We also added a couple of examples on how to add JWT authorization to your serverless API using SST. Using: - Auth0: https://serverless-stack.com/examples/how-to-add-jwt-authorization-with-auth0-to-a-serverless-api.html - Cognito User Pool: https://serverless-stack.com/examples/how-to-add-jwt-authorization-with-cognito-user-pool-to-a-serverless-api.html

Do we have an example of a lambda authorizer with API Gateway and then a custom JWT auth service in an sst app, I have been unable to find something like this. My challenge is I want to resort to passwordless login using mobile number and OTP, sadly, cognito doesn’t provide that out of the box.

Oh hmm I'm not sure if I've seen that. But adding support for a Lambda authorizer is on our roadmap.

This would technically be a part of the auth construct, right? Could you give me some ideas as to how I could go about implementing this?

@Ashishkumar Pandey I think you don’t need Lambda authorizer for this. Cognito User Pool supports passwordless login https://aws.amazon.com/blogs/mobile/implementing-passwordless-email-authentication-with-amazon-cognito/

Huh! Wow, okay, I'll go through this, thank you for your guidance. 🙌

Yeah, so you have to decide if you want to use JWT or IAM to protect ur API

Awesome! Haha, thank you, this is awesome. I'll attempt these examples. Hopefully, it works out.

Cool. Lemme know if you have any questions.

Do I need a cdk construct or can I use the auth sst construct to achieve the same.

You need to create the User Pool in cdk construct. And then you can pass it in to the

sst.Auth

construct if you are going to use IAM. Or pass it in to the

sst.Api

construct’s authorizer if you are going to use JWT.

Okay, understood. Thank you.

This is awesome, thank you for adding this so quickly.