AWS CDK: Cognito with ApplicationLoadBalancedFargateService
Question
I'd like to secure my webapp running in an ECS Fargate container with Cognito. Using the convenient ecspatterns.ApplicationLoadBalancedFargateService with the Cognito example given at AuthenticateCognitoAction shown at https://docs.aws.amazon.com/cdk/api/v1/docs/@aws-cdk_aws-elasticloadbalancingv2-actions.AuthenticateCognitoAction.html is giving me a headache.
I've tried to first create the LoadBalancer shown in the Cognito example and then pass it as the loadBalancer parameter in ApplicationLoadBalancedFargateService constructor. And I've also tried first creating the ApplicationLoadBalancedFargateService and then doing fargateService.loadBalancer.addListener to add the Cognito Listener. Both solutions fail with:
Resource handler returned message: "A listener already exists on this port for this load balancer
What's the correct way of combining these two?
1 answers
solution1
2 ACCPTED 2022-02-15 11:41:34
Thanks to this demo stack I found that you:
- create the Cognito User Pool and Client
- create
ApplicationLoadBalancedFargateService - add a
AuthenticateCognitoActionto the fargateService listener like this:
fargateService.listener.addAction('Listener', {
action: new actions.AuthenticateCognitoAction({
userPool,
userPoolClient,
userPoolDomain,
next: elbv2.ListenerAction.forward([fargateService.targetGroup]),
}),
})
The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.