A developer creates an app using Amazon API Gateway with access limited to the Sales department via Amazon Cognito and a Lambda authorizer. Despite updating their IdP attribute to Sales, the developer is denied access due to the access token still showing Engineering. What could cause this discrepancy?

Exam-Like

The Lambda authorizer's authorization caching might be using an outdated policy based on the previous Engineering attribute.

46.2%

Caching on the Amazon Cognito user pool could be involved, but this is less likely the direct cause of the department value issue.

23.1%

A missing Department tag on the Lambda authorizer's IAM role might affect access control but isn't the main reason for the incorrect department reporting.

15.4%

A missing Department tag on the Amazon Cognito user pool's IAM role isn't the primary cause of the caching issue with the user's department attribute.

15.4%

AWS Certified Developer - Associate

Get started today

Comments