Vivek Sharma
Reputation: 81
Warning- AWS Credentials exposed on Google Play Console
I have my app published on PlayStore. I am getting this warning on my Play Console that my AWS Credentials have been exposed and i won't be able upload new apk after 12 November 2018 if the problem persists. I use the credentials for uploading images to Amazon S3. The credentials are hard coded right now. So i need to know what should be the way to rectify this. Thanks in advance.
Upvotes: 3
Views: 3590
Answers (1)
Nick Fortescue
Reputation: 13834
Amazon have a whole blog post on dealing with this problem, and a page on best practices.
Essentially you need to revert the old credentials, and use Amazon Cognito to control access.
An updated link on cognito lives here
Upvotes: 2
Related Questions
- Google Play Console warning you need to add physical address in account details
- Security alert: App contains embedded private keys or keystore files
- (GCP) API keys. Your app contains exposed Google Cloud Platform (GCP) API keys
- Google Play Console: 'Your app signing key's encryption strength does not meet Google Play's recommended minimum standard'
- Android google play console error APK TRANSMIT USER DATA UNSECURELY
- Security Alert from Google Play Console?
- Google Play Security alert about Google Cloud Platform (GCP) API keys
- Amazon Web Services credentials may be exposed
- Google Play warning: Your App may be leaking developer credentials
- Google Play security alert for insecure TrustManager