douduan5073 2019-04-11 02:48
浏览 35
已采纳

验证AWS访问和密钥

The regular expressions for AWS access key ids and secret keys from the AWS security blog are:
AKID: (?<![A-Z0-9])[A-Z0-9]{20}(?![A-Z0-9])
SK:    (?<![A-Za-z0-9/+=])[A-Za-z0-9/+=]{40}(?![A-Za-z0-9/+=])

When I try to use these with the Go regexp package, it gives the following error for both expressions: error parsing regexp: invalid or unsupported Perl syntax: `(?<`. I know that the Go regexp package does not fully support the Perl syntax, but I'm not sure how to represent the same expression so that it is supported by Go.

Any help would be appreciated.

  • 写回答

1条回答 默认 最新

  • drbouzlxb92333332 2019-04-11 07:29
    关注

    Based on the above comments that the system takes users credentials and uses them to create EC2 isntances, this does not sound like the right place to use credentials. IAM best practices advices against sharing AIM credentials.

    Depending on how the user is authenticated you should either use Cognito Identity pools to grant the permission to the user to create the instance when they use your service.

    Or you can use STS to assume a role on behalf of the user.

    Depending on how the service works it could also just have the IAM role needed to create the EC2 instances, and do user validation and logging in the service

    本回答被题主选为最佳回答 , 对您是否有帮助呢?
    评论

报告相同问题?

悬赏问题

  • ¥15 HFSS 中的 H 场图与 MATLAB 中绘制的 B1 场 部分对应不上
  • ¥15 如何在scanpy上做差异基因和通路富集?
  • ¥20 关于#硬件工程#的问题,请各位专家解答!
  • ¥15 关于#matlab#的问题:期望的系统闭环传递函数为G(s)=wn^2/s^2+2¢wn+wn^2阻尼系数¢=0.707,使系统具有较小的超调量
  • ¥15 FLUENT如何实现在堆积颗粒的上表面加载高斯热源
  • ¥30 截图中的mathematics程序转换成matlab
  • ¥15 动力学代码报错,维度不匹配
  • ¥15 Power query添加列问题
  • ¥50 Kubernetes&Fission&Eleasticsearch
  • ¥15 報錯:Person is not mapped,如何解決?