Al usar AWS re:Post, aceptas las AWS re:Post Términos de uso
AWS re:Postre:Post

cognito client_credential flow using lambda triggers

0

Good morning I have the following scenario protecting the cognito client_credential flow with additional programmatic control using cognito lambda triggers. After a bit of testing and reading the documentation I saw that the lambda triggers are only valid for user-type flow access and not for the client_credential flow. There is a way to add on cognito or with an external AWS service (like WAF ACL) to limit a maximum of 24 tokens per day for a single clientId always flow client_credential. Thanks in advance

Temas
Seguridad, identidad y cumplimiento
Etiquetas
AWS WAFAmazon CognitoGrupos de usuarios de Amazon Cognito
Idioma
English
tino
preguntada hace un mes613 visualizaciones
1 Respuesta
0

Currently, no lambda trigger would be fired during client_credential flow. So, you might build one own backend REST API to relay the client credential flow request and control the access there. one own backend REST API - could be implemented by APIGateway+lambda serverless or a EC2 or any other possible REST API framework you like.

profile pictureAWS
Yungang
respondido hace un mes

No has iniciado sesión. Iniciar sesión para publicar una respuesta.

Una buena respuesta responde claramente a la pregunta, proporciona comentarios constructivos y fomenta el crecimiento profesional en la persona que hace la pregunta.

Pautas para responder preguntas

Contenido relevante