MCR-3835: Attach lambda authorizer to api gateway endpoint #2152
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
Summary
New
graphql_external
endpoint created. This is a copy of thegraphql
endpoint with the following changes:Only has a get method. I believe we said we would limit 3rd parties to queries for now.I added in the post method because of the language in https://qmacbis.atlassian.net/browse/MCR-3836 seems like it's something we will eventually implementv1/graphql/external
per eng notes on the ticketRelated issues
https://qmacbis.atlassian.net/browse/MCR-3835
QA guidance
I tested locally with curl
With a valid token an apollo error is returned
Context creation failed: Log: placing user in gql context failed"," at ApolloServer.context
.I believe this error will resolve after https://qmacbis.atlassian.net/browse/MCR-3836 is completed
With an invalid token a permission error is returned
"error":"Forbidden","message":"No principalId set on the Response"