How to implement trusted identity propagation for applications protected by Amazon Cognito
Security Blog
This article explains how to implement trusted identity propagation for applications protected by Amazon Cognito, which allows the application to pass user identities to AWS services that support this feature.
Specifically, the article covers:
- Concepts of IAM Identity Center, trusted identity propagation, and trusted token issuers
- Overview of the solution architecture
- Step-by-step walkthrough to set up:
- Amazon Cognito user pool, domain, and client
- OAuth integration with IAM Identity Center as a trusted token issuer
- SAML federation between IAM Identity Center and Cognito
- Authentication flow diagram
- Cleanup instructions
- Conclusion and additional resources
The AWS News Feed is currently looking for gold sponsors. If you want to support the AWS community and reach a large audience of AWS professionals, consider sponsoring the AWS News Feed.
Related articles
Nov 22
2024
2024
Improve your app authentication workflow with new Amazon Cognito features
Aug 5
2024
2024
SaaS authentication: Identity management with Amazon Cognito user pools
May 14
2024
2024
Using Amazon Cognito as an identity provider with AWS Transfer Family and Amazon S3
Jun 27
2024
2024
Access AWS services programmatically using trusted identity propagation
The AWS News Feed is currently looking for silver sponsors. If you want to support the AWS community and reach a large audience of AWS professionals, consider sponsoring the AWS News Feed.