如何在Android上使用IAM或Cognito池作为身份验证方法而不是API密钥
我正在使用AWS Amplify的AppSync API设置,出现以下错误。IAM和Cognito池授权方法都失败并产生此错误。当我使用API密钥时,没有问题如何在Android上使用IAM或Cognito池作为身份验证方法而不是API密钥,android,amazon-web-services,graphql,amazon-cognito,aws-appsync,Android,Amazon Web Services,Graphql,Amazon Cognito,Aws Appsync,我正在使用AWS Amplify的AppSync API设置,出现以下错误。IAM和Cognito池授权方法都失败并产生此错误。当我使用API密钥时,没有问题 2019-05-15 23:15:44.215 15058-15058/com.example.aaa.amplify E/AndroidRuntime: FATAL EXCEPTION: main Process: com.example.aaa.amplify, PID: 15058 java.lang.RuntimeExce
2019-05-15 23:15:44.215 15058-15058/com.example.aaa.amplify E/AndroidRuntime: FATAL EXCEPTION: main
Process: com.example.aaa.amplify, PID: 15058
java.lang.RuntimeException: Unable to start activity ComponentInfo{com.example.aaa.amplify/com.example.aaa.amplify.MainActivity}: java.lang.RuntimeException: Failed to read awsconfiguration.json please check that it is correctly formed.
at android.app.ActivityThread.performLaunchActivity(ActivityThread.java:2665)
at android.app.ActivityThread.handleLaunchActivity(ActivityThread.java:2726)
at android.app.ActivityThread.-wrap12(ActivityThread.java)
at android.app.ActivityThread$H.handleMessage(ActivityThread.java:1477)
at android.os.Handler.dispatchMessage(Handler.java:102)
at android.os.Looper.loop(Looper.java:154)
at android.app.ActivityThread.main(ActivityThread.java:6119)
at java.lang.reflect.Method.invoke(Native Method)
at com.android.internal.os.ZygoteInit$MethodAndArgsCaller.run(ZygoteInit.java:886)
at com.android.internal.os.ZygoteInit.main(ZygoteInit.java:776)
Caused by: java.lang.RuntimeException: Failed to read awsconfiguration.json please check that it is correctly formed.
at com.amazonaws.mobile.config.AWSConfiguration.readInputJson(AWSConfiguration.java:99)
at com.amazonaws.mobile.config.AWSConfiguration.<init>(AWSConfiguration.java:83)
at com.amazonaws.mobile.config.AWSConfiguration.<init>(AWSConfiguration.java:68)
at com.amazonaws.mobile.config.AWSConfiguration.<init>(AWSConfiguration.java:45)
at com.example.aaa.amplify.MainActivity.onCreate(MainActivity.java:33)
at android.app.Activity.performCreate(Activity.java:6679)
at android.app.Instrumentation.callActivityOnCreate(Instrumentation.java:1118)
at android.app.ActivityThread.performLaunchActivity(ActivityThread.java:2618)
at android.app.ActivityThread.handleLaunchActivity(ActivityThread.java:2726)
at android.app.ActivityThread.-wrap12(ActivityThread.java)
at android.app.ActivityThread$H.handleMessage(ActivityThread.java:1477)
at android.os.Handler.dispatchMessage(Handler.java:102)
at android.os.Looper.loop(Looper.java:154)
at android.app.ActivityThread.main(ActivityThread.java:6119)
at java.lang.reflect.Method.invoke(Native Method)
at com.android.internal.os.ZygoteInit$MethodAndArgsCaller.run(ZygoteInit.java:886)
at com.android.internal.os.ZygoteInit.main(ZygoteInit.java:776)
Caused by: org.json.JSONException: End of input at character 1241 of { "UserAgent": "aws-amplify-cli/0.1.0", "Version": "1.0", "IdentityManager": { "Default": {} }, "AppSync": { "Default": { "ApiUrl": "https://xxxxxxxx.appsync-api.us-west-2.amazonaws.com/graphql", "Region": "us-west-2", "AuthMode": "API_KEY", "ApiKey": "da2-xxxxxxxxxxxxxxxx", "ClientDatabasePrefix": "xxxxxxxxxxxxxxx-master_API_KEY" },// "Default": {// "ApiUrl": "https://xxxxxxxxxxxx.appsync-api.us-west-2.amazonaws.com/graphql",// "Region": "us-west-2",// "AuthMode": "AWS_IAM",// "ClientDatabasePrefix": "xxxxxxxx-master_AWS_IAM"// }, }, "CognitoUserPool": { "Default": { "PoolId": "us-west-xxxxxxx", "AppClientId": "xxxxxxxxxxxxx", "AppClientSecret": "xxxxxxxxxxxxxxxxxx", "Region": "us-west-2" } }, "Auth": { "Default": { "OAuth": { "AppClientId": "xxxxxxxxxxxxxxxxxxxxxxx", "AppClientSecret": "xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx" } } }}
at org.json.JSONTokener.syntaxError(JSONTokener.java:449)
at org.json.JSONTokener.nextValue(JSONTokener.java:97)
at org.json.JSONTokener.readObject(JSONTokener.java:361)
at org.json.JSONTokener.nextValue(JSONTokener.java:100)
at org.json.JSONTokener.readObject(JSONTokener.java:384)
at org.json.JSONTokener.nextValue(JSONTokener.java:100)
at org.json.JSONObject.<init>(JSONObject.java:156)
at org.json.JSONObject.<init>(JSONObject.java:173)
at com.amazonaws.mobile.config.AWSConfiguration.readInputJson(AWSConfiguration.java:97)
at com.amazonaws.mobile.config.AWSConfiguration.<init>(AWSConfiguration.java:83)
at com.amazonaws.mobile.config.AWSConfiguration.<init>(AWSConfiguration.java:68)
at com.amazonaws.mobile.config.AWSConfiguration.<init>(AWSConfiguration.java:45)
at com.example.aaa.amplify.MainActivity.onCreate(MainActivity.java:33)
at android.app.Activity.performCreate(Activity.java:6679)
at android.app.Instrumentation.callActivityOnCreate(Instrumentation.java:1118)
at android.app.ActivityThread.performLaunchActivity(ActivityThread.java:2618)
at android.app.ActivityThread.handleLaunchActivity(ActivityThread.java:2726)
at android.app.ActivityThread.-wrap12(ActivityThread.java)
at android.app.ActivityThread$H.handleMessage(ActivityThread.java:1477)
at android.os.Handler.dispatchMessage(Handler.java:102)
at android.os.Looper.loop(Looper.java:154)
at android.app.ActivityThread.main(ActivityThread.java:6119)
at java.lang.reflect.Method.invoke(Native Method)
at com.android.internal.os.ZygoteInit$MethodAndArgsCaller.run(ZygoteInit.java:886)
at com.android.internal.os.ZygoteInit.main(ZygoteInit.java:776)
当我使用API密钥时,我可以连接到后端,但是当我尝试使用用户池或IAM角色进行身份验证时,我会得到错误。对于开发来说,API很好,但是现在正确的设置是使用其他方法之一,Cognito pool或IAM您需要修复
AWSCOConfiguration.json
文件中的格式错误。例如,如果API\u KEY
是在AWS AppSync GraphQL API上配置的默认授权模式,则文件中将包含以下内容
{
"AppSync": {
"Default": {
"ApiUrl": "https://xxxxxxxxxxxxxxx.appsync-api.us-west-2.amazonaws.com/graphql",
"Region": "us-west-2",
"AuthMode": "API_KEY",
"ApiKey": "da2-xxxxxxxx",
"ClientDatabasePrefix": "xxxxxx-master_API_KEY"
}
}
}
如果配置了多个授权模式,您将拥有以下文件:
{
"AppSync": {
"Default": {
"ApiUrl": "https://xxxxxxxxxxxxxxx.appsync-api.us-west-2.amazonaws.com/graphql",
"Region": "us-west-2",
"AuthMode": "API_KEY",
"ApiKey": "da2-xxxxxxxx",
"ClientDatabasePrefix": "xxxxxx-master_API_KEY"
},
"AWS_IAM": {
"ApiUrl": "https://xxxxxxxxxxxxxxx.appsync-api.us-west-2.amazonaws.com/graphql",
"Region": "us-west-2",
"AuthMode": "AWS_IAM",
"ClientDatabasePrefix": "xxxxxx-master_AWS_IAM"
}
}
}
现在,您可以创建多个AWS AppSync客户端以使用不同的授权模式。当需要使用文件中的AWS_IAM
部分时,可以执行以下操作:
AWSCOConfiguration AWSCOConfiguration=新的AWSCOConfiguration(getApplicationContext());
设置配置(“AWS_IAM”);
这并不能回答问题。trackstarz408询问如何为AWS_IAM身份验证模式配置AWS后端和客户端(本例中为Android)。具有讽刺意味的是,这里唯一可用的信息是关于API_密钥模式的,OP已经说过该模式可以工作,但并不可取,因为它不能在生产中使用。在此模式下,OP没有要更正的错误。
{
"AppSync": {
"Default": {
"ApiUrl": "https://xxxxxxxxxxxxxxx.appsync-api.us-west-2.amazonaws.com/graphql",
"Region": "us-west-2",
"AuthMode": "API_KEY",
"ApiKey": "da2-xxxxxxxx",
"ClientDatabasePrefix": "xxxxxx-master_API_KEY"
},
"AWS_IAM": {
"ApiUrl": "https://xxxxxxxxxxxxxxx.appsync-api.us-west-2.amazonaws.com/graphql",
"Region": "us-west-2",
"AuthMode": "AWS_IAM",
"ClientDatabasePrefix": "xxxxxx-master_AWS_IAM"
}
}
}