hi all, sharing a solution i came across. i faced this problem when running npx aws-api-gateway-cli-test. { status: 500, statusText: 'Internal Server Error', data: { status: false } }
when i console log the error, i get this error. User: arn:aws:... is not authorized to perform: dynamodb:PutItem on resource: arn:aws:dynamodb:...
I confirmed my serverless.yml indentations are correct and all my regions are correctly set. I see that my IAM user is also given the correct authorisation.
What i did to solve it is i added the AdministratorAccess policy to the IAM role created by lambda and i managed to get the 200 status.
When trying to test the APIās i get the error status 500, and the message āInternal Server Errorā. The roles I am using for my identity pool is Cognito_notesidentitypoolUnauth_Role and Cognito_notesAuth_Role.
I was getting the same errors, 403, invoke execute-api. Check your IAM policy and make sure your resource is the API key, followed by /*. That was my issue. I had. I am curious how it passed the simulator test.
Iām pretty sure all of my code syntax is correct. What are my next steps towards troubleshooting my implementation? I set up CloudWatch Logs, but itās not capturing any events from running my test. This is the message I see in my log:
No events found.
It appears you have not installed a CloudWatch Logs agent or there
are no events available at the moment. Try to install the agent or try later.
Getting Started with CloudWatch Logs.
I figured it out. Turns out the Trust Relationship in my IAM user wasnāt properly referencing my User Pool. I updated the value to the proper ID and now it works.
Trying to figure out an issue. Iāve drilled it down to the fact that cognitoIdentityId is nullāin fact, the majority of the content in event.requestContext.identity are null/undefined. Any idea where I may have went wrong? I even went so far as to create a fresh user/identity pool.
Sorry I forgot to addāthis is while running the npx aws-api-gateway-cli-test command, happening in the create function (Iām assuming this would happen in all of the endpoints but the test breaks on first failure)
Authenticating with User Pool
Getting temporary credentials
Making API request
{ status: 502,
statusText: 'Bad Gateway',
data: { message: 'Internal server error' } }
cloudwatch is telling me the following error occurred: errorMessage": "Cannot read property 'content' of null", "errorType": "TypeError", "stackTrace": [ "_callee$ (/var/task/webpack:/create.js:12:21)", "tryCatch (/var/task/node_modules/regenerator-runtime/runtime.js:62:40)", "Generator.invoke [as _invoke] (/var/task/node_modules/regenerator- runtime/runtime.js:296:22)", "Generator.prototype.(anonymous function) [as next] (/var/task/node_modules/regenerator-runtime/runtime.js:114:21)", "step (/var/task/node_modules/babel-runtime/helpers/asyncToGenerator.js:17:30)", "/var/task/node_modules/babel-runtime/helpers/asyncToGenerator.js:35:14", "new Promise (<anonymous>)", "new F (/var/task/node_modules/core-js/library/modules/_export.js:35:28)", "/var/task/node_modules/babel-runtime/helpers/asyncToGenerator.js:14:12", "main (/var/task/create.js:245:17)" ] }
nkchan posted about a similar issue a few months ago and it seems that the issue is from the source code. I am able to run the serverless invoke local command from the add-a-create-note-api chapter (receive a 200 response).
Any help would be greatly appreciated. I can provide the config settings and/or the repo for more information.
C:\Users\Inter>npx aws-api-gateway-cli-test --username redacted@redacted.com --password "Redacted!" --user-pool-id us-west-2_redacted --app-client-id redacted --cognito-region us-west-2 --identity-pool-id us-west-2:redacted --invoke-url https://redacted.execute-api.us-west-2.amazonaws.com/dev --api-gateway-region us-west-2 --path-template /notes --method post --body "{\"content\":\"hello world\", \"attachment\":\"hello.jpg\"}"
npx: installed 106 in 8.648s
Authenticating with User Pool
Getting temporary credentials
Making API request
{ status: 500,
statusText: 'Internal Server Error',
data: { status: false } }
I threw a console.log(e) call in the catch block of my create file like the user above, but I also log a JSON.stringify(event) to get a look at the JSON thatās getting parsed just after we parse it, but before we assign any params. Here is an extraction of the event.requestContext.identity from that log in CloudWatch:
"identity": {
"cognitoIdentityPoolId": null,
"accountId": null,
"cognitoIdentityId": null,
"caller": null,
"sourceIp": "(confirmed this is my accurate WANIP)",
"accessKey": null,
"cognitoAuthenticationType": null,
"cognitoAuthenticationProvider": null,
"userArn": null,
"userAgent": "axios/0.18.0",
"user": null
I moved on with the tutorial and everything works so far. Iām able to create and confirm new users without an issue. It remains to be seen if Iāll run into this same issue when I get to hooking the front end up to my back-end, or if thereās an issue with the test. Iāll post accordingly.
Can you try to console.log the data.content? I wonder if the notes body is not being passed in properly through the command. Iām not too familiar with the right format for the Windows command line.
The body is in the command at the end. I did notice that the previous one is missing the escape character for each " inside the JSON, so what it actually looks like in my cmd window is --body "{\"content\":\"hello world\",\"attachment\":\"hello.jpg\\"}"
I pulled the content attribute from my full log of the event parameter in the main function for create, and this is what it shows for body, which would show what content would access:
