使用 AWS re:Post 即表示您同意 AWS re:Post 使用條款
AWS re:Postre:Post

Is it possible to get the headers in HttpApi Gateway logs?

0

Howdy!

Is it possible to access and log specific header values directly from the HttpApi Gateway to Cloudwatch?

Im using Cloudflare for my DNS and am routing from Cloudflare to my HttpApi Gateway where I have Lambdas firing. My Gateway is logging the ip to Cloudwatch; however, this is the Cloudflare IP, not the original user IP which is a value sent along in the headers.

I am able to get the original users' ip in my Lambda by accessing event.headers['cf-connecting-ip'], but I would like to have my HttpApi Gateway log this to Cloudwatch as well. I've reviewed the documentation and didn't see mention of accessing headers from the HttpApi Gateway.

Here's what my current log template is set up as for my Gateway

{ "requestId":"$context.requestId", "ip": "$context.identity.sourceIp", " "requestTime":"$context.requestTime", "httpMethod":"$context.httpMethod","routeKey":"$context.routeKey", "status":"$context.status","protocol":"$context.protocol", "responseLength":"$context.responseLength"}

Thanks!

主題
無伺服器運算前端網頁與行動裝置網路與內容交付
標籤
無伺服器AWS LambdaAmazon API Gateway
語言
English
rePost-User-3260404
已提問 2 年前檢視次數 4853 次
1 個回答
1
已接受的答案

It doesn't look like it is possible to log header in the API Gateway access log. From the documentation, only the following variables can be logged from API Gateway access logs to Cloudwatch - https://docs.aws.amazon.com/apigateway/latest/developerguide/http-api-logging-variables.html

Having said that, it is possible to log the headers in the backend integration lambda.

I used this tutorial https://docs.aws.amazon.com/apigateway/latest/developerguide/http-api-dynamo-db.html and just modified the lambda function code to log the event object

const AWS = require("aws-sdk");

const dynamo = new AWS.DynamoDB.DocumentClient();

exports.handler = async (event, context) => { let body; let statusCode = 200; const headers = { "Content-Type": "application/json" }; console.log("#####################") console.log(event) console.log("#####################") try { .....rest of the code

When I called the API from the API Gateway, I do see the headers getting logged in the Cloudwatch logs of the lambda function.

profile pictureAWS
專家
Indranil Banerjee AWS
已回答 2 年前
  • rePost-User-3260404
    2 年前

    Thank you! I'll go ahead and continue to log the headers at the Lambda level. That should be enough since I am able to get the original user ip from the headers that way.

您尚未登入。 登入 去張貼答案。

一個好的回答可以清楚地回答問題並提供建設性的意見回饋,同時有助於提問者的專業成長。

回答問題指南

相關內容