Serverless Stack

Getting a 403 forbidden once I've attached a userpool authorizer to the API. I'm included the `Bearer` header - do I need to be granting permission to the pool to call the api?

Figured it out, I was using the default scopes form the docs `user.id` and `user.email` but the token on the frontend only has `aws.cognito.signin.user.admin`

Oh I see! The doc was based on the AWS example <https://docs.aws.amazon.com/apigateway/latest/developerguide/http-api-jwt-authorizer.html>

Which library r u using on the frontend for handling the auth?

aws-cognito-identity-js which is what amplify uses underneath

Cognito is the most I've been confused with serverless since I began :sweat_smile: