En utilisant AWS re:Post, vous acceptez les AWS re:Post Conditions d’utilisation
AWS re:Postre:Post

Amazon Chat widget access error - 403 explicit deny

0

Hello,

We implemented Amazon Connect built-in Chat widget (security enabled) in one AWS account, everything works fine including serving JWT tokens, passing contact attributes etc.

We are now trying to implement similar configuration in a new account (new Connect instance). The Web Chat widget is giving us this error: {"code": 403, "msg": "User is not authorized to access this resource with an explicit deny"}

This error looks like coming from an API gateway to serve the widget frame code (once we click on the chat icon), but we have no control over the user or IAM policies as we are not using API directly and the built-in widget is making these calls. Not sure where to look, as we checked and rechecked everything (CORS domain settings, Snippet ID, Chat Widget etc.). The widget works fine once we turn-off security.

Any ideas? Thanks much.

Sujets
Sécurité, identité et conformitéIntégration d'applicationsApplications commercialesFramework AWS Well-Architected
Balises
Gestion des identités et des accès AWSAmazon ConnectSécurité
Langue
English
TalkFirst
demandé il y a un an623 vues
1 réponse
1
Réponse acceptée

Solved, the issue has to do with the URL for chat javascript file. We used the same URL in two different connect instance widgets.

TalkFirst
répondu il y a un an

Vous n'êtes pas connecté. Se connecter pour publier une réponse.

Une bonne réponse répond clairement à la question, contient des commentaires constructifs et encourage le développement professionnel de la personne qui pose la question.

Instructions pour répondre aux questions

Contenus pertinents