aws-cognito

来源： https://stackoverflow.com/questions/46848537/get-facebook-access-token-in-aws-cognito-and-lambda

来源： https://stackoverflow.com/questions/46848537/get-facebook-access-token-in-aws-cognito-and-lambda

来源： https://stackoverflow.com/questions/42431436/multiple-apps-in-the-same-aws-cognito-user-pool-would-the-cognitoid-be-the-same

来源： https://stackoverflow.com/questions/42431436/multiple-apps-in-the-same-aws-cognito-user-pool-would-the-cognitoid-be-the-same

问题 At the documentations there's an App Client Secret , but I can't find anywhere its purpose. I see the javascript SDK doesn't use it, I also don't know why, probably because many javascript applications run on the users browser, not a place to expose a secret, but that's my wild guess. If this is something like a password for the App Client ID , I can't see how this improves security, since however can steal your App Client ID will be able to steal the App Client Secret as well. Besides, the

问题 When I signed in using google from aws cognito login page, it return back aws access token. Is it possible to retrieve google access token and refresh token using aws token. The url used to login - https://example.auth.ap-southeast-1.amazoncognito.com//login?redirect_uri=redirect_uri&response_type=token&client_id=client_id. How aws cognito handles refresh token when signed using google? 回答1: In short, no. When you use the above URL to sign in using Cognito Userpool's OAuth endpoints, the

问题 I can't find any documentation which explains if and how to modify the expiry time of access and identity tokens for AWS Cognito User Pools. The documentation specifies that by default expires 1h after the emission. Is there a way to modify the expiry time? 回答1: This is currently not possible to configure for your user pool. They are set to one hour for everyone. 回答2: I presume the question is how to get get granular control of Cognito session termination. There is a way to do this. But first

问题 I have a Cognito User Pool and corresponding a Identity pool. I want to call a specific version of my Lambda function on Post authentication or some other trigger like that. I don't see an option to specify a version code in the Console although the examples all have a version number. http://docs.aws.amazon.com/cognito/latest/developerguide/cognito-user-identity-pools-working-with-aws-lambda-triggers.html { "version": number, "triggerSource": "string", "region": AWSRegion, "userPoolId":

问题 Question Why AWS Cognito has two places to federate Identity Providers? I think Identity Pool is supposed to be federated with identity providers and wonder why User Pool also can. Kindly suggest the reason why having two locations. Cognito Identity Pool can federate identity providers. Cognito User Pool can federate identity provides as well. 回答1: The Main Difference is how users are saved and what permissions are granted once they signin with idp's using user pool vs identity pool . So,

问题 Question Why AWS Cognito has two places to federate Identity Providers? I think Identity Pool is supposed to be federated with identity providers and wonder why User Pool also can. Kindly suggest the reason why having two locations. Cognito Identity Pool can federate identity providers. Cognito User Pool can federate identity provides as well. 回答1: The Main Difference is how users are saved and what permissions are granted once they signin with idp's using user pool vs identity pool . So,