Challenge - 5 Problems

🎖️

Master of Request and Response Mapping

Get all challenges correct to earn this badge!

Test your skills under time pressure!

❓ service_behavior

intermediate

2:00remaining

How does AWS API Gateway transform a request with mapping templates?

You have an AWS API Gateway method with a request mapping template that extracts the 'userId' from the incoming JSON body and passes it as a path parameter to the backend. What will be the value of the path parameter 'userId' if the incoming request body is {"userId": "12345", "action": "login"}?

AWS

{
  "userId": "$input.path('$.userId')"
}

AThe path parameter 'userId' will be set to '12345'.

BThe path parameter 'userId' will be set to 'action'.

CThe path parameter 'userId' will be empty because the mapping template is invalid.

DThe path parameter 'userId' will be set to '{"userId": "12345", "action": "login"}'.

Attempts:

2 left

❓ Configuration

intermediate

2:00remaining

Identify the correct response mapping template for a JSON error response

You want to map a backend error JSON response {"errorCode": "404", "message": "Not Found"} to a client response with status code 404 and a body containing only the message. Which response mapping template achieves this?

#set($inputRoot = $input.path('$'))
{
  "message": "$inputRoot.message"
}

{
  "error": "$input.path('$.errorCode')",
  "msg": "$input.path('$.message')"
}

#set($inputRoot = $input.path('$'))
{
  "errorMessage": "$inputRoot.errorCode"
}

{
  "message": "$input.path('$.errorMessage')"
}

Attempts:

2 left

❓ Architecture

advanced

2:00remaining

Which architecture best supports dynamic request mapping for multiple backend services?

You need to design an API Gateway setup that routes requests to different backend services based on a request header value, and applies different request mapping templates accordingly. Which architecture pattern is best?

AUse a single API Gateway with multiple stages, each stage having its own mapping templates and backend integration.

BUse multiple API Gateways, each dedicated to one backend service with fixed mapping templates.

CUse a single API Gateway with multiple resources and methods, each configured with specific request mapping templates and backend integrations, and use request header-based mapping to select the resource.

DUse a single API Gateway with a Lambda authorizer that modifies the request and sets integration request parameters dynamically.

Attempts:

2 left

❓ security

advanced

2:00remaining

What security risk arises from improper request mapping in API Gateway?

If an API Gateway request mapping template does not properly validate or sanitize incoming JSON fields before passing them to the backend, what is the most likely security risk?

AData loss because the mapping template deletes fields from the request.

BDenial of service due to large payloads being accepted by the mapping template.

CUnauthorized access because the mapping template bypasses authentication.

DInjection attacks such as SQL injection or command injection on the backend service.

Attempts:

2 left

✅ Best Practice

expert

3:00remaining

What is the best practice for managing complex response mapping templates in AWS API Gateway?

You have a complex backend response that requires multiple conditional transformations before sending to clients. What is the best practice to manage this complexity in API Gateway response mapping?

ASplit the API Gateway method into multiple methods each handling a part of the transformation.

BUse a Lambda function as a proxy integration to handle response transformation outside API Gateway.

CEmbed all logic directly in the response mapping template using Velocity Template Language (VTL) with nested conditionals.

DDisable response mapping and send backend responses directly to clients.

Attempts:

2 left