handler.js

const { Client } = require('pg');
const { getSecrets } = require('./secrets');

const effects = {
  ALLOW: 'Allow',
  DENY: 'Deny'
};

const policyResponse = (effect, resource) => {
  return {
    principalId: 'user',
    policyDocument: {
      Version: '2012-10-17',
      Statement: [{
        Action: 'execute-api:Invoke',
        Effect: effect,
        Resource: resource
      }]
    }
  };
}

const getDatabaseSecrets = async () => {
  const secrets = await getSecrets();
  const { host, port, dbName, user, password } = JSON.parse(secrets);
  return {
    host,
    port,
    password,
    username: user,
    database: dbName
  };
}

exports.handler = async (event, context) => {
  const { authorization, methodArn } = event;
  if (!authorization) {
    console.log('Authorization token not found');
    return policyResponse(effects.DENY, methodArn);
  }

  const dbConfig = await getDatabaseSecrets();
  console.log('Database configuration:', dbConfig);

  const client = new Client(dbConfig);

  try {
    await client.connect();

    const query = 'SELECT id FROM tb_customers WHERE cpf = $1';
    const result = await client.query(query, [authorization]);

    console.log('Query result:', result.rows);
    if (result.rows.length === 0) {
      console.log('User not found with cpf:', authorization);
      return policyResponse(effects.DENY, methodArn);
    }

    return policyResponse(effects.ALLOW, methodArn);
  } catch (error) {
    console.error('Error executing query', error);
    return policyResponse(effects.DENY, methodArn);
  } finally {
    await client.end();
  }
}