是否可以使用 Amazon Cognito 组来设置对 AW 资源(例如 Amazon DynamoDB 和 Amazon S3)的权限?
[英]Is it possible to use Amazon Cognito groups to set permissions on AW resources such as Amazon DynamoDB and Amazon S3?
问题描述
In my application I want to users to be able to create an organization ie (OrgA) and then have users sign up under said organization using either an invite code or token.
在我的应用程序中,我希望用户能够创建一个组织,即(OrgA),然后让用户使用邀请码或令牌在所述组织下注册。 Users in OrgA should have access to an Amazon S3 directory (which stores images and files) and access to a database table that has been created for the said organization. OrgA 中的用户应该有权访问 Amazon S3 目录(存储图像和文件)并访问已为所述组织创建的数据库表。
I could not find a solution on how to implement this online and was wondering if using Amazon Cognito groups was a good idea to meet requirements.我找不到有关如何在线实施此功能的解决方案,并且想知道使用 Amazon Cognito 组是否是满足要求的好主意。
1 个解决方案
解决方案1
1 已采纳 2021-06-15 23:57:01
This is supported by the Amazon Cognito Service.这由 Amazon Cognito 服务支持。 That is, you can use Amazon Cognito to control permissions for different user groups in your app.也就是说,您可以使用 Amazon Cognito 来控制应用程序中不同用户组的权限。 This ensures that users have appropriate access to backend resources, determined by the group they belong to.这可确保用户对后端资源具有适当的访问权限,具体取决于他们所属的组。 For more information, see Building fine-grained authorization using Amazon Cognito User Pools groups .有关更多信息,请参阅使用 Amazon Cognito 用户池组构建细粒度授权。
声明:本站的技术帖子网页,遵循CC BY-SA 4.0协议,如果您需要转载,请注明本站网址或者原文地址。任何问题请咨询:yoyou2525@163.com.