docs(aws-lambda) add a reminding note for URI-encoded secrets in payl…

…oads Follow-up doc improvement for Kong/kong#2651
Kong · Jul 13, 2017 · e56055b · e56055b
1 parent f66e23d
commit e56055b
Showing 1 changed file with 11 additions and 3 deletions.
diff --git a/app/plugins/aws-lambda.md b/app/plugins/aws-lambda.md
@@ -29,18 +29,26 @@ Configuring the plugin is straightforward, you can add it on top of an
 ```bash
 $ curl -X POST http://kong:8001/apis/{api}/plugins \
     --data "name=aws-lambda" \
-    --data "config.aws_key=AWS_KEY" \
-    --data "config.aws_secret=AWS_SECRET" \
+    --data-urlencode "config.aws_key=AWS_KEY" \
+    --data-urlencode "config.aws_secret=AWS_SECRET" \
     --data "config.aws_region=AWS_REGION" \
     --data "config.function_name=LAMBDA_FUNCTION_NAME"
 ```
 
 `api`: The `id` or `name` of the API that this plugin configuration will target
 
-You can also apply it for every API using the `http://kong:8001/plugins/`
+You can also apply this plugin for every API using the `http://kong:8001/plugins/`
 endpoint. Read the [Plugin Reference](/docs/latest/admin-api/#add-plugin)
 for more information.
 
+**Reminder**: curl by default sends payloads with an
+`application/x-www-form-urlencoded` MIME type, which will naturally be URL-
+decoded by Kong. To ensure special characters that are likely to appear in your
+AWS key or secret (like `+`) are correctly decoded, you must URL-encode them,
+hence use `--date-urlencode` if you are using curl. Alternatives to this
+approach would be to send your payload with a different MIME type (like
+`application/json`), or to use a different HTTP client.
+
 form parameter                             | default | description
 ---                                        | ---     | ---
 `name`                                     |         | The name of the plugin to use, in this case: `aws-lambda`