问题描述
我已经成功地签署了使用谷歌OAuth的iOS应用程序,并能得到一个Cognito标记和编号。现在,我想请一个Node.js的API来对DynamoDB执行一些操作。
I've successfully signed into an iOS app using Google oAuth and been able to get a Cognito token and ID. Now, I'd like to call a node.js API to perform some action on DynamoDB.
什么以及如何传递给我的API调用?我可以在API方法本身进行什么验证和suthorisation检查?
What and how do I pass to my API call?What authentication and suthorisation checks can I perform in the API method itself?
背景:我不希望暴露底层的存储/泄漏和细节回,所以我不会使用DynamoDB的用户,例如,从应用程序本身
Background: I don't want to expose/leak and details of the underlying storage back to the user so I won't be using DynamoDB, for example, from within the app itself.
推荐答案
我在您的文章到AWS Cognito论坛回答是:的
I've answered this in your post to the AWS Cognito Forum: https://forums.aws.amazon.com/thread.jspa?threadID=160363
这篇关于我如何使用Cognito令牌API?的文章就介绍到这了,希望我们推荐的答案对大家有所帮助,也希望大家多多支持!