Durch die Nutzung von AWS re:Post stimmt du den AWS re:Post Nutzungsbedingungen
AWS re:Postre:Post

OAuth Scope based Authorization in AppSync

0

Assume we have Cognito user pools with one application (ex: photos app) with custom scopes defined (ex: photos.read). In https API GW, we can restrict the access using the scope and audience. This article is explains using group claims - https://aws.amazon.com/blogs/mobile/graphql-security-appsync-amplify/. Can we do similar authorization based on OAuth scope ?

Themen
ServerlosFrontend-Web & MobileAnwendungsintegrationVernetzung & Bereitstellung von InhaltenSicherheit, Identität & Konformität
Tags
AWS AppSyncAmazon API-GatewayAWS AmplifyAmazon Cognito
Sprache
English
Navin GV
gefragt vor 2 Jahren555 Aufrufe
1 Antwort
1

Hello!

I was taking a peek at your question and conversing with some colleagues, and I think I may have found an example CDK (AWS Cloud Development Kit) example that you may be able to test this with:

https://serverlessland.com/patterns/eventbridge-api-appsync-cdk

The serverlessland.com website is a site that our serverless developer advocates curate serverless patterns on, and after taking a peek at the page and corresponding GitHub page, I think this may be able to get you a head start on testing this.

Note it may spin up some infrastructure you don't need, but it will give you start on automating your deployments.

AWS
SUPPORT-TECHNIKER
Tim_P
beantwortet vor 2 Jahren

Du bist nicht angemeldet. Anmelden um eine Antwort zu veröffentlichen.

Eine gute Antwort beantwortet die Frage klar, gibt konstruktives Feedback und fördert die berufliche Weiterentwicklung des Fragenstellers.

Richtlinien für die Beantwortung von Fragen

Relevanter Inhalt