2 Answers
- Newest
- Most votes
- Most comments
0
Hi jai,
Using Cognito groups with IsAuthorizedWithToken() call is not yet supported. You have a couple of alternatives:
- Switching to use isAuthorized() and manually verifying / unpacking token and then constructing principal portion of entity slice yourself
- Using scope from access token as a way to match mulitple users
answered 6 months ago
0
Unfortunately the isAuthzWithToken API does not currently support groups.
I would recommend using the plain vanilla IsAuthorized API instead. In this scenario, you would translate the token to a user entity and pass the entity to the IsAuthz API. You can find sample code for translating the entity and sending it to AVP here
answered 6 months ago
Relevant content
- Accepted Answerasked 9 months ago
- Accepted Answerasked 4 months ago
- AWS OFFICIALUpdated a year ago
- AWS OFFICIALUpdated a year ago
- AWS OFFICIALUpdated 2 years ago
- AWS OFFICIALUpdated a year ago
Hi maxim, i think each clientIds under we are creating the users, i have doubt to match the multiple users under a particular clientId giving some restrictions.How we can handle scope variable because all scope values are same for every users
can we add custom claims or modify instead of cognito groups in access token