Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- exports.handler = (event, context, callback) => {
- const token = event.authorizationToken;
- // Use token
- if (token === 'allow') {
- const policy = genPolicy('allow', event.methodArn);
- const principalId = 'aflaf78fd7afalnv';
- const context = {
- simpleAuth: true
- };
- const response = {
- principalId: principalId,
- policyDocument: policy,
- context: context
- };
- callback(null, response);
- } else if (token == 'deny') {
- const policy = genPolicy('deny', event.methodArn);
- const principalId = 'aflaf78fd7afalnv';
- const context = {
- simpleAuth: true
- };
- const response = {
- principalId: principalId,
- policyDocument: policy,
- context: context
- };
- callback(null, response);
- } else {
- callback('Unauthorized');
- }
- };
- function genPolicy(effect, resource) {
- const policy = {};
- policy.Version = '2012-10-17';
- policy.Statement = [];
- const stmt = {};
- stmt.Action = 'execute-api:Invoke';
- stmt.Effect = effect;
- stmt.Resource = resource;
- policy.Statement.push(stmt);
- return policy;
- }
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
