douduan5073 2019-04-11 02:48
浏览 35
已采纳

验证AWS访问和密钥

The regular expressions for AWS access key ids and secret keys from the AWS security blog are:
AKID: (?<![A-Z0-9])[A-Z0-9]{20}(?![A-Z0-9])
SK:    (?<![A-Za-z0-9/+=])[A-Za-z0-9/+=]{40}(?![A-Za-z0-9/+=])

When I try to use these with the Go regexp package, it gives the following error for both expressions: error parsing regexp: invalid or unsupported Perl syntax: `(?<`. I know that the Go regexp package does not fully support the Perl syntax, but I'm not sure how to represent the same expression so that it is supported by Go.

Any help would be appreciated.

  • 写回答

1条回答 默认 最新

  • drbouzlxb92333332 2019-04-11 07:29
    关注

    Based on the above comments that the system takes users credentials and uses them to create EC2 isntances, this does not sound like the right place to use credentials. IAM best practices advices against sharing AIM credentials.

    Depending on how the user is authenticated you should either use Cognito Identity pools to grant the permission to the user to create the instance when they use your service.

    Or you can use STS to assume a role on behalf of the user.

    Depending on how the service works it could also just have the IAM role needed to create the EC2 instances, and do user validation and logging in the service

    本回答被题主选为最佳回答 , 对您是否有帮助呢?
    评论

报告相同问题?

悬赏问题

  • ¥15 在若依框架下实现人脸识别
  • ¥15 网络科学导论,网络控制
  • ¥100 安卓tv程序连接SQLSERVER2008问题
  • ¥15 利用Sentinel-2和Landsat8做一个水库的长时序NDVI的对比,为什么Snetinel-2计算的结果最小值特别小,而Lansat8就很平均
  • ¥15 metadata提取的PDF元数据,如何转换为一个Excel
  • ¥15 关于arduino编程toCharArray()函数的使用
  • ¥100 vc++混合CEF采用CLR方式编译报错
  • ¥15 coze 的插件输入飞书多维表格 app_token 后一直显示错误,如何解决?
  • ¥15 vite+vue3+plyr播放本地public文件夹下视频无法加载
  • ¥15 c#逐行读取txt文本,但是每一行里面数据之间空格数量不同