Authorizers and One Method for All Routes

Authorizers should only be set at the root and the *catchall route. This is because only these 2 APIGW resources are actually built. So authorizers can only be set at that APIGW Method. The Authorizer Labmda function should have logic to handle different urls. If assign an authorizer for any other route, a warning will be printed.

Example routes.rb

Here’s an example of how you set the authorizer option for the root and *catchall route.

config/routes.rb

Jets.application.routes.draw do
  root "jets/public#show", authorizer: "main#protect"
  any "*catchall", to: "jets/public#show", authorizer: "main#protect"
end

In this section: