DVA-C02 · Question #50
DVA-C02 Question #50: Real Exam Question with Answer & Explanation
The correct answer is D: Use an IAM policy within the Amazon Cognito identity prefix to restrict users to use their own. This solution ensures that users can access only their own files in a secure manner. https://docs.aws.amazon.com/cognito/latest/developerguide/amazon-cognito-integrating-user- pools-with-identity-pools.html
Question
An application is using Amazon Cognito user pools and identity pools for secure access. A developer wants to integrate the user-specific file upload and download features in the application with Amazon S3. The developer must ensure that the files are saved and retrieved in a secure manner and that users can access only their own files. The file sizes range from 3 KB to 300 MB. Which option will meet these requirements with the HIGHEST level of security?
Options
- AUse S3 Event Notifications to validate the file upload and download requests and update the user
- BSave the details of the uploaded files in a separate Amazon DynamoDB table. Filter the list of
- CUse Amazon API Gateway and an AWS Lambda function to upload and download files. Validate
- DUse an IAM policy within the Amazon Cognito identity prefix to restrict users to use their own
Explanation
This solution ensures that users can access only their own files in a secure manner. https://docs.aws.amazon.com/cognito/latest/developerguide/amazon-cognito-integrating-user- pools-with-identity-pools.html
Community Discussion
No community discussion yet for this question.