AppSync: How set header in response?

Question

I want to authorize the user through http only cookies.

I want to set header in the AppSync response as example "Set-Cookie": "cookie=cookie; HttpOnly"

in "Configure the response mapping template" I have $util.toJson($context.result)

How can I do that?

At the moment you cannot set the response headers on a GraphQL query or mutation. Can you explain what your use case is? — Karthik, May 30 '18 at 15:09
Oh sure, I want to use httpOnly cookie with appsync, for this I need to set them, for it I want set header "Set-Cookie" — Константин Костылев, Jun 01 '18 at 03:04

score 1 · Answer 1 · answered Feb 23 '22 at 00:25

1

This is now possible through $util.http.addResponseHeader: https://docs.aws.amazon.com/appsync/latest/devguide/resolver-util-reference.html#http-helpers-in-utils-http

answered Feb 23 '22 at 00:25

The_Outsider

146
8

yes but I wonder where, you can't add this to the responseTemplate right? – Antonio Terreno Apr 05 '22 at 13:32
1

You can add this to any template, request or response. – The_Outsider Apr 06 '22 at 14:57

score 0 · Accepted Answer · answered Jun 22 '18 at 21:51

It seems that Appsync doesn't allow you to pass the request cookie header to a lambda. You can pass other headers like authorize or x-api-key or cookies but cookie seems to get stripped from the event. I haven't found anything in the documentation about this behavior but from observation, this is what is happening currently. You will need to pass your auth data in another header.

AppSync: How set header in response?

2 Answers2