Hi team, I was trying to use the `sst.Auth` constr...
# helpm
Mr.9715
05/31/2021, 11:55 AMHi team, I was trying to use the what is the syntax for adding custom attributes in the Cognito user pool?
sst.Auth Copy code
customAttributes: {
company: new StringAttribute({ minLen: 1, maxLen: 255 }),
type: new StringAttribute({ maxLen: 2048 }),
custom1: new StringAttribute({ maxLen: 2048 }),
custom2: new StringAttribute({ maxLen: 2048 }),
},Amazon Cognito domainf
Frank
05/31/2021, 2:24 PM
Just to clarify, how are you planning to protect ur API? Using IAM, or JWT token?
Frank
05/31/2021, 2:26 PM
From ur question, it seems you are taking the JWT approach. In which case
sst.Authm
Mr.9715
05/31/2021, 2:48 PM@Frank, yep. I am planning to use the JWT approach. (I wish I could switch to IAM, but application dev's won't be happy if I asked them to switch to amplify now). We built wrapper APIs long back for signup/sign-in functionality.
I am trying to use Cognito-auth or custom auth to restrict access to APIs. the entire app that we are building is accessed through Rest APIs.
I used CDK
cognito.UserPoolMr.9715
05/31/2021, 2:49 PMAny ideas, how to get around this?
Mr.9715
05/31/2021, 5:52 PMhere is the open GitHub issue explaining the same.
f
Frank
05/31/2021, 5:56 PM
Oh I see. Does the
attachInlinePolicym
Mr.9715
05/31/2021, 6:21 PMattachInlinePolicyaddToRolePolicyf
Frank
06/01/2021, 3:00 AM
Sorry about the late response.. was away from keyboard earlier.
Copy code
const fn = new sst.Function(...);
fn.role.attachInlinePolicy(new Policy(stack, 'userpool-policy', {
statements: [ new PolicyStatement({
actions: ['cognito-idp:DescribeUserPool'],
resources: [userpool.userPoolArn],
}) ]
}));m
Mr.9715
06/01/2021, 3:15 AMIt worked, thanks!