我如何使用Cognito令牌API？ [英] How do I use a Cognito token with API?

问题描述

我已经成功地签署了使用谷歌OAuth的iOS应用程序，并能得到一个Cognito标记和编号。现在，我想请一个Node.js的API来对DynamoDB执行一些操作。

I've successfully signed into an iOS app using Google oAuth and been able to get a Cognito token and ID. Now, I'd like to call a node.js API to perform some action on DynamoDB.

什么以及如何传递给我的API调用？ 我可以在API方法本身进行什么验证和suthorisation检查？

What and how do I pass to my API call? What authentication and suthorisation checks can I perform in the API method itself?

背景：我不希望暴露底层的存储/泄漏和细节回，所以我不会使用DynamoDB的用户，例如，从应用程序本身

Background: I don't want to expose/leak and details of the underlying storage back to the user so I won't be using DynamoDB, for example, from within the app itself.

推荐答案

我在您的文章到AWS Cognito论坛回答是：的 https://forums.aws.amazon.com/thread.jspa?threadID=160363

I've answered this in your post to the AWS Cognito Forum: https://forums.aws.amazon.com/thread.jspa?threadID=160363

这篇关于我如何使用Cognito令牌API？的文章就介绍到这了，希望我们推荐的答案对大家有所帮助，也希望大家多多支持IT屋！