#✅ - Gen 2 - I'm hoping to get pointed in the direction of how to setup and use an IAM auth policy.

4 messages · Page 1 of 1 (latest)

digital lynx
#

So my setup is very unorthodox. I'm creating a service that uses dynomo for storing authentication tokens for a user. My actual auth is happening through a lambda that calls a shopify API. I then use a custom lambda auth handler to accept or decline specific API requests base on if the user has a valid session or not. Additionally I use an apiKey auth method for unauthenticated routes like login, and now I'm using custom mutations using lambda functions that should have more permissions than I want to give a customer. So I'm wondering how I can setup an IAM auth for that, so I can give read and write permissions to my custom lambdas that need to make mutations but my users can only read using the custom lambda auth.

And is it even possible to have all 3 auth mods at the same time? And if not what's a potential workaround. I have no intention of using Cognito because we already manage our users with Shopify, so that would be duplicative.

junior schooner
#

Hi @digital lynx , resolving this issue as it seems to be a duplicate of the discussion taking place in this post:
#1218374731468767322 message

I'll see if I can get an engineer to join in on the discussion and provide guidance as well

frail kestrelBOT
#

✅ - Gen 2 - I'm hoping to get pointed in the direction of how to setup and use an IAM auth policy.

#

Answer selected!

 [#1218374731468767322 message](/guild/705853757799399426/thread/1218374731468767322/p/1218374731468767322/#msg-1218374731468767322)

I'll see if I can get an engineer to join in on the discussion and provide guidance as well```
Kudos to @junior schooner!
#1218335897980764312 message