Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Submission of Cloud Developer Project 4 - Serverless app #14

Closed
wants to merge 18 commits into from
+570 −45
Closed

Submission of Cloud Developer Project 4 - Serverless app #14

Changes from 1 commit
Commits
Show all changes
18 commits
Select commit Hold shift + click to select a range
7381469
feat: add additional helper functions
Krarid Oct 9, 2024
226e243
feat: GET TODOs
Krarid Oct 11, 2024
511e850
feat: Create TODOs
Krarid Oct 11, 2024
f76381b
feat: Delete TODOs
Krarid Oct 13, 2024
9a73ad8
feat: Update TODOs
Krarid Oct 13, 2024
9f2400f
refactor: Refactor functions in serverless with individual iamRoleSta…
Krarid Oct 13, 2024
567a228
feat: Add middy to all lambda functions
Krarid Oct 13, 2024
a022302
refactor: GET Todos by query() instead of scan() method
Krarid Oct 16, 2024
e6d0df5
refactor: Get user ID in all TODO endpoints
Krarid Oct 16, 2024
a23c3e1
feat: Implement Authentication and Authorization in all TODO endpoints
Krarid Oct 16, 2024
3415818
refactor: Replace domain in all React files that call lambda functions
Krarid Oct 16, 2024
dfa5fb6
feat: Upload images for TODOs
Krarid Oct 19, 2024
6b29e5b
refactor: Separation of concerns
Krarid Oct 21, 2024
672699f
feat: Add request validation using schemas
Krarid Oct 21, 2024
36b4588
feat: Insert logs for debugging purposes
Krarid Oct 21, 2024
1c190e6
feat: Enable AWS X-Ray Tracing
Krarid Oct 21, 2024
54b6cc5
update: Update environmental variables
Krarid Oct 21, 2024
29948fe
feat: Add image of the project working
Krarid Oct 21, 2024
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
Prev Previous commit
Next Next commit
feat: Implement Authentication and Authorization in all TODO endpoints
@Krarid
Krarid committed Oct 16, 2024
commit a23c3e1386e46ac56c051ac0a0ab40b153af5ba2
10 changes: 7 additions & 3 deletions starter/backend/serverless.yml
View file
Original file line number Diff line number Diff line change
@@ -18,27 +18,29 @@ provider:

functions:

#Auth:
# handler: src/lambda/auth/auth0Authorizer.handler
Auth:
handler: src/lambda/auth/auth0Authorizer.handler

GetTodos:
handler: src/lambda/http/getTodos.handler
events:
- http:
method: get
authorizer: Auth
path: todos
cors: true
iamRoleStatements:
- Effect: Allow
Action:
- dynamodb:Scan
- dynamodb:Query
Resource: arn:aws:dynamodb:${self:provider.region}:*:table/${self:provider.environment.TODOS_TABLE}

CreateTodo:
handler: src/lambda/http/createTodo.handler
events:
- http:
method: post
authorizer: Auth
path: todos
cors: true
iamRoleStatements:
@@ -52,6 +54,7 @@ functions:
events:
- http:
method: patch
authorizer: Auth
path: todos/{todoId}
cors: true
iamRoleStatements:
@@ -65,6 +68,7 @@ functions:
events:
- http:
method: delete
authorizer: Auth
path: todos/{todoId}
cors: true
iamRoleStatements:
17 changes: 14 additions & 3 deletions starter/backend/src/lambda/auth/auth0Authorizer.mjs
View file
Original file line number Diff line number Diff line change
@@ -4,7 +4,7 @@ import { createLogger } from '../../utils/logger.mjs'

const logger = createLogger('auth')

const jwksUrl = 'https://test-endpoint.auth0.com/.well-known/jwks.json'
const jwksUrl = 'https://dev-eftbk57y7yyraxsa.us.auth0.com/.well-known/jwks.json'

export async function handler(event) {
try {
@@ -43,11 +43,22 @@ export async function handler(event) {
}

async function verifyToken(authHeader) {

const token = getToken(authHeader)
const jwt = jsonwebtoken.decode(token, { complete: true })

// TODO: Implement token verification
return undefined;
const response = await Axios.get(jwksUrl)
const keys = response.data.keys
const signingKeys = keys.find(key => key.kid === jwt.header.kid)

if(!signingKeys) {
throw new Error('No certification was found in jwks url')
}

const pemData = signingKeys.x5c[0]
const cert = `-----BEGIN CERTIFICATE-----\n${pemData}\n-----END CERTIFICATE-----`

return jsonwebtoken.verify(token, cert, { algorithms: ['RS256'] })
}

function getToken(authHeader) {