aws · tejaskash · Jun 22, 2026 · Jun 22, 2026
diff --git a/e2e-tests/harness-custom-jwt.test.ts b/e2e-tests/harness-custom-jwt.test.ts
@@ -0,0 +1,318 @@
+/**
+ * E2E test: a harness with CUSTOM_JWT inbound auth (Cognito).
+ *
+ * Creates a Cognito user pool as the OIDC provider, deploys a harness configured with a
+ * CUSTOM_JWT authorizer (added via `add harness` with the JWT + OAuth-credential flags, so
+ * the managed OAuth credential is registered the way a real user would), and verifies that:
+ * - Deploy embeds AuthorizerConfiguration in the CloudFormation template
+ * - A default SigV4 invocation is rejected (auth method mismatch)
+ * - A bearer-token invocation is not rejected for auth reasons
+ * - `fetch access --type harness` mints a CUSTOM_JWT bearer token via the managed credential
+ * - Status reports the harness as deployed
+ *
+ * Requires: AWS credentials, npm, git.
+ */
+import { hasAwsCredentials, parseJsonOutput, prereqs, runCLI, stripAnsi } from '../src/test-utils/index.js';
+import { installCdkTarball, writeAwsTargets } from './e2e-helper.js';
+import { CloudFormationClient, GetTemplateCommand } from '@aws-sdk/client-cloudformation';
+import {
+  CognitoIdentityProviderClient,
+  CreateResourceServerCommand,
+  CreateUserPoolClientCommand,
+  CreateUserPoolCommand,
+  CreateUserPoolDomainCommand,
+  DeleteResourceServerCommand,
+  DeleteUserPoolCommand,
+  DeleteUserPoolDomainCommand,
+} from '@aws-sdk/client-cognito-identity-provider';
+import { randomUUID } from 'node:crypto';
+import { mkdir, rm } from 'node:fs/promises';
+import { tmpdir } from 'node:os';
+import { join } from 'node:path';
+import { afterAll, beforeAll, describe, expect, it } from 'vitest';
+
+const hasAws = hasAwsCredentials();
+const canRun = prereqs.npm && prereqs.git && hasAws;
+const region = process.env.AWS_REGION ?? 'us-east-1';
+const customJWTRejectMsgRegex = /configured for CUSTOM_JWT|[Aa]uthoriz(ation|er).*mismatch|different.*authorization/i;
+
+describe.sequential('e2e: harness with CUSTOM_JWT auth', () => {
+  let testDir: string;
+  let projectPath: string;
+  let harnessName: string;
+
+  // Cognito resources
+  let userPoolId: string;
+  let clientId: string;
+  let clientSecret: string;
+  let domainPrefix: string;
+  let discoveryUrl: string;
+
+  const cognitoClient = new CognitoIdentityProviderClient({ region });
+  const cfnClient = new CloudFormationClient({ region });
+
+  /** Fetch a Cognito access token via client_credentials flow. */
+  async function fetchCognitoAccessToken(): Promise<string> {
+    const tokenUrl = `https://${domainPrefix}.auth.${region}.amazoncognito.com/oauth2/token`;
+    const tokenRes = await fetch(tokenUrl, {
+      method: 'POST',
+      headers: {
+        'Content-Type': 'application/x-www-form-urlencoded',
+        Authorization: `Basic ${Buffer.from(`${clientId}:${clientSecret}`).toString('base64')}`,
+      },
+      body: 'grant_type=client_credentials&scope=agentcore/invoke',
+    });
+    expect(tokenRes.ok, `Token fetch failed: ${tokenRes.status}`).toBe(true);
+    const tokenJson = (await tokenRes.json()) as { access_token: string };
+    expect(tokenJson.access_token, 'Should have received an access token').toBeTruthy();
+    return tokenJson.access_token;
+  }
+
+  beforeAll(async () => {
+    if (!canRun) return;
+
+    // ── Create Cognito user pool as OIDC provider ──
+    const suffix = randomUUID().slice(0, 8);
+    const poolName = `agentcore-e2e-hrns-jwt-${suffix}`;
+    domainPrefix = `agentcore-e2e-hrns-jwt-${suffix}`;
+
+    const poolResult = await cognitoClient.send(new CreateUserPoolCommand({ PoolName: poolName }));
+    userPoolId = poolResult.UserPool!.Id!;
+
+    await cognitoClient.send(new CreateUserPoolDomainCommand({ UserPoolId: userPoolId, Domain: domainPrefix }));
+
+    await cognitoClient.send(
+      new CreateResourceServerCommand({
+        UserPoolId: userPoolId,
+        Identifier: 'agentcore',
+        Name: 'AgentCore API',
+        Scopes: [{ ScopeName: 'invoke', ScopeDescription: 'Invoke the runtime' }],
+      })
+    );
+
+    const clientResult = await cognitoClient.send(
+      new CreateUserPoolClientCommand({
+        UserPoolId: userPoolId,
+        ClientName: 'e2e-test-client',
+        GenerateSecret: true,
+        AllowedOAuthFlows: ['client_credentials'],
+        AllowedOAuthScopes: ['agentcore/invoke'],
+        AllowedOAuthFlowsUserPoolClient: true,
+        ExplicitAuthFlows: ['ALLOW_REFRESH_TOKEN_AUTH'],
+      })
+    );
+    clientId = clientResult.UserPoolClient!.ClientId!;
+    clientSecret = clientResult.UserPoolClient!.ClientSecret!;
+
+    discoveryUrl = `https://cognito-idp.${region}.amazonaws.com/${userPoolId}/.well-known/openid-configuration`;
+
+    // ── Create a no-agent project, then add a CUSTOM_JWT harness via the CLI ──
+    // Going through `add harness` with --client-id/--client-secret (rather than patching
+    // harness.json directly) registers the managed OAuth credential and writes the client
+    // secret to .env.local — the prerequisites for `fetch access --type harness` to mint a
+    // bearer token. It also mirrors the real user flow end to end.
+    testDir = join(tmpdir(), `agentcore-e2e-hrns-jwt-${randomUUID()}`);
+    await mkdir(testDir, { recursive: true });
+
+    const projectName = `E2eHrnsJwt${String(Date.now()).slice(-8)}`;
+    harnessName = projectName;
+    const createResult = await runCLI(
+      ['create', '--name', projectName, '--no-agent', '--json', '--skip-git'],
+      testDir,
+      {
+        skipInstall: false,
+      }
+    );
+    expect(createResult.exitCode, `Create failed: ${createResult.stderr}`).toBe(0);
+    const createJson = parseJsonOutput(createResult.stdout) as { projectPath: string };
+    projectPath = createJson.projectPath;
+
+    const addResult = await runCLI(
+      [
+        'add',
+        'harness',
+        '--name',
+        harnessName,
+        '--model-provider',
+        'bedrock',
+        '--no-memory',
+        '--authorizer-type',
+        'CUSTOM_JWT',
+        '--discovery-url',
+        discoveryUrl,
+        '--allowed-audience',
+        clientId,
+        '--client-id',
+        clientId,
+        '--client-secret',
+        clientSecret,
+        '--json',
+      ],
+      projectPath,
+      { skipInstall: false }
+    );
+    expect(addResult.exitCode, `Add harness failed: ${addResult.stderr}`).toBe(0);
+
+    await writeAwsTargets(projectPath);
+    installCdkTarball(projectPath);
+  }, 300000);
+
+  afterAll(async () => {
+    if (!canRun) return;
+
+    // ── Tear down deployed stack ──
+    if (projectPath) {
+      try {
+        await runCLI(['remove', 'all', '--json'], projectPath, { skipInstall: false });
+        await runCLI(['deploy', '--yes', '--json'], projectPath, { skipInstall: false });
+      } catch {
+        // Best-effort cleanup
+      }
+    }
+
+    // ── Delete Cognito resources ──
+    if (userPoolId) {
+      try {
+        await cognitoClient.send(new DeleteResourceServerCommand({ UserPoolId: userPoolId, Identifier: 'agentcore' }));
+      } catch {
+        /* best-effort */
+      }
+      try {
+        await cognitoClient.send(new DeleteUserPoolDomainCommand({ UserPoolId: userPoolId, Domain: domainPrefix }));
+      } catch {
+        /* best-effort */
+      }
+      try {
+        await cognitoClient.send(new DeleteUserPoolCommand({ UserPoolId: userPoolId }));
+      } catch {
+        /* best-effort */
+      }
+    }
+
+    if (testDir) {
+      await rm(testDir, { recursive: true, force: true, maxRetries: 3, retryDelay: 1000 });
+    }
+  }, 600000);
+
+  it.skipIf(!canRun)(
+    'deploys with CUSTOM_JWT authorizer configuration',
+    async () => {
+      expect(projectPath, 'Project should have been created').toBeTruthy();
+
+      const result = await runCLI(['deploy', '--yes', '--json'], projectPath, { skipInstall: false });
+
+      if (result.exitCode !== 0) {
+        console.log('Deploy stdout:', result.stdout);
+        console.log('Deploy stderr:', result.stderr);
+      }
+      expect(result.exitCode, `Deploy failed: ${result.stderr}`).toBe(0);
+
+      const json = parseJsonOutput(result.stdout) as { success: boolean; stackName: string };
+      expect(json.success, 'Deploy should report success').toBe(true);
+
+      // Verify the CloudFormation template carries the harness AuthorizerConfiguration.
+      const templateResult = await cfnClient.send(new GetTemplateCommand({ StackName: json.stackName }));
+      const template = JSON.parse(templateResult.TemplateBody!) as {
+        Resources: Record<string, { Type: string; Properties: Record<string, unknown> }>;
+      };
+
+      const harnessResource = Object.values(template.Resources).find(r => r.Type === 'AWS::BedrockAgentCore::Harness');
+      expect(harnessResource, 'Template should contain a Harness resource').toBeDefined();
+
+      const authConfig = harnessResource!.Properties.AuthorizerConfiguration as {
+        CustomJWTAuthorizer: { DiscoveryUrl: string; AllowedAudience: string[] };
+      };
+      expect(authConfig, 'Harness should have AuthorizerConfiguration').toBeDefined();
+      expect(authConfig.CustomJWTAuthorizer.DiscoveryUrl).toBe(discoveryUrl);
+      expect(authConfig.CustomJWTAuthorizer.AllowedAudience).toContain(clientId);
+    },
+    600000
+  );
+
+  it.skipIf(!canRun)(
+    'rejects SigV4 invocation (auth method mismatch)',
+    async () => {
+      // The CLI uses SigV4 by default — a CUSTOM_JWT harness should reject it.
+      const result = await runCLI(
+        ['invoke', '--harness', harnessName, '--prompt', 'Say hello', '--json'],
+        projectPath,
+        { skipInstall: false }
+      );
+
+      const output = stripAnsi(result.stdout + result.stderr);
+      expect(result.exitCode, `failure: stderr=${result.stderr}\n\nstdout=${result.stdout}`).not.toBe(0);
+      expect(output).toMatch(customJWTRejectMsgRegex);
+    },
+    180000
+  );
+
+  it.skipIf(!canRun)(
+    'invokes with bearer token successfully',
+    async () => {
+      const accessToken = await fetchCognitoAccessToken();
+
+      const result = await runCLI(
+        ['invoke', '--harness', harnessName, '--prompt', 'Say hello', '--bearer-token', accessToken, '--json'],
+        projectPath,
+        { skipInstall: false }
+      );
+
+      const output = stripAnsi(result.stdout + result.stderr);
+      // May still fail for unrelated reasons, but NOT with an auth-method mismatch.
+      expect(output).not.toMatch(customJWTRejectMsgRegex);
+    },
+    180000
+  );
+
+  it.skipIf(!canRun)(
+    'fetch access --type harness returns a CUSTOM_JWT bearer token',
+    async () => {
+      const result = await runCLI(
+        ['fetch', 'access', '--type', 'harness', '--name', harnessName, '--json'],
+        projectPath,
+        { skipInstall: false }
+      );
+
+      expect(result.exitCode, `fetch access failed: stderr=${result.stderr}\n\nstdout=${result.stdout}`).toBe(0);
+
+      const json = parseJsonOutput(result.stdout) as {
+        success: boolean;
+        authType: string;
+        token?: string;
+        expiresIn?: number;
+      };
+      expect(json.success).toBe(true);
+      expect(json.authType).toBe('CUSTOM_JWT');
+      expect(json.token, 'Should return a bearer token').toBeTruthy();
+
+      // The token is a real OIDC JWT minted via the managed OAuth credential — sanity-check
+      // its issuer/client claims match the Cognito pool this harness was configured against.
+      const claims = JSON.parse(Buffer.from(json.token!.split('.')[1]!, 'base64url').toString('utf-8')) as {
+        iss: string;
+        client_id?: string;
+      };
+      expect(claims.iss).toBe(`https://cognito-idp.${region}.amazonaws.com/${userPoolId}`);
+      expect(claims.client_id).toBe(clientId);
+    },
+    180000
+  );
+
+  it.skipIf(!canRun)(
+    'status shows the deployed harness',
+    async () => {
+      const result = await runCLI(['status', '--json'], projectPath, { skipInstall: false });
+      expect(result.exitCode, `Status failed: ${result.stderr}`).toBe(0);
+
+      const json = parseJsonOutput(result.stdout) as {
+        success: boolean;
+        resources: { resourceType: string; name: string; deploymentState: string }[];
+      };
+      expect(json.success).toBe(true);
+
+      const harness = json.resources.find(r => r.resourceType === 'harness' && r.name === harnessName);
+      expect(harness, `Harness "${harnessName}" should appear in status`).toBeDefined();
+      expect(harness!.deploymentState).toBe('deployed');
+    },
+    120000
+  );
+});
diff --git a/e2e-tests/harness-e2e-helper.ts b/e2e-tests/harness-e2e-helper.ts
@@ -12,9 +12,15 @@ const hasAws = hasAwsCredentials();
 const baseCanRun = prereqs.npm && prereqs.git && hasAws;
 
 interface HarnessE2EConfig {
-  modelProvider: 'bedrock' | 'open_ai' | 'gemini';
+  modelProvider: 'bedrock' | 'open_ai' | 'gemini' | 'lite_llm';
+  /** Override the model ID (otherwise create's per-provider default is used). */
+  modelId?: string;
   /** Env var holding the API key ARN — its value is passed as --api-key-arn. */
   apiKeyArnEnvVar?: string;
+  /** LiteLLM only: base URL for the third-party provider, passed as --api-base. */
+  apiBase?: string;
+  /** LiteLLM only: provider-specific params (JSON string), passed as --additional-params. */
+  additionalParams?: string;
   skipMemory?: boolean;
   skipInvoke?: boolean;
 }
@@ -24,7 +30,13 @@ export function createHarnessE2ESuite(cfg: HarnessE2EConfig) {
   const canRun = baseCanRun && hasRequiredVar;
 
   const providerLabel =
-    cfg.modelProvider === 'open_ai' ? 'OpenAI' : cfg.modelProvider === 'gemini' ? 'Gemini' : 'Bedrock';
+    cfg.modelProvider === 'open_ai'
+      ? 'OpenAI'
+      : cfg.modelProvider === 'gemini'
+        ? 'Gemini'
+        : cfg.modelProvider === 'lite_llm'
+          ? 'LiteLLM'
+          : 'Bedrock';
 
   // note: this is created outside of beforeAll since beforeAll is skipped if all tests are skipped.
   const logger = getLogger(`harness-${providerLabel.toLowerCase()}`);
@@ -60,10 +72,22 @@ export function createHarnessE2ESuite(cfg: HarnessE2EConfig) {
         '--skip-git',
       ];
 
+      if (cfg.modelId) {
+        createArgs.push('--model-id', cfg.modelId);
+      }
+
       if (cfg.apiKeyArnEnvVar && process.env[cfg.apiKeyArnEnvVar]) {
         createArgs.push('--api-key-arn', process.env[cfg.apiKeyArnEnvVar]!);
       }
 
+      if (cfg.apiBase) {
+        createArgs.push('--api-base', cfg.apiBase);
+      }
+
+      if (cfg.additionalParams) {
+        createArgs.push('--additional-params', cfg.additionalParams);
+      }
+
       if (cfg.skipMemory) {
         createArgs.push('--no-harness-memory');
       }

diff --git a/e2e-tests/harness-litellm.test.ts b/e2e-tests/harness-litellm.test.ts
@@ -0,0 +1,12 @@
+import { createHarnessE2ESuite } from './harness-e2e-helper.js';
+
+// LiteLLM provider routed at a Bedrock model so the deploy needs no third-party API key
+// (LiteLLM's bedrock backend uses the runtime execution role's IAM). Invoke is skipped: the
+// bedrock suite already proves the invoke path, and this case exists to prove the lite_llm
+// model config (provider + bedrock routing) is accepted by CloudFormation on a real deploy.
+createHarnessE2ESuite({
+  modelProvider: 'lite_llm',
+  modelId: 'bedrock/global.anthropic.claude-sonnet-4-6',
+  skipMemory: true,
+  skipInvoke: true,
+});