aws-cognito

问题 I am writing a console POC to demo AWS cognito authentication - App Pool not federated identity, as our API gateway authentication mechanism (not hosted in AWS). This is being written in C#. I have successfully created a user, confirmed them; but now I need to authenticate to retrieve a JWT that an I can pass around and validate downstream. The following code using (var client = new AmazonCognitoIdentityProviderClient()) { var initAuthRequest = new InitiateAuthRequest(); initAuthRequest

问题 I am trying to invoke a lambda function from an iOS client. My code looks like this: To get credentials, in appDelegate: func application(_ application: UIApplication, didFinishLaunchingWithOptions launchOptions: [UIApplicationLaunchOptionsKey: Any]?) -> Bool { // Uncomment to turn on logging, look for "Welcome to AWS!" to confirm success AWSDDLog.add(AWSDDTTYLogger.sharedInstance) AWSDDLog.sharedInstance.logLevel = .error // Instantiate AWSMobileClient to get AWS user credentials return

问题 Following this guide, it says: On the Attributes tab, select Email address or phone number and select Allow email addresses. Which looks like this: But I'm having trouble accomplishing the same thing with CloudFormation. Tried a couple of the obvious attributes but did not work. Thoughts? 回答1: It's now possible to do this by setting the UsernameAttributes property to an array of strings containing either email , phone_number or both: Type: AWS::Cognito::UserPool Properties: UsernameAttributes

问题 Does anyone know if the User Pool Id and Client Id are sensitive? Currently I have them sitting on the frontend and was just wondering if this is dangerous. If it is, how can they be exploited? 回答1: No, they are not. They are supposed to be public. The only way they can be exploited is that someone can use them to make a large amount of SignUp calls to your userpool. But as long as these registrations are not verified, these won't be converted into active users (unless you have enabled auto

问题 I have a mobile application and wanted to use AWS Cognito pool for user management (sign up & sign in). I wanted to provide below 3 options for users to log in to my app username, password phone number with OTP login - on the sign in screen, the user enters his phone number, and Cognito should send OTP code, and on verification, it should allow to login Google connect login during sign up, the user will set up username, password and adds verified phone number and optionally they can add their

问题 I've integrated cognito into my xcode project. The sign up/password update features are working correctly. However I can't seem to get the sign in process to work. I turned on the logs and I get the following error {"__type":"NotAuthorizedException","message":"Access Token has expired"} Domain=com.amazonaws.AWSCognitoIdentityProviderErrorDomain Code=-1000 "Authentication delegate not set" UserInfo={NSLocalizedDescription=Authentication delegate not set}] I have also implemented the

问题 Im building a serverless backend using AWS Cognito for user administration. Cognito uses both cognitoId and sub to identify a user. This project from the official awslabs uses the cognitoId as primary key in the database tables to link data to a user object, but the documentation about sub clearly states: sub : the UUID of the authenticated user. This is not the same as username . Question: What should I use as primary key, cognitoID or sub ? 回答1: The naming can get confusing, I'll try to

问题 We have a Cloudformation stack, we export a ARN which is created by the stack and import it inside the same stack. When we try to delete the stack, It tries to delete the output first and realizes the output is in use and does not delete the stack. We are looking for guidance on how to redeploy the stack or edit the stack so we can remove the dependency. We tried editing the stack in config editor, but the changes not being saved and still get the same error when trying to delete the stack.

问题 I'm having problems integrating Cognito with ApiGateway. First I SignIn with Cognito, not problems there, I get all the tokens. Then I have to make a call to API Gateway. I'm using the auto-generated SDK for Android. I'm following the example here: http://docs.aws.amazon.com/apigateway/latest/developerguide/how-to-generate-sdk-android.html but I always get the same error. CognitoCachingCredentialsProvider credentialsProvider = new CognitoCachingCredentialsProvider( context, CognitoConstants

问题 I'm not getting the access token from aws cognito user pool after authentication, I'm getting code in web url instead of token. The step I have done are following :- Step 1: Created an User pool and setup all the requirements. Step 2: Added Identity providers credential in userpool left navigation bar -> Federation -> Identity Providers(Facebook, google plus). Step 3: Done Attribute mapping(User pool left Navigation bar -> Federation -> Attribute Mapping). Step 4: Enabled Identity Providers