允许外部用户(通过 Cognito)访问 S3 存储桶和控制台
[英]Allow an external user (through Cognito) to access a S3 bucket and console
问题描述
Is it possible to allow an external user (through Cognito) to access a S3 bucket and display the S3 console screen?
是否可以允许外部用户(通过 Cognito)访问 S3 存储桶并显示 S3 控制台屏幕?
I have been trying to create a User Pool connect it with a role through Identity Pool and then in the APP SETTINGS in User Pool is my S3 url?我一直在尝试创建一个用户池,通过身份池将其与角色连接,然后在用户池中的应用程序设置中是我的 S3 url?
2 个解决方案
解决方案1
2 已采纳 2020-01-10 04:27:59
Is it possible to allow an external user (through cognito) to access a S3 bucket
Yes.是的。 Use Identity Pool => set Authenticated Role: S3 access with Cognito Identity ID restrict as example (custom prefix if you want): https://docs.amazonaws.cn/en_us/IAM/latest/UserGuide/reference_policies_examples_s3_cognito-bucket.html使用身份池 => 设置身份验证角色:以 Cognito 身份 ID 限制为例的 S3 访问(如果需要,可以自定义前缀): https : //docs.amazonaws.cn/en_us/IAM/latest/UserGuide/reference_policies_examples_s3_cognito-bucket.html
Then, User after authenticated with Identity Pool can access S3然后,通过身份池验证后的用户可以访问 S3
and display the S3 console screen ?
Not.不是。 User after authenticated has to access S3 via calling API认证后的用户必须通过调用 API 访问 S3
解决方案2
0 2020-01-10 08:59:09
You may create a new user in AWS IAM and grant the access only to s3 bucket.您可以在 AWS IAM 中创建一个新用户并仅授予对 s3 存储桶的访问权限。
Then you would have the s3 web UI screen and AWS console authentication.然后您将拥有 s3 Web UI 屏幕和 AWS 控制台身份验证。
声明:本站的技术帖子网页,遵循CC BY-SA 4.0协议,如果您需要转载,请注明本站网址或者原文地址。任何问题请咨询:yoyou2525@163.com.