InvalidQueryStringException on AWS_IAM secured API Gateway Lambda Proxy











up vote
0
down vote

favorite












I'm passing GET parameters to an AWS API Gateway resource Endpoint ( LAMBDA_PROXY) with serverless.



The GET Parameters are in array annotation, eg. ?filter[someKey]=someValue, and the parameters are passed to the handler in the event object properly.



As soon as I try to apply an authorizer to that same endpoint (authorizer: AWS_IAM) and use Postman to send the correct Authorization info (AccesKey, SecretKey, SessionToken) with the same GET Request parameters, I'm receiving the following response:
StatusCode:
400 Bad Request
Headers:
x-amzn-ErrorType InvalidQueryStringException
Body:
{"message":null}



I couldn't find any good info on the InvalidQueryStringException from AWS.



Why are the GET request parameters properly passed to the handler without AWS_IAM authorizer but are rejected with AWS_IAM in place ?



Thank you for an insight on this.






amazon-web-services aws-lambda aws-api-gateway serverless







share|improve this question
























  • PS: Testing the resource endpoint API Gateway via the AWS Console with that same query string yields a correct response...
    – Andreas Siegert
    18 hours ago










  • Could you just confirm you query string (values are less important than keys)?
    – thomasmichaelwallace
    12 hours ago















up vote
0
down vote

favorite












I'm passing GET parameters to an AWS API Gateway resource Endpoint ( LAMBDA_PROXY) with serverless.



The GET Parameters are in array annotation, eg. ?filter[someKey]=someValue, and the parameters are passed to the handler in the event object properly.



As soon as I try to apply an authorizer to that same endpoint (authorizer: AWS_IAM) and use Postman to send the correct Authorization info (AccesKey, SecretKey, SessionToken) with the same GET Request parameters, I'm receiving the following response:
StatusCode:
400 Bad Request
Headers:
x-amzn-ErrorType InvalidQueryStringException
Body:
{"message":null}



I couldn't find any good info on the InvalidQueryStringException from AWS.



Why are the GET request parameters properly passed to the handler without AWS_IAM authorizer but are rejected with AWS_IAM in place ?



Thank you for an insight on this.






amazon-web-services aws-lambda aws-api-gateway serverless







share|improve this question
























  • PS: Testing the resource endpoint API Gateway via the AWS Console with that same query string yields a correct response...
    – Andreas Siegert
    18 hours ago










  • Could you just confirm you query string (values are less important than keys)?
    – thomasmichaelwallace
    12 hours ago













up vote
0
down vote

favorite









up vote
0
down vote

favorite











I'm passing GET parameters to an AWS API Gateway resource Endpoint ( LAMBDA_PROXY) with serverless.



The GET Parameters are in array annotation, eg. ?filter[someKey]=someValue, and the parameters are passed to the handler in the event object properly.



As soon as I try to apply an authorizer to that same endpoint (authorizer: AWS_IAM) and use Postman to send the correct Authorization info (AccesKey, SecretKey, SessionToken) with the same GET Request parameters, I'm receiving the following response:
StatusCode:
400 Bad Request
Headers:
x-amzn-ErrorType InvalidQueryStringException
Body:
{"message":null}



I couldn't find any good info on the InvalidQueryStringException from AWS.



Why are the GET request parameters properly passed to the handler without AWS_IAM authorizer but are rejected with AWS_IAM in place ?



Thank you for an insight on this.






amazon-web-services aws-lambda aws-api-gateway serverless







share|improve this question















I'm passing GET parameters to an AWS API Gateway resource Endpoint ( LAMBDA_PROXY) with serverless.



The GET Parameters are in array annotation, eg. ?filter[someKey]=someValue, and the parameters are passed to the handler in the event object properly.



As soon as I try to apply an authorizer to that same endpoint (authorizer: AWS_IAM) and use Postman to send the correct Authorization info (AccesKey, SecretKey, SessionToken) with the same GET Request parameters, I'm receiving the following response:
StatusCode:
400 Bad Request
Headers:
x-amzn-ErrorType InvalidQueryStringException
Body:
{"message":null}



I couldn't find any good info on the InvalidQueryStringException from AWS.



Why are the GET request parameters properly passed to the handler without AWS_IAM authorizer but are rejected with AWS_IAM in place ?



Thank you for an insight on this.






amazon-web-services aws-lambda aws-api-gateway serverless




amazon-web-services aws-lambda aws-api-gateway serverless






share|improve this question















share|improve this question













share|improve this question




share|improve this question








edited 20 hours ago

























asked 20 hours ago









Andreas Siegert

64




64












  • PS: Testing the resource endpoint API Gateway via the AWS Console with that same query string yields a correct response...
    – Andreas Siegert
    18 hours ago










  • Could you just confirm you query string (values are less important than keys)?
    – thomasmichaelwallace
    12 hours ago


















  • PS: Testing the resource endpoint API Gateway via the AWS Console with that same query string yields a correct response...
    – Andreas Siegert
    18 hours ago










  • Could you just confirm you query string (values are less important than keys)?
    – thomasmichaelwallace
    12 hours ago
















PS: Testing the resource endpoint API Gateway via the AWS Console with that same query string yields a correct response...
– Andreas Siegert
18 hours ago




PS: Testing the resource endpoint API Gateway via the AWS Console with that same query string yields a correct response...
– Andreas Siegert
18 hours ago












Could you just confirm you query string (values are less important than keys)?
– thomasmichaelwallace
12 hours ago




Could you just confirm you query string (values are less important than keys)?
– thomasmichaelwallace
12 hours ago












1 Answer
1






active

oldest

votes

















up vote
0
down vote













Seems, that "percent-encoding" the square brackets is a way to get around the limitation of AWS API Gateway to not support square brackets as part of the query string, which is indeed a little odd.



So just "percent-encoding" the square bracket of the query string: ?filter[someKey]=someValue to ?filter%5BsomeKey%5D=someValue did actually help.



Besides, encoding the whole query string part, did not succeed (500, Internal Server Error), so you will very likely end up encoding just the square brackets.



Stackoverflow: AWS API gateway returns 400 error when square bracket (“[”, “]”) is in path
Ask






share|improve this answer





















    Your Answer






    StackExchange.ifUsing("editor", function () {
    StackExchange.using("externalEditor", function () {
    StackExchange.using("snippets", function () {
    StackExchange.snippets.init();
    });
    });
    }, "code-snippets");

    StackExchange.ready(function() {
    var channelOptions = {
    tags: "".split(" "),
    id: "1"
    };
    initTagRenderer("".split(" "), "".split(" "), channelOptions);

    StackExchange.using("externalEditor", function() {
    // Have to fire editor after snippets, if snippets enabled
    if (StackExchange.settings.snippets.snippetsEnabled) {
    StackExchange.using("snippets", function() {
    createEditor();
    });
    }
    else {
    createEditor();
    }
    });

    function createEditor() {
    StackExchange.prepareEditor({
    heartbeatType: 'answer',
    convertImagesToLinks: true,
    noModals: true,
    showLowRepImageUploadWarning: true,
    reputationToPostImages: 10,
    bindNavPrevention: true,
    postfix: "",
    imageUploader: {
    brandingHtml: "Powered by u003ca class="icon-imgur-white" href="https://imgur.com/"u003eu003c/au003e",
    contentPolicyHtml: "User contributions licensed under u003ca href="https://creativecommons.org/licenses/by-sa/3.0/"u003ecc by-sa 3.0 with attribution requiredu003c/au003e u003ca href="https://stackoverflow.com/legal/content-policy"u003e(content policy)u003c/au003e",
    allowUrls: true
    },
    onDemand: true,
    discardSelector: ".discard-answer"
    ,immediatelyShowMarkdownHelp:true
    });


    }
    });














     

    draft saved


    draft discarded


















    StackExchange.ready(
    function () {
    StackExchange.openid.initPostLogin('.new-post-login', 'https%3a%2f%2fstackoverflow.com%2fquestions%2f53371401%2finvalidquerystringexception-on-aws-iam-secured-api-gateway-lambda-proxy%23new-answer', 'question_page');
    }
    );

    Post as a guest















    Required, but never shown

























    1 Answer
    1






    active

    oldest

    votes








    1 Answer
    1






    active

    oldest

    votes









    active

    oldest

    votes






    active

    oldest

    votes








    up vote
    0
    down vote













    Seems, that "percent-encoding" the square brackets is a way to get around the limitation of AWS API Gateway to not support square brackets as part of the query string, which is indeed a little odd.



    So just "percent-encoding" the square bracket of the query string: ?filter[someKey]=someValue to ?filter%5BsomeKey%5D=someValue did actually help.



    Besides, encoding the whole query string part, did not succeed (500, Internal Server Error), so you will very likely end up encoding just the square brackets.



    Stackoverflow: AWS API gateway returns 400 error when square bracket (“[”, “]”) is in path
    Ask






    share|improve this answer

























      up vote
      0
      down vote













      Seems, that "percent-encoding" the square brackets is a way to get around the limitation of AWS API Gateway to not support square brackets as part of the query string, which is indeed a little odd.



      So just "percent-encoding" the square bracket of the query string: ?filter[someKey]=someValue to ?filter%5BsomeKey%5D=someValue did actually help.



      Besides, encoding the whole query string part, did not succeed (500, Internal Server Error), so you will very likely end up encoding just the square brackets.



      Stackoverflow: AWS API gateway returns 400 error when square bracket (“[”, “]”) is in path
      Ask






      share|improve this answer























        up vote
        0
        down vote










        up vote
        0
        down vote









        Seems, that "percent-encoding" the square brackets is a way to get around the limitation of AWS API Gateway to not support square brackets as part of the query string, which is indeed a little odd.



        So just "percent-encoding" the square bracket of the query string: ?filter[someKey]=someValue to ?filter%5BsomeKey%5D=someValue did actually help.



        Besides, encoding the whole query string part, did not succeed (500, Internal Server Error), so you will very likely end up encoding just the square brackets.



        Stackoverflow: AWS API gateway returns 400 error when square bracket (“[”, “]”) is in path
        Ask






        share|improve this answer












        Seems, that "percent-encoding" the square brackets is a way to get around the limitation of AWS API Gateway to not support square brackets as part of the query string, which is indeed a little odd.



        So just "percent-encoding" the square bracket of the query string: ?filter[someKey]=someValue to ?filter%5BsomeKey%5D=someValue did actually help.



        Besides, encoding the whole query string part, did not succeed (500, Internal Server Error), so you will very likely end up encoding just the square brackets.



        Stackoverflow: AWS API gateway returns 400 error when square bracket (“[”, “]”) is in path
        Ask







        share|improve this answer












        share|improve this answer



        share|improve this answer










        answered 8 hours ago









        Andreas Siegert

        64




        64






























             

            draft saved


            draft discarded



















































             


            draft saved


            draft discarded














            StackExchange.ready(
            function () {
            StackExchange.openid.initPostLogin('.new-post-login', 'https%3a%2f%2fstackoverflow.com%2fquestions%2f53371401%2finvalidquerystringexception-on-aws-iam-secured-api-gateway-lambda-proxy%23new-answer', 'question_page');
            }
            );

            Post as a guest















            Required, but never shown





















































            Required, but never shown














            Required, but never shown












            Required, but never shown







            Required, but never shown

































            Required, but never shown














            Required, but never shown












            Required, but never shown







            Required, but never shown







            -

            Popular posts from this blog

            Wiesbaden

            Image
            Wappen Deutschlandkarte 50.0825 8.24 117 Koordinaten: 50° 5′  N , 8° 14′  O Basisdaten Bundesland: Hessen Regierungsbezirk: Darmstadt Höhe: 117 m ü. NHN Fläche: 203,93 km 2 Einwohner: 278.654 (31. Dez. 2017) [1] Bevölkerungsdichte: 1366 Einwohner je km 2 Postleitzahlen: 65183–65207, 55246, 55252 Vorlage:Infobox Gemeinde in Deutschland/Wartung/PLZ enthält Text Vorwahlen: 0611, 06122, 06127, 06134 Kfz-Kennzeichen: WI Gemeindeschlüssel: 06 4 14 000 LOCODE: DE WIB NUTS: DE714 Stadtgliederung: 26 Ortsbezirke Adresse der Stadtverwaltung: Schlossplatz 6 65183 Wiesbaden Webpräsenz: www.wiesbaden.de Oberbürgermeister: Sven Gerich (SPD) Lage der Landeshauptstadt Wiesbaden in Hessen und im Regierungsbezirk Darmstadt Offizielles Logo der Landeshauptstadt Wiesbaden Flagge der Landeshauptstadt Wiesbaden Wiesbaden is
            Read more

            Marschland

            Image
            Kilometerweite Marsch in den Vier- und Marschlanden am Elbdeich Die Wedeler Marschlandschaft in Schleswig-Holstein Der Hadelner Kanal zur Entwässerung der Marsch Die tief gelegene Marsch und ein Entwässerungskanal Das Schöpfwerk Otterndorf im Land Hadeln zur Entwässerung der Medem verfügte damals bereits über die größte Kreiselpumpe Europas. Das Schöpfwerk in Neuhaus für die Aue und des Neuhaus-Bülkauer Kanals Als Marsch(land) (v. niederdt., altsächs. mersc ) – auch Masch , Mersch oder Schwemmland genannt – bezeichnet man eine nacheiszeitlich entstandene geomorphologische Landform im Gebiet der nordwestdeutschen Küsten und Flüsse sowie vergleichbare Landformen weltweit. Inhaltsverzeichnis 1 Landschaft 2 Entstehung 3 Marschböden 4 Nutzung 5 Marschgebiete in Deutschland 6 Siehe auch 7 Literatur 8 Weblinks 9 Einzelnachweise Landschaft | Marschen sind generell flache Landstriche ohne natürliche Erhebungen. Si
            Read more

            Dieringhausen

            Image
            Dieringhausen Stadt Gummersbach 50.982777777778 7.5316666666667 165 Koordinaten: 50° 58′ 58″  N , 7° 31′ 54″  O Höhe: 165  (160–245)  m Einwohner: 5055  (30. Jun. 2016) Postleitzahl: 51645 Vorwahl: 02261 Lage von Dieringhausen in Gummersbach Im Hohl ca. 1927–1930 Ansicht von Südwesten bei Bünghausen Dieringhausen (im örtlichen Dialekt Dierkesen ) ist ein Ortsteil von Gummersbach im Oberbergischen Kreis, Regierungsbezirk Köln, Nordrhein-Westfalen (Deutschland). Inhaltsverzeichnis 1 Geographie 2 Geschichte 3 Kultur 3.1 Sehenswürdigkeiten 3.2 Regelmäßige Veranstaltungen 4 Infrastruktur und Wirtschaft 4.1 Verkehr 4.1.1 Schienen- und Busverkehr 4.1.2 Straßen 4.2 Öffentliche Einrichtungen 4.2.1 Schulen und Bildungseinrichtungen 4.2.2 Kirchliche Einrichtungen 5 Persönlichkeiten 5.1 In Dieringhausen geboren 5.2 In Dieringhausen gelebt 6 Einzelnachweise 7
            Read more