Unauthenticated AppSync Resolvers


I am using AppSync as my API for my application. I would like a few basic features to be available to users who haven't signed in yet. I'm aware that it is possible to use IAM authentication and to create a temporary AssumeRole call to an unprivileged role and use that with IAM authorization, but I'd really much prefer to be able to designate certain resolvers are not requiring any authentication. Is this possible? I don't want to have part of my app be a GraphQL API for authenticated users and part of it be a REST API for unauthenticated users.

1 Answer

I found this blog post here which should help you: https://www.sedkodes.com/blog/aws-appsync-for-unauthenticated-users

It uses a Cognito authorization mode with an "unauthenticated" user group

profile picture
answered 10 months ago

You are not logged in. Log in to post an answer.

A good answer clearly answers the question and provides constructive feedback and encourages professional growth in the question asker.

Guidelines for Answering Questions