AppSync: support for additional authorization modes #6247
Assignees
Labels
@aws-cdk/aws-appsync
Related to AWS AppSync
feature-request
A feature should be added or improved.
in-progress
This issue is being actively worked on.
needs-triage
This issue or PR still needs to be triaged.
Comments
duarten
added
feature-request
duarten
added a commit
to duarten/aws-cdk
that referenced
this issue
Feb 13, 2020
Currently the AppSync L2 constructs don't provide a way to configure additional authorization modes. Add the ability to specify additional authorization modes, currently limited to Cognito user pools and API keys. Fixes aws#6247 Signed-off-by: Duarte Nunes <[email protected]>
duarten
added a commit
to duarten/aws-cdk
that referenced
this issue
Feb 13, 2020
Currently the AppSync L2 constructs don't provide a way to configure additional authorization modes. Add the ability to specify additional authorization modes, currently limited to Cognito user pools and API keys. Fixes aws#6247 Signed-off-by: Duarte Nunes <[email protected]>
duarten
added a commit
to duarten/aws-cdk
that referenced
this issue
Feb 13, 2020
Currently the AppSync L2 constructs don't provide a way to configure additional authorization modes. Add the ability to specify additional authorization modes, currently limited to Cognito user pools and API keys. Fixes aws#6247 Signed-off-by: Duarte Nunes <[email protected]>
duarten
added a commit
to duarten/aws-cdk
that referenced
this issue
Feb 13, 2020
Currently the AppSync L2 constructs don't provide a way to configure additional authorization modes. Add the ability to specify additional authorization modes, currently limited to Cognito user pools and API keys. Fixes aws#6247 Signed-off-by: Duarte Nunes <[email protected]>
duarten
added a commit
to duarten/aws-cdk
that referenced
this issue
Feb 19, 2020
Currently the AppSync L2 constructs don't provide a way to configure additional authorization modes. Add the ability to specify additional authorization modes, currently limited to Cognito user pools and API keys. Fixes aws#6247 Signed-off-by: Duarte Nunes <[email protected]>
|
I have this problem, but I need to use the OPENID_CONNECT authenticationType. |
duarten
added a commit
to duarten/aws-cdk
that referenced
this issue
Feb 22, 2020
Currently the AppSync L2 constructs don't provide a way to configure additional authorization modes. Add the ability to specify additional authorization modes, currently limited to Cognito user pools and API keys. Fixes aws#6247 Signed-off-by: Duarte Nunes <[email protected]>
mergify bot
added a commit
that referenced
this issue
Feb 25, 2020
* feat(appsync): allow configuring API key authorization mode
By default, the AppSync L2 constructs use API key authorization, but it
doesn't allow configuring the API key.
Fix that by allowing a default authorization mode to be specified.
Currently, the supported modes are Cognito user pools and API keys. When
specifying API key authorization, allow configuring it.
BREAKING CHANGE:
Configuration the user pool authorization is now done through the
authorizationConfig property. This allows us to specify a default
authorization mode out of the supported ones, currently limited to
Cognito user pools and API keys.
Fixes #6246
Signed-off-by: Duarte Nunes <[email protected]>
* feat(appsync): allow specifying additional authorization modes
Currently the AppSync L2 constructs don't provide a way to configure
additional authorization modes. Add the ability to specify additional
authorization modes, currently limited to Cognito user pools and API
keys.
Fixes #6247
Signed-off-by: Duarte Nunes <[email protected]>
* test(integ.graphql): test cognito and api key authorization
Test using cognito user pools as the default authorization mode and an
api key as the additional mode.
Signed-off-by: Duarte Nunes <[email protected]>
Co-authored-by: mergify[bot] <37929162+mergify[bot]@users.noreply.github.com>
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Currently the AppSync L2 constructs don't provide a way to configure additional authorization modes.
Use Case
For example, configuring a GraphQL API with user pool authorization doesn't allow unauthenticated access, and one way to solve that without splitting the API is to add an additional authorization mode.
Other
This is a 🚀 Feature Request
The text was updated successfully, but these errors were encountered: