Retrieving cognito user ID in Lambda
I'm writing a Lambda function for a pre-signup trigger on my Cognito pool.
I want to copy the user details to MongoDB when a user signs up.
Therefore, I need access to context.authorizer.claims.sub, the user's Cognito ID.
So far, I've made an Authorizer:
And an ANY method.
After reading this doc, it looks like I need to add context.authorizer.claims.sub in a body mapping template.
However, there seems to be no option on integration request to add a body mapping template
There might be a better way to access the user's Cognito ID, but this seems like it should work.
EDIT
My Lambda config
console.log(context)
2021-05-13T13:02:56.188Z 75c67d1e-0f2e-49c5-be2f-d19affb2dd2b INFO {
callbackWaitsForEmptyEventLoop: [Getter/Setter],
succeed: [Function (anonymous)],
fail: [Function (anonymous)],
done: [Function (anonymous)],
functionVersion: '$LATEST',
functionName: 'AuthUtils',
memoryLimitInMB: '128',
logGroupName: '/aws/lambda/AuthUtils',
logStreamName: '2021/05/13/[$LATEST]920d08ed47584c16abd89ffd5c6c12da',
clientContext: undefined,
identity: undefined,
invokedFunctionArn: 'arn:aws:lambda:eu-west-2:022228979186:function:AuthUtils',
awsRequestId: '75c67d1e-0f2e-49c5-be2f-d19affb2dd2b',
getRemainingTimeInMillis: [Function: getRemainingTimeInMillis]
}
You can't add integration request mapping to a lambda proxy integration. You can access the request context as event.requestContext in your handler.
The sub value can be accessed as event.requestContext.authorizer.claims.sub
- AWS Cloudwatch agent config file removed after startup
- AWS lambda SQS does not allow to process 1 message per 1 invocation
- How can I create a TLS/SSL connection to a mongodb instance on AWS with a certificate made by certificate manager? Health check failed
- Cloudfront redirect when signed cookies not present
- AWS Lambda and DynamoDB - updatetItem is not a function
- AWS ElasticBeanstalk EC2 Termination Protection
- Allowing AWS Cognito Users to authentication to JIRA via SAML/SSO (Domain Not found)
- Install pgAgent on AWS RDS for Postgres
- Row was updated or deleted by another transaction (or unsaved-value mapping was incorrect)
- List all parameters in AWS SSM Parameter Store
- AWS push_down_predicate not working with DynamoDb
- localstack AWS S3 javascript error : getaddrinfo ENOTFOUND bucketname.localhost
- AWS ECS agent won't start
- AWS VPC (Virtual Private Cloud), rapidly increasing expenses
- SemaphoreCI OIDC AWS connection
- Can't delete AWS internet Gateway
- How to provide multiple StringNotEquals conditions in AWS policy?
- Not able to get ECS fargate metrics on Datadog
- 502 "Internal Server Error" with API Gateway + Lambda when deploying
- Java Springboot application not able to connect to AWS Elasticache Valkey Cache (Serverless)
- Splitting PDF with PyPDF2 in Lambda function
- "libdbus-glib-1.so.2: cannot open shared object file: No such file or directory"
- Partial credentials found in env, missing: AWS_SECRET_ACCESS_KEY
- Best way to store Firebase admin private key file for AWS lambda
- AWS Elastic Beanstalk and Secret Manager
- Unable to upload data using sagemaker_session.upload_data in s3 bucket that I created, it is getting stored in default s3 bucket
- Parse Aws IoT message in python
- How to temporarily switch profiles for AWS CLI?
- Python Sqlalchemy insert data into AWS Redshift
- Using AWS Bedrock Prompt Management with InvokeCommand