question

newuser-4669f3d7-1b2d-40f4-86ee-3340df8f4b30 avatar image

Best practice for authentication of user to retrieve sensitive data with AWS

Is it safe to tell alexa username and password over AWS? What would be the best practice? May be something in combination with an app? Can the amazon skill app only show data or does it also accept forms?

alexa skills kitaccount linking
10 |5000

Up to 2 attachments (including images) can be used with a maximum of 512.0 KiB each and 1.0 MiB total.

Brian@Amazon avatar image
Brian@Amazon answered

What do you mean by AWS? I'd suggest implementing some sort of account linking solution to be able to retrieve sensitive informatoin. This would be secure.

I'm not sure what you mean by only show data or does it only accept forms. If you are asking if you can have forms, it's not possible to have free-form forms in cards, but it is possible to have the user link their account with a username and password. https://developer.amazon.com/public/solutions/alexa/alexa-skills-kit/docs/linking-an-alexa-user-with-a-user-in-your-system

1 comment
10 |5000

Up to 2 attachments (including images) can be used with a maximum of 512.0 KiB each and 1.0 MiB total.

I am using AWS Lambda wheres my code is deployed. What i want to do is something :"Hey Alexa, i want to login in my Bank account. Password is 1234". Is that secure? thx für die info regarding to the cards!

-1 Like -1 ·
Brian@Amazon avatar image
Brian@Amazon answered

While our goal is to offer a broad and compelling selection of skills on the Alexa platform, at this time, with a few very limited exceptions, we are not permitting skills that access personal financial information.

10 |5000

Up to 2 attachments (including images) can be used with a maximum of 512.0 KiB each and 1.0 MiB total.