AWS Cognito — features for a Beginner
Cognito: managed User directory, helps in Authentication of Apps
Nov 18, 2020
- User Pools: managed User directory, Hosted UI, Tokens, OAuth, Federation
- Identity Pools: IAM credentials for external apps
- Federation: Social Identity providers (Google, Facebook), SAML
- User directory: Multi AZ, User Profile, Credentials, MFA, custom attributes
- User Dir can manage Groups also
- Cognito Group can be mapped to external IDP (LDAP, AD) Group
- We have both Access Tokens and ID Tokens
- After you successfully login with Cognito, you will receive a ID, Access & Refresh Tokens from Cognito
- App User uses these Cognito Tokens, to access your App pages & functions