Integration actions for AWS ElasticLoadBalancingV2
Project description
Actions for AWS Elastic Load Balancing V2
---This package contains integration actions for ELBv2. See the README of the @aws-cdk/aws-elasticloadbalancingv2
library.
Cognito
ELB allows for requests to be authenticated against a Cognito user pool using
the AuthenticateCognitoAction
. For details on the setup's requirements,
read Prepare to use Amazon
Cognito.
Here's an example:
import aws_cdk.aws_cognito as cognito
import aws_cdk.aws_ec2 as ec2
import aws_cdk.aws_elasticloadbalancingv2 as elbv2
from aws_cdk.core import App, CfnOutput, Stack
from constructs import Construct
import aws_cdk.aws_elasticloadbalancingv2_actions as actions
Stack): lb = elbv2.ApplicationLoadBalancer(self, "LB",
vpc=vpc,
internet_facing=True
)
user_pool = cognito.UserPool(self, "UserPool")
user_pool_client = cognito.UserPoolClient(self, "Client",
user_pool=user_pool,
# Required minimal configuration for use with an ELB
generate_secret=True,
auth_flows=cognito.AuthFlow(
user_password=True
),
o_auth=cognito.OAuthSettings(
flows=cognito.OAuthFlows(
authorization_code_grant=True
),
scopes=[cognito.OAuthScope.EMAIL],
callback_urls=[f"https://{lb.loadBalancerDnsName}/oauth2/idpresponse"
]
)
)
cfn_client = user_pool_client.node.default_child
cfn_client.add_property_override("RefreshTokenValidity", 1)
cfn_client.add_property_override("SupportedIdentityProviders", ["COGNITO"])
user_pool_domain = cognito.UserPoolDomain(self, "Domain",
user_pool=user_pool,
cognito_domain=cognito.CognitoDomainOptions(
domain_prefix="test-cdk-prefix"
)
)
lb.add_listener("Listener",
port=443,
certificates=[certificate],
default_action=actions.AuthenticateCognitoAction(
user_pool=user_pool,
user_pool_client=user_pool_client,
user_pool_domain=user_pool_domain,
next=elbv2.ListenerAction.fixed_response(200,
content_type="text/plain",
message_body="Authenticated"
)
)
)
CfnOutput(self, "DNS",
value=lb.load_balancer_dns_name
)
app = App()
CognitoStack(app, "integ-cognito")
app.synth()
NOTE: this example seems incomplete, I was not able to get the redirect back to the Load Balancer after authentication working. Would love some pointers on what a full working setup actually looks like!
Project details
Release history Release notifications | RSS feed
Download files
Download the file for your platform. If you're not sure which to choose, learn more about installing packages.
Source Distribution
Built Distribution
Close
Hashes for aws-cdk.aws-elasticloadbalancingv2-actions-1.160.0.tar.gz
Algorithm | Hash digest | |
---|---|---|
SHA256 | 8af9ce71dfa41d7dd618a74df3a1aed1e4b8529c659d12f9413bf9e6c92d3878 |
|
MD5 | bcaaa7247e37efe5d006f2cbcbbf86b8 |
|
BLAKE2b-256 | bddf00468548ddfc9040f68e73cc3cc4a0d9a113406c63eacf6c3d7bda97611d |
Close
Hashes for aws_cdk.aws_elasticloadbalancingv2_actions-1.160.0-py3-none-any.whl
Algorithm | Hash digest | |
---|---|---|
SHA256 | 994f2a1925f8aead3a5aa6e4a3bbc28b1ec8e352f9baf29fd40051f34d3bbf22 |
|
MD5 | a86cb14bdcf5b0b6f98400f208bfb467 |
|
BLAKE2b-256 | 3d386be3cefd9d5ebbc15a7545b3530dcd98b0dc574c3cbc78ea363551b55ae2 |