Rotating Access Keys #114
Comments
|
@powerful23 thank you for working on this. Is there any timeline for release? |
|
HI @bbernays we have a pr in for this that we are hoping to get our this sprint (released next week). We still need to finish testing but if it doesn't go out this next release i think it will be in the next (we are in a rolling weekly release right now). |
mlabieniec
added
enhancement
and removed
investigating
|
@powerful23 Thank you!! I have downloaded the new release and now I am waiting for the keys to expire. Will definitely report back if there are still issues |
|
The issue unfortunately is not fixed. After the tokens have expired I still require a refresh in order to get valid credentials to interact with my API. It seems that the ID token from Cognito Identity is expiring and during the API call it is not refreshing the ID token to in order to get new credentials. Now I am getting a Is there someway of extending the age of the id token from Cognito? |
|
@bbernays Thank you for your feedback. I don't know if there is a way to extend the age. We do refresh the expired credentials when calling APIs but seems like it's not working as expected. We will make more tests on that. So could you show us how to reproduce this that would help a lot. |
|
@powerful23 I will create an example this weekend showing the issue and share a working (and broken) example and code |
|
@bbernays Great! Thanks. |
|
I have created a full example on Hosted on S3 What example does:
Steps to reproduce:
@powerful23 Let me know if you need anything else. Feel free to email me |
|
Thanks @bbernays |
|
@MatteCarra - I am also using the default Authenticator. I am also only using Cognito UserPools. You can check the source code for the example above here |
|
Yes, I've tested with both Facebook and Cognito UserPool. |
|
@MatteCarra Can you post an example where refresh token is working with Cognito UserPool is working? |
|
@bbernays My code is just as simple as yours. The only difference was that I was logging in with Facebook federated login. @powerful23 I forgot to mention that refreshing the page won't make credentials refresh I think I'm going to open a new issue because this is a whole different issue |
|
@bbernays Cool, I will try it today. @MatteCarra I think that's also an issue with federation login, will look into it too. |
|
@powerful23 Ok thanks. I've already opened a new issue #180 because this a different problem |
|
@powerful23 Did you get a chance to test it out? |
|
@bbernays Yes, it works for me. |
|
@powerful23- Here is the screenshot of error I am getting on the example I shared above
|
|
This issue has been automatically locked since there hasn't been any recent activity after it was closed. Please open a new issue for related bugs. Looking for a help forum? We recommend joining the Amplify Community Discord server |
I am using the API module to sign requests so I can access API gateway with IAM credentials. When the keys get old and expire the API module won't refresh the keys. In order to force a key refresh I have to refresh the page which forces the entire application to re-authenticate as I am using the component.
How am I supposed to force a key refresh without requiring a page reload?
The text was updated successfully, but these errors were encountered: