创建弹性搜索域时,我可以将 aws cognito 用于 cloudformation 中的 kibana 吗?
can i use aws cognito for kibana from cloudformation when creating elastic search domain?
我正在编写云形成脚本来创建弹性搜索域
但是从文档中,我找不到将 cognito 与 kibana 一起使用的方法。我怎样才能包含它?
我已尝试使用以下脚本来创建。(此处忽略参数和角色)
ElasticsearchDomain:
Type: AWS::Elasticsearch::Domain
Properties:
DomainName: !Sub "${ElasticsearchDomainName}" #getting Name From Parameter
ElasticsearchVersion: "6.5" #specify version
ElasticsearchClusterConfig:
InstanceCount: 1
InstanceType: "m4.large.elasticsearch" #instance type
EBSOptions:
EBSEnabled: true
Iops: 0
VolumeSize: 10
VolumeType: "gp2"
SnapshotOptions:
AutomatedSnapshotStartHour: 0
AccessPolicies: # who can acess & their permissions
Version: "2012-10-17"
Statement:
- Effect: "Allow"
Principal:
# AWS: !Sub "arn:aws:iam::${AWS::AccountId}:root" #root account
AWS: "*" #All account
Action: "es:*"
Resource: !Sub "arn:aws:es:${AWS::Region}:${AWS::AccountId}:domain/${ElasticsearchDomainName}/*"
AdvancedOptions:
rest.action.multi.allow_explicit_index: 'true'
所以,如上所示,我应该在哪里包含 cognito?
遗憾的是,目前无法通过 Cloud Formation 添加 Kibana Cognito 身份验证。您将必须通过控制台手动执行此操作。
似乎可以通过 CloudFormation 添加 Kibana Cognito 身份验证。
我正在编写云形成脚本来创建弹性搜索域 但是从文档中,我找不到将 cognito 与 kibana 一起使用的方法。我怎样才能包含它?
我已尝试使用以下脚本来创建。(此处忽略参数和角色)
ElasticsearchDomain:
Type: AWS::Elasticsearch::Domain
Properties:
DomainName: !Sub "${ElasticsearchDomainName}" #getting Name From Parameter
ElasticsearchVersion: "6.5" #specify version
ElasticsearchClusterConfig:
InstanceCount: 1
InstanceType: "m4.large.elasticsearch" #instance type
EBSOptions:
EBSEnabled: true
Iops: 0
VolumeSize: 10
VolumeType: "gp2"
SnapshotOptions:
AutomatedSnapshotStartHour: 0
AccessPolicies: # who can acess & their permissions
Version: "2012-10-17"
Statement:
- Effect: "Allow"
Principal:
# AWS: !Sub "arn:aws:iam::${AWS::AccountId}:root" #root account
AWS: "*" #All account
Action: "es:*"
Resource: !Sub "arn:aws:es:${AWS::Region}:${AWS::AccountId}:domain/${ElasticsearchDomainName}/*"
AdvancedOptions:
rest.action.multi.allow_explicit_index: 'true'
所以,如上所示,我应该在哪里包含 cognito?
遗憾的是,目前无法通过 Cloud Formation 添加 Kibana Cognito 身份验证。您将必须通过控制台手动执行此操作。
似乎可以通过 CloudFormation 添加 Kibana Cognito 身份验证。