{
  "typeName" : "AWS::ApiGateway::Authorizer",
  "description" : "Represents an authorization layer for methods. If enabled on a method, API Gateway will activate the authorizer when a client calls the method.",
  "sourceUrl" : "https://github.com/aws-cloudformation/aws-cloudformation-resource-providers-apigateway.git",
  "properties" : {
    "RestApiId" : {
      "description" : "The identifier of the API.",
      "type" : "string"
    },
    "AuthorizerId" : {
      "type" : "string"
    },
    "AuthType" : {
      "description" : "Optional customer-defined field, used in OpenAPI imports and exports without functional impact.",
      "type" : "string"
    },
    "AuthorizerCredentials" : {
      "description" : "Specifies the required credentials as an IAM role for API Gateway to invoke the authorizer.",
      "type" : "string"
    },
    "AuthorizerResultTtlInSeconds" : {
      "description" : "The TTL in seconds of cached authorizer results.",
      "type" : "integer"
    },
    "AuthorizerUri" : {
      "description" : "Specifies the authorizer's Uniform Resource Identifier (URI).",
      "type" : "string"
    },
    "IdentitySource" : {
      "description" : "The identity source for which authorization is requested.",
      "type" : "string"
    },
    "IdentityValidationExpression" : {
      "description" : "A validation expression for the incoming identity token.",
      "type" : "string"
    },
    "Name" : {
      "description" : "The name of the authorizer.",
      "type" : "string"
    },
    "ProviderARNs" : {
      "description" : "A list of the Amazon Cognito user pool ARNs for the COGNITO_USER_POOLS authorizer.",
      "type" : "array",
      "uniqueItems" : true,
      "items" : {
        "type" : "string"
      },
      "insertionOrder" : false
    },
    "Type" : {
      "description" : "The authorizer type.",
      "type" : "string"
    }
  },
  "tagging" : {
    "taggable" : false,
    "tagOnCreate" : false,
    "tagUpdatable" : false,
    "cloudFormationSystemTags" : false
  },
  "additionalProperties" : false,
  "required" : [ "RestApiId", "Type", "Name" ],
  "createOnlyProperties" : [ "/properties/RestApiId" ],
  "primaryIdentifier" : [ "/properties/RestApiId", "/properties/AuthorizerId" ],
  "readOnlyProperties" : [ "/properties/AuthorizerId" ],
  "handlers" : {
    "create" : {
      "permissions" : [ "apigateway:POST" ]
    },
    "read" : {
      "permissions" : [ "apigateway:GET" ]
    },
    "update" : {
      "permissions" : [ "apigateway:GET", "apigateway:PATCH" ]
    },
    "delete" : {
      "permissions" : [ "apigateway:DELETE" ]
    },
    "list" : {
      "permissions" : [ "apigateway:GET" ]
    }
  }
}