Questions tagged with AWS Identity and Access Management

Content language: English

Sort by most recent

Browse through the questions and answers listed below or filter and sort to narrow down your results.

IAM Policy Grammar - Clarification

Had a question around the policy grammar of IAM. In https://docs.aws.amazon.com/IAM/latest/UserGuide/reference_policies_grammar.html#policies-grammar-notes, towards the end of the grammar it says, ``` <condition_block> = "Condition" : { <condition_map> } <condition_map> = { <condition_type_string> : { <condition_key_string> : <condition_value_list> }, <condition_type_string> : { <condition_key_string> : <condition_value_list> }, ... } <condition_value_list> = [<condition_value>, <condition_value>, ...] <condition_value> = ("string" | "number" | "Boolean") ``` However, in this page https://docs.aws.amazon.com/IAM/latest/UserGuide/reference_policies_multi-value-conditions.html, I see the following example, ``` "Condition": { "StringEqualsIgnoreCase": { "aws:PrincipalTag/department": [ "finance", "hr", "legal" ], "aws:PrincipalTag/role": [ "audit", "security" ] }, "StringEquals": { "aws:PrincipalAccount": "123456789012" } } ``` So, shouldn't the grammar be the following? ``` <condition_block> = "Condition" : { <condition_map> } <condition_map> = { <condition_type_string> : { <condition_key_string> : <condition_value_list>, <condition_key_string> : <condition_value_list>, ... }, <condition_type_string> : { <condition_key_string> : <condition_value_list>, <condition_key_string> : <condition_value_list>, ... }, ... } <condition_value_list> = [<condition_value>, <condition_value>, ...] ``` Did I not understand correctly? If I did, which one is correct, the example or the grammar?
1
answers
0
votes
35
views
asked 17 days ago
1
answers
0
votes
29
views
asked 25 days ago

How to know if a specific user is verified using the amazon-cognito-identity-js module if the type of the verification message is a link?

I'm building a mobile app with React Native that manages user registration and authentication with AWS Cognito. In order to integrate Cognito with my project I use amazon-cognito-identity-js. In order to verify the email of the recently added user I send a verification link (not verification code) that verifies the user if he clicks on it. After the user clicks the link, the confirmation status of the user changes from Unconfirmed to Confirmed inside the AWS Cognito console, and that's great, but I need to know from the JavaScript code if the user is indeed verified. What i'm supposed to do? I already know that if I send a verification code and not a link there's no problem because inside the app the user inputs the verification code previously received and then I just have to call the `CognitoUser.confirmRegistration(code: string, ...)` method in order to allow the user to continue with the registration process inside my app. If I Use a verification link I can't use that method because it takes a code as an argument. Checking [the only ressource available for amazon-cognito-identity-js](https://www.npmjs.com/package/amazon-cognito-identity-js) I found that there's not an attribute or method that let's you know if an specific user is verified or not, and if I'm not able to know if the user is verified or not I can't let him go to the following screens of the app. Thanks guys and I hope that there's a solution for this problem.
0
answers
0
votes
18
views
asked 25 days ago