Cognito User Profiles Export Reference Architecture

Build a framework for exporting user profile and group information from your Amazon Cognito user pools

Overview

This AWS Solution helps you export Amazon Cognito user information to facilitate more complex user queries, or to provide resiliency in case of Regional failure or accidental deletion of your users' profiles. It is designed to provide a framework for exporting user profile and group information from a Cognito user pool, allowing you to focus on extending this solution’s functionality, rather than managing the underlying infrastructure operation.

This solution does not export sensitive information, such as user passwords. It also does not support user pools with multi-factor authentication (MFA) activated and advanced security features. For a full list of limitations, refer to the implementation guide.
 

Benefits

Scheduled export

The AWS Step Functions export workflow periodically exports non-sensitive user profiles, groups, and group membership details from your user pool to an Amazon DynamoDB table. Choose whether to run the export workflow every 1, 7, or 30 days.

Added resiliency

DynamoDB global tables with automatic, asynchronous replication provide a backup Region for added resiliency. This ensures that you still have access to a backup of your users, groups, and group memberships if your primary Region is unavailable.

Import from Amazon DynamoDB

The Step Functions import workflow can be used in either the primary or backup Region to populate a new, empty user pool with data from the DynamoDB global table.

Technical details

You can automatically deploy this architecture using the implementation guide and the accompanying AWS CloudFormation template.

Use cases for this AWS Solution
  • Headline
More…
Deployment options
Ready to get started?
Deploy this solution by launching it in your AWS Console

Need help? Deploy with a partner.
Find an AWS Certified third-party expert to assist with this deployment
Case Study
AvalonBay Communities Inc. Logo

AvalonBay Communities Inc. migrated to a serverless architecture on AWS, accelerating development by 75 percent while reducing costs by 40 percent and maintaining strong security.  

Read the full case study 
Introduction to AWS CloudFormation

A basic overview of how AWS CloudFormation can be used to automate resource provision. Use cases where AWS CloudFormation is used to repeatedly and predictably create groups of resources is covered in this course. A demonstration in designing an AWS CloudFormation template for resource provisioning is also covered.

Enroll now 
Amazon DynamoDB – Architecture and Features

In this APN Navigate technical course, you will be introduced to the architecture and features of Amazon DynamoDB. The course provides a tailored path for AWS Partner Network (APN) Partners to learn about core components of Amazon DynamoDB, including the table, global secondary index, and local secondary index. You will also review important features such as transactions, automatic scaling, and global tables.

Enroll now 
Introduction to AWS Step Functions

This is an introductory course on AWS Step Functions, an AWS service that makes it easy to coordinate the components of distributed applications and microservices using visual workflows. In this course, we will discuss the rationale for using AWS Step Functions and highlight key service concepts such as state types, visual workflow, and Amazon State Language. A demonstration of AWS Step Functions will also be included in the course.

Enroll now 

Was this page helpful?