Amazon Cognito resources

Overview

Amazon Cognito lets you add user sign-up, sign-in, access control, and brokered AWS service access to your web and mobile applications within minutes. It is a developer-centric, cost-effective service that provides secure, tenant-based identity stores and federation options that can scale to millions of users. Amazon Cognito helps you create branded customer experiences, improve security, and adapt to your customers’ needs. For example, it supports login with social identity providers and pass-wordless login using WebAuthn passkeys or SMS and email one-time-passwords. Amazon Cognito supports various compliance standards, operates on open identity standards, and integrates with an extensive catalogue of development resources and SDK libraries.

Here you will find technical materials that describe how to accomplish a specific tasks with code samples you can re-use in your app. The first set of guides below teach you the essentials for Amazon Cognito user pools, Amazon Cognito identity pools, and AWS AppSync development.  

Getting started

Amazon Cognito user pools makes it easy to create and maintain a user directory and add sign-up (user on-boarding) and sign-in to your mobile or web application for authentication, authorization, and resource access and control.

With Amazon Cognito identity pools, you can create unique identities and assign permissions for users. You can also sign in users through social identity providers, such as Facebook, Google, or Apple, or through corporate identity providers with SAML or OIDC and control access to your backend resources.

If you're new to Amazon Cognito Sync, use AWS AppSync. Like Amazon Cognito Sync, AWS AppSync is a service for synchronizing application data across devices.

It enables user data like app preferences or game state to be synchronized. It also extends these capabilities by allowing multiple users to synchronize and collaborate in real time on shared data.

AWS AppSync simplifies application development by letting you create a flexible API to securely access, manipulate, and combine data from one or more data sources. AppSync is a managed service that uses GraphQL to make it easy for applications to get exactly the data they need.

Workshop

Amazon Cognito Workshop
In this workshop, we will deep dive into Cognito and build out an authentication solution for a sample retail store. We will be working with Amazon Cognito user pools for API Authentication for a Hosted UI, Amazon Cognito user pools SDK with AWS Amplify, and the Amazon Cognito identity pools SDK.

Sample Applications

Sample pet store application
This sample web application demonstrates authentication and policy-based authorization of different user types to an imaginary pet store web application. This application uses Amazon Cognito for authentication and uses Amazon Verified Permissions for policy-based authorization, the application uses AWS Amplify platform to accelerate deployment and provisioning of backend resources.

Videos

How to use Amazon Cognito user pool advanced security features (12:00)
How to create an Amazon Cognito identity pool (7:25)
Amazon Cognito support for AWS Web Application Firewall (5:31)
SAML federation, IdP-initiated Login, and SAML Encryption (15:28)
Managing B2B (multi-tenancy) identity at scale (36:49)
Build a CIAM solution in 1 hour (39:10)

Documentation

Amazon Cognito user pools (Developer Guide)

Follow these steps to set up and configure a user pool for the first time with the Amazon Cognito console

Set up the sample app: iOS | Android | JavaScript (Angular 2)

Amazon Cognito identity pools (Developer Guide)

Provides an overview and steps of Amazon Cognito identity pools for creating identities or setup user authentication with federated social or SAML-based identity providers.

Set up a sample app: iOS | Android

Integrate identity pools with user pools (Developer Guide)

Connect your users and apps to other AWS services.

Synchronize application data across devices

If you're new to Amazon Cognito Sync, use AWS AppSync. AWS AppSync is a service for synchronizing application data across devices. It enables user data like app preferences or game state to be synchronized. It also extends these capabilities by allowing multiple users to synchronize and collaborate in real time on shared data. For existing customers of Cognito Sync, here is a reference to get started with Amazon Cognito Sync.

AWS support knowledge center questions for Amazon Cognito

Get answers to commonly asked questions and use helpful articles to troubleshoot Amazon Cognito capabilities, such as account recovery, OIDC tokens, security settings, and more.

What's new

  • Date
No results found
1

Developer tools and SDKs

In addition to using the higher-level mobile and JavaScript SDKs, you can also use the lower-level APIs available via the following AWS SDKs to integrate all Amazon Cognito functionality in your applications.

Blog posts and articles

No blog posts have been found at this time. Please see the AWS Blog for other resources.

1