AWS Amplify Functions allow.resource() not working
I am writing an app in Flutter and use AWS Amplify for this.
Now I am creating a simple Blacklist check in an AWS Amplify function. For this this function needs access to my database table given in my resource.ts file like this:
BlacklistData: a.model({
Word: a.string().required(),
})
//.authorization(allow => [allow.resource(blacklistPost), allow.authenticated()])
.authorization(allow => [allow.authenticated()])
.identifier(['Word']),
When I now take the aws amplify documentation it says you should use .authorization(allow => [allow.resource(functionWithDataAccess)]);
But when I add this in my ressource.ts file like this:
BlacklistData: a.model({
Word: a.string().required(),
})
//.authorization(allow => [allow.resource(blacklistPost), allow.authenticated()])
.authorization(allow => [allow.authenticated(), allow.resource(blacklist)])
.identifier(['Word']),
It always gives me an error in VS Code:
and in the aws cli sandbox it writes me the following lines:
What is wrong with my implementation that it is not working like in the documentation? Am I missing something obvious or is this a bug? Badly I was not able to solve this with KI or Googeling.
You are doing it wrong. You should apply authorization on entire schema, not just a specific model.
Try this, it should work.
const schema = a
.schema({
BlacklistData: a.model({
Word: a.string().required(),
})
})
.authorization(allow => [allow.resource(blacklistPost), allow.authenticated()]);
- AWS Cloudwatch agent config file removed after startup
- AWS lambda SQS does not allow to process 1 message per 1 invocation
- How can I create a TLS/SSL connection to a mongodb instance on AWS with a certificate made by certificate manager? Health check failed
- Cloudfront redirect when signed cookies not present
- AWS Lambda and DynamoDB - updatetItem is not a function
- AWS ElasticBeanstalk EC2 Termination Protection
- Allowing AWS Cognito Users to authentication to JIRA via SAML/SSO (Domain Not found)
- Install pgAgent on AWS RDS for Postgres
- Row was updated or deleted by another transaction (or unsaved-value mapping was incorrect)
- List all parameters in AWS SSM Parameter Store
- AWS push_down_predicate not working with DynamoDb
- localstack AWS S3 javascript error : getaddrinfo ENOTFOUND bucketname.localhost
- AWS ECS agent won't start
- AWS VPC (Virtual Private Cloud), rapidly increasing expenses
- SemaphoreCI OIDC AWS connection
- Can't delete AWS internet Gateway
- How to provide multiple StringNotEquals conditions in AWS policy?
- Not able to get ECS fargate metrics on Datadog
- 502 "Internal Server Error" with API Gateway + Lambda when deploying
- Java Springboot application not able to connect to AWS Elasticache Valkey Cache (Serverless)
- Splitting PDF with PyPDF2 in Lambda function
- "libdbus-glib-1.so.2: cannot open shared object file: No such file or directory"
- Partial credentials found in env, missing: AWS_SECRET_ACCESS_KEY
- Best way to store Firebase admin private key file for AWS lambda
- AWS Elastic Beanstalk and Secret Manager
- Unable to upload data using sagemaker_session.upload_data in s3 bucket that I created, it is getting stored in default s3 bucket
- Parse Aws IoT message in python
- How to temporarily switch profiles for AWS CLI?
- Python Sqlalchemy insert data into AWS Redshift
- Using AWS Bedrock Prompt Management with InvokeCommand