Usando AWS re:Post, accetti AWS re:Post Termini di utilizzo
AWS re:Postre:Post

Is it possible to use IAM and Secure Token Service as the authentication solution for an application?

0

The reasons for considering this are:

  • The number of authenticated users is low, and leveraging the roles and permissions model in AWS would be useful.
  • Unifies the audit processes
  • Allows users of our application to also access AWS features like dashboards, logging etc.

I think it may be possible with API Gateway, but I couldn't see something in the docs that would pass a username or a verification result through the HTTP headers.

Argomenti
Sicurezza, identità e conformitàServerlessFront-end web e dispositivi mobiliNetworking e distribuzione di contenuti
Tag
Gestione identità e accesso AWSGateway API di Amazon
Lingua
English
FT
posta 2 anni fa515 visualizzazioni
2 Risposte
1

It looks like Cognito Identity Pools is what you are looking for. This lets you map IAM roles to identities. For defining the actual user, password, etc to define the identity you will use with Identity Pools, you can use Amazon Cognito user pools, but you do not have to. Cognito Identity Pools will also work with user IDs defined on Facebook, Google, etc.

profile pictureAWS
setheliot
con risposta 2 anni fa
  • FT
    2 anni fa

    Thanks setheliot, do you know if it is possible to convert a Cognito session's IAM role into a web session for a user to go to the AWS web console?

0

I think what you are looking for is AWS Single Sign-On.

Another option would be Amazon Cognito.

profile pictureAWS
ESPERTO
kentrad
con risposta 2 anni fa
  • FT
    2 anni fa

    Thanks kentrad, Do you know if you can use an Amazon Cognito endpoint as an AWS Single Sign-On provider? I suspect that may be the way to give a person access to the web AWS console, but it wasn't clear how to configure it that way.

Accesso non effettuato. Accedi per postare una risposta.

Una buona risposta soddisfa chiaramente la domanda, fornisce un feedback costruttivo e incoraggia la crescita professionale del richiedente.

Linee guida per rispondere alle domande

Contenuto pertinente