With Amazon Cognitouser pools, you can configure third-party SAML identity providers (IdPs) so that users can log in by using the IdP credentials. The Amazon Cognito user pool manages the federation and handling of tokens returned by a configured SAML IdP. It uses the public certificate of the SAML IdP to verify the signature in […]
Read moreAugust 13, 2018: Date this post was first published, on the Front-End Web and Mobile Blog. We updated the CloudFormation template, provided additional clarification on implementation steps, and revised to account for the new Amazon Cognito UI. <hr> <p>User authentication and authorization can be challenging when you’re building web and mobile apps. The challenges include […]
Read moreIn Part 1 of this two-part series, we shared an overview of some of the most important 2021 Amazon Web Services (AWS) Security service and feature launches. In this follow-up, we’ll dive deep into additional launches that are important for security professionals to be aware of and understand across all AWS services. There have already […]
Read moreWith Amazon Cognito, you can quickly add user sign-up, sign-in, and access control to your web and mobile applications. After a user signs in successfully, Cognito generates an identity token for user authorization. The service provides a pre token generation trigger, which you can use to customize identity token claims before token generation. In this […]
Read moreLocation data is put through heavy scrutiny by protection experts. Knowing the existing position of an individual, automobile, or asset can offer industries with benefits, whether to realize where a current shipping is, how many individuals are in the venue, or even to optimize routing for a fleet of automobiles. This blog post describes how […]
Read moreIn this blog post, I’ll walk you through the steps to integrate Azure AD as a federated identity provider in Amazon Cognito user pool. A user pool is a user directory in Amazon Cognito that provides sign-up and sign-in options for your app users. Identity authentication and management flow can be challenging when you need […]
Read moreIn this blog post, you’ll learn how to implement the OAuth 2.0 device authorization grant flow for Amazon Cognito by using AWS Lambda and Amazon DynamoDB. When you implement the OAuth 2.0 authorization framework (RFC 6749) for internet-connected devices with limited input capabilities or that lack a user-friendly browser—such as wearables, smart assistants, video-streaming devices, […]
Read moreI’m very happy to announce that the Protection Information Systems Company (DISA) has authorized 17 additional Amazon Web Providers (AWS) providers and functions in the AWS GovCloud (US) Areas, bringing the full total to 105 solutions and major features which are certified for use by the U.S. Section of Protection (DoD). AWS now provides additional […]
Read moreIn this blog post, I demonstrate how to implement service-to-service authorization using OAuth 2.0 access tokens for microservice APIs hosted on Amazon Elastic Kubernetes Service (Amazon EKS). A common use case for OAuth 2.0 access tokens is to facilitate user authorization to a public facing application. Access tokens can also be used to identify and […]
Read moreIn Amazon Cognito user pools , an app client can be an entity which has permission to call unauthenticated API operations (that’s, operations that don’t have an authenticated user), such as for example operations to join up, register, and handle forgotten passwords. In this article, I show you a remedy made to protect these API […]
Read more
You must be logged in to post a comment.