KMS
The Solution Architecture
- A KMS-Stored RSA key
- A Lambda function to sign our tokens
- A piece of code we can use wherever we want that can validate that the token was indeed generated by us
Things we'll need:
- RSA Key generated in AWS KMS
- Public Key of our RSA key
- Lambda to do the encryption (with permissions to the KMS key)
- Local function (either lambda or plain local functions) to validate the token using the public key
Links
관련 문서
Plugin Backlinks: 아무 것도 없습니다.