You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
everything works fine when I do this with anything <= 8 attributes.
however, this time I need more than 8 as you can see by the list above.
unfortunately, server less framework only deploys 8 to cognito even though cloudformation advertises that it can be up to 50.
please help ?!
Service configuration (serverless.yml) content
service: smart-notes-authentication-apiframeworkVersion: "3"custom:
# Stages are based on what is passed into the CLI when running# serverless commands. Or fallback to settings in provider section.#stage: ${opt:stage, self:provider.stage}provider:
name: awsruntime: nodejs16.xstage: devregion: us-east-1tags:
PROJECT_OWNER: smart-notesPROJECT_ENGINEER: lopezdpstackTags:
PROJECT_RESOURCE: smart-notes-authentication-apitracing:
# Optional, can be true (true equals 'Active'), 'Active' or 'PassThrough'lambda: trueiam:
role:
statements:
- Effect: AllowAction:
- cognito-idp:*
- "ses:SendEmail"
- "ses:SendRawEmail"# Need to restrict IM Role to the specific table and stageResource:
- "*"resources:
# Cognito User-Pool and Identity-Pool ServicesResources:
CognitoUserPool:
Type: AWS::Cognito::UserPoolProperties:
# Need to generate a name based on the stageUserPoolName: ${self:custom.stage}-smart-notes-user-pool# User Pool TagsUserPoolTags:
PROJECT: "smart-notes"FEATURE: "user-authentication"RESOURCE: "jwt-store"# Set email as an aliasUsernameAttributes:
- email# EVENTUALLY DYNAMICAutoVerifiedAttributes:
- emailSchema:
- Name: "userRole"AttributeDataType: "String"Mutable: trueStringAttributeConstraints:
MaxLength: 256MinLength: 1
- Name: "superId"AttributeDataType: "String"Mutable: trueStringAttributeConstraints:
MaxLength: 256MinLength: 1
- Name: "nickname"AttributeDataType: "String"Mutable: trueStringAttributeConstraints:
MaxLength: 256MinLength: 1
- Name: "firstName"AttributeDataType: "String"Mutable: trueStringAttributeConstraints:
MaxLength: 256MinLength: 1
- Name: "lastName"AttributeDataType: "String"Mutable: trueStringAttributeConstraints:
MaxLength: 256MinLength: 1
- Name: "middleName"AttributeDataType: "String"Mutable: trueStringAttributeConstraints:
MaxLength: 256MinLength: 1
- Name: "initials"AttributeDataType: "String"Mutable: trueStringAttributeConstraints:
MaxLength: 256MinLength: 1
- Name: "organization"AttributeDataType: "String"Mutable: trueStringAttributeConstraints:
MaxLength: 256MinLength: 1
- Name: "title"AttributeDataType: "String"Mutable: trueStringAttributeConstraints:
MaxLength: 256MinLength: 1VerificationMessageTemplate:
DefaultEmailOption: CONFIRM_WITH_CODEEmailMessage: 'verify with this code {####}'EmailSubject: "Confirm your Registration!"EmailConfiguration:
EmailSendingAccount: DEVELOPERFrom: [email protected]ReplyToEmailAddress: [email protected]SourceArn: arn:aws:ses:us-east-1:325676776482:identity/[email protected]CognitoUserPoolClient:
Type: AWS::Cognito::UserPoolClientProperties:
# Generate an app client name based on the dev/prod stage# FIXME: UPDATE USERPOOL!ClientName: ${self:custom.stage}-smart-notes-user-pool-clientUserPoolId:
Ref: CognitoUserPoolExplicitAuthFlows:
- ALLOW_ADMIN_USER_PASSWORD_AUTH # See also: https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-cognito-userpoolclient.html
- ALLOW_USER_PASSWORD_AUTH
- ALLOW_REFRESH_TOKEN_AUTH
- ALLOW_USER_SRP_AUTHGenerateSecret: falseUserPoolDomain:
Type: AWS::Cognito::UserPoolDomainProperties:
#CustomDomainConfig:#CertificateArn: arn:aws:acm:us-west-1:564811092027:certificate/3257712f-7f32-44f4-b859-136a25006b6fUserPoolId:
Ref: CognitoUserPoolDomain: "physiciansmart"# This is the federated identity I need for the user pool# to authenticate withCognitoIdentityPool:
Type: AWS::Cognito::IdentityPoolProperties:
# Generate a name based on the stage of developmentIdentityPoolName: ${self:custom.stage}SmartNotesIdentityPool# Prevent unauthenticated users from using appAllowUnauthenticatedIdentities: false# Link this to the user-pool createdCognitoIdentityProviders:
- ClientId:
Ref: CognitoUserPoolClientProviderName:
Fn::GetAtt: ["CognitoUserPool", "ProviderName"]# IAM RolesCognitoIdentityPoolRoles:
Type: AWS::Cognito::IdentityPoolRoleAttachmentProperties:
IdentityPoolId:
Ref: CognitoIdentityPoolRoles:
authenticated:
Fn::GetAtt: [CognitoAuthRole, Arn]# IAM role used for authenticated usersCognitoAuthRole:
Type: AWS::IAM::RoleProperties:
Path: /AssumeRolePolicyDocument:
Version: "2012-10-17"Statement:
- Effect: "Allow"Principal:
Federated: "cognito-identity.amazonaws.com"Action:
- "sts:AssumeRoleWithWebIdentity"Condition:
StringEquals:
"cognito-identity.amazonaws.com:aud":
Ref: CognitoIdentityPool"ForAnyValue:StringLike":
"cognito-identity.amazonaws.com:amr": authenticatedPolicies:
- PolicyName: "CognitoAuthorizedPolicy"PolicyDocument:
Version: "2012-10-17"Statement:
- Effect: "Allow"Action:
- "mobileanalytics:PutEvents"
- "cognito-sync:*"
- "cognito-identity:*"Resource: "*"# Allow users to invoke the API
- Effect: "Allow"Action:
- "execute-api:Invoke"Resource:
Fn::Join:
- ""
- - "arn:aws:execute-api:"
- Ref: AWS::Region
- ":"
- Ref: AWS::AccountId
- ":"
- "Fn::ImportValue": ${self:custom.stage}-ApiGatewayRestApiId
- "/*"# Allow users to upload attachments to their# folder inside of the s3 bucket created
- Effect: "Allow"Action:
- "s3:*"Resource:
Fn::Join:
- ""
- - "Fn::ImportValue": ${self:custom.stage}-smartNotesAttachmentsBucketArn
- "/private/"
- "$"
- "{cognito-identity.amazonaws.com:sub}/*"# Print out the Id of the User Pool that is createdOutputs:
UserPoolId:
Value:
Ref: CognitoUserPoolUserPoolClientId:
Value:
Ref: CognitoUserPoolClient# Print out the Id of the Identity Pool that is created# Outputs:IdentityPoolId:
Value:
Ref: CognitoIdentityPool
Command name and used flags
SLS_DEBUG=* serverless deploy --verbose --stage dev | tee deploy.out
Command output
[Container] 2023/03/21 19:33:09 Running command npm install -g serverless
48 npm WARN deprecated [email protected]: The querystring API is considered Legacy. new code should use the URLSearchParams API instead.
49 npm WARN deprecated [email protected]: The querystring API is considered Legacy. new code should use the URLSearchParams API instead.
50 npm WARN deprecated [email protected]: The querystring API is considered Legacy. new code should use the URLSearchParams API instead.
51 npm WARN deprecated [email protected]: Please downgrade to v7.1.5 if you need IE/ActiveXObject support OR upgrade to v8.0.0 as we no longer support IE and published an incorrect patch version (see https://github.com/visionmedia/superagent/issues/1731)
52
53 added 407 packages, and audited 408 packages in 11s
54
55 67 packages are looking for funding
56 run `npm fund`for details
57
58 found 0 vulnerabilities
59
60 [Container] 2023/03/21 19:33:20 Phase complete: INSTALL State: SUCCEEDED
61 [Container] 2023/03/21 19:33:20 Phase context status code: Message:
62 [Container] 2023/03/21 19:33:20 Entering phase PRE_BUILD
63 [Container] 2023/03/21 19:33:20 Phase complete: PRE_BUILD State: SUCCEEDED
64 [Container] 2023/03/21 19:33:20 Phase context status code: Message:
65 [Container] 2023/03/21 19:33:20 Entering phase BUILD
66 [Container] 2023/03/21 19:33:20 Running command SLS_DEBUG=* serverless deploy --verbose --stage dev | tee deploy.out
67
68 Deploying smart-notes-authentication-api to stage dev (us-east-1)
69
70 Uploading CloudFormation file to S3
71 Uploading State file to S3
72 Creating new change set
73 Waiting for new change set to be created
74 Created change set does not include any changes, removing it
75 Removing unnecessary service artifacts from S3
76
77 Change set did not include any changes to be deployed. (1s)
78
79 [Container] 2023/03/21 19:33:26 Running commandecho build complete!
80 build complete!
81
82 [Container] 2023/03/21 19:33:26 Phase complete: BUILD State: SUCCEEDED
83 [Container] 2023/03/21 19:33:26 Phase context status code: Message:
84 [Container] 2023/03/21 19:33:26 Entering phase POST_BUILD
85 [Container] 2023/03/21 19:33:26 Running command serverless info --verbose
86 service: smart-notes-authentication-api
87 stage: dev
88 region: us-east-1
89 stack: smart-notes-authentication-api-dev
90
91 Stack Outputs:
92 UserPoolClientId: 5m8ejpnn2ohk8638qv9go3i986
93 UserPoolId: us-east-1_PC1cZPBeP
94 IdentityPoolId: us-east-1:15e6ad97-06ec-4859-b3a6-7dd2d5ab4616
95 ServerlessDeploymentBucketName: smart-notes-authenticati-serverlessdeploymentbuck-1a9xx1hssrr0n
96
97 [Container] 2023/03/21 19:33:29 Running commandecho post-build complete!
98 post-build complete!
99
100 [Container] 2023/03/21 19:33:29 Phase complete: POST_BUILD State: SUCCEEDED
101 [Container] 2023/03/21 19:33:29 Phase context status code: Message:
### Environment information
```shell
`npm install -g serverless`
latest
The text was updated successfully, but these errors were encountered:
Are you certain it's a bug?
Is the issue caused by a plugin?
Are you using the latest v3 release?
Is there an existing issue for this?
Issue description
ive deployed cognito resources to create a large amount of
custom:attributes. here is a code sample of how I do it in myserverless.ymleverything works fine when I do this with anything <= 8 attributes.
however, this time I need more than 8 as you can see by the list above.
unfortunately, server less framework only deploys 8 to cognito even though cloudformation advertises that it can be up to 50.
please help ?!
Service configuration (serverless.yml) content
Command name and used flags
SLS_DEBUG=* serverless deploy --verbose --stage dev | tee deploy.out
Command output
The text was updated successfully, but these errors were encountered: