使用 AWS re:Post 即表示您同意 AWS re:Post 使用條款
AWS re:Postre:Post

How do I Read PrincipalTags from Cognito Identity?

1

Suppose I have a Cognito Identity Pool. I want to grab info about the user itself rather than their Cognito Identity ID.

Is there any way to read off the principal tags from the assumed Cognito Identity or the underlying IAM Role?

Alternatively I could parse the "sub" attribute from the oidc provider (via the cognito identity's amr block) and work backwards with the identity provider to get more info... but this is resource intensive and I see no reason why I can't access the principal tags passed into the cognito identity...

主題
安全性、身分識別與合規
標籤
AWS Identity and Access ManagementAmazon CognitoIAM 政策
語言
English
Brandon-Ellis-AI
已提問 2 年前檢視次數 347 次
1 個回答
1

Currently there is not a way to pull User data in the way you are looking. Once the Identity Pool is leveraged, the ID is all that is available to track actions within AWS. The Identity Pool only handles the Auth Z portion of the transaction and does not keep or pass along user data even if leveraging Cognito UserPools.

AWS
JMWare
已回答 2 年前
  • Nicolas
    8 個月前

    Since there is a tag mapping feature in ID pools, I would expect to be able to retrieve these tags. Will it ever happen ?

您尚未登入。 登入 去張貼答案。

一個好的回答可以清楚地回答問題並提供建設性的意見回饋,同時有助於提問者的專業成長。

回答問題指南

相關內容