使用AWS开发工具包以IAM用户身份登录 [英] Login as IAM User using AWS SDK

问题描述

有人可以帮助我如何使用AWS开发工具包以IAM用户身份登录吗?我正在使用适用于Java的AWS开发工具包，并且一直在寻找合适的API以IAM用户身份登录，但我无法这样做.我可以传递访问密钥和秘密密钥以使用SDK进行登录，但是我的用例是验证用户和IAM用户提供的密码

Can anyone help me on how to login as an IAM user using AWS SDK? I am using AWS SDK for Java and had been finding suitable APIs to login as an IAM User, which I am not able to. I am able to pass the access and secret keys to login using the SDK, but my use case is to validate the user and the password given by the IAM User

推荐答案

我也希望有安全的方法可以做到这一点.但是从我读过的所有书中都没有.

I also wish there was secure way to to do this. But from all that I have read there isn't.

IAM用户名和密码只能与Amazon管理控制台及其论坛(

The IAM username and password can only be used with the Amazon management console and their forums (http://docs.aws.amazon.com/AWSSecurityCredentials/1.0/AboutAWSCredentials.html)

为了解决这个问题，我脑子里想出了很多主意，但我没有安全地做到这一点.

I been drawing a number of ideas in my head to workaround this, but I fail to do so securely.

到目前为止，我最好的解决方案是使用一个数据库，在该数据库中镜像iam用户名和aws秘密访问密钥.用密钥加密的ofc.但这仍然具有以下缺点

My best solution so far is using a database where I mirror the iam user name and aws secret access key. With secret key encrypted ofc. But this still has the following drawbacks

• aws秘密密钥存储在数据库中(即使它不是明文形式，也仍然存在)
• 客户端将具有用户的访问密钥，该用户有权列出iam用户并读取对数据库的访问权限.

所以我对这个主意不是很了解.

So I am not very found this idea.

感觉就像我们都在这里错过了重要的事情.

It just feels like we are both missing something significant here.

这篇关于使用AWS开发工具包以IAM用户身份登录的文章就介绍到这了，希望我们推荐的答案对大家有所帮助，也希望大家多多支持IT屋！