Developer Guide

Configure a Custom Authorizer

  1. Create a Lambda function that implements your authentication/authorization logic.

  2. Register a custom authorizer with AWS IoT using the Create-Authorizer API.

    aws iot create-authorizer --authorizer-name MyAuthorizer --authorizer-function-arn arn:aws:lambda:us-west-2:<account_id>:function:MyAuthorizerFunction // Lambda ARN --token-key-name MyAuthorizerToken // Key use to extract token from headers --token-signing-public-keys FIRST_KEY= // Public key used to verify token signature "-----BEGIN PUBLIC KEY----- [...insert your public key here...] -----END PUBLIC KEY-----" --status ACTIVE // Authorizer status - must be ACTIVE --region us-west-2 // AWS region --endpoint // IoT endpoint