Category: Security, Identity, & Compliance

AWS AppSync is a serverless GraphQL service which makes it easy to create, manage, monitor and secure your GraphQL APIs. In the previous blog post, we announced the launch of Merged APIs for AWS AppSync. Merged APIs enable teams to merge resources, including types, data sources, functions, and resolvers, from multiple source AppSync APIs into […]

In many mobile apps, users are offered different ways to authenticate with the app like providing a username and password as well as offering options to sign in with a social provider like Amazon, Facebook, Google, and Apple. When authenticating with a social provider, the user goes through the provider’s auth flow and, in return, […]

In a recent industry survey, over 66.6% (up from 59.7% in 2019) of JavaScript developers have used real-time technologies. Multiplayer apps makes your app more delightful and drives more organic adoption through user collaboration. With today’s launch, AWS Amplify enables developers to configure dynamic multi-group authorization for real-time subscriptions. This is part three of a […]

In this blog post, we describe how you can improve end-user customer experience on your User Interfaces (UI) by implementing the Backend for Frontend pattern and providing real-time visual updates when your microservices raise events about mutations in their domain aggregates. The solution proposed combines two patterns: 1) the Backends for Frontends (BFF) pattern, where […]

Managing user identities across multiple applications within an organization can be problematic. If your organization already has a solution for managing user access it is preferable that new applications integrate with currently exiting solutions rather than leveraging a novel mechanism. Okta is one such widely adopted identity management solution that may already be in play […]

Modern chat apps require a rich set of features. These features include file storage, real-time updates, and the ability to fetch data on both the client and the server. Traditionally, this has meant stitching together many third-party services, or spending development time creating a custom solution. Furthermore, this slows down the time-to-market and introduces multiple […]

Note: The Amazon Cognito hosted UI (Web) does not support the custom authentication flow. According to the Gartner Group , 20% to 50% of all IT help desk tickets each year are password resets, meaning the average managed service provider (MSP) with 1,300 users wastes around $7.19 per user, adding up to an annual cost […]

API Quotas define the valid amount of calls available for a consumer during a specific amount of time. Enforcing quotas protects your API from unintentional abuse, minimizes data exfiltration and protects your resources from excessive usage. Beyond the mentioned security benefits, it can also unlock your capabilities to monetize the digital assets sitting behind the […]

Many companies serve their customers “in the field.” These are broadly: 1) companies that have a field service business function, e.g., for the repair of equipment that they sell to their customers, and 2) companies that have a route sales business function, e.g., a Consumer Packaged Goods (CPG) company’s own or contract employees stocking the […]

AWS Amplify is a set of tools and services that enables mobile and front-end web developers to build secure, scalable full-stack applications powered by AWS. Amplify recently released a new enhancement for the authentication category to allow Flutter developers to set up custom authentication challenges using Amazon Cognito AWS Lambda triggers.  This guide shows how to […]