Category: Security, Identity, & Compliance

Today, we’re excited to announce the official AWS Cloud Development Kit (CDK) construct for Amplify’s GraphQL APIs capabilities. With Amplify’s GraphQL API CDK construct, you can create a real-time GraphQL API backed by data sources such as Amazon DynamoDB tables or AWS Lambda functions using a single GraphQL schema definition. (View on Construct Hub) Launching […]

Today, we are excited to unveil the v6 Developer Preview of the AWS Amplify JavaScript Library. This is a milestone release that we believe will improve the way you approach web development with your AWS cloud backend. We have been listening to your feedback, and today’s announcement addresses some of the most significant bundle size, […]

AWS AppSync is a serverless GraphQL service which makes it easy to create, manage, monitor and secure your GraphQL APIs. In the previous blog post, we announced the launch of Merged APIs for AWS AppSync. Merged APIs enable teams to merge resources, including types, data sources, functions, and resolvers, from multiple source AppSync APIs into […]

In many mobile apps, users are offered different ways to authenticate with the app like providing a username and password as well as offering options to sign in with a social provider like Amazon, Facebook, Google, and Apple. When authenticating with a social provider, the user goes through the provider’s auth flow and, in return, […]

In a recent industry survey, over 66.6% (up from 59.7% in 2019) of JavaScript developers have used real-time technologies. Multiplayer apps makes your app more delightful and drives more organic adoption through user collaboration. With today’s launch, AWS Amplify enables developers to configure dynamic multi-group authorization for real-time subscriptions. This is part three of a […]

In this blog post, we describe how you can improve end-user customer experience on your User Interfaces (UI) by implementing the Backend for Frontend pattern and providing real-time visual updates when your microservices raise events about mutations in their domain aggregates. The solution proposed combines two patterns: 1) the Backends for Frontends (BFF) pattern, where […]

Managing user identities across multiple applications within an organization can be problematic. If your organization already has a solution for managing user access it is preferable that new applications integrate with currently exiting solutions rather than leveraging a novel mechanism. Okta is one such widely adopted identity management solution that may already be in play […]

Modern chat apps require a rich set of features. These features include file storage, real-time updates, and the ability to fetch data on both the client and the server. Traditionally, this has meant stitching together many third-party services, or spending development time creating a custom solution. Furthermore, this slows down the time-to-market and introduces multiple […]

Note: The Amazon Cognito hosted UI (Web) does not support the custom authentication flow. According to the Gartner Group , 20% to 50% of all IT help desk tickets each year are password resets, meaning the average managed service provider (MSP) with 1,300 users wastes around $7.19 per user, adding up to an annual cost […]

API Quotas define the valid amount of calls available for a consumer during a specific amount of time. Enforcing quotas protects your API from unintentional abuse, minimizes data exfiltration and protects your resources from excessive usage. Beyond the mentioned security benefits, it can also unlock your capabilities to monetize the digital assets sitting behind the […]