AWS IAM Policy that allows a Cognito User to update their own Pinpoint token ID

Hello,

I am working on implementing push notifications for our end-user app (iOS only right now), and I am looking to write a policy that allows the currently logged in Cognito User to update their own Pinpoint Endpoint with their token ID for APNS.

Right now there is a 1-1 relationship between Pinpoint Apps and Cognito User Pools, so I'd like for users to be able to call updateEndpoint to update with their token ID for APNS. In pseudo-code, I'd like a policy that allows

mobiletargeting:updateEndpoint
condition:
- cognito user (or identity) == endpoint

Do you have any good ways to go about this? For what it's worth, we are not using Amplify, and we are using Flutter as the front-end.

Topics

Security, Identity, & Compliance Front-End Web & Mobile Business Applications AWS Well-Architected Framework

Relevant content

Pinpoint push notifications on Android
Frank
asked a year ago
Policy for allowing SSO users to change only their own information?
rePost-User-3115414
asked a year ago
AWS Pinpoint push notification not delivered using campaign in iOS
Dinesh
asked 3 months ago
AWS Pinpoint Push Notifications and Apple Tracking Transparency
the-smart-home-maker
asked 3 years ago
How do I allow users to authenticate to an Amazon RDS for MySQL DB instance using their IAM credentials?
AWS OFFICIALUpdated a year ago
Why am I getting the error "Invalid principal in policy" when I try to update my Amazon S3 bucket policy?
AWS OFFICIALUpdated a year ago
Why is my push notification endpoint not active?
AWS OFFICIALUpdated 10 months ago
How do I troubleshoot “DeviceTokenNotForTopic” errors when publishing APNs push notifications through Amazon SNS or Amazon Pinpoint?
AWS OFFICIALUpdated 2 years ago
AWS Cognito Finally Supports Custom Claims for Access Tokens
EXPERT
Antonio_Lagrotteria
published a month ago
How to Implement OpenID on AWS
EXPERT
Sedat Salman
published a year ago