Al usar AWS re:Post, aceptas las AWS re:Post Términos de uso
AWS re:Postre:Post

How do I Read PrincipalTags from Cognito Identity?

1

Suppose I have a Cognito Identity Pool. I want to grab info about the user itself rather than their Cognito Identity ID.

Is there any way to read off the principal tags from the assumed Cognito Identity or the underlying IAM Role?

Alternatively I could parse the "sub" attribute from the oidc provider (via the cognito identity's amr block) and work backwards with the identity provider to get more info... but this is resource intensive and I see no reason why I can't access the principal tags passed into the cognito identity...

Temas
Seguridad, identidad y cumplimiento
Etiquetas
AWS Identity and Access ManagementAmazon CognitoPolíticas de IAM
Idioma
English
Brandon-Ellis-AI
preguntada hace 2 años356 visualizaciones
1 Respuesta
1

Currently there is not a way to pull User data in the way you are looking. Once the Identity Pool is leveraged, the ID is all that is available to track actions within AWS. The Identity Pool only handles the Auth Z portion of the transaction and does not keep or pass along user data even if leveraging Cognito UserPools.

AWS
JMWare
respondido hace 2 años
  • Nicolas
    hace 9 meses

    Since there is a tag mapping feature in ID pools, I would expect to be able to retrieve these tags. Will it ever happen ?

No has iniciado sesión. Iniciar sesión para publicar una respuesta.

Una buena respuesta responde claramente a la pregunta, proporciona comentarios constructivos y fomenta el crecimiento profesional en la persona que hace la pregunta.

Pautas para responder preguntas

Contenido relevante