Amplify app basic authentication is not enabled Affecting Amplify service in AWS


Severity

0.0
medium
0
10
Severity Framework
Snyk CCSS
Rule category
IAM/ Access Control

Is your environment affected by this misconfiguration?

In a few clicks we can analyze your entire application and see what components are vulnerable in your application, and suggest you quick fixes.

Test your applications
Frameworks
  • Snyk IDSNYK-CC-00732
  • creditSnyk Research Team

Description

Basic authentication should be enabled for all Amplify apps to ensure secure access control. Without basic authentication, unauthorized users may be able to access sensitive resources and perform malicious activities. Enabling basic authentication adds an extra layer of security by requiring users to provide valid credentials before accessing the app. This helps prevent unauthorized access and protects sensitive data from potential threats.

How to fix?

Set the enable_basic_auth attribute to true for the resource aws_amplify_app.

Example Configuration


resource "aws_amplify_app" "example-allow1" {
  name = "allow1"

  enable_basic_auth      = true
  basic_auth_credentials = base64encode("username1:password1")

}