I've successfully signed into an iOS app using Google oAuth and been able to get a Cognito token and ID. Now, I'd like to call a node.js API to perform some action on DynamoDB.
我已经使用谷歌oAuth成功登录了一个iOS应用,并获得了一个Cognito token和ID。js API在DynamoDB上执行一些操作。
What and how do I pass to my API call? What authentication and suthorisation checks can I perform in the API method itself?
如何传递到API调用?我可以在API方法本身中执行哪些身份验证和suthorisation检查?
Background: I don't want to expose/leak and details of the underlying storage back to the user so I won't be using DynamoDB, for example, from within the app itself.
背景:我不想将底层存储的详细信息泄露给用户,所以我不会使用DynamoDB,例如,在应用程序内部。
1 个解决方案
#1
3
I've answered this in your post to the AWS Cognito Forum: https://forums.aws.amazon.com/thread.jspa?threadID=160363
我在您发给AWS Cognito论坛的帖子中已经回答了这个问题:https://forums.aws.amazon.com/thread.jspa?
#1
3
I've answered this in your post to the AWS Cognito Forum: https://forums.aws.amazon.com/thread.jspa?threadID=160363
我在您发给AWS Cognito论坛的帖子中已经回答了这个问题:https://forums.aws.amazon.com/thread.jspa?