add cache key

soat-fiap · Sep 21, 2024 · 9e9b747 · 9e9b747
1 parent 7540357
commit 9e9b747
Show file tree

Hide file tree

Showing 3 changed files with 8 additions and 3 deletions.
diff --git a/app/cpf-policy-authorizer/src/handlers/hello-from-lambda.mjs b/app/cpf-policy-authorizer/src/handlers/hello-from-lambda.mjs
@@ -31,6 +31,10 @@ export const handler = async (event, context, callback) => {
         let token = generateAccessToken({
             role: ["user"]
         });
-        return generateAuthPolicy("anom", event.routeArn, true, token);
+        return generateAuthPolicy(generateUniqueRandomValue(), event.routeArn, true, token);
     }
+};
+
+export const generateUniqueRandomValue = () => {
+    return Math.random().toString(36).substr(2, 9);
 };
diff --git a/app/cpf-policy-authorizer/src/helpers/policyHelper.js b/app/cpf-policy-authorizer/src/helpers/policyHelper.js
@@ -1,6 +1,5 @@
 export const generateAuthPolicy = (principalId, routeArn, accessToken) => {
     try {
-
         console.log('Method ARN: ' + routeArn);
 
         let tmp = routeArn.split(':');
@@ -22,7 +21,8 @@ export const generateAuthPolicy = (principalId, routeArn, accessToken) => {
         let authResponse = policy.build();
 
         authResponse.context = {
-            accessToken: accessToken
+            accessToken: accessToken,
+            cacheKey: principalId
         };
         return authResponse;
     }

diff --git a/modules/authenticator_agw/main.tf b/modules/authenticator_agw/main.tf
@@ -181,6 +181,7 @@ resource "aws_apigatewayv2_authorizer" "external" {
   name                              = "cpf_authorizer"
   authorizer_payload_format_version = "2.0"
   authorizer_result_ttl_in_seconds  = 60
+  identity_sources                  = ["$context.authorizer.cacheKey"]
   enable_simple_responses           = false
   authorizer_uri                    = var.authenticator_lambda_arn
 }