Skip to content

Commit

Permalink
feat: replace role mapping lambda in auth category (#13003)
Browse files Browse the repository at this point in the history 
* chore: test s3 access

* chore: test migration scenarios

* chore: add some headless test

* chore: group lambda removal

* chore: tests

* chore: tests

* chore: codeql

* chore: pr feedback
  • Loading branch information
@sobolk
sobolk authored Jul 26, 2023
1 parent fbfa9a0 commit 4ce0329
Show file tree
Hide file tree
Showing 20 changed files with 1,810 additions and 1,092 deletions.
37 changes: 0 additions & 37 deletions packages/amplify-category-auth/resources/auth-custom-resource/role-map-lambda-function.js
View file

This file was deleted.

44 changes: 44 additions & 0 deletions ...tils/awscloudformation/auth-stack-builder/__snapshots__/auth-stack-transform.test.ts.snap
View file
Original file line number Diff line number Diff line change
Expand Up @@ -1348,11 +1348,55 @@ exports.handler = (event, context, callback) => {
"IdentityPoolRoleMap": {
"DependsOn": [
"IdentityPool",
"UserPoolClient",
"UserPoolClientWeb",
],
"Properties": {
"IdentityPoolId": {
"Ref": "IdentityPool",
},
"RoleMappings": {
"UserPoolClientRoleMapping": {
"AmbiguousRoleResolution": "AuthenticatedRole",
"IdentityProvider": {
"Fn::Sub": [
"cognito-idp.\${region}.amazonaws.com/\${userPool}:\${client}",
{
"client": {
"Ref": "UserPoolClient",
},
"region": {
"Ref": "AWS::Region",
},
"userPool": {
"Ref": "UserPool",
},
},
],
},
"Type": "Token",
},
"UserPoolWebClientRoleMapping": {
"AmbiguousRoleResolution": "AuthenticatedRole",
"IdentityProvider": {
"Fn::Sub": [
"cognito-idp.\${region}.amazonaws.com/\${userPool}:\${webClient}",
{
"region": {
"Ref": "AWS::Region",
},
"userPool": {
"Ref": "UserPool",
},
"webClient": {
"Ref": "UserPoolClientWeb",
},
},
],
},
"Type": "Token",
},
},
"Roles": {
"authenticated": {
"Ref": "authRoleArn",
Expand Down
Loading

0 comments on commit 4ce0329

Please sign in to comment.