堆栈内存溢出
  简体   繁体   English

如何将 Cognito 令牌传递到 Amazon API Gateway?

[英]How to pass Cognito token to Amazon API Gateway?

 原文  2015-09-18 09:31:49       amazon-web-services/ amazon-cognito

问题描述

I'm developing web app based on Amazon API Gateway.我正在开发基于 Amazon API Gateway 的 Web 应用程序。 Now I created Facebook login and successfully logged into website.现在我创建了 Facebook 登录并成功登录到网站。 but when I call another API, everything gone.但是当我调用另一个 API 时,一切都消失了。 I think I should pass Cognito token when call API everytime.我认为每次调用 API 时我都应该传递 Cognito 令牌。 am I right?我对吗?

if yes, how to pass Cognito token to API?如果是,如何将 Cognito 令牌传递给 API? like header?喜欢标题? or another way?或其他方式?

Thanks,谢谢,

1 个解决方案

解决方案1
 16 已采纳  2015-09-20 03:13:34

You are using the "Basic Authflow" from cognito identity, which means you will need to get credentials for your users by calling STS's "AssumeRoleWithWebIdentity".您正在使用来自 cognito 身份的“Basic Authflow”,这意味着您需要通过调用 STS 的“AssumeRoleWithWebIdentity”来为您的用户获取凭据。 Here is some documentation to help: http://docs.aws.amazon.com/cognito/devguide/identity/concepts/authentication-flow/这里有一些帮助文档: http : //docs.aws.amazon.com/cognito/devguide/identity/concepts/authentication-flow/

Once you have credentials, you can instantiate the API Gateway Client:获得凭据后,您可以实例化 API Gateway 客户端:

var client = apigClientFactory.newClient({ 
    accessKey: ACCESS_KEY, 
    secretKey: SECRET_KEY, 
    sessionToken: SESSION_TOKEN });

The keys and tokens come from the result of the "AssumeRoleWithWebIdentity" call.键和令牌来自“AssumeRoleWithWebIdentity”调用的结果。

If you have configured your IAM roles, and Authorizations correctly you should be able to access your API.如果您已正确配置 IAM 角色和授权,您应该能够访问您的 API。

Here is the documentation describing how to configure the roles & authorization: http://docs.aws.amazon.com/apigateway/latest/developerguide/how-to-method-settings.html#how-to-method-settings-callers-console这是描述如何配置角色和授权的文档: http : //docs.aws.amazon.com/apigateway/latest/developerguide/how-to-method-settings.html#how-to-method-settings-callers -安慰

Also, here is how to enable CORS - http://docs.aws.amazon.com/apigateway/latest/developerguide/how-to-cors.html此外,这里是如何启用 CORS - http://docs.aws.amazon.com/apigateway/latest/developerguide/how-to-cors.html

暂无
暂无

声明:本站的技术帖子网页,遵循CC BY-SA 4.0协议,如果您需要转载,请注明本站网址或者原文地址。任何问题请咨询:yoyou2525@163.com.

相关问题 带有 API 网关的 Amazon Cognito 身份 - Amazon Cognito Identity with API Gateway AWS API 网关授权器适用于 Cognito HostedUI,但不适用于 amazon-cognito-identity-js 中的 access_token - AWS API Gateway Authorizer works with Cognito HostedUI but not with access_token from amazon-cognito-identity-js 如何使用 Cognito Auth 测试对 Amazon API 网关的调用 - How to test calls to an Amazon API gateway using Cognito Auth 如何使用AWS Cognito Userpool令牌登录到AWS Api网关? - How to use AWS Cognito Userpool token to log into AWS Api gateway? 如何通过API Gateway将Cognito User Pool信息传递给Lambda - How to pass Cognito User Pool information to Lambda through API Gateway 如何从通过 Amazon Cognito 用户池验证的 HTTP API 网关 + Lambda 的调用中获取用户详细信息 - How to get the USER details from a call to HTTP API Gateway + Lambda that is authenticated with an Amazon Cognito User Pool 自定义授权者与Cognito - 对amazon api网关的身份验证 - Web应用程序 - Custom authorizer vs Cognito - authentication for amazon api gateway - Web application Telerik NativeScript中的AWS Cognito和Amazon API Gateway集成 - AWS Cognito and Amazon API Gateway integration within Telerik NativeScript 如何在AWS Lambda中验证Cognito访问令牌以允许网关API调用? - How to get validate Cognito Access Token in AWS Lambda to allow Gateway API call? 将令牌从AWS Cognito交换到AWS API Gateway - Exchange token from AWS Cognito to AWS API Gateway
相关标签
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM