我正在编写一个云形成脚本来创建 Elasticsearch 域 但从文档中,我找不到包含 cognito 与 kibana 一起使用的方法。我怎样才能包含它?
我尝试了下面的脚本来创建。(此处忽略参数和角色)
ElasticsearchDomain:
Type: AWS::Elasticsearch::Domain
Properties:
DomainName: !Sub "${ElasticsearchDomainName}" #getting Name From Parameter
ElasticsearchVersion: "6.5" #specify version
ElasticsearchClusterConfig:
InstanceCount: 1
InstanceType: "m4.large.elasticsearch" #instance type
EBSOptions:
EBSEnabled: true
Iops: 0
VolumeSize: 10
VolumeType: "gp2"
SnapshotOptions:
AutomatedSnapshotStartHour: 0
AccessPolicies: # who can acess & their permissions
Version: "2012-10-17"
Statement:
- Effect: "Allow"
Principal:
# AWS: !Sub "arn:aws:iam::${AWS::AccountId}:root" #root account
AWS: "*" #All account
Action: "es:*"
Resource: !Sub "arn:aws:es:${AWS::Region}:${AWS::AccountId}:domain/${ElasticsearchDomainName}/*"
AdvancedOptions:
rest.action.multi.allow_explicit_index: 'true'
那么,如上所示,我应该在哪里包含 cognito?
最佳答案
遗憾的是,目前无法通过 Cloud Formation 添加 Kibana Cognito 身份验证。您必须通过控制台手动执行此操作。
关于aws-cloudformation - 创建 Elasticsearch 域时,我可以使用来自 cloudformation 的 aws cognito for kibana 吗?,我们在Stack Overflow上找到一个类似的问题: https://stackoverflow.com/questions/56268982/