does anyone know how to get the federated identity pool ID ` Serverless Stack #help

does anyone know how to get the federated identity...

Sam Hulick

03/23/2022, 2:09 AM

does anyone know how to get the federated identity pool ID (

us-east-1:<uuid>

) from

cognito.UserPool

Frank

03/23/2022, 2:13 AM

Hey @Sam Hulick i’ve seen ppl either: • store identity pool id as a user pool attribute; or • store the user pool id to identity pool id mapping in DynamoDB

Frank

03/23/2022, 2:14 AM

afaik, it’s not something the user pool or the identity pool track automatically

Sam Hulick

03/23/2022, 2:15 AM

I should probably elaborate on what I’m trying to do: in the stack that creates the user pool, I’m trying to make an IAM role for a Cognito group. but it needs a reference to the identity pool ID:

Copy code

assumedBy: new iam.FederatedPrincipal('<http://cognito-identity.amazonaws.com|cognito-identity.amazonaws.com>', {
      StringEquals: {
        '<http://cognito-identity.amazonaws.com:aud|cognito-identity.amazonaws.com:aud>': '???',
      },
      'ForAnyValue:StringLike': {
        '<http://cognito-identity.amazonaws.com:amr|cognito-identity.amazonaws.com:amr>': 'authenticated',
      },
    }),

Sam Hulick

03/23/2022, 2:16 AM

the

cognito.UserPool

instance doesn’t seem to have any relevant properties

Frank

03/23/2022, 2:26 AM

how are u creating the identity pool? is it created by this point?

Sam Hulick

03/23/2022, 2:26 AM

it apparently gets created when you create a user pool

Sam Hulick

03/23/2022, 2:26 AM

or not? hang on

Sam Hulick

03/23/2022, 2:27 AM

oh wait. nope

Copy code

const auth = new sst.Auth(stack, 'Auth', {
    cognito: {
      userPool,
      userPoolClient,
    },
    identityPool: { allowUnauthenticatedIdentities: true },
  });

Sam Hulick

03/23/2022, 2:27 AM

oh duh.

auth.cognitoIdentityPoolId

3 Views

Open in Slack

Previous Next