import json


INVALID_CREDS = {
  "Code" : "Success",
  "LastUpdated" : "2025-06-16T03:13:37Z",
  "Type" : "AWS-HMAC",
  "AccessKeyId" : "ASIANOTAREALKEYAAAAA",
  "SecretAccessKey" : "enJcybEXjoKtBJg6LLaaaAAADAQaqaDDaBdgP6Ax",
  "Token" : "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",
  "Expiration" : "2025-06-16T09:42:39Z"
}


def lambda_handler(event, context):
    cf = event['Records'][0]['cf']
    request = cf['request']

    # Check for presence of 'x-amzn-waf-attack-type' custom header and compare with different attack types
    if 'x-amzn-waf-attack-type' in request['headers']:
        if request['headers']['x-amzn-waf-attack-type'][0]['value'] == 'sqli-query':
            return {
                'status': '200',
                'statusDescription': 'Ok',
                'headers': {
                    'content-type': [{
                        'key': 'Content-Type',
                        'value': 'text/plain'
                    }]
                },
                'body': 'admin,pwd123#'
            }
        elif request['headers']['x-amzn-waf-attack-type'][0]['value'] == 'ssrf-query':
            return {
                'status': '200',
                'statusDescription': 'Ok',
                'headers': {
                    'content-type': [{
                        'key': 'Content-Type',
                        'value': 'application/json'
                    }]
                },
                'body': json.dumps(INVALID_CREDS, indent=2)
            }
    # no match, carry on
    return request