En utilisant AWS re:Post, vous acceptez les AWS re:Post Conditions d’utilisation
AWS re:Postre:Post

How do I Read PrincipalTags from Cognito Identity?

1

Suppose I have a Cognito Identity Pool. I want to grab info about the user itself rather than their Cognito Identity ID.

Is there any way to read off the principal tags from the assumed Cognito Identity or the underlying IAM Role?

Alternatively I could parse the "sub" attribute from the oidc provider (via the cognito identity's amr block) and work backwards with the identity provider to get more info... but this is resource intensive and I see no reason why I can't access the principal tags passed into the cognito identity...

Sujets
Sécurité, identité et conformité
Balises
Gestion des identités et des accès AWSAmazon CognitoPolitiques IAM
Langue
English
Brandon-Ellis-AI
demandé il y a 2 ans349 vues
1 réponse
1

Currently there is not a way to pull User data in the way you are looking. Once the Identity Pool is leveraged, the ID is all that is available to track actions within AWS. The Identity Pool only handles the Auth Z portion of the transaction and does not keep or pass along user data even if leveraging Cognito UserPools.

AWS
JMWare
répondu il y a 2 ans
  • Nicolas
    il y a 8 mois

    Since there is a tag mapping feature in ID pools, I would expect to be able to retrieve these tags. Will it ever happen ?

Vous n'êtes pas connecté. Se connecter pour publier une réponse.

Une bonne réponse répond clairement à la question, contient des commentaires constructifs et encourage le développement professionnel de la personne qui pose la question.

Instructions pour répondre aux questions

Contenus pertinents