We are trying to create a webapp for project. We chose react as library for building the front end. We came across amplify studio to create UI React code from Figma file. This looks like a game changer and reduces lot of effort for engineers. While evaluating UI libraries Amplify UI library provides less components compared to others ui component libraries. We found ant design and material ui as alternate choice. We found ant design figma file is not working well with amplify studio. Can some one provide guidance on which ui component figma file is compatible with amplify studio to generate the react code ?

Hello AWSome folks! I am trying to do the "Build a serverless web application" workshop and I'm on the User Management part. I am on to initialize Amplify CLI by executing the command "`amplify init`" and it is supposed to initialize the project but I am getting this error: `RangeError: Array buffer allocation failed at new ArrayBuffer (<anonymous>) at new Uint8Array (<anonymous>) at new FastBuffer (node:internal/buffer:959:5) at createUnsafeBuffer (node:internal/buffer:1062:12) at allocate (node:buffer:410:10) at Function.allocUnsafe (node:buffer:375:10) at Function.concat (node:buffer:553:25) at Extract.<anonymous> (/home/ec2- user/.nvm/versions/node/v16.15.0/lib/node_modules/@aws-amplify/cli/lib/binary.js:127:37) at Extract.emit (node:events:539:35) at finishMaybe (/home/ec2-user/.nvm/versions/node/v16.15.0/lib/node_modules/@aws-amplify/cli/node_modules/readable-stream/lib/_stream_writable.js:624:14)` What could be causing this?

I am trying to send an email by using a gmail account, where Im using a Verified identities (DNS) - a non aws host. Is it possible to send an email following an external DNS provider, with a different email address than the DNS host?

I am export a NextJS static web and host it by CloudFormation distribution. However, I always need to type cloudformation-domain.net/index.html. I want to access **without index.html ** ``` https://www.cloudformation-domain-net/ ``` When I host the NextJS with Amplify, it also use CloudFront and working without the "index.html"

I am trying to make a call to `describeContact` operation using the `AWSJavaScriptSDK`. I am following the [documentation][1] but somehow the call is not working. Below is my code. const params = { ContactId: 'some_value', InstanceId: 'some_value' }; const attributes = await connect.describeContact(params).promise(); I receive - connect.describeContact is not a function Interestingly, when I replace `describeContact` with `getContactAttributes` in the call, I no longer receive "not a function" error and it works just fine (after I change the params). Both the operations have exactly the same signature. Can someone please guide me here ? Connect api version = 2017-08-08 Upgrading to the latest version of aws-sdk didn't help either. [1]: https://docs.aws.amazon.com/AWSJavaScriptSDK/latest/AWS/Connect.html#describeContact-property

I have got to know that Amazon Connect sessions (cookies) expire 10 hours after a user logs in. I just want to know the exact duration of expiration from my browser's cookies e.g. max-age of my cookie!!

I'm sending with ajax, a payload of data and then i have a lambda setup to take that data and parse it into attributes to store into my dynamoDB. this is my github showing my index.js(lambda function) and my jque.js(file that is sending the data to the lambda via api gateway). https://github.com/dbaldw10/DynamoDWLambdaAWS is there a way to achieve this?

Hi there, Could someone assist me with the MX record required to use www.whfg.nl I would like to add them to my website. Many thanks in advance

We have several API Gateway WebSocket APIs, all regional. As their usage has gone up, the most used one has started getting LimitExceededException when we send data from Lambda, through the socket, to the connected browsers. We are using the javascript sdk's [postToConnection](https://docs.aws.amazon.com/AWSJavaScriptSDK/latest/AWS/ApiGatewayManagementApi.html#postToConnection-property) function. The usual behavior is we will not get this error at all, then we will get several hundred spread out over 2-4 minutes. The only documentation we've been able to find that may be related to this limit is the [account level quota](https://docs.aws.amazon.com/apigateway/latest/developerguide/limits.html#apigateway-account-level-limits-table) of 10,000 per second (and we're not sure if that's the actual limit we should be looking at). If that is the limit, the problem then is that we are nowhere near it. For a single deployed API we're hitting a maximum of 3000 messages sent through the socket **per minute** with an overall account total of about 5000 per minute. So nowhere near the 10,000 per second. The only thing we think may be causing it is we have a "large" number messages going through the socket relative to the number of connected clients. For the api that's maxing at about 3000 messages per minute, we usually have 2-8 connected clients. Our only guess is there may be a lower limit to number of messages per second we can send to a specific socket connection, however we cannot find any docs on this. Thanks for any help anyone can provide

**Steps to reproduce:** 1. Add 300 email templates in us-east-1 region 2. Try to [listEmailTemplates](https://docs.aws.amazon.com/AWSJavaScriptSDK/latest/AWS/SESV2.html#listEmailTemplates-property) with AWSJavaScriptSDK in a loop with 10 value page size. **Expected result:** All emails are listed **Current result:** Error while pagination: ``` Invalid PageToken <AAAAAAA.... ``` Everything works fine in `us-west-2` region

Due to a large number of agents in one of our instances, we need to find a better way of adding and removing everyone as quick connects rather than manually adding them. The only other option I could find is using the CreateQuickConnect and DeleteQuickConnect APIs. It would be much appreciated if someone or a team had done this and if you could please let me know how it went.

We are a new SES user and could not find any information re:Post about this? Have a separate incoming email server, using SES to send. Just started using SES SMTP for a month or so and starting slowly. Sending about 20-30 mails a day. SES send statistics are inconsistent, sometimes reporting all mails sent, sometimes only 3/4 or even half i.e. send 20 mails and SES reports 17, or 15, or 10 sent. Only get about one bounce every 2 or 3 days, no complaints, rejections or any other errors or notifications. Incoming server replicates all mails sent in the sent folder. Historic bounce rate >0.1%. Are the missing (not reported) mails being sent? Cannot find a way to check this on the SES platform. All mails are sent by hand, using MS Outlook from a single IMAP account. 95% of mails are very similar, HTML formatted ~100 words, link button, unsubscribe link and contact details ~60kb total. Each mail has a single customized line of text, name, company and picture. Any help or pointers to troubleshoot are greatly appreciated. Thanks

once the caller is Transferred to Queue, how do i forward him to a phone number if he is more than 30 seconds in the queue. is this possible?

I've been working with AWS Pinpoint and FCM for awhile and when I send a push notification via Pinpoint it says success and I can see that it has clearly been sent when I checked the message received logs on Unity. However FCM can't make heads or tails of the Notification and is unable to show a notification. Is there a way to intercept the Intent data and parse it to make the message readable before its forwarded to the Firebase MessageForwardingService? I've gotten to the point where I can intercept the Intent Data but I can't make heads or tails of the URI

I have a verified domain set up in SES that saves received emails to S3 and I do some processing on it from there. This has been working completely as expected for a few weeks (at very low volume) but as of this afternoon it has taken up to 50 minutes for an email to arrive in S3. I have been testing at a slightly higher frequency but not more than once per 10 minutes. Is there anything that could cause this or is SES just slow today? Thanks in advance

We are using SES free version for sending out regular emails to our 130 volunteers and would like to create a log file (or table) with all email related events (sent, delivered, bounced), similar to what we had when sending with mailjet.com smtp relay. Is that possible, i.e. in Cloudwatch, within a free account or would we need a paid account for 1000 plus USD per month?

I have an endpoint in API Gateway that I POST to, and most of the time it is successful. However, sometimes I'll receive status 524 in response with no message. Does anyone have any insight about this? I haven't been able to find any documentation related. Thanks!

Hi It worked fine, but last week I noticed that some emails failed to be sent. I checked the SES dashboard and did not see any warning/error messages. I regenerated a few times the user thru Identity and Access Management (IAM) I opened a case with the plugin developer, but he assures me that the issue is not with their plugin I keep getting this error on my smtp plugin for wordpress SimpleEmailService::ListIdentities(): Sender - SignatureDoesNotMatch: Signature not yet current: 20220517T120546Z is still later than 20220517T120532Z (20220517T120032Z + 5 min.) Request Id: 7d03a85c-4b8f-4f46-8f3a-68cbe8b11b83

When testing my app on an AWS Device Farm physical device via automation, is it possible to upgrade the version of chrome it comes with by default? For example when using an Android 8 device, the default version of chrome is a few upgrades behind. It would be very useful to be able to upgrade chrome therefore to the version that current Android 8 users will be using. If not possible on a "public" device, is this possible with a "private" one?

I am seeing a few cents a day being charged on my AWS Cost Explorer for Amazon Pinpoint - but I have never used Pinpoint. It looks like they are linked to - EU-PhoneNumber-Tollfree - nothing I set up. It isn't a crisis (yet) - minimal cost so far, but I would like to clean it up, and I have AWS credits on the account which avoid me paying for any of it. The account is not for anything in production - just learning and building new things I spent some time on IAM clearing out permissions that may have been used by someone else (not sure how) and researched possible federated usage, but haven't found anything suspicious. Any tips on tracing and killing services that might be charging to my account that I don't want?

I have a java application that uses Amazon SES for email. The email template is constructed within the Java application. I needed to add a image link to the email template and I added a standard email IMG tag like below ``` <img src="<PATH TO THE IMAGE OMITED>" alt="alt text omitted" > ``` But when the email comes through, rather than show the image, I see the HTML code on the email body. When I look at the email source I see the '<', '>' and and quote signs have been converted like below. ``` <p> THIS IS AN AUTO-GENERATED EMAIL. DO NOT REPLY. </p>&lt;img src=&quot;<a href="https://protect-au.mimecast.com/s/VywertyMqHLlkUn?domain=blah.com">https://IMAGE_PATH OMMITTED.png</a>&quot; alt=&quot;&quot; &gt; ``` It seems Amazon SES is converting some of the tags within the image bot not the ahref tag or even the P tag. This was tested on a local email server and a fake smtp server and there was no conversion happening. Amazon SES is setup on a client environment and I have no direct access to it. What could be causing this? Could you please point in the likely direction.

For cognito user - Using Amplify I was able to login using ``` await Auth.signIn(this.email, this.password); ``` And logout using: ``` Auth.signOut(); ``` For federated user - Using Amplify I was able to login using ``` await Auth.federatedSignIn({ customProvider: 'customProviderName' }); ``` But logout doesnt support using: ``` Auth.signOut(); ``` How can I signout federated user, so that when I try to login again, it ask my permission to login ?

We have app running in 3 AWS accounts (dev, test and production), we want the app to be able to send out transactional sms/voice/email alerts for weather conditions. We would also like it to use a local(ish) numbers based on clients locations, i.e. US clients get sms/voice from US number, UK clients from a UK number etc. Should I use sns/ses/voice directly or should we use pinpoint for this ? In any of these cases should we get the SNS long numbers out of the sandbox and into production first, and then use the same long numbers to get the voice out of the sandbox and into production ? I seem to have got myself into a catch-22 with support at the moment probably down to my understanding of the documentation. Can the long numbers (when in production) be used across 3 AWS accounts or do we need to create the long numbers per account i.e. end up with 3 numbers for US clients one in dev, one in test and one in production ? Thanks

I am working on a requirement, where we need to do some action (Email Processing (out of scope of this requirement)), whenever we receive an email in Client's Gmail or Outlook account. Since we don't own these domains, so setting up Email Receiving Pipelines via SES (https://aws.amazon.com/getting-started/hands-on/setup-email-receiving-pipeline/faq/) is out of question here. The solution that we thought of for this problem statement is Setting up a Gmail push notifications to hit AWS Api Gateway, which internally would call AWS Lambda for inserting data in SQS. Changes involved are :- AWS: 1. Create an SQS Queue. 2. Create an AWS Lambda inserting data in SQS. 3. Create an API Gateway invoking AWS Lambda. Google Cloud: 1. Create a Pub / Sub topic. 2. Create a subscription for Api Gateway url. 3. Create a watch on Gmail. The watcher would invoke topic on any change in Gmail. Can someone please validate above approach?

Hi everyone. I am using node to programmatically create segments in pinpoint.. sdk of createImportJob method needs parameter S3 ("S3 file localed")..however I would like to upload directly without uploading to S3 first like console interface does.. Is there some option? Thanks

I set up an AWS connect instance, claimed a number and set up users and queues with a caller Id. When an agent makes a call the customer doesn't see the specified caller id, instead gets "Suspected Spam". The calls are made to Australia, either from Australia or from the Philippines.

Creating a Gateaway API via AWS Cloudformation I have a problem with JWTConfiguration when creating the authorizer. ``` Authorizer: Type: 'AWS::ApiGatewayV2::Authorizer' Properties: Name: VSTORES_Api_CognitoAuthorizer ApiId: zzzzzzzzzzzz AuthorizerType: JWT IdentitySource: - '$request.header.Authorization' AuthorizerResultTtlInSeconds: 3600 JWTConfiguration: Audience: - xxxxxxxxxxxxxxxxxxxxx Issuer: https://cognito-idp.us-east-1.amazonaws.com/us-east-xxxxxxx ``` I get the following error: > Property validation failure: [Encountered unsupported properties in {/}: [JWTConfiguration]] what am I doing wrong? PD: Obviously xxxxx and zzzz are valid values. :)

I am new to Amazon Connect and I want to fetch the total time for which the user was in a particular state. Eg: 1 - After logging in, for how many time the user was in "Available" state? 2 - After logging in, for how many time the user was in "Offline" state? Are there any API Calls to fetch these times? Please help.

When I try to run amplify configure --appId d10mb56cnqd9cv --envName staging I get this error message. Failed to communicate with the Amplify CLI. You can try again by running: Earlier I noticed that it does not work when using brave browser. But now I am using chrome browser. Even with this browser I got this error. I am using ubuntu 22.04 linux on my laptop. Please help me.

Is it possible to have auth rules requiring authenticated users to belong to multiple groups? For example "allow users who are in 'Tenant N' AND who are 'Editors'". Our models are currently similar to this: ```graphql type MyModel @model @auth(rules: [ { allow: owner }, { allow: groups, groupsField: "tenantID" }, ]) { id: ID! tenantID: String! } ``` So using static group auth doesn't work for us: ```graphql type MyModel @model @auth(rules: [ { allow: groups, groups: ["DynamicTenantId", "Editor"] } ]) { id: ID! tenantID: String! } ``` Because tenantID is a dynamic value, we need to use dynamic group auth instead: ```graphql type MyModel @model @auth(rules: [ { allow: owner }, { allow: groups, groupsField: "tenantID" }, { allow: groups, group: "Editor" }, ]) { id: ID! tenantID: String! } ``` But this doesn't work because it's an "OR", saying "allow anyone in the tenant OR anyone with the 'Editor' group". Updating our models to use single dynamic group auth field doesn't work either: ```graphql type MyModel @model @auth(rules: [ { allow: owner }, { allow: groups, groupsField: "allowGroups" }, ]) { id: ID! allowGroups: [String] # ['DynamicTenantId', 'Editor'] } ``` Because this an "OR" too, saying "allow anyone in the tenant OR anyone with the 'Editor' group". Are there any other options, aside from a custom authenticator, to require multiple group membership?

My app is in beta, so it's not really being used, I received a spike in my bill because of app sync and open search service. I can't figure out why this charge is happening or who triggered it. Could someone help me?

I'm using AWS Amplify to host a next SSR application. My environment is configured to use node 16.13.0. This is working at build time. At the moment of the deploying, the lambda@edge generated for the cloudfront remains with node 14 version. Is there any way to config node version for the lambda@edge generated in deploy step? Thanks!

In API Gateway, is it possible to manage usage of different resources per API Key? Like a given API Key lets you use /resource1 but not /resource2?

Hi, I have a architectual doubt, Its possible place a firewall virtual appliance in front of a regional API gateway to inspect or control the traffic from the internet agains an particular API? Thanks in advance for any hint about.

Hello, Workmail can not recieve emails from one specific domain, despite Workmail is able to send emails to that domain. It is not spam folder issue. Nothing appears even under the eventlog. It is like, the email has never sent to us. I tried to disable spam and virus filter under SES portal, and nothing changed. As we check sender's mail server, it says the email has accepted from Workmail. Also, sender is able to send emails to the O365 or Gmail, they have only this problem with this Workmail mailboxes. Do you have any suggestion to troubleshoot? I could not find any other interface to check whats going on.

Is there a way to prevent the endpoint status becoming inactive when new endpoint is added with same address??

Dear Forum Members, We would like to set up our own domain as the custom 'Mail From' domain within Amazon SES for several regions, i.e. London, Ireland, ... We use Cloudflare as the DNS for our domain and added the following records to Cloudflare: MX www eedback-smtp.eu-west-2.amazonses.com 10 TXT www "v=spf1 include:amazonses.com ~all" Initially, our domain was 'verified' for custom domain sending for the Ireland region and then we received an error message from AWS. For London it continues to show pending. We would very much welcome your feedback and advice. Many thanks for your help. Pairfum London

Hi!, I post this question regarding an issue that happens to us at random times. Maybe someone experienced similar situation or can give us a clue. We have three windows ec2 running inside vpc with internet access that make requests to some public api gateways. We have noticed that at random times (the last issue was April 26 and the previous time was on April 4), all the requests made from the three instances within a range of 5 minutes failed with the message "The request was aborted: Could not create SSL/TLS secure channel" These requests happens almost every minute every day during 12 o 14 hours so it didn´t fail before or after those 5-10 minutes lapse. Its like something happening at api gateway at random times. Can it be that updating api definition with swagger file or deploying to stage may cause this issue? One of the dates matches. We use us-east-1 region and use as endpoint https://xxxxxx.execute-api.us-east-1.amazonaws.com/stagexxx The status page doesn´t show any issues on those days for api gateway service. Thanks in advance

I'm working in .NET with the AWS SDK for Amazon SES mail. I'm trying to add a display name to the sender address like so: using (var client = new AmazonSimpleEmailServiceClient(RegionEndpoint.USWest2)) { var sendRequest = new SendEmailRequest { Source = "My Website <noreply@mywebsite.com>" Sometimes this works, but sometimes it throws an exception: Amazon.Runtime.Internal.HttpErrorResponseExceptionHandler.HandleException(IExecutionContext executionContext, HttpErrorResponseException exception) Local address contains control or whitespace. When it fails, it seems as if it's trying to validate the display part as if it were the email address. I know with the Amazon SES SMTP Interface I can set the sender address like so: MailMessage message = new MailMessage(); message.From = new MailAddress("noreply@mywebsite.com", "My Website"); and the desired "My Website <noreply@mywebsite.com>" is achieved and works fine. But if I want to use the AWS SDK, I get this error intermittently. Has anyone else seen this or know what's going on? It seems as if the display name in AWS SDK may just not be supported.

Hello. Suppose that I have the following architecture: API Gateway (service name: gateway api) -> Lambda Function (service name: gateway handler) -> API Gateway (service name: internal service) -> Lambda Function (service name: internal service handler) The "internal service" api gateway has 2 endpoints (`POST /endpointA` and `POST /endpointX`), which both proxy to the same "handler" lambda function. Depending on a feature flag, incoming requests are requests to the "gateway handler" are sent to either `POST /endpointA` or `POST /endpointX`. All of these services are set up for tracing with AWS X-ray. I want to query X-Ray to gain insights into the performance of requests send to `X` vs `A`. I tried the following query ``` service("gateway handler") AND service("internal service") AND http.url ENDSWITH "/endpointX" // and also // service("gateway handler") AND service("internal service") AND http.url ENDSWITH "/endpointA" ``` However this does not seem to work. In general I cannot query using http.url, when that http request is not the first request in a trace. Is there a way around this? Bonus points if it does not require me to add additional code to annotate traces for the xray system.

Customer would like to know if there is a CloudWatch metric, or other mechanism, to report on the number of requests against their AWS API Gateway per API Key. The goal is to distinguish how many requests are coming from each API Key.

HI, I have 5 question about Dedicated IP with Amazon SES: 1. Why exactly they recommend 2 dedicated IP? What happens if I start only with 1 IP? Can you give me some examples of the differences? 2. I understand that by default the warm-up is automatically, right? So, if I send to my list of 40,000 emails, 3 newsletters per week (120,000 emails per week), on each send of 40,000 the system automatically will send 1,000 emails from my new dedicate IP, and 39,000 from the shared IPs? That right? And it will increase the proportion on each send gradually.... but my main point here is... I don't have to do anything right?, I can continue with my normal sending, whole list, 3 times per week, and the system in the background will do the work to warm up gradually automatically? So, after this, we can continue with normal sending tactics. 3. For my sending: 3 times per week, 40k email, and maybe upgrading to 5 times per week gradually, is the best to have Dedicate IP vs not having? 4. My only problem that made me change shared IP to Dedicated Ip, it's that in Microsoft (Hotmail and Outlook), 100% of the email go to SPAM, and I don't know why... because same email sending from Active Campaing work perfect... This change to dedicate IP, will solve this? Or there is another way to solve this huge problem without change to dedicated IP? 5. If for any reaseon, the dedicated IP doesn't result well to my business, I can back to shared IP like now, and that change from Dedicated IP to Shared IP again, doesn't affect the deliverabily on any bad way? Looking forward your replies, Thanks in advance, Best regards, Sebastian

I have a NextJS app that uses SSR. Therefore manual deployment is not an option. I have setup Amplify hosting for the app. Deployment (initiated by GitHub push) fails due: ``` Must use import to load ES Module: /codebuild/output/.../src/aws-exports.js require() of ES modules is not supported. require() of /codebuild/output/src531993483/src/myidtoken/src/aws-exports.js from /snapshot/repo/build/node_modules/amplify-frontend-javascript/lib/frontend-config-creator.js is an ES module file as it is a .js file whose nearest parent package.json contains "type": "module" which defines all .js files in that package scope as ES modules. Instead rename aws-exports.js to end in .cjs, change the requiring code to use import(), or remove "type": "module" from /codebuild/output/src531993483/src/myidtoken/package.json. 2022-05-10T13:24:35.567Z [INFO]: Error [ERR_REQUIRE_ESM]: Must use import to load ES Module: /codebuild/output/src531993483/src/myidtoken/src/aws-exports.js require() of ES modules is not supported. require() of /codebuild/output/src531993483/src/myidtoken/src/aws-exports.js from /snapshot/repo/build/node_modules/amplify-frontend-javascript/lib/frontend-config-creator.js is an ES module file as it is a .js file whose nearest parent package.json contains "type": "module" which defines all .js files in that package scope as ES modules. Instead rename aws-exports.js to end in .cjs, change the requiring code to use import(), or remove "type": "module" from /codebuild/output/src531993483/src/myidtoken/package.json. ``` I do not have aws-exports.js committed to GitHub. So aws-exports.js is generated during the build/deploy. Therefore I cannot rename it to `.csj`. I have tried though creating `my-aws-exports.js` and include that from my code. However, the error is still the same. This also sounds to me that the error is in generated code. Repository is not unfortunately public so I cannot share it. I'm using - react 17 - next 12 - aws-amplify 4.3.21 - aws-sdk 2.1131.0 `package.json` states ` "type": "module",`.

Hi , I am trying to follow below steps to build Set up fullstack project in Amplify -I can see in AWS console, the user “maha-amplify” that I created it using (amplify configure) in prerequisite step -but whenever I run (amplify init) then select AWS profile in initialize a new backend step , I can not see that created user/Profile “maha-amplify” in the terminal but old one.. Check attachment https://paste.pics/GWCHL -Another question how can I delete the old one from the terminal like “Maha"? https://docs.amplify.aws/start/getting-started/setup/q/integration/react/#initialize-a-new-backend

Hi, we are using Amplify in our mobile apps and we have run into an issue in Flutter Android that the Amplify.DataStore.observe is not triggered. I have created an issue ([https://github.com/aws-amplify/amplify-flutter/issues/1563](https://github.com/aws-amplify/amplify-flutter/issues/1563)) to Amplify team but haven't received any answer nor solution yet.

I have a requirement to get data from aws using IAM API's , so I have access key , secret key , base url , service name and region of aws account we are trying to authenticate with bearer token , but we are getting the following error , I have generated bearer token using aws cli. URL : https://iam.amazonaws.com/?Action=ListGroups&Version=2010-05-08&access_token=<<token>> https://iam.amazonaws.com/?Action=ListGroups&Version=2010-05-08&Authorization=Bearer <<token>> Error : is not valid; the value of a query string parameter may not contain a '=' delimiter

How to enable AWS WAF for CDN generated in Amplify ?

Hi, I am running my test on device farm. From the test specification log, it shows that my test has passed. However from the video recording, it is always stuck on the default mobile homescreen. How do i get the video recording to capture the test interaction instead of just the homescreen. thanks! ``` [TestNG] INVOKING CONFIGURATION: "Command line test eca2ebbd-c83a-4609-84f0-bb52a16b1afc" - @BeforeTest Tests.LoginTest.setUpPage() [TestNG] PASSED CONFIGURATION: "Command line test eca2ebbd-c83a-4609-84f0-bb52a16b1afc" - @BeforeTest Tests.LoginTest.setUpPage() finished in 118 ms [Invoker 1508395126] Keeping method TestBase.navigateTo()[pri:0, instance:Tests.LoginTest@15975490] for class [TestClass name=class Tests.LoginTest] [Invoker 1508395126] Invoking @BeforeClass TestBase.navigateTo()[pri:0, instance:Tests.LoginTest@15975490] [TestNG] INVOKING CONFIGURATION: "Command line test eca2ebbd-c83a-4609-84f0-bb52a16b1afc" - @BeforeClass Tests.AbstractBaseTests.TestBase.navigateTo() [TestNG] PASSED CONFIGURATION: "Command line test eca2ebbd-c83a-4609-84f0-bb52a16b1afc" - @BeforeClass Tests.AbstractBaseTests.TestBase.navigateTo() finished in 2846 ms [Invoker 1508395126] Keeping method LoginTest.logOut()[pri:0, instance:Tests.LoginTest@15975490] for class [TestClass name=class Tests.LoginTest] [TestNG] INVOKING: "Command line test eca2ebbd-c83a-4609-84f0-bb52a16b1afc" - Tests.LoginTest.loginFail() [Invoker 1508395126] Invoking Tests.LoginTest.loginFail [TestNG] PASSED: "Command line test eca2ebbd-c83a-4609-84f0-bb52a16b1afc" - Tests.LoginTest.loginFail() finished in 7446 ms [Invoker 1508395126] Keeping method LoginTest.logOut()[pri:0, instance:Tests.LoginTest@15975490] for class [TestClass name=class Tests.LoginTest] [Invoker 1508395126] Invoking @AfterMethod LoginTest.logOut()[pri:0, instance:Tests.LoginTest@15975490] [TestNG] INVOKING CONFIGURATION: "Command line test eca2ebbd-c83a-4609-84f0-bb52a16b1afc" - @AfterMethod Tests.LoginTest.logOut() [TestNG] PASSED CONFIGURATION: "Command line test eca2ebbd-c83a-4609-84f0-bb52a16b1afc" - @AfterMethod Tests.LoginTest.logOut() finished in 827 ms [Invoker 1508395126] Keeping method LoginTest.logOut()[pri:0, instance:Tests.LoginTest@15975490] for class [TestClass name=class Tests.LoginTest] ```

Have an AWS Lambda function sending email by using SES. Emails sent by SES are currently bouncing for only one recipient email address. Checked my SES Dashboard, and the domain for this email address is a fully verified domain. Bounces only occur for the one email recipient, and this recipient is in the UK, not in United States. However all other UK email recipients are receiving SES emails fine, and no bounces occur for any other email addresses in the verified domain. Any ideas what might cause this problem to occur?

I’ve been struggling to create a form that can be filled out to create a tracker at a given location. I have maps set up but haven't been able to create the tracker to be able to pin it; I found the parameters from the AWS SDK but am having trouble implementing it. Here is a snippet of my code: ``` import {AWS} from 'aws-sdk'; export default function Setup() { var location = new AWS.Location({apiVersion: '2020-11-19'}); var params = { TrackerName: 'STRING_VALUE', /* required */ Description: 'STRING_VALUE', KmsKeyId: 'STRING_VALUE', PricingPlanDataSource: 'STRING_VALUE', Tags: { '<TagKey>': 'STRING_VALUE', /* '<TagKey>': ... */ } }; location.createTracker(params, function(err, data) { if (err) console.log(err, err.stack); // an error occurred else console.log(data); // successful response }); return( <form> <div class="form-group"> <label for="truckName">Tracker Name</label> <input type="text" class="form-control" id="truckName" placeholder="Enter Truck Name" /> <small id="trackerHelp" class="form-text text-muted">Please enter the name of your tracker.</small> </div> <button type="submit" class="btn btn-primary" onclick="Setup">Submit</button> </form> ); } ```

I am trying to deploy below AWS Connect solution and facing issues with Application UI Solution - https://aws.amazon.com/solutions/implementations/ai-powered-speech-analytics-for-amazon-connect Issue 1 - When I launch the UI, For the agent assist section, I get below error message in browser "To protect your security, ***.awsapps.com will not allow Firefox to display the page if another site has embedded it. In developer tools, I can see below error - [HTTP/1.1 403 Forbidden 0ms] The loading of “https://*******/connect/login” in a frame is denied by “X-Frame-Options“ directive set to “SAMEORIGIN“. I have enabled CORS on S3 bucket as well as CloudFront . Issue 2 - If I open the link in different tab or new browser I get error "Access Error This application has not been enabled for your directory. Please contact your Administrator for more details." I did add the origins in connect for UI as well as CloudFront

Hello, Amazon SES: is is possible to send emails via SMTP interface leveraging SES email templates? If so, I would appreciate some links where I can find more information how to do it. Of course, it is possible to send templated emails using SDK/CLI, the question is how to do it using SMTP interface. Thanks, Mariusz

Hi all, I have planned to run 5000 devices (android/iOs) automate testing at a time. So could I purchase 1 slot of this Unlimited testing plan(Device farm) - STARTS AT $250.00 / MONTH. That means Device Farm will execute my tests on up to five thousand devices at a time. Is it right? Please give me an advice. Regards.

On May 4, I created an Amplify app just to try it out, because I decided I didn't need it so deleted it. Soon after, when I checked the biling dashboard, I noticed I have 5 active services. I did my research and I discovered how to get rid of a service. In most services I didn't find a trace of anything created in there, except Lambda, so I deleted my Lambda functions. Later, I went back to the billing dashboard and I found and it still says I found 5 active services. The next day, it went up to 6 but I didn't do anything except double check my services, and today it went up to 7. What I'm really wondering is what does an active service mean? Is anyone else experiencing the activation of services without doing anything?

On May 4, I created an Amplify app just to try it out, because I decided I didn't need it so deleted it. Soon after, when I checked the biling dashboard, I noticed I have 5 active services. I did my research and I discovered how to get rid of a service. In most services I didn't find a trace of anything created in there, except Lambda, so I deleted my Lambda functions. Later, I went back to the billing dashboard and I found and it still says I found 5 active services. The next day, it went up to 6 but I didn't do anything except double check my services, and today it went up to 7. What I'm really wondering is what does an active service mean? Is anyone else experiencing the activation of services without doing anything?

My WebSocket API needs to be able to use a custom subprotocol. I have been able to do this by returning the proper Sec-WebSocket-Protocol header using AWS_PROXY lambda integration approach described in AWS docs here: https://docs.aws.amazon.com/apigateway/latest/developerguide/websocket-connect-route-subprotocol.html. The downside of that approach is that creating a dedicated lambda to just return a static header on each connect is an overkill. Is it possible to return the Sec-WebSocket-Protocol header on $connect using a Mock Integration instead? I tried playing with different response mappings of the Mock Integration but couldn't make it return this static header. It looks like you can't control the Sec-WebSocket-Protocol at all while using the Mock Integration, what about other integrations?

I host my web app with AWS Amplify Hosting, my question is can i change the first part(root) of my website url? I want to makeit friendlier, for example this is my website url: https://test.b12test3.amplifyapp.com. I would like to overwrite this part: test.b12test3 how can I do it? is this possible?

Is there a serverless, codeless way I can send an email with an attachment? Is there a way I can do this with Step Functions? The SES v2 API SendEmail action requires building the entire properly formatted and encoded MIME message. Is there any to build such a MIME message codelessly and serverlessly? Is my only option to drop the codeless requirement and use Lambda?

How do we set up an automation testing for Amazon connect flows? Is there a way to do it without any 3rd party vendors. We are expecting to do an automated testing for all our flows to reduce manual efforts required in testing

Hi, I have been using REST type endpoints with API gateway. APIs are defined in lot of smaller functions/lambda/microservices i.e. user Service **basePath** : user **Path** : /v1/users **custom domain**: mydomain.com So my API gateway url become : **https://mydomain.com/user/v1/users** and this works fine. and recently i tried function/Lamda URLs and via lambda url i can use only APi gwateway V2 request/response, and for that i changed my function/lambda code , But then REST API via API gateway stopped working as i was getting request in V2 format and i was using V1 format. So to make everything in sync i moved my existing API from REST to HTTP as well which use V2 request NotwI can call lambda url **https://{lambdadomain}/user/v1/users** but my original url via API gateway doesn't work **https://mydomain.com/user/v1/users** After digging bit more i found out that now my function code receive url as /v1/users and not /user/v1/users from API gateway to make it work for now i have to add two mappings in my gin/go application and it works but doesn't look good as i have to add 2 entries for every url r.GET("/user/v1/users", user.GetUserHandler) // Works with https://{lambdadomain}/user/v1/users r.GET("/v1/users", user.GetUserHandler) // Works with https://mydomain.com/user/v1/users is this expected behaviour switching from REST to HTTP ? or is it a bug? i couldn't find any documentation for it? Thanks Ravi

We're trying to transfer a customer using the Amazon Connect Streams API. When an agent is already connected to a customer, and we use the phone UI, we are able to create an outbound call leg to a phone number. We can then join the call and leave the call to complete the transfer. However, when we run the AWS Connect Streams code below we get the QuoteExceededError. We checked out Routing Profile and everything looks ok there. Is there something we need to change in the code or in the routing profile to allow for an outbound call leg with an already connected agent via the Streams API? agent.connect(connect.Endpoint.byPhoneNumber(phoneNumber), { success: function() { }, failure: function(err) { } }); Error: QuotaExceededException: Cannot dial third party destination: The agent is at maximum capacity."

As my understanding, there are two required steps. I think only 1) is ok. **Is this redundancy? ** 1) From AWS IoT core policies, grant access to cognito_identity_id ```shell aws iot attach-policy --policy-name 'myIoTPolicy' --target '<YOUR_COGNITO_IDENTITY_ID>' ``` 2) From Cognito side, attach AWSIoTDataAccess and AWSIoTConfigAccess to Cognito Authenticated Role

Hello, I am using the sandboxed version of SES. I have an email that has been verified. Yet when I send an email from or to that email address, AWS keeps saying: Message rejected: Email address is not verified. The following identities failed the check in region EU-NORTH-1: ***.*****@gmail.com SMTP code: 554 I have deleted and re-verified the address many times but to no avail.. Any idea why this is happening? Thanks!

I am able to receive sms from normal phone numbers but not from short code numbers. I need to be able to receive sms body sent from a shortcode number. Is there a settings for Pinpoint number or in the Lambda function to enable such feature?

Due to Google Play Protect Warning selenium WebDriver failed to start the application. https://drive.corp.amazon.com/documents/zinnak@/Screen%20Shot%202022-05-05%20at%208.13.09%20PM.png Error: `selenium.common.exceptions.WebDriverException: Message: An unknown server-side error occurred while processing the command. Original error: Cannot start the 'com.ambient.escapes.mobile.dev' application. ` Issue is NOT observed on Samsung devices.

Hello, we setup amazon connect with a SF integration. When the agent is in the CCP embedded in SF they are presented calls, but can't accept it. Also for outbound calls, they don't hear a ring tone, but get a connecting message which eventually goes to missed. Please help.

Hi team, I'm looking for the best option to handle SES feedback loop in AWS? We have to handle bounces and complaints. if the user REPORT SPAM or if the email bounces (because you delete your email or the mailbox is full). **so we need to store feedback loop somewhere ** Thank you :)

We knew that after call recording got enabled in contact flow the call recordings starts working and recording of every call is pushed at S3 as well as we can play the recordings in `Amazon Connect -> Contact Search`. I am trying to figure it out on which event the call recording starts and on which event the call recording stops `e.g. onConnected, onACW, onEnd`? The goal is to identified the events of amazon connect streams. What i have understood is call recording starts on `onConnected` event & stops on `onACW` instead of `onEnd` as the duration of ACW should been a part of recordings!

We are working for FHIR(Fast Healthcare Interoperability Resources). We have followed “FHIR works on AWS” and deployed the CloudFormation template given by AWS in our AWS environment.Following is the template that we have deployed https://docs.aws.amazon.com/solutions/latest/fhir-works-on-aws/aws-cloudformation-template.html Requirement : we want to maintain client specific/customized ids as primary key in the server. Problem : server not allowing us to override or mainain client specific (customized ) ids as primary key .Infact , in the runtime, it is generating its own ids and ignoring the id given by us.

I am in sandbox mode, testing using Amazon SES event publishing to monitor email sending, I have selected all events in the config set events (Hard bounces, Clicks, Complaints, Deliveries, Delivery delays, Opens, Rejects, Rendering failures, Sends, Subscriptions); Currently I can receive Deliveries, Clicks, Opens, Sends events normally; I tried to complain about an email sent by SES, the email was moved to spam, but I didn't get the Complaints event

I am using sns to send text messages containing an url to my app. But when i am trying to send the text message the following error occurs "Unknown error attempting to reach phone". Does anyone know if it is possible to send such a message?

I'd like to request to S3 as a cognito certification qualification. S3 is using sdk Cognito is using amplify. Use an angular typescript. I would like to replace the secret key with the cognito authentication information when creating S3. I want to access s3 with the user I received from Auth.signIn, but the credentials are missing. I need your help. ``` public signIn(user: IUser): Promise<any> { return Auth.signIn(user.email, user.password).then((user) => { AWS.config.region = 'ap-northeast-2'; AWS.config.credentials = new AWS.CognitoIdentityCredentials({ IdentityPoolId: 'ap-northeast-2:aaaaaaaa-bbbb-dddd-eeee-ffffffff', }); const userSession = Auth.userSession(user); const idToken = userSession['__zone_symbol__value']['idToken']['jwtToken']; AWS.config.region = 'ap-northeast-2'; AWS.config.credentials = new AWS.CognitoIdentityCredentials({ IdentityPoolId: 'ap-northeast-2:aaaaaaaa-bbbb-dddd-eeee-ffffffff', RoleArn: 'arn:aws:iam::111111111111:role/Cognito_role', Logins: { CognitoIdentityPool: 'ap-northeast-2:aaaaaaaa-bbbb-dddd-eeee-ffffffff', idToken: idToken, }, })); const s3 = new AWS.S3({ apiVersion: '2012-10-17', region: 'ap-northeast-2', params: { Bucket: 'Bucketname', }, }); s3.config.credentials.sessionToken = user.signInUserSession['accessToken']['jwtToken']; s3.listObjects(function (err, data) { if (err) { return alert( 'There was an error: ' + err.message ); } else { console.log('***********s3List***********', data); } }); } ``` bucket policy ``` { "Version": "2012-10-17", "Id": "Policy", "Statement": [ { "Sid": "AllowIPmix", "Effect": "Allow", "Principal": "*", "Action": "*", "Resource": "arn:aws:s3:::s3name/*", } ] } ``` cognito Role Policies - AmazonS3FullAccess ``` { "Version": "2012-10-17", "Statement": [ { "Effect": "Allow", "Action": [ "s3:*", ], "Resource": "*" } ] } ```

I am using pinpoint to send otp in india with python sdk. Also sending EntityId and TemplateId in Message request parameters, In response it shows successfully send but otp is not getting received by destination phone.

Hello, So I am using AWS Pinpoint both programatically and via the AWS Console. To make email templates I use the AWS Console. I have several images in an S3 bucket and I hide those images behind a CloudFront distribution so that they are accessible only via that distribution while the bucket is private. I have an image in the email template and in the `src` of the image I put the URL of the image behind the distribution. Outside the template, I am able to see the image on that URL. Also, before sending the email template, the images are properly displayed on the template but once I send it to an email and I open the email, I see no images, only te alternative text I have put. Why is that? How can I fix it? EDIT: I found out the problem exists only in Outlook. Do you have any idea why that is?

If a user starts subscribing to a channel through a GraphQL subscription API on AppSync, how do we get the connection duration metric from the starting of subscription to the end of subscription? I have been trying to get the metric from AppSync logs by enabling ALL Field level logs with Verbose but couldn't find the metric. If I get it, I can calculate the total connection minutes for which the charge is being put on using AWS AppSync ($0.08 per million minutes) In addition to that, how do we get the information about the messages being sent and received in the subscription?

Trying to deploy a basic webdriver.io + nodejs test on devicefarm but always for ios device test cases are getting stuck at Testcase is failing: job arn: arn:aws:devicefarm:us-west-2:612756076442:job:02bd6c95-640d-43b3-82eb-6f618777ac73/1a6364f3-7528-44b1-afa1-d6c2dc51d881/00000 ``` 2022-05-04T22:40:58.353Z ERROR @wdio/runner: Error: Failed to create session. [0-0] Unable to connect to "http://localhost:4723/", make sure browser driver is running on that address. [0-0] If you use services like chromedriver see initialiseServices logs above or in wdio.log file as the service might had problems to start the driver. [0-0] at startWebDriverSession (/private/tmp/scratchY4h2F6.scratch/test-packagex5aknf/node_modules/integration/node_modules/webdriver/build/utils.js:72:15) [0-0] at process.processTicksAndRejections (node:internal/process/task_queues:95:5) [0-0] at async Function.newSession (/private/tmp/scratchY4h2F6.scratch/test-packagex5aknf/node_modules/integration/node_modules/webdriver/build/index.js:46:45) [0-0] at async remote (/private/tmp/scratchY4h2F6.scratch/test-packagex5aknf/node_modules/integration/node_modules/webdriverio/build/index.js:77:22) [0-0] at async Runner._startSession (/private/tmp/scratchY4h2F6.scratch/test-packagex5aknf/node_modules/integration/node_modules/@wdio/runner/build/index.js:223:56) ``` and for android testcases is asking for node version greater than 12 (after adding nvm install 18.1.0 in yaml)

Hello AWS, we actually have a daily sending quota of 1 million emails per day (what is enough for now) and a maximum sending rate of 400 emails per second granted by AWS. But when we are executing email campaigns the send out of the emails is happening much slower than 400 emails/sec, it is less than 50 emails/sec and we do not see the reason for that. Does anybody has experience with this? How can we increase the **real **sending rate of our AWS account? Many thanks in advance! Best regards, Stefan

Hi, I was trying to write a React code for enabling TOTP based MFA for an user in cognito userpool. but i am not able to enable it. as i tried different code these is the error i am getting . **Reason: { message: "Code mismatch", code: "EnableSoftwareTokenMFAException", time: "2022-05-04T12:53:02.136Z",… } error: "EnableSoftwareTokenMFAException: Code mismatch" success: false ** i tried google authenticator and microsoft authenticator but still the same error message. sometimes code works but most of the time i am getting this error. how to resolve this ? what may be the reason for this error ? here's the link to my codebase i been refering : [https://github.com/AlexzanderFlores/Worn-Off-Keys-Cognito-Tutorials/blob/master/10-TOTP-MFA/lambda/get-qr-code/index.js]()

Hello, I have tried configuring AWS Lambda Function for Sending an Email with AWS SES and i keep getting an error (An error occurred while trying to deliver the mail to the following recipients) after i have verified the email. kindly help me with possible course.

See discussion in https://stackoverflow.com/questions/61474701/aws-api-gateway-integration-response-lambda-error-regex-fails-matching-when-re/72107597#72107597 To summarise, given an API Gateway non-proxy (also know as HTTP I think) integration with a Java 8 Lambda, if the lambda handler throws an Exception but the error message in the Exception contains new line characters then the returned JSON from the API is invalid (missing required double quote characters) and doesn't match response patterns so gets the default status code (in my case 200). I'd really like to see this fixed as it is an annoying bug in AWS non-proxy integration that should be pretty easy and obvious to fix. Can this be passed to the appropriate team for fixing please?

esteemed, I am facing a problem and would like some support from cloudfront, my internet provider asn 265463 with block of 168.197.12.0/22 cannot access the following domains that are hosted on cloudfront, https://www.kabum.com.br/ and https://www.tse.jus.br/ And I get the following response: Request blocked. What can I do to get unlocked?

During a pentest of one of our apps running behind an AWS API GW the report showed that the API GW returns a "server awselb/2.0" header, which is identified as a risk by the pentesters. To my knowledge there is no way to remove/suppress such a header, but perhaps I am missing something? Is this something anybody else has ever faced?

I have a contact flow that transfers customers to an external number. There is a lambda that should execute after the call disconnects. I’m using the transfer to phone number block under terminate/transfer with resume flow enabled. If the agent disconnects first, the flow continues and executes the lambda. If the caller disconnects first, the lambda never executes. Is it possible to trigger a lambda in the event a user disconnects? The only way I could see looking at documentation is to set up a firehose and responding to contract trace events. Am I overlooking something? This seems unnecessarily complicated. Adding support for a Caller Hang-Up event in the transfer block seems like a really convenient solve to this problem.

Hi, I want to create Websocket API in the AWS APIGW, but, that it only only accessible from within a VPC (because I want to integrate it in with CloudFront, i.e., the authentication will be in the CloudFront using signed cookie or URL). I could not find any documentation that do it. Thanks,

Hi, I have added my own domain (a namecheap domain) to AWS SES and created the CNAME records there about a week ago to use Easy DKIM. I added an email address within this domain, say test@example.com, example.com being the aforementioned domain. Both were successfully verified by AWS as it can be seen by the green checkmark: [image](https://i.imgur.com/cQDfxhe.png) However, when I want to send an email from this domain via boto3, I get a MessageRejected error: "An error occurred (MessageRejected) when calling the SendEmail operation: Email address is not verified. The following identities failed the check in region my-region: correct-arn-of-identity." The region is correct and my account is not in the sandbox anymore. It works to send from an existing email address, eg example@gmail.com. How can I send emails from my own domain? Edit as requested, here is the relevant code: ses_client = boto3.client("ses") response = ses_client.send_email( Source=source_email_address, Destination={ "ToAddresses": [ destination_email_address, ], }, Message={ "Subject": {"Data": subject, "Charset": "utf-8"}, "Body": { "Text": {"Data": email_txt, "Charset": "utf-8"}, }, }, SourceArn=f"arn:aws:ses:MyRegion:MyAWSAccount:identity/{source_email_address}", ReturnPathArn=f"arn:aws:ses:MyRegion:MyAWSAccount:identity/{source_email_address}", )

Hi, **TL;DR: Can anyone give a recommend approach to storing customisable n-level hierarchy trees for grouping and navigating results via a frontend Amplify-powered web app (using DynamoDB or any other database solution that can be mapped to AppSync ideally)?** **Some background** I'm building an multi-tenant IoT analytics solution that takes data from some sensors out in the field, uploads to AWS, processes this data and stores in a DynamoDB table (i.e. a very "standard" setup). I'm planning on adding a web frontend (built using Amplify and an AppSync GraphQL layer) that will allow users to navigate a **customisable, n-level** hierarchy tree of assets, in order to view the sensor data we've collected. Examples of valid hierarchies include: Country -> Site -> Building -> Floor -> Room -> Sensor (6-level) or Site -> Building -> Room -> Sensor (4-level) etc. The important thing here, is that this hierarchy tree can differ per customer, and needs to be customisable on a tenant-by-tenant basis, but we don't need to do any complex analysis or navigation of relationships between hierarchy levels (so, to me, something like Amazon Neptune or another graph database feels a bit overkill, but perhaps I’m wrong). My first thought was to try and build a hierarchical relationship inside of a DynamoDB table, possibly making use of a GSI to provide this, but in all of the examples I’ve seen online, the focus is very much on quick retrieval, but not so quick updating of hierarchy trees – now, whilst it’s unlikely that these tree structures would be updated on a regular basis, it is something we need to be able to support, so the idea of possibly updating ‘000s of rows in DynamoDB every time we want to make a change to the hierarchy tree for a given control area doesn’t seem quite right to me. Hence, my question above. I'm ideally looking for guidance on how to structure a DDB table to best support BOTH optimal retrieval of, and updates to, hierarchy trees in our application, but if DDB isn't the right answer here, then suggestions of alternatives would also be greatly appreciated. Many thanks in advance.

In AWS Amplify UI React after Login how to redirect to dashboard path login button in home page in react in different page

I uploaded some image and video files via API Gateway. But all the files uploaded are corrupted since I have not set multipart/form-data in API Gateway Setting. I need all these files to be recovered as original data. Is there any way to recover the corrupted files in its original form. The files are crucial to the business.

Hi, I want to add some authorization logic in every API Gateway other than token authentication to secure my APIs. My custom logic includes call an API to validate my header parameters. If the user have that permission it will generate an allow policy. Is it is possible to implement in custom authorizer? Or is there any other methods available to validate my custom header? Can we throw custom message from Lambda Authorizer based on our requirement? Thanks

Is there anyone help on case 9960867531? The SES production access is denied without additional information. I have verified a domain email address.