TechQA.

AWS Amplify, use Cognito attributes (sub, custom:userType) for IAM authenticated role to Read/Write on S3 bucket path

37 views Asked by At

I am developing an app using AWS Amplify where I need to store files. I want to use Cognito Attributes instead of Federated Identity ${cognito-identity.amazonaws.com:sub}. I got Schools, Teachers, and students. I want students to upload files to something like the below

"Resource": "arn:aws:s3:::s3-bucket-name/schools/${principalTag/custom:schoolID}/students/${principalTag/username}/"*

I tried Federated Identity > User Access > Attributes for access control > Use Default Mapping The user can log in but no IAM role is attached to the user.

S3 structure is

s3-bucket-name/
└── schools/
    └── school-id-1/
        ├── teachers/
        │   └── teacher-id-1/
        └── students/
            └── student-id-1/
amazon-web-services amazon-s3 aws-amplify aws-iam-policy amplify-auth-cognito
Original Q&A
0

There are 0 answers

Related Questions in AMAZON-WEB-SERVICES

Related Questions in AMAZON-S3

Related Questions in AWS-AMPLIFY

Related Questions in AWS-IAM-POLICY

Related Questions in AMPLIFY-AUTH-COGNITO

Popular Questions

Popular Tags

javascript python java c# php android html jquery c++ css ios sql mysql r reactjs node.js arrays c asp.net json python-3.x ruby-on-rails .net sql-server swift django angular objective-c pandas excel

Trending Questions