Usando AWS re:Post, accetti AWS re:Post Termini di utilizzo
AWS re:Postre:Post

cognito client_credential flow using lambda triggers

0

Good morning I have the following scenario protecting the cognito client_credential flow with additional programmatic control using cognito lambda triggers. After a bit of testing and reading the documentation I saw that the lambda triggers are only valid for user-type flow access and not for the client_credential flow. There is a way to add on cognito or with an external AWS service (like WAF ACL) to limit a maximum of 24 tokens per day for a single clientId always flow client_credential. Thanks in advance

Argomenti
Sicurezza, identità e conformità
Tag
AWS WAFAmazon CognitoBacini di utenza di Amazon Cognito
Lingua
English
tino
posta un mese fa624 visualizzazioni
1 Risposta
0

Currently, no lambda trigger would be fired during client_credential flow. So, you might build one own backend REST API to relay the client credential flow request and control the access there. one own backend REST API - could be implemented by APIGateway+lambda serverless or a EC2 or any other possible REST API framework you like.

profile pictureAWS
Yungang
con risposta un mese fa

Accesso non effettuato. Accedi per postare una risposta.

Una buona risposta soddisfa chiaramente la domanda, fornisce un feedback costruttivo e incoraggia la crescita professionale del richiedente.

Linee guida per rispondere alle domande

Contenuto pertinente