API Gateway caches authorizer responses. The maximum value is 3600, or 1 hour. Supported only for HTTP API Lambda authorizers.
Definition at line 251 of file CreateAuthorizerRequest.h.
◆ SetAuthorizerType() [1/2]
|
inline |
The authorizer type. Specify REQUEST for a Lambda function using incoming request parameters. Specify JWT to use JSON Web Tokens (supported only for HTTP APIs).
Definition at line 281 of file CreateAuthorizerRequest.h.
◆ SetAuthorizerType() [2/2]
|
inline |
The authorizer type. Specify REQUEST for a Lambda function using incoming request parameters. Specify JWT to use JSON Web Tokens (supported only for HTTP APIs).
Definition at line 288 of file CreateAuthorizerRequest.h.
◆ SetAuthorizerUri() [1/3]
|
inline |
The authorizer's Uniform Resource Identifier (URI). For REQUEST authorizers, this must be a well-formed Lambda function URI, for example, arn:aws:apigateway:us-west-2:lambda:path/2015-03-31/functions/arn:aws:lambda:us-west-2:<replaceable>{account_id}</replaceable>:function:<replaceable>{lambda_function_name}</replaceable>/invocations. In general, the URI has this form: arn:aws:apigateway:<replaceable>{region}</replaceable>:lambda:path/<replaceable>{service_api}</replaceable>
, where <replaceable></replaceable>{region} is the same as the region hosting the Lambda function, path indicates that the remaining substring in the URI should be treated as the path to the resource, including the initial /. For Lambda functions, this is usually of the form /2015-03-31/functions/[FunctionARN]/invocations. Supported only for REQUEST authorizers.
Definition at line 351 of file CreateAuthorizerRequest.h.
◆ SetAuthorizerUri() [2/3]
|
inline |
The authorizer's Uniform Resource Identifier (URI). For REQUEST authorizers, this must be a well-formed Lambda function URI, for example, arn:aws:apigateway:us-west-2:lambda:path/2015-03-31/functions/arn:aws:lambda:us-west-2:<replaceable>{account_id}</replaceable>:function:<replaceable>{lambda_function_name}</replaceable>/invocations. In general, the URI has this form: arn:aws:apigateway:<replaceable>{region}</replaceable>:lambda:path/<replaceable>{service_api}</replaceable>
, where <replaceable></replaceable>{region} is the same as the region hosting the Lambda function, path indicates that the remaining substring in the URI should be treated as the path to the resource, including the initial /. For Lambda functions, this is usually of the form /2015-03-31/functions/[FunctionARN]/invocations. Supported only for REQUEST authorizers.
Definition at line 367 of file CreateAuthorizerRequest.h.
◆ SetAuthorizerUri() [3/3]
|
inline |
The authorizer's Uniform Resource Identifier (URI). For REQUEST authorizers, this must be a well-formed Lambda function URI, for example, arn:aws:apigateway:us-west-2:lambda:path/2015-03-31/functions/arn:aws:lambda:us-west-2:<replaceable>{account_id}</replaceable>:function:<replaceable>{lambda_function_name}</replaceable>/invocations. In general, the URI has this form: arn:aws:apigateway:<replaceable>{region}</replaceable>:lambda:path/<replaceable>{service_api}</replaceable>
, where <replaceable></replaceable>{region} is the same as the region hosting the Lambda function, path indicates that the remaining substring in the URI should be treated as the path to the resource, including the initial /. For Lambda functions, this is usually of the form /2015-03-31/functions/[FunctionARN]/invocations. Supported only for REQUEST authorizers.
Definition at line 383 of file CreateAuthorizerRequest.h.
◆ SetEnableSimpleResponses()
|
inline |
Specifies whether a Lambda authorizer returns a response in a simple format. By default, a Lambda authorizer must return an IAM policy. If enabled, the Lambda authorizer can return a boolean value instead of an IAM policy. Supported only for HTTP APIs. To learn more, see Working with AWS Lambda authorizers for HTTP APIs
Definition at line 462 of file CreateAuthorizerRequest.h.
◆ SetIdentitySource() [1/2]
|
inline |
The identity source for which authorization is requested.
For a REQUEST authorizer, this is optional. The value is a set of one or more mapping expressions of the specified request parameters. The identity source can be headers, query string parameters, stage variables, and context parameters. For example, if an Auth header and a Name query string parameter are defined as identity sources, this value is route.request.header.Auth, route.request.querystring.Name for WebSocket APIs. For HTTP APIs, use selection expressions prefixed with $, for example, $request.header.Auth, $request.querystring.Name. These parameters are used to perform runtime validation for Lambda-based authorizers by verifying all of the identity-related request parameters are present in the request, not null, and non-empty. Only when this is true does the authorizer invoke the authorizer Lambda function. Otherwise, it returns a 401 Unauthorized response without calling the Lambda function. For HTTP APIs, identity sources are also used as the cache key when caching is enabled. To learn more, see Working with AWS Lambda authorizers for HTTP APIs.
For JWT, a single entry that specifies where to extract the JSON Web Token (JWT) from inbound requests. Currently only header-based and query parameter-based selections are supported, for example $request.header.Authorization.
Definition at line 545 of file CreateAuthorizerRequest.h.
◆ SetIdentitySource() [2/2]
|
inline |
The identity source for which authorization is requested.
For a REQUEST authorizer, this is optional. The value is a set of one or more mapping expressions of the specified request parameters. The identity source can be headers, query string parameters, stage variables, and context parameters. For example, if an Auth header and a Name query string parameter are defined as identity sources, this value is route.request.header.Auth, route.request.querystring.Name for WebSocket APIs. For HTTP APIs, use selection expressions prefixed with $, for example, $request.header.Auth, $request.querystring.Name. These parameters are used to perform runtime validation for Lambda-based authorizers by verifying all of the identity-related request parameters are present in the request, not null, and non-empty. Only when this is true does the authorizer invoke the authorizer Lambda function. Otherwise, it returns a 401 Unauthorized response without calling the Lambda function. For HTTP APIs, identity sources are also used as the cache key when caching is enabled. To learn more, see Working with AWS Lambda authorizers for HTTP APIs.
For JWT, a single entry that specifies where to extract the JSON Web Token (JWT) from inbound requests. Currently only header-based and query parameter-based selections are supported, for example $request.header.Authorization.
Definition at line 569 of file CreateAuthorizerRequest.h.
◆ SetIdentityValidationExpression() [1/3]
|
inline |
This parameter is not used.
Definition at line 705 of file CreateAuthorizerRequest.h.
◆ SetIdentityValidationExpression() [2/3]
|
inline |
This parameter is not used.
Definition at line 710 of file CreateAuthorizerRequest.h.
◆ SetIdentityValidationExpression() [3/3]
|
inline |
This parameter is not used.
Definition at line 715 of file CreateAuthorizerRequest.h.
◆ SetJwtConfiguration() [1/2]
|
inline |
Represents the configuration of a JWT authorizer. Required for the JWT authorizer type. Supported only for HTTP APIs.
Definition at line 749 of file CreateAuthorizerRequest.h.
◆ SetJwtConfiguration() [2/2]
|
inline |
Represents the configuration of a JWT authorizer. Required for the JWT authorizer type. Supported only for HTTP APIs.
Definition at line 755 of file CreateAuthorizerRequest.h.
◆ SetName() [1/3]
|
inline |
The name of the authorizer.
Definition at line 783 of file CreateAuthorizerRequest.h.
◆ SetName() [2/3]
|
inline |
The name of the authorizer.
Definition at line 788 of file CreateAuthorizerRequest.h.
◆ SetName() [3/3]
|
inline |
The name of the authorizer.
Definition at line 793 of file CreateAuthorizerRequest.h.
◆ WithApiId() [1/3]
|
inline |
The API identifier.
Definition at line 70 of file CreateAuthorizerRequest.h.
◆ WithApiId() [2/3]
|
inline |
The API identifier.
Definition at line 75 of file CreateAuthorizerRequest.h.
◆ WithApiId() [3/3]
|
inline |
The API identifier.
Definition at line 80 of file CreateAuthorizerRequest.h.
◆ WithAuthorizerCredentialsArn() [1/3]
|
inline |
Specifies the required credentials as an IAM role for API Gateway to invoke the authorizer. To specify an IAM role for API Gateway to assume, use the role's Amazon Resource Name (ARN). To use resource-based permissions on the Lambda function, don't specify this parameter. Supported only for REQUEST authorizers.
Definition at line 135 of file CreateAuthorizerRequest.h.
◆ WithAuthorizerCredentialsArn() [2/3]
|
inline |
Specifies the required credentials as an IAM role for API Gateway to invoke the authorizer. To specify an IAM role for API Gateway to assume, use the role's Amazon Resource Name (ARN). To use resource-based permissions on the Lambda function, don't specify this parameter. Supported only for REQUEST authorizers.
Definition at line 144 of file CreateAuthorizerRequest.h.
◆ WithAuthorizerCredentialsArn() [3/3]
|
inline |
Specifies the required credentials as an IAM role for API Gateway to invoke the authorizer. To specify an IAM role for API Gateway to assume, use the role's Amazon Resource Name (ARN). To use resource-based permissions on the Lambda function, don't specify this parameter. Supported only for REQUEST authorizers.
Definition at line 153 of file CreateAuthorizerRequest.h.
◆ WithAuthorizerPayloadFormatVersion() [1/3]
|
inline |
Specifies the format of the payload sent to an HTTP API Lambda authorizer. Required for HTTP API Lambda authorizers. Supported values are 1.0 and 2.0. To learn more, see Working with AWS Lambda authorizers for HTTP APIs.
Definition at line 208 of file CreateAuthorizerRequest.h.
◆ WithAuthorizerPayloadFormatVersion() [2/3]
|
inline |
Specifies the format of the payload sent to an HTTP API Lambda authorizer. Required for HTTP API Lambda authorizers. Supported values are 1.0 and 2.0. To learn more, see Working with AWS Lambda authorizers for HTTP APIs.
Definition at line 217 of file CreateAuthorizerRequest.h.
◆ WithAuthorizerPayloadFormatVersion() [3/3]
|
inline |
Specifies the format of the payload sent to an HTTP API Lambda authorizer. Required for HTTP API Lambda authorizers. Supported values are 1.0 and 2.0. To learn more, see Working with AWS Lambda authorizers for HTTP APIs.
Definition at line 226 of file CreateAuthorizerRequest.h.
◆ WithAuthorizerResultTtlInSeconds()
|
inline |
The time to live (TTL) for cached authorizer results, in seconds. If it equals 0, authorization caching is disabled. If it is greater than 0, API Gateway caches authorizer responses. The maximum value is 3600, or 1 hour. Supported only for HTTP API Lambda authorizers.
Definition at line 259 of file CreateAuthorizerRequest.h.
◆ WithAuthorizerType() [1/2]
|
inline |
The authorizer type. Specify REQUEST for a Lambda function using incoming request parameters. Specify JWT to use JSON Web Tokens (supported only for HTTP APIs).
Definition at line 295 of file CreateAuthorizerRequest.h.
◆ WithAuthorizerType() [2/2]
|
inline |
The authorizer type. Specify REQUEST for a Lambda function using incoming request parameters. Specify JWT to use JSON Web Tokens (supported only for HTTP APIs).
Definition at line 302 of file CreateAuthorizerRequest.h.
◆ WithAuthorizerUri() [1/3]
|
inline |
The authorizer's Uniform Resource Identifier (URI). For REQUEST authorizers, this must be a well-formed Lambda function URI, for example, arn:aws:apigateway:us-west-2:lambda:path/2015-03-31/functions/arn:aws:lambda:us-west-2:<replaceable>{account_id}</replaceable>:function:<replaceable>{lambda_function_name}</replaceable>/invocations. In general, the URI has this form: arn:aws:apigateway:<replaceable>{region}</replaceable>:lambda:path/<replaceable>{service_api}</replaceable>
, where <replaceable></replaceable>{region} is the same as the region hosting the Lambda function, path indicates that the remaining substring in the URI should be treated as the path to the resource, including the initial /. For Lambda functions, this is usually of the form /2015-03-31/functions/[FunctionARN]/invocations. Supported only for REQUEST authorizers.
Definition at line 399 of file CreateAuthorizerRequest.h.
◆ WithAuthorizerUri() [2/3]
|
inline |
The authorizer's Uniform Resource Identifier (URI). For REQUEST authorizers, this must be a well-formed Lambda function URI, for example, arn:aws:apigateway:us-west-2:lambda:path/2015-03-31/functions/arn:aws:lambda:us-west-2:<replaceable>{account_id}</replaceable>:function:<replaceable>{lambda_function_name}</replaceable>/invocations. In general, the URI has this form: arn:aws:apigateway:<replaceable>{region}</replaceable>:lambda:path/<replaceable>{service_api}</replaceable>
, where <replaceable></replaceable>{region} is the same as the region hosting the Lambda function, path indicates that the remaining substring in the URI should be treated as the path to the resource, including the initial /. For Lambda functions, this is usually of the form /2015-03-31/functions/[FunctionARN]/invocations. Supported only for REQUEST authorizers.
Definition at line 415 of file CreateAuthorizerRequest.h.
◆ WithAuthorizerUri() [3/3]
|
inline |
The authorizer's Uniform Resource Identifier (URI). For REQUEST authorizers, this must be a well-formed Lambda function URI, for example, arn:aws:apigateway:us-west-2:lambda:path/2015-03-31/functions/arn:aws:lambda:us-west-2:<replaceable>{account_id}</replaceable>:function:<replaceable>{lambda_function_name}</replaceable>/invocations. In general, the URI has this form: arn:aws:apigateway:<replaceable>{region}</replaceable>:lambda:path/<replaceable>{service_api}</replaceable>
, where <replaceable></replaceable>{region} is the same as the region hosting the Lambda function, path indicates that the remaining substring in the URI should be treated as the path to the resource, including the initial /. For Lambda functions, this is usually of the form /2015-03-31/functions/[FunctionARN]/invocations. Supported only for REQUEST authorizers.
Definition at line 431 of file CreateAuthorizerRequest.h.
◆ WithEnableSimpleResponses()
|
inline |
Specifies whether a Lambda authorizer returns a response in a simple format. By default, a Lambda authorizer must return an IAM policy. If enabled, the Lambda authorizer can return a boolean value instead of an IAM policy. Supported only for HTTP APIs. To learn more, see Working with AWS Lambda authorizers for HTTP APIs
Definition at line 472 of file CreateAuthorizerRequest.h.
◆ WithIdentitySource() [1/2]
|
inline |
The identity source for which authorization is requested.
For a REQUEST authorizer, this is optional. The value is a set of one or more mapping expressions of the specified request parameters. The identity source can be headers, query string parameters, stage variables, and context parameters. For example, if an Auth header and a Name query string parameter are defined as identity sources, this value is route.request.header.Auth, route.request.querystring.Name for WebSocket APIs. For HTTP APIs, use selection expressions prefixed with $, for example, $request.header.Auth, $request.querystring.Name. These parameters are used to perform runtime validation for Lambda-based authorizers by verifying all of the identity-related request parameters are present in the request, not null, and non-empty. Only when this is true does the authorizer invoke the authorizer Lambda function. Otherwise, it returns a 401 Unauthorized response without calling the Lambda function. For HTTP APIs, identity sources are also used as the cache key when caching is enabled. To learn more, see Working with AWS Lambda authorizers for HTTP APIs.
For JWT, a single entry that specifies where to extract the JSON Web Token (JWT) from inbound requests. Currently only header-based and query parameter-based selections are supported, for example $request.header.Authorization.
Definition at line 593 of file CreateAuthorizerRequest.h.
◆ WithIdentitySource() [2/2]
|
inline |
The identity source for which authorization is requested.
For a REQUEST authorizer, this is optional. The value is a set of one or more mapping expressions of the specified request parameters. The identity source can be headers, query string parameters, stage variables, and context parameters. For example, if an Auth header and a Name query string parameter are defined as identity sources, this value is route.request.header.Auth, route.request.querystring.Name for WebSocket APIs. For HTTP APIs, use selection expressions prefixed with $, for example, $request.header.Auth, $request.querystring.Name. These parameters are used to perform runtime validation for Lambda-based authorizers by verifying all of the identity-related request parameters are present in the request, not null, and non-empty. Only when this is true does the authorizer invoke the authorizer Lambda function. Otherwise, it returns a 401 Unauthorized response without calling the Lambda function. For HTTP APIs, identity sources are also used as the cache key when caching is enabled. To learn more, see Working with AWS Lambda authorizers for HTTP APIs.
For JWT, a single entry that specifies where to extract the JSON Web Token (JWT) from inbound requests. Currently only header-based and query parameter-based selections are supported, for example $request.header.Authorization.
Definition at line 617 of file CreateAuthorizerRequest.h.
◆ WithIdentityValidationExpression() [1/3]
|
inline |
This parameter is not used.
Definition at line 720 of file CreateAuthorizerRequest.h.
◆ WithIdentityValidationExpression() [2/3]
|
inline |
This parameter is not used.
Definition at line 725 of file CreateAuthorizerRequest.h.
◆ WithIdentityValidationExpression() [3/3]
|
inline |
This parameter is not used.
Definition at line 730 of file CreateAuthorizerRequest.h.
◆ WithJwtConfiguration() [1/2]
|
inline |
Represents the configuration of a JWT authorizer. Required for the JWT authorizer type. Supported only for HTTP APIs.
Definition at line 761 of file CreateAuthorizerRequest.h.
◆ WithJwtConfiguration() [2/2]
|
inline |
Represents the configuration of a JWT authorizer. Required for the JWT authorizer type. Supported only for HTTP APIs.
Definition at line 767 of file CreateAuthorizerRequest.h.
◆ WithName() [1/3]
|
inline |
The name of the authorizer.
Definition at line 798 of file CreateAuthorizerRequest.h.
◆ WithName() [2/3]
|
inline |
The name of the authorizer.
Definition at line 803 of file CreateAuthorizerRequest.h.
◆ WithName() [3/3]
|
inline |
The name of the authorizer.
Definition at line 808 of file CreateAuthorizerRequest.h.
The documentation for this class was generated from the following file:
- aws-cpp-sdk-apigatewayv2/include/aws/apigatewayv2/model/CreateAuthorizerRequest.h
