Questions tagged [amazon-cognito]

Amazon Cognito is a simple user identity and data synchronization service that helps securely manage and synchronize mobile app data.

Amazon Cognito lets you add user sign-up, sign-in, and access control to your web and mobile apps quickly and easily. Amazon Cognito scales to millions of users and supports sign-in with social identity providers, such as Apple, Facebook, Google, and Amazon, and enterprise identity providers via SAML 2.0 and OpenID Connect.

Work Offline

You can use the optional Amazon Cognito client SDKs to automatically create a local data store to cache user app data on the device. This means your app can keep reading and writing data regardless of the device connectivity state.

Store and Sync across Devices

With Amazon Cognito you can easily synchronize app data across all of an end user’s devices. Amazon Cognito manages the complexity of conflict resolution and intermittent network connectivity so that your app can always deliver a great user experience.

Control Access to AWS Resources

You can use the unique user identifiers that Amazon Cognito generates in your access policies to enable or restrict access to other AWS resources on a per-user basis.

Safeguard AWS Credentials

When you use Amazon Cognito, the service takes care of all the steps necessary to create a unique identifier for your app’s users and retrieve temporary, limited privilege AWS credentials.

Interaction with other Amazon services AWS Cognito can interoperate with AWS SES, AWS SNS, AWS Lambda, and more.

http://aws.amazon.com/cognito/

7147 questions
3
votes
1 answer

Calling (Admin)InitiateAuthRequest in the AWS Cognito To Get an Access Token with Scopes

I need to expose an api, which also allows us to get the scope, but I'm failing with all my attempts using aws cognito. So I was hoping to do the following: assign scope:foo to existing users and new users get an access token back containing that…
KellyTheDev
  • 891
  • 2
  • 12
  • 31
3
votes
1 answer

Giving user capability of resetting expired temporary password in cognito

I know admin can reset user's temporary password from console using the following command aws cognito-idp admin-create-user --region us-east-1 --user-pool-id us-east-1_youruserpoolid --username theusername --message-action RESEND But here I need…
sunil b
  • 685
  • 2
  • 8
  • 21
3
votes
0 answers

AWS Cognito Trigger Post Authenticated - Lambda Nodejs 8.10 - return custom response error TypeError: Cannot set property

I'm trying do build a web application integrated with AWS Cognito. When I create a lambda function, using Node.js 8.10, to return specific response object I get an error: exports.handler = (event, context, callback) => { event["response"] = { …
3
votes
1 answer

AWS Cognito - get user's sub in Lambda Trigger function

Does someone know if it is possible in aws Cognito to get the user's 'sub' in one of the Lambda Trigger functions you can use? (especially in Pre Sign-Up or Post Confirmation) Since it is recommended to use the 'sub' attribute as primary key it…
Björn
  • 608
  • 2
  • 7
  • 19
3
votes
1 answer

AWS Pinpoint: How to view custom metrics

It is clear from the documentation that I can add custom metrics for a custom event. How do I view these metrics in the Pinpoint console? From the Pinpoint console, it is obvious how to view attributes. I can go to Analytics > Events, select my…
Joshua Wolff
  • 2,687
  • 1
  • 25
  • 42
3
votes
1 answer

AWS Cognito - help understanding authenticated vs. unauthenticated access

I don't understand auth. vs. unauth. user access within AWS Cognito. While learning about Cognito I came across several articles on the Internet and questions here within Stackoverflow concerning this and I'm just not grasping the concept. I'm…
Charles Saag
  • 611
  • 5
  • 20
3
votes
0 answers

AWS Cognito User Pool + Facebook Login iOS

I have started integrating AWS Cognito User Pools into my app and the signup + login works (I have followed this tutorial: https://docs.aws.amazon.com/cognito/latest/developerguide/tutorial-integrating-user-pools-ios.html) Now I'm struggling to…
gasparuff
  • 2,295
  • 29
  • 48
3
votes
2 answers

AWS Cognito - Users lost "non-mutable" attribute "email_verified"

After using Cognito for a few months, some users in a user pool have now lost the "email_verified" attribute. I can't understand how it is missing or how to recover. Symptoms are: Users can still login User password can not change (eg via JS SDK -…
Efren
  • 4,003
  • 4
  • 33
  • 75
3
votes
1 answer

How to get extra attributes of a user in user pool in AWS Cognito

I'm using amazon-cognito-identity-js to authenticate my user pool users.And after authenticating it's passing access token, id token and refresh token.And also the user id is there(user's id in user pool).Is there any way to get user attributes…
3
votes
1 answer

AWS Cognito: How to keep an Android user logged in?

Currently each time the app is restarted the user has to log in. I would like the app to remember the user until they manually sign out. Below is what I thought would work, but its just bypassing the login activity completely. @Override protected…
Josh Field
  • 63
  • 8
3
votes
0 answers

How to properly validate SAML user is enabled or not in amazon cognito?

I am using Cognito Users and SAML Users in my application. I want to understand how can i properly validate that my SAML User is revoked before login? For Cognit User, Amazon is calling Login Endpoint which is giving 401 response and we are…
Jayesh Dhandha
  • 1,983
  • 28
  • 50
3
votes
2 answers

Deleting cognito user & identity has no affect on user access

I am trying to use AWS Cognito user pools with Cognito federation as auth for my APIs on api-gateway. I got the authentication & authorization part (using roles) to work, but now stuck on how to revoke access. After login & getting the federated…
asr9
  • 2,440
  • 1
  • 21
  • 37
3
votes
2 answers

AWS Appsync 401 and 403 errors in React Native

I've been pulling out my hair trying to set Appsync and Cognito in my React Native app. I've tried the two following ways: Amplify.configure(config); OR Amplify.configure({ Auth: { region: config.aws_cognito_region, // REQUIRED - Amazon…
3
votes
1 answer

Refresh Cognito access token after adding user to a Cognito

Yello, I have the following scenario. After first user login the users have to select their type, I got this working by calling a lambda that adds the user to appropriate Cognito Group. After that call succeeds I want to refresh user session in my…
ayls
  • 2,401
  • 2
  • 19
  • 24
3
votes
1 answer

AWS: NotAuthorizedException: Invalid login token. Incorrect token audience. (Service: AmazonCognitoIdentity

While using MobileHubConsole in AWS, I wanted to use Google+ SignIn through Android. but I'm receiving this error: 06-25 23:30:02.819 17675-17675/com.xxxxxx.xxxu E/SignInActivity: Sign-in with Google caused an…