个人中心
文章发布
退出
作者热门文章
- html - 出于某种原因,IE8 对我的 Sass 文件中继承的 html5 CSS 不友好?
- JMeter 在响应断言中使用 span 标签的问题
- html - 在 :hover and :active? 上具有不同效果的 CSS 动画
- html - 相对于居中的 html 内容固定的 CSS 重复背景?
32
4
我正在尝试使用 cloudformation 通过代理创建一个指向 lambda 的 api 网关:
首先,我创建我的根目录并授予它权限:
RestApiHamed:
Type: 'AWS::ApiGateway::RestApi'
Properties:
Name: hamed-proxy-test
APIGatewayToLambdaPermission:
Type: AWS::Lambda::Permission
DependsOn: RestApiHamed
Properties:
Action: lambda:invokeFunction
FunctionName: test-stg1-lambda-product-get
Principal: apigateway.amazonaws.com
SourceArn: #!Sub "arn:aws:execute-
api:${AWS::Region}:${AWS::AccountId}:RestApiHamed/*"
Fn::Join:
- ''
- - 'arn:aws:execute-api:'
- Ref: AWS::Region
- ":"
- Ref: AWS::AccountId
- ":"
- Ref: RestApiHamed
- "/*"
然后我创建我的方法:
ChannelsStoriesGetMethod:
Type: AWS::ApiGateway::Method
DependsOn: APIGatewayToLambdaPermission
Properties:
AuthorizationType: NONE
HttpMethod: GET
Integration:
Type: HTTP
IntegrationHttpMethod: GET
IntegrationResponses:
-
StatusCode: 200
Type: AWS_PROXY
Uri: !Sub arn:aws:apigateway:${AWS::Region}:lambda:path/2015-03-31/functions/arn:aws:lambda:us-east-1:048947288163:function:zuora-stg1-lambda-product-get/invocations
ResourceId: !Ref ChannelsStoriesPath
RestApiId:
Ref: RestApiHamed
MethodResponses:
- StatusCode: 200
ResponseParameters:
method.response.header.Access-Control-Allow-Origin: true
现在,当我运行 cloudformation 时,它成功了,我可以看到我的网关,但是当我尝试网关时,我得到:
<Message>Unable to determine service/operation name to be
authorized</Message>
</AccessDeniedException>
Execution failed due to configuration error: Malformed Lambda proxy response
但是,一旦我转到集成请求并在 lambda 函数中点击编辑,然后单击“保存”,就会弹出一个窗口,询问权限附件,当我接受该请求时,它就会开始工作。问题是什么?我确实在我的 cfn 代码中添加了权限,并且我希望您可以看到该部分可以完成这项工作。我还需要添加其他内容吗?
完整的cfn代码如下:
{
"AWSTemplateFormatVersion": "2010-09-09",
"Description": "API gateway for TJ services",
"Parameters": {
"BusinessUnit": {
"Description": "BusinessUnit",
"Type": "String",
"ConstraintDescription": "Any string"
},
"project": {
"Description": "project",
"Type": "String",
"ConstraintDescription": "Any string"
},
"EnvironmentApp": {
"Description": "EnvironmentApp",
"Type": "String",
"ConstraintDescription": "Any string"
},
"EnvironmentInfra": {
"Description": "EnvironmentInfra",
"Type": "String",
"ConstraintDescription": "Any string"
}
},
"Resources": {
"LambdaHelloworldRole": {
"Type": "AWS::IAM::Role",
"Properties": {
"RoleName": "${project}-${EnvironmentApp}-lambda-helloworld",
"AssumeRolePolicyDocument": {
"Version": "2012-10-17",
"Statement": [{
"Effect": "Allow",
"Principal": {
"Service": [
"lambda.amazonaws.com",
"apigateway.amazonaws.com"
]
},
"Action": [
"sts:AssumeRole"
]
}]
},
"Path": "/",
"Policies": [{
"PolicyName": "${project}-${EnvironmentApp}-lambda-helloworld",
"PolicyDocument": {
"Version": "2012-10-17",
"Statement": [{
"Effect": "Allow",
"Action": [
"logs:CreateLogGroup",
"logs:CreateLogStream",
"logs:PutLogEvents",
"logs:DescribeLogGroups",
"logs:DescribeLogStreams",
"logs:PutLogEvents",
"logs:GetLogEvents",
"logs:FilterLogEvents"
],
"Resource": "*"
}]
}
}]
}
},
"LambdaHelloworld": {
"Type": "AWS::Lambda::Function",
"Properties": {
"Handler": "index.lambda_handler",
"Timeout": 180,
"MemorySize": 1536,
"Environment": {
"Variables": {
"test": "test"
}
},
"FunctionName": "${project}-${EnvironmentApp}-lambda-helloworld-pipeline-test",
"Role": {
"Fn::GetAtt": [
"LambdaHelloworldRole",
"Arn"
]
},
"Code": {
"ZipFile": {
"Fn::Join": [
"\n", [
"import boto3",
"import http.client",
"import json",
"import urllib.request",
"import urllib.parse",
"import sys",
"def lambda_handler(event, context):",
" return { 'statusCode': 200, 'headers': { 'Access-Control-Allow-Origin': '*' }, 'body': 'hello world stg2'}"
]
]
}
},
"Runtime": "python3.6"
}
},
"RestApiHellowworld": {
"Type": "AWS::ApiGateway::RestApi",
"Properties": {
"Name": "hamed-proxy-test"
}
},
"APIGatewayToLambdaPermission": {
"Type": "AWS::Lambda::Permission",
"DependsOn": "RestApiHellowworld",
"Properties": {
"Action": "lambda:invokeFunction",
"FunctionName": "zuora-stg1-lambda-product-get",
"Principal": "apigateway.amazonaws.com"
}
},
"ChannelsStoriesPath": {
"Type": "AWS::ApiGateway::Resource",
"Properties": {
"RestApiId": {
"Ref": "RestApiHellowworld"
},
"ParentId": {
"Fn::GetAtt": [
"RestApiHellowworld",
"RootResourceId"
]
},
"PathPart": "stories"
}
},
"ChannelsStoriesOptionsMethod": {
"Type": "AWS::ApiGateway::Method",
"Properties": {
"AuthorizationType": "NONE",
"RestApiId": {
"Ref": "RestApiHellowworld"
},
"ResourceId": "ChannelsStoriesPath",
"HttpMethod": "OPTIONS",
"Integration": {
"IntegrationResponses": [{
"StatusCode": 200,
"ResponseParameters": {
"method.response.header.Access-Control-Allow-Headers": "'Content-Type,X-Amz-Date,Authorization,X-Api-Key,X-Amz-Security-Token'",
"method.response.header.Access-Control-Allow-Methods": "'POST,OPTIONS,GET,PUT'",
"method.response.header.Access-Control-Allow-Origin": "'*'"
},
"ResponseTemplates": {
"application/json": ""
}
}],
"PassthroughBehavior": "WHEN_NO_MATCH",
"RequestTemplates": {
"application/json": "{\"statusCode\": 200}"
},
"Type": "MOCK"
},
"MethodResponses": [{
"StatusCode": 200,
"ResponseModels": {
"application/json": "Empty"
},
"ResponseParameters": {
"method.response.header.Access-Control-Allow-Headers": true,
"method.response.header.Access-Control-Allow-Methods": true,
"method.response.header.Access-Control-Allow-Origin": true
}
}]
}
},
"ChannelsStoriesGetMethod": {
"Type": "AWS::ApiGateway::Method",
"DependsOn": [
"APIGatewayToLambdaPermission",
"LambdaHelloworld"
],
"Properties": {
"AuthorizationType": "NONE",
"HttpMethod": "GET",
"Integration": {
"Type": "AWS_PROXY",
"IntegrationHttpMethod": "GET",
"IntegrationResponses": [{
"StatusCode": 200,
"ResponseParameters": {
"method.response.header.Access-Control-Allow-Origin": "'*'"
}
}],
"Uri": {
"Fn::Join": [
"", [
"arn:aws:apigateway:",
{
"Ref": "AWS::Region"
},
":",
"lambda:path/2015-03-31/functions/",
"arn:aws:lambda:us-east-1:048947288163:function:${project}-",
"${stageVariables.stg}-lambda-helloworld-pipeline-test",
"/invocations"
]
]
}
},
"ResourceId": "ChannelsStoriesPath",
"RestApiId": {
"Ref": "RestApiHellowworld"
},
"MethodResponses": [{
"StatusCode": 200
}]
}
},
"ApiGatewayEventLogGroup": {
"Type": "AWS::Logs::LogGroup",
"Properties": {
"LogGroupName": {
"Fn::Join": [
"", [
"/aws/apigateway/",
"${project}-${EnvironmentApp}-helloworld"
]
]
},
"RetentionInDays": 1
}
},
"ApiGatewayEventLogStream": {
"Type": "AWS::Logs::LogStream",
"Properties": {
"LogGroupName": {
"Ref": "ApiGatewayEventLogGroup"
},
"LogStreamName": "${project}-${EnvironmentApp}-helloworld"
},
"DependsOn": [
"ApiGatewayEventLogGroup"
]
},
"ApiGatewayCloudWatchLogsRole": {
"Type": "AWS::IAM::Role",
"Properties": {
"AssumeRolePolicyDocument": {
"Version": "2012-10-17",
"Statement": [{
"Effect": "Allow",
"Principal": {
"Service": [
"apigateway.amazonaws.com"
]
},
"Action": [
"sts:AssumeRole"
]
}]
},
"Policies": [{
"PolicyName": "ApiGatewayLogsPolicy",
"PolicyDocument": {
"Version": "2012-10-17",
"Statement": [{
"Effect": "Allow",
"Action": [
"logs:*"
],
"Resource": [
[
"ApiGatewayEventLogGroup",
"Arn"
],
"*"
]
}]
}
}]
}
},
"ApiGatewayAccount": {
"Type": "AWS::ApiGateway::Account",
"DependsOn": "ApiGatewayCloudWatchLogsRole",
"Properties": {
"CloudWatchRoleArn": {
"Fn::GetAtt": [
"ApiGatewayCloudWatchLogsRole",
"Arn"
]
}
}
},
"ApiDeployment": {
"Type": "AWS::ApiGateway::Deployment",
"DependsOn": "ChannelsStoriesGetMethod",
"Properties": {
"RestApiId": {
"Ref": "RestApiHellowworld"
}
}
},
"ApiStage": {
"DependsOn": [
"ApiGatewayAccount"
],
"Type": "AWS::ApiGateway::Stage",
"Properties": {
"DeploymentId": {
"Ref": "ApiDeployment"
},
"MethodSettings": [{
"DataTraceEnabled": true,
"HttpMethod": "*",
"LoggingLevel": "INFO",
"ResourcePath": "/*"
}],
"RestApiId": {
"Ref": "RestApiHellowworld"
},
"StageName": "${EnvironmentApp}",
"Variables": {
"stg": "${EnvironmentApp}"
}
}
}
},
"Outputs": {
"RootResourceId": {
"Description": "Tj Services Rest API root resource id",
"Value": "RestApiHellowworld.RootResourceId",
"Export": {
"Name": "${project}-${EnvironmentApp}-RootResourceId-helloworld"
}
},
"RestTjApi": {
"Description": "Tj Services Rest API",
"Value": "RestApiHellowworld",
"Export": {
"Name": "${project}-restApi-tj-services-helloworld"
}
}
}
}
最佳答案
我认为您的 cloudformation 脚本无法向 API 网关添加调用 lambda 函数权限。我宁愿通过以下方式实现这一点
APIName:
Type: "AWS::ApiGateway::RestApi"
Properties:
Description: "Description"
Name: "APIName"
FailOnWarnings: true
APILambdaPermission:
Type: "AWS::Lambda::Permission"
Properties:
Action: "lambda:InvokeFunction"
FunctionName: !Ref LambdaFunctionName
Principal: "apigateway.amazonaws.com"
LambdaFunctionName:
Type: "AWS::Serverless::Function"
Properties:
Handler: index.handler
Runtime: nodejs6.10
CodeUri: s3://codeBucketName/index.zip
Role: !GetAtt RoleName.Arn
RoleName:
Type: AWS::IAM::Role
Properties:
AssumeRolePolicyDocument:
Version: 2012-10-17
Statement:
- Effect: Allow
Principal:
Service: lambda.amazonaws.com
Action: sts:AssumeRole
ManagedPolicyArns:
- arn:aws:iam::aws:policy/service-role/AWSLambdaBasicExecutionRole
关于amazon-web-services - 添加通过cloudformation在api网关中触发lambda的权限,我们在Stack Overflow上找到一个类似的问题: https://stackoverflow.com/questions/50103664/
32
4
0
这个问题已经有答案了: jQuery trigger click vs click ()? (3 个回答) 已关闭 5 年前。 我无法区分 trigger('click')与 trigger('cli
我正在运行 VS 2008 和 .NET 3.5 SP1。 我想在 HttpModule 中实现命中跟踪在我的 ASP.NET 应用程序中。很简单,我想。然而,BeginRequest我的事件 Htt
这是一段代码,我收到以下错误 #1064 - You have an error in your SQL syntax; check the manual that corresponds to yo
有没有办法用任意增量触发滚轮事件。就像 jQuery 对“点击”所做的那样: $('#selector').trigger('click'); 我需要类似的东西,只需一个滚轮即可: $('#selec
我正在尝试在配音数据库中触发时间。我想检查一下在不出现角色的电影配音中不能对角色进行配音。这是PDM: 和CDM 我是SQL的初学者,但我知道表“DUBBES”中应该有一些触发器。我试图做这样的事情,
这个问题已经有答案了: jquery programmatically click on new dom element (3 个回答) 已关闭 6 年前。 我有一个 jQuery 事件定义如下: $
主菜单的点击代码适用于类更改,但不适用于子菜单...当单击食物或鞋子等子菜单项时,它不会触发警报命令...事实上,悬停非常适合子菜单但不是活跃的 HTML
问题非常简单: $('#btn1').click(function(event){ alert( "pageX: " + event.pageX + "\npa
我使用 Spring 的调度程序 (@EnableScheduling) 并具有以下 @Scheduled 方法,该方法每分钟调用一次: @Component public class Schedul
错误 SQL 查询:文档 CREATE TRIGGER `triggers_div` AFTER INSERT ON `produits` FOR EACH ROW BEGIN INSERT INTO
我想在插入另一个表时填充表中的一些列值,并为特定列设置条件。我使用触发器: CREATE TRIGGER inserttrigger AFTER INSERT ON table1 FOR EACH R
我可以在 5.6 MySQL 环境中使用一些关于触发器的指导。我想创建一个触发器,如果发现具有相同速度的电脑的价格较低,则该触发器会停止更新。 架构是产品(制造商、型号、类型)PC(型号、速度、内
背景:我们有一个 completed_flag,默认为 0,当有人完成调查时更新为 1。我想记录这次更新发生的时间戳 在编写了这个触发器/函数以在标志从 0 触发到 1 时更新时间戳后,我怀疑我这样做
数据库中有两个表 KistStatus和 LastKistStatus .后者将保存 KistStatus 的所有“最新”值。 . KistStatus有大约 174.000 条记录,LastKist
我正在开发一个使用 APNS 的 iPhone 应用程序。我很清楚实现 APNS、创 build 备 token 的过程,等等等等……我不知道如何通过 Web 服务从提供商端触发和启动 APNS。任何
我有这个 javascript,当数量更改时会触发 update_cart... jQuery('div.woocommerce').on('change', '.qty', function
当我单击任何按钮时,click 事件不会被触发。艰难的是,我使用 $("div").on("click", "button", function () { 让它工作,但我想看到它使用 .class 工
如何在我的代码中触发 Android onCreateOptionsMenu 函数,即无需用户单击手机上的选项菜单按钮? 最佳答案 Activity.openOptionsMenu(); 就可以了 关
我将表单包装在 中然后我设置 list android:windowSoftInputMode="adjustResize" (默认 react native )。现在,当我用手指触摸事件手动聚焦一
我有一个 Android 编程问题。使用下面的代码我想验证一个字符串匹配。它验证正常,但 LogCat 显示 TextWatcher 方法在每次击键时触发两次,我不明白为什么。我希望每次击键只触发一次
我是一名优秀的程序员,十分优秀!