Unanswered Questions tagged with AWS Identity and Access Management
Content language: English
Select up to 5 tags to filter
Sort by most recent
Browse through the questions and answers listed below or filter and sort to narrow down your results.
Hello,
This is tangentially related to my question here [Permissions for IoT Things and Cognito User/Identity Pools](https://repost.aws/questions/QUkhT9MqeVR-mysdzKc2YQcA#AN8JHCJ_V2RTq8t38UGEK_IQ). I...
0
answers
0
votes
209
views
asked 2 years agolg...
I want to create a userPool for every enterprise within a multi-tenant web solution. Here's what I have:
```
const AWS = require('aws-sdk');
const uuid = require('uuid');
const...
0
answers
0
votes
71
views
asked 2 years agolg...
How to health check IAM authenticated REST API using Route53?
I created a Rest API that requires IAM authentication for the API Gate Way.
I want to check the health of Rest API.
There are 2 options,...
0
answers
0
votes
72
views
asked 2 years agolg...
According to the [docs](https://docs.aws.amazon.com/IAM/latest/UserGuide/reference_policies_iam-condition-keys.html#condition-keys-wif), only a certain subset of claims in an OIDC token can be used as...
0
answers
0
votes
106
views
asked 2 years agolg...
Hello, we tried to use "yubikey 5 NFC" and "yubikey BIO" as MFA device for our users (we used WebAauth), but we are not asked to provide pin-code, as we have read in yubikey official website :...
0
answers
0
votes
79
views
asked 2 years agolg...
I have hundreds of S3 buckets and dozens of users in Cognito User Pool. I want to be able to select which user can access which S3 bucket, for example:
* `user_a` can access `bucket_1`, `bucket_2`,...
0
answers
0
votes
184
views
asked 2 years agolg...
I built an AppSync project by Amplify, and the scheme is as below.
```
# This "input" configures a global authorization rule to enable public access to
# all models in this schema. Learn more about...
0
answers
2
votes
133
views
asked 2 years agolg...
I am trying to set up GraphQL via AWS Amplify so that all users can see part of a Member object (e.g. the name), but only members in certain groups can see other parts (e.g. the e-mail address).
I...
0
answers
1
votes
137
views
asked 2 years agolg...
Hello,
context: I am doing a simple POC exercise running a few lines of python code in the CLI
note: I am using a proxy server
Upon doing so this error is thrown:
An HTTP Client raised an unhandled...
0
answers
1
votes
86
views
asked 2 years agolg...
A minimal IAM profile has been prepared for a CloudFormation stack which creates a VPC with IPv6CidrBlock and IPv6Cidr subnet. The IAM profile is sufficient for creating the stack in us-east-1 region....
0
answers
1
votes
183
views
asked 2 years agolg...
I'm trying to add a Container Insight to my EKS cluster but running into a bit of an issue when deploying. According to my logs, I'm getting the following:
```
[error]...
0
answers
0
votes
163
views
asked 2 years agolg...