Warning: file_get_contents(/data/phpspider/zhask/data//catemap/1/amazon-web-services/12.json): failed to open stream: No such file or directory in /data/phpspider/zhask/libs/function.php on line 167

Warning: Invalid argument supplied for foreach() in /data/phpspider/zhask/libs/tag.function.php on line 1116

Notice: Undefined index: in /data/phpspider/zhask/libs/function.php on line 180

Warning: array_chunk() expects parameter 1 to be array, null given in /data/phpspider/zhask/libs/function.php on line 181
Amazon web services 如何在Electron JS中从Cognito OAuth2.0动态获取AccessToken_Amazon Web Services_Oauth 2.0_Electron_Amazon Cognito_Access Token - Fatal编程技术网
Fatal编程技术网
  • amazon-web-services/
  • Amazon web services 如何在Electron JS中从Cognito OAuth2.0动态获取AccessToken

Amazon web services 如何在Electron JS中从Cognito OAuth2.0动态获取AccessToken

amazon-web-services oauth-2.0 electron

Amazon web services 如何在Electron JS中从Cognito OAuth2.0动态获取AccessToken,amazon-web-services,oauth-2.0,electron,amazon-cognito,access-token,Amazon Web Services,Oauth 2.0,Electron,Amazon Cognito,Access Token,您好,我使用Electron JS作为桌面应用程序,该应用程序与云平台相关,需要从中获取患者列表 到目前为止,我可以得到它,但与静态AccessToken。我真的很难让它充满活力,请帮忙 这是我的密码: 这是我的配置文件,我在其中指定Cognito参数: export default { s3: { REGION: 'YOUR_S3_UPLOADS_BUCKET_REGION', BUCKET: 'YOUR_S3_UPLOADS_BUCKET_NAME', }, apiGateway:

您好,我使用Electron JS作为桌面应用程序,该应用程序与云平台相关,需要从中获取患者列表

到目前为止,我可以得到它,但与静态AccessToken。我真的很难让它充满活力,请帮忙

这是我的密码:

这是我的配置文件,我在其中指定Cognito参数:

export default {
s3: {
  REGION: 'YOUR_S3_UPLOADS_BUCKET_REGION',
  BUCKET: 'YOUR_S3_UPLOADS_BUCKET_NAME',
},
apiGateway: {
  REGION: 'YOUR_API_GATEWAY_REGION',
  URL: 'YOUR_API_GATEWAY_URL',
},
cognito: {
  REGION: 'eu-west-1',
  USER_POOL_ID: 'eu-west-1_P0Jcr7nig',
  APP_CLIENT_ID: '4m1utu56hjm835dshts9jg63ou',
  IDENTITY_POOL_ID: 'YOUR_IDENTITY_POOL_ID',
  authenticationFlowType: 'USER_PASSWORD_AUTH',
  AUTHENTICATION_FLOW_TYPE: 'USER_PASSWORD_AUTH',
},
API: {
    endpoints: [
      {
        name: 'PatientsList',
        endpoint: 'https://uo992r7huf.execute-api.eu-west-1.amazonaws.com/Stage/patients',
        //endpoint: 'https://uo992r7huf.execute-api.eu-west-1.amazonaws.com/Stage',
      },
    ],
  },
};

Auth.signIn({
 username: process.env.username,
 password: process.env.password,
}).then().catch(err => {
 console.log(err)});
在另一个文件中,这是我的getaccesstoken函数,我将其导出到主

function getAccessToken() {
 const poolData = { 
  UserPoolId : COGNITO_USER_POOL_ID,
 ClientId : COGNITO_CLIENT_ID,
};
const userPool = new CognitoUserPool(poolData);
var authenticationData = {
      Username : process.env.username, // your username here
      Password : process.env.password, // your password here,
      authenticationFlowType: process.env.AUTHENTICATION_FLOW_TYPE,
      Pool : userPool
  };
  var authenticationDetails = new AmazonCognitoIdentity.AuthenticationDetails(
    authenticationData);
  var cognitoUser = new CognitoUser(authenticationData);
  cognitoUser.authenticateUser(authenticationDetails, {
      onSuccess: function (result) {
        console.log('access token + ' + result.getAccessToken().getJwtToken());
      },
      onFailure: function(err) {
       console.log(err);
      },
  });
}
最后,这里是我如何获取main中的数据:

声明:

  const  { Auth } = require('./cognitoAuth');
 const theAccessToken = require('./cognitoAuth');
守则:

  //Get Data From Cloud ECS
  const API_URL = 'https://uo992r7huf.execute-api.eu-west-1.amazonaws.com/Stage/patients';
  const headers = {
    "Content-Type": "application/json",
    //Authorization: theAccessToken.getAccessToken()
    Authorization: "eyJraWQiOiJBbE1DZnBCTHYyVUlNazhXSG4xaTk4RG1QNlFmcFpSSjFaSW1qcVVFZnVBPSIsImFsZyI6IlJTMjU2In0.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.LYvzPRBxvKw2P3gHwV8NhYPg_EB3F7ZK2F5HpRWHtBHksr6D4N5Fw56ZVupkRCxVJSq0f93DdljI7BBcBnp9d_hpLzmJLTfBhA3t870omTxalTqpGXN_SvsZmuwcfCX-awn1Um6x_-fhq3zcfPkB9FBljbtwPN-kvCc-Iynei9anVxXI686nIbkfbYfnuRnHrbY0vg8FtyDIDBMv277FPoJ96NwPD4mJvNBxQHi_KfWxQ1DmLiAC6c_l2jP_wawAPBv788CjD_8OlKBbjAHinGEkaL1K9vjI5MhNPyTA5ym1IaWar7Jr8RkUDzQGvqEUPKoOUe9PswmOOxLBjehMgQ"
    };
    //console.log('Token Value:', theAccessToken.getAccessToken());
    const getPatients = async(API_URL) => {
      try {
        //get data from cloud specifiying get method and headers which contain token
        const response = await fetch(API_URL,{
          method: 'GET', headers: headers}
          );
        var listPatients = await response.json();
        listPatients.items.forEach(patient => {
          //Checking what i got
          console.log(patient);
        });
        } catch(err) {
          console.log("Error" + err);
        }
        };
       getPatients(API_URL);
现在,当我通过指定AccessToken.getAccessToken使其成为动态的 我得到这个错误,当我询问团队告诉我云服务不想启用它时,用户_SRP即使指定它也没有启用。
那么,我如何才能获得此访问令牌呢?

对于桌面应用程序,建议根据以下说明执行以下两项操作:

  • 使用授权代码流(PKCE)
  • 通过系统浏览器登录,这样应用程序就不会看到用户的密码
我有两个使用Cognito的电子代码示例,您可以很容易地运行这些示例-可能从这里开始:

感谢使用PKCE给出的答案,这当然符合我的要求,但当我问云团队时,他们说即使他们不激活USER\u SRP\u AUTH,它也应该可以工作,因此,尽管我非常感谢您,但我想知道我的代码中哪里有错误。因为根据他们的说法,这应该是可行的。谢谢,我不喜欢您的解决方案的外观,因为您的应用程序代码获得了对用户密码的访问权,这与OAuth原则背道而驰。感觉您选择的库是特定于供应商的,需要用户\u SRP\u AUTH设置。这似乎是一个基于多重身份验证挑战的不可移植AWS特定功能。你需要这个功能吗?乍一看,我同意您的云团队的观点,即编码方法可能需要更多的思考。在采用您可能在在线供应商网页中看到的编码解决方案之前,我将首先了解OAuth标准。