Figured it out.
In Cognito, add an attribute for pub rsa keys. You can either validate in custom identity provider the sourceIp or whether user exists in cognito, and then include in the response, along with Role and Policy, an array of PublicKeys:
- asked 4 years ago
- AWS OFFICIALUpdated a year ago
- AWS OFFICIALUpdated 3 months ago
- AWS OFFICIALUpdated 2 months ago
- EXPERTpublished 6 months ago
- EXPERTpublished 21 days ago