Open
Description
Is your feature request related to a problem? Please describe.
The following policy cannot be used with Lambda Custom Authorizer because there is no Condition field in the IAMPolicyStatement.
{
"Version": "2012-10-17",
"Statement": [
{
"Effect": "Deny",
"Action": "execute-api:Invoke",
"Resource": "execute-api:/{{stageNameOrWildcard}}/{{httpVerbOrWildcard}}/{{resourcePathOrWildcard}}",
"Condition" : {
"IpAddress": {
"aws:SourceIp": [ "{{sourceIpOrCIDRBlock}}", "{{sourceIpOrCIDRBlock}}" ]
}
}
}
]
}Describe the solution you'd like
Add a Condition field to the IAMPolicyStatement.
Describe alternatives you've considered
Additional context