Leveraging the JWT protected AWS Apigateway / Lambda in React
In my last series of posts ( one , two , three , and four ) I showed how to set up an AWS Lambda and protect access to it with a JWT authorizer using Keycloak. The previous code and posts were aimed towards a server to server model. They used users that were defined within the Keycloak server coupled with an optional client secret. This is a great setup when you can share the credentials and the client secret with a trusted consumer of your services. The caller can use something like AWS Systems Manager Parameter Store or the AWS Key Management Service to store the parameters in a secure way.