bzcorn/lambda_authorizer_okta.js

## lambda_authorizer_okta.js
"use strict";
const OktaJwtVerifier = require("@okta/jwt-verifier");

console.log("Loading function");

const issuer = "https://dev-XXXXX.oktapreview.com/oauth2/default";
const cid = "";

exports.handler = (event, context, callback) => {
    const verifier = new OktaJwtVerifier({
        issuer: issuer,
        assertClaims: {
            aud: "api://default"
            cid: cid
        }
    });

    const accessTokenString = event.key1
    // const accessTokenString = event.authorizationToken
    // const methodArn = event.methodArn

    verifier
        .verifyAccessToken(accessTokenString)
        .then(jwt => {
            // the token is valid
            // TODO: Generate AWS IAM Policy
            console.log(jwt.claims);
            callback(null, response);
        })
        .catch(err => {
            // something went horribly wrong
            console.log("Error found!");
            console.log(err);
            callback("Unauthorized", response);
        });
    Promise.all([verifier]).then(function(values) {
    });
};
	"use strict";
	const OktaJwtVerifier = require("@okta/jwt-verifier");

	console.log("Loading function");

	const issuer = "https://dev-XXXXX.oktapreview.com/oauth2/default";
	const cid = "";

	exports.handler = (event, context, callback) => {
	const verifier = new OktaJwtVerifier({
	issuer: issuer,
	assertClaims: {
	aud: "api://default"
	cid: cid
	}
	});

	const accessTokenString = event.key1
	// const accessTokenString = event.authorizationToken
	// const methodArn = event.methodArn

	verifier
	.verifyAccessToken(accessTokenString)
	.then(jwt => {
	// the token is valid
	// TODO: Generate AWS IAM Policy
	console.log(jwt.claims);
	callback(null, response);
	})
	.catch(err => {
	// something went horribly wrong
	console.log("Error found!");
	console.log(err);
	callback("Unauthorized", response);
	});
	Promise.all([verifier]).then(function(values) {
	});
	};