This workshop demonstrates how to build a Document parser and query engine with Amazon Textract and other services, such as ElasticSearch and DynamoDB.
MIT No Attribution
66
stars
34
forks
source link
Feature request - Add API authentication or make API private #6
Currently, the /retrievedocumentanalysisresult and /retrievetextdetectionresult are public and have no authentication. Recommend adding API authentication (e.g. IAM, Cognito, etc.) or making the API private to avoid the risk that someone test this project with sensitive prod docs and inadvertently leave them potentially publicly exposed. Yes, chances are slim as requester needs to know the bucket and key name for the API to return results, but still wanted to suggest this change.
Hi,
Currently, the
/retrievedocumentanalysisresultand/retrievetextdetectionresultare public and have no authentication. Recommend adding API authentication (e.g. IAM, Cognito, etc.) or making the API private to avoid the risk that someone test this project with sensitive prod docs and inadvertently leave them potentially publicly exposed. Yes, chances are slim as requester needs to know the bucket and key name for the API to return results, but still wanted to suggest this change.