Skip to content

Instantly share code, notes, and snippets.

@marinr
Last active March 5, 2020 10:11
Show Gist options
  • Save marinr/8e545ea4a332af8edbd85d6a740fc8db to your computer and use it in GitHub Desktop.
Save marinr/8e545ea4a332af8edbd85d6a740fc8db to your computer and use it in GitHub Desktop.
CognitoExecutionRole:
Type: AWS::IAM::Role
Properties:
AssumeRolePolicyDocument:
Version: '2012-10-17'
Statement:
- Effect: Allow
Principal:
Service:
- apigateway.amazonaws.com
Action:
- sts:AssumeRole
Path: "/"
Policies:
- PolicyName: root
PolicyDocument:
Version: '2012-10-17'
Statement:
- Effect: Allow
Action:
- cognito-idp:DescribeUserPool
Resource: !Sub 'arn:aws:cognito-idp:${AWS::Region}:${AWS::AccountId}:userpool/${YOUR_USER_POOL_AS_CF_PARAM}'
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment