Front-End Web & Mobile
Tag: Amazon Cognito
Building fine-grained authorization using Amazon Cognito User Pools groups
This post was authored by Leo Drakopoulos, AWS Solutions Architect. User authentication and authorization can be challenging when building web and mobile apps. The challenges include handling user data and passwords, token-based authentication, managing fine-grained permissions, scalability, federation, and more. In this post, we show how to integrate authentication and authorization into an Angular web […]
Amazon Cognito User Pools supports federation with SAML.
Last year, we launched SAML federation support for Amazon Cognito Identity. This feature enables you to get temporary scoped AWS credentials in exchange for a SAML response. Amazon Cognito Identity supports an API-based approach that requires you to parse the SAML response from the SAML IdP (Identity Provider) and call the Amazon Cognito Identity API with a […]
AWS Mobile App Backend with Hybrid Apps
This post was co-authored by Leo Drakopoulos, AWS Solutions Architect. Today we would like to tell you about a new solutions brief for building serverless mobile backend solutions on AWS, and a step-by-step walkthrough for implementing this pattern, using the Ionic framework on AWS Answers. Like other solutions on AWS Answers, this one was built by […]
Customizing Amazon Cognito User Pool Authentication Flow
Introduction Modern authentication flows incorporate new challenge types, in addition to a password, to verify the identity of users. For example, these challenge types include CAPTCHAs or dynamic challenge questions. With Amazon Cognito Your User Pools, we now have a flexible authentication flow that you can customize to incorporate additional authentication methods and support dynamic […]
Accessing Your User Pools using the Amazon Cognito Identity SDK for JavaScript
Introduction In April, we launched the beta version of a new Amazon Cognito feature called Your User Pools. Among other functionality, the User Pools feature makes it easy for developers to add sign-up and sign-in functionality to web apps. AWS Mobile SDKs for Android, JavaScript, and iOS are available with this beta launch. In this […]
Using Amazon Cognito and AWS Lambda to Detect Cheating
This blog post was contributed by Steve Johnson, Senior Solutions Architect Today we’re going to talk about cheating in mobile games. Specifically, we’ll talk about how to prevent an exploit using Amazon Cognito and AWS Lambda. An exploit is an unplanned use case – something the player does that is unexpected or that has an […]
Understanding Amazon Cognito Authentication Part 4: Enhanced Flow
Amazon Cognito helps you create unique identifiers for your end users that are kept consistent across devices and platforms. Amazon Cognito also delivers temporary, limited-privilege credentials to your application to access AWS resources. In previous posts (Part 1, Part 2, and Part 3), I covered several aspects of Amazon Cognito authentication flow. In this post, […]
Announcing Twitter and Digits Support for Amazon Cognito
When Amazon Cognito was first launched, we included support for Facebook, Google, Login with Amazon, as well as unauthenticated identities. In response to customer requests, we added OpenID Connect support as well as developer authenticated identities to enable developers to extend Amazon Cognito to support any aribitrary provider. Even though it was possible to add […]
Announcing Amazon Cognito Streams
On 1/20 we released a feature that gives developers, utilizing their credentials, full API access to the sync store to read and write user profile data as well as a data browser inside the Amazon Cognito console. Today we are excited to announce a new feature that gives customers even greater control and insight into […]
Integrating Amazon Cognito using developer authenticated identities: An end-to-end example
In September, we introduced developer authenticated identities, a new feature that allows you to utilize your own end-user identities with Amazon Cognito (read our announcement post). The purpose of this post is to show an end-to-end sample that demonstrates how to integrate this feature with an existing authentication system. Using developer authenticated identities involves interaction […]