added support for secure integration config

Author: usazqueueit

README.md

@@ -1,4 +1,4 @@
-# KnownUser.V3.Cloudfront
+# KnownUser.V3.Cloudfront
 The Queue-it Security Framework is used to ensure that end users cannot reach to your protected backend routes without passing the virtual queue by performing a server-side validation before processing a request. This repository is containing two AWS lambda functions you can add them in your CloudFront distribution for CloudFront Events ViewerRequest and ViewerResponse to integrate queue-it functionality for your backend.
 
 ## Introduction
@@ -13,7 +13,7 @@ After returning  from the queue, the script will let user continue its request t
 
 ## Instruction
 
-- Set your CustomerId and SecretKey in `index.js` file in ViewerRequest package
+- Set your CustomerId, SecretKey and API key in `index.js` file in ViewerRequest package
 - Create two lambda edge functions one for ViewerRequest and one for ViewerResponse and put the code from this repository there respectively. 
 - Define your desired behaviours where you want to be protected by queue and set CloudFront events  ViewerRequest and ViewerResponse to function you have already created.
 

ViewerRequest/index.js

@@ -1,7 +1,7 @@
 'use strict';
 const CustomerId = "YOUR CUSTOMERID HERE";
 const SecretKey = "YOUR SECRETE KEY HERE";
-
+const APIKey = "YOUR API KEY HERE";
 
 const querystringParser = require('querystring');
 const QueueIT = require("./sdk/queueit-knownuserv3-sdk.js");
@@ -32,14 +32,13 @@ async function handleRequest(request) {
     helpers.configureKnownUserHashing();
     const response = {
         headers: {}
-    };
-    let configUrl = `https://${CustomerId}.queue-it.net/status/integrationconfig/${CustomerId}`;
+    };    
     let httpContext = httpContextProvider.getCloudFrontHttpContext(request, response);
     var queueitToken = querystringParser.parse(request.querystring)[knownUser.QueueITTokenKey];
     var requestUrl = httpContext.getHttpRequest().getAbsoluteUri();
     var requestUrlWithoutToken = requestUrl.replace(new RegExp("([\?&])(" + knownUser.QueueITTokenKey + "=[^&]*)", 'i'), "");
     requestUrlWithoutToken = requestUrlWithoutToken.replace(new RegExp("[?]$"), "");
-    var integrationConfig = await integrationConfigProvider.getConfig(configUrl);
+    var integrationConfig = await integrationConfigProvider.getConfig(CustomerId, APIKey);
 
     var validationResult = knownUser.validateRequestByIntegrationConfig(
         requestUrlWithoutToken, queueitToken, integrationConfig,
@@ -103,4 +102,4 @@ async function handleRequest(request) {
             return request;
         }
     }
-}
+}

ViewerRequest/integrationConfigProvider.js

@@ -5,13 +5,20 @@ const CacheTimeoutMS = 5 * 60 * 1000;
 const RequestTimeoutMS = 1000;
 let GlobalCache = null;
 
-exports.getConfig = async function (configUrl) {
+exports.getConfig = async function (customerId, apiKey) {
     return new Promise((resolve, reject) => {
         if (isGLobalCacheValid()) {
             resolve(GlobalCache.integrationConfig);
             return;
         }
-        let request = https.get(configUrl, (resp) => {
+        const options = {
+            hostname: `${customerId}.test.queue-it.net`,
+            path: `/status/integrationconfig/secure/${customerId}`,
+            method: 'GET',
+            headers: { 'api-key': apiKey},
+            port: 443
+        };
+        let request = https.get(options, (resp) => {
             let data = '';
             resp.setEncoding('utf8');
             resp.on('data', (chunk) => {
@@ -22,7 +29,7 @@ exports.getConfig = async function (configUrl) {
                         var newCached = {
                             expirationTime:  (Date.now()) + CacheTimeoutMS,
                             integrationConfig: data
-                        };
+                        };                        
                         GlobalCache = newCached;
                         resolve(GlobalCache.integrationConfig);
                 }

ViewerRequest/queueitHelpers.js

@@ -1,4 +1,4 @@
-const CLOUDFRONT_SDK_VERSION ="1.2.1";
+const CLOUDFRONT_SDK_VERSION ="1.2.2";
 const QueueIT = require("./sdk/queueit-knownuserv3-sdk.js");
 exports.addKUPlatformVersion= function(redirectQueueUrl)
 {