UNPKG

@aws-cdk/aws-apigateway

Version:

The CDK Construct Library for AWS::ApiGateway

github.com/aws/aws-cdk

aws/aws-cdk

69 lines (68 loc) 2.46 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
import * as cognito from '@aws-cdk/aws-cognito'; import { Duration } from '@aws-cdk/core'; import { Construct } from 'constructs'; import { Authorizer, IAuthorizer } from '../authorizer'; import { AuthorizationType } from '../method'; import { IRestApi } from '../restapi'; /** * Properties for CognitoUserPoolsAuthorizer */ export interface CognitoUserPoolsAuthorizerProps { /** * An optional human friendly name for the authorizer. Note that, this is not the primary identifier of the authorizer. * * @default - the unique construct ID */ readonly authorizerName?: string; /** * The user pools to associate with this authorizer. */ readonly cognitoUserPools: cognito.IUserPool[]; /** * How long APIGateway should cache the results. Max 1 hour. * Disable caching by setting this to 0. * * @default Duration.minutes(5) */ readonly resultsCacheTtl?: Duration; /** * The request header mapping expression for the bearer token. This is typically passed as part of the header, in which case * this should be `method.request.header.Authorizer` where Authorizer is the header containing the bearer token. * @see https://docs.aws.amazon.com/apigateway/api-reference/link-relation/authorizer-create/#identitySource * @default `IdentitySource.header('Authorization')` */ readonly identitySource?: string; } /** * Cognito user pools based custom authorizer * * @resource AWS::ApiGateway::Authorizer */ export declare class CognitoUserPoolsAuthorizer extends Authorizer implements IAuthorizer { /** * The id of the authorizer. * @attribute */ readonly authorizerId: string; /** * The ARN of the authorizer to be used in permission policies, such as IAM and resource-based grants. * @attribute */ readonly authorizerArn: string; /** * The authorization type of this authorizer. */ readonly authorizationType?: AuthorizationType; private restApiId?; constructor(scope: Construct, id: string, props: CognitoUserPoolsAuthorizerProps); /** * Attaches this authorizer to a specific REST API. * @internal */ _attachToApi(restApi: IRestApi): void; /** * Returns a token that resolves to the Rest Api Id at the time of synthesis. * Throws an error, during token resolution, if no RestApi is attached to this authorizer. */ private lazyRestApiId; }