En utilisant AWS re:Post, vous acceptez les AWS re:Post Conditions d’utilisation
AWS re:Postre:Post

Is it possible to use IAM and Secure Token Service as the authentication solution for an application?

0

The reasons for considering this are:

  • The number of authenticated users is low, and leveraging the roles and permissions model in AWS would be useful.
  • Unifies the audit processes
  • Allows users of our application to also access AWS features like dashboards, logging etc.

I think it may be possible with API Gateway, but I couldn't see something in the docs that would pass a username or a verification result through the HTTP headers.

Sujets
Sécurité, identité et conformitéSans serveurWeb et mobile front-endRéseaux et diffusion de contenu
Balises
Gestion des identités et des accès AWSPasserelle API Amazon
Langue
English
FT
demandé il y a 2 ans498 vues
2 réponses
1

It looks like Cognito Identity Pools is what you are looking for. This lets you map IAM roles to identities. For defining the actual user, password, etc to define the identity you will use with Identity Pools, you can use Amazon Cognito user pools, but you do not have to. Cognito Identity Pools will also work with user IDs defined on Facebook, Google, etc.

profile pictureAWS
setheliot
répondu il y a 2 ans
  • FT
    il y a 2 ans

    Thanks setheliot, do you know if it is possible to convert a Cognito session's IAM role into a web session for a user to go to the AWS web console?

0

I think what you are looking for is AWS Single Sign-On.

Another option would be Amazon Cognito.

profile pictureAWS
EXPERT
kentrad
répondu il y a 2 ans
  • FT
    il y a 2 ans

    Thanks kentrad, Do you know if you can use an Amazon Cognito endpoint as an AWS Single Sign-On provider? I suspect that may be the way to give a person access to the web AWS console, but it wasn't clear how to configure it that way.

Vous n'êtes pas connecté. Se connecter pour publier une réponse.

Une bonne réponse répond clairement à la question, contient des commentaires constructifs et encourage le développement professionnel de la personne qui pose la question.

Instructions pour répondre aux questions

Contenus pertinents