En utilisant AWS re:Post, vous acceptez les AWS re:Post Conditions d’utilisation
AWS re:Postre:Post

cognito client_credential flow using lambda triggers

0

Good morning I have the following scenario protecting the cognito client_credential flow with additional programmatic control using cognito lambda triggers. After a bit of testing and reading the documentation I saw that the lambda triggers are only valid for user-type flow access and not for the client_credential flow. There is a way to add on cognito or with an external AWS service (like WAF ACL) to limit a maximum of 24 tokens per day for a single clientId always flow client_credential. Thanks in advance

Sujets
Sécurité, identité et conformité
Balises
AWS WAFAmazon CognitoGroupes d'utilisateurs d’Amazon Cognito
Langue
English
tino
demandé il y a un mois618 vues
1 réponse
0

Currently, no lambda trigger would be fired during client_credential flow. So, you might build one own backend REST API to relay the client credential flow request and control the access there. one own backend REST API - could be implemented by APIGateway+lambda serverless or a EC2 or any other possible REST API framework you like.

profile pictureAWS
Yungang
répondu il y a un mois

Vous n'êtes pas connecté. Se connecter pour publier une réponse.

Une bonne réponse répond clairement à la question, contient des commentaires constructifs et encourage le développement professionnel de la personne qui pose la question.

Instructions pour répondre aux questions

Contenus pertinents