Where can we find reference code or instruction to do practical by ourself

This is completely user-specific. How will we able to build a multi-tenant solution for M2M communication models(like aws IoT)? Do we have any document /guideline for that?

How does one develop all this custom authorizer, policy construction locally?

Great video, is there any reasons for not using aws-sdk in your app?

In the invoking application slide (kzbin.info/www/bejne/o6i0Zp-fpayHeKs) are you sending the access_token or the id_token in the Authorization:Bearer header? the access_token doesn't have any claims with custom attributes, only the id_token has the claims in the payload. Can you clarify that point? or can you configure Cognito to include custom claims in the access_token?

Oh my god, this code is awful. Looks like JS from the stone age.