Installation

If your organization uses AWS HTTP API Gateway with a NodeJS Lambda integration, you can use the HUMAN API Gateway Enforcer to protect your API Gateway against malicious behavior. The HUMAN enforcer easily integrates into your existing AWS Lambda function.

Prerequisites

An existing AWS HTTP API Gateway
A NodeJS Lambda integration with Node v16.x or later.

For the HUMAN AWS HTTP API Gateway Enforcer to be compatible with your AWS Lambda function integration, the AWS Lambda function must use v2 of the payload format structure.

Installation

Install the Enforcer using NPM package in your project.

$ npm install @humansecurity/aws-api-gateway-enforcer

Save your handler in a constant

1 import { APIGatewayProxyEventV2 } from 'aws-lambda';
2 
3 const myHandler = (event: APIGatewayProxyEventV2): Promise<APIGatewayProxyStructuredResultV2> => {
4     // ... original lambda handler code
5 }

Export HUMAN Security’s handler from your Lambda.

1 import { handler as humanSecurityHandler } from "@humansecurity/aws-api-gateway-enforcer";
2 
3 const pxConfig = {
4     onPass: myHandler,
5     px_app_id: "<APP_ID>",
6     px_cookie_secret: "<COOKIE_SECRET>",
7     px_auth_token: "<AUTH_TOKEN>"
8     // ...
9 };
10 export const handler = humanSecurityHandler(pxConfig);

Deploy the AWS Lambda function and API Gateway.

1	import { APIGatewayProxyEventV2 } from 'aws-lambda';
2
3	const myHandler = (event: APIGatewayProxyEventV2): Promise<APIGatewayProxyStructuredResultV2> => {
4	// ... original lambda handler code
5	}

1	import { handler as humanSecurityHandler } from "@humansecurity/aws-api-gateway-enforcer";
2
3	const pxConfig = {
4	onPass: myHandler,
5	px_app_id: "<APP_ID>",
6	px_cookie_secret: "<COOKIE_SECRET>",
7	px_auth_token: "<AUTH_TOKEN>"
8	// ...
9	};
10	export const handler = humanSecurityHandler(pxConfig);