avp-cli/scenarios/ecommerceCognitoIntegrationScenario/ecommerceCognitoIntegrationScenario.json

Small CLI to help interacts with the Amazon Verified Permissions (AVP) service.

{
  "validationMode": "STRICT",
  "policyStoreDescription": "Policy store for the Cognito Integration Scenario, created via avp-cli tool",
  "name": "Ecommerce with Cognito Integration Scenario",
  "description": "This scenario demonstrates the integration of Amazon Verified Permissions with Amazon Cognito. It allows sellers to list their own products and uses Cognito for identity management.",
  "schemaPath": "./scenarios/ecommerceCognitoIntegrationScenario/schema.json",
  "principalEntityType": "MyEcommerceApp::Seller",
  "policies": [
    {
      "path": "./scenarios/ecommerceCognitoIntegrationScenario/allow_policy.cedar",
      "description": "Allow sellers to discount if they have the agreed discount privilege."
    }
  ],
  "tests": [
    {
     "path": "./scenarios/ecommerceCognitoIntegrationScenario/allow_test_1.json",
      "description": "Cognito User is allowed the ability to discount (action) the product (resource), with custom.discountPrivilege claim setup as agreed in IdentityToken",
      "type": "allow"
    },
        {
     "path": "./scenarios/ecommerceCognitoIntegrationScenario/deny_test_1.json",
      "description": "Cognito User is denied the ability to discount (action) the product (resource), with custom.discountPrivilege claim setup as rejected in IdentityToken",
      "type": "forbid"
    }
  ]
}