amazon-cognito

问题 I am facing an issue with Google signin that makes me question that Cognito can work at all in this configuration. Basically, Google token have a 1 hour lifespan. This is intended to give you access to the Google API for one hour and then you should renew the token. The issue is that Cognito uses this token with the same lifespan. So it means that after one hour Cognito Sync stops working (and I have not yet found a way to silently refresh the token or even check it is expired). What bothers

问题 We are working on an iOS Application that has been using Unauthenticated Access to Cognito. We are now adding an Identity Provider: Cognito User Pools. We are seeing that when Device A does the login process, from Unauthenticated to Authenticated, the Cognito ID stays the same (as expected). Then when Device B logins in, Unauthenticated to Authenticated. We would expect the user to get the Authenticated Cognito ID from Device A, this is not the case. Even so, perhaps they all transitioned to

问题 I am in the process of implementing registration and login for my iOS app, using this project as an example: https://github.com/awslabs/aws-sdk-ios-samples/tree/75ada5b6283b7c04c1214b2e1e0a6394377e3f2b/CognitoYourUserPools-Sample/Objective-C/CognitoYourUserPoolsSample Previously, my app was able to access DynamoDB resources by using a credentials provider set up in my AppDelegate's didFinishLaunchingWithOptions method. However, after changing my project to include logging in and function like

问题 I have a backend app that provides measurement data through the use of REST API. Now, I'm creating a frontend app that can visualize and query that data depending on parameters such as city , fromDateTime , tillDateTime , sponsorId etc. I'd like to assign attributes to specific users that would describe how visualization should look like and what exactly they can query from my REST API. For example, a specific sponsor of measurement devices can only see data from the devices they bought.

问题 So when i run queries from the aws console, things work great. However on my iOS client, i only get 401 errors. I'm using the basic code from the tutorial and cognito auth: credentialsProvider = AWSCognitoCredentialsProvider(regionType: AWSRegion, identityPoolId: CognitoIdentityPoolId) let databaseURL = URL(fileURLWithPath:NSTemporaryDirectory()).appendingPathComponent(database_name) do { // Initialize the AWS AppSync configuration let appSyncConfig = try AWSAppSyncClientConfiguration(url:

问题 I've created a User Poll and connected a Facebook to it. Here is what it looks like in the AWS Console. I also have set email as a required attribute for signing up. However, when I visit my hosted login page and click Continue with Facebook , I get redirected back to my page with URL http://localhost:4200/#error_description=attributes%20required:%20[email]&error=invalid_request Why is this happening? I've followed all the instructions, and have included email as a scope. I am expecting an

问题 I'm using AWS cognito with a NodeJS backend API and want to include user details in the access token return from /oauth2/token end point with scopes defined in the user pool client app. Also if I use adminInitiateAuth API, there is no way to include the scopes in the return access token. So is it possible to have both user details and scopes in a one access token? 回答1: Amazon Cognito returns multiple tokens uppon succesful autehntication : an ID token, an Access Token, and optionaly a Refresh

问题 There's new feature in aws cognito to allow user to sign in through external federation identity providers in user pool. I followed the steps given the aws Doc. 1) select identity providers 2) attributes mapping But when I sign up, fb/ Google account ID don't get map in user pool. Can someone give me a proper code to do this. I mean how should I map fb/ Google user sign in programmatically in cognito user pool. 回答1: Currently, only the Facebook id, Google sub, and Login with Amazon user_id

问题 Is it recommended to authenticate with Cognito directly from mobile device vs going through your own server? I was thinking that it would be preferable for server to authenticate with cognito allowing single end point that is handled by server team to handle authentications from android, ios version of the app vs handling it separately and then have to deal with potential changes-replacement of the cognito as authentication end point. Why add the extra logic on the mobile app vs keeping it in

问题 I used amplify add auth that works fine and then amplify push . The React website is running without a problem. But when I try to register or login, I get the error [ERROR] AuthClass - Cannot get the current user because the user pool is missing. Please make sure the Auth module is configured with a valid Cognito User Pool ID . But the aws_user_pools_id is the same like in the id in the aws console. Have someone an idea what the problem could be? thanks ;) Thats my App.js with no magic...