🔥 3-day streak
AWS Certified Developer - Associate144 / 150
Question 144 of 150
A developer is building a mobile fitness app where users sign in with their existing Google accounts. After a user authenticates with Google, the app receives an OpenID Connect (OIDC) token and must obtain temporary AWS credentials so the app can upload workout files directly to an Amazon S3 bucket. The team does not want to manage a user directory themselves. Which approach lets the app exchange the Google token for temporary AWS credentials with the least custom code?
Reviewed for accuracy · Report an issueNext question