amazon-cognito

问题 I'm using the Amplify authenticator component (described here) with Cognito User Pools. Right now, adding the basic authenticator to html takes the user through the following process automatically: 1) Sign up 2) Enter verification code sent to email 3) Sign-in: Re-enter user name and password This is based on just adding to html: <amplify-authenticator></amplify-authenticator> So new users sign up, and then right away need to sign in. It would be better if they were automatically signed-in,

问题 I want to invoke a Lambda function using the Javascript API. I want it to be invoked with the cognito userpool credentials of the user who is authenticated on the browser. The objective is that the Lambda function will have the same level of access to S3 as the user from the cognito userpool. How can I do this? thanks 回答1: You can do that by federating user pool token with Cognito federated identity, this will give you temporary AWS credentials to call AWS Lambda function. You will need to

问题 After using Cognito for a few months, some users in a user pool have now lost the "email_verified" attribute. I can't understand how it is missing or how to recover. Symptoms are: Users can still login User password can not change (eg via JS SDK - changePassword), produces error: "x-amzn-errormessage: Cannot reset password for the user as there is no registered/verified email or phone_number" Getting the user attributes for the user with the list-users CLI shows the attribute is missing aws

问题 I have a two step forgot password process. I'm rendering two forms using React. The first form takes an email address and upon submit, successfully executes my resetPassword() function. The function successfully sends the user a security code via email. This part works fine. Then, the next form is rendered which takes in the security code and a password (password and confirmPassword - they must be the same, obviously). Then, upon submit of this form, it executes the confirmPassword() function

问题 I've been stumbling around for a few hours trying to understand Cognito and identity management in a mobile app. I'm relatively new to mobile app development. I've made a mobile app before, but never one with a back-end. so now I'm playing around with AWS intending to try just that. I want to make sure that each user using my app can be uniquely identified so that I can store content that they submit to the server associated with them. But I also want other users to be able to see their

问题 I am having a bit of a hard time understand how can an IAM role be used to limit access to a Amazon EC2 instances. I am currently looking into Cognito, and I was wondering if it could help me. I want to restrict the access of my EC2 instances (with that I mean contacting the Django Server on there) to only a specific group of people, with dynamic ips. So IP restriction is not an option. If a user gets authenticated with Cognito and gets temporary credentials, and therefore assumes a specific

问题 Is it possible to add Cognito additional custom or standard user attributes post pool creation and once the pool is being used? In other words is the Schema for the pool totally locked or can we add more custom attributes to it? 回答1: On AWS Cognito, you have two types of attributes: Standard Attributes: These attributes were selected when the pool was created and cannot be changed . Custom Attributes: These attributes can be added . Once they are added, they cannot be removed or changed 回答2:

问题 I'm getting this strange error Access to Role 'cognito role' is forbidden. while creating a cloud formation stack here is my cloud formation file in yaml format. I'm basically creating a s3 bucket and a cognito identity to facilate client side access to my bucket the whole thing is working fine except this error Access to Role 'phototest-cognitoRole-1AMKUVXUXAJ5H' is forbidden. (Service: AmazonCognitoIdentity; Status Code: 400; Error Code: NotAuthorizedException AWSTemplateFormatVersion: 2010

问题 I would like to use Api gateway as http proxy of my API restful. I use Cognito to authorize the access to the API gateway as well as my endopoint. I think to use the cognito identity id to identify the user but I don't know how pass this context variable to the backend for each request (GET, POST, PUT...) Can you help me? Thank you Agostino 回答1: Define a request mapping template and use "$context.identity.cognitoIdentityId" to get the cognito identity ID. i.e. { "cognito-identity" : "$context

问题 i am developing a android application using AWS's RDS and AWS Cognito service. so my question is there any way that i can connect the RDS with Cognito? please help. 回答1: I think there are two possible questions here so I'll answer them both. If the question is, can I access RDS from a Cognito authed app: RDS does not use AWS credentials for authentication, it uses database credentials. Cognito only vends credentials for AWS services, so you cannot use Cognito credentials to access an RDS