cognito client_credential flow using lambda triggers

Good morning I have the following scenario protecting the cognito client_credential flow with additional programmatic control using cognito lambda triggers. After a bit of testing and reading the documentation I saw that the lambda triggers are only valid for user-type flow access and not for the client_credential flow. There is a way to add on cognito or with an external AWS service (like WAF ACL) to limit a maximum of 24 tokens per day for a single clientId always flow client_credential. Thanks in advance

주제

보안, 신원 및 규정 준수

태그

AWS WAF 아마존 Cognito 아마존 코그니토 사용자 풀

언어

English

tino

질문됨 한 달 전621회 조회

1개 답변

최신
최다 투표
가장 많은 댓글

이 답변이 도움이 되었나요?커뮤니티가 여러분의 지식을 활용할 수 있도록 정답을 찬성하세요.

Currently, no lambda trigger would be fired during client_credential flow. So, you might build one own backend REST API to relay the client credential flow request and control the access there. one own backend REST API - could be implemented by APIGateway+lambda serverless or a EC2 or any other possible REST API framework you like.

Yungang

답변함 한 달 전

cognito client_credential flow using lambda triggers

관련 콘텐츠