Closed vahdet closed 4 years ago
Going to use AMAZON_COGNITO_USER_POOLS after reading this article and noticing that AWS Amplify GraphQL docs gives it in CLI alternatives unlike AWS_IAM.
Added @aws_auth(cognito_groups: ["TafalkUsers"])
to the Appsync queries and mutations that should be accessed via the authenticated users and left the rest as the default ALLOW
.
Halted usage of AWS Cognito User Pools due to the issue with unauthenticated users https://github.com/aws-amplify/amplify-js/issues/1252
Changed to AMAZON_COGNITO_USER_POOLS as planned
AppSync security can be APIKEY for development purposes. Choose one of the following for producion:
If AMAZON_COGNITO_USER_POOLS will be used, the Cognito User Pool Group
TafalkUsers
is already created and fed.