Amazon Cognito User Pools
Managed user directory for app authentication.
- Features: Supports SAML, OAuth, MFA, and social logins (Google, Facebook).
- Use Cases: Scalable user authentication for mobile/web apps.
- Read more
Amazon Cognito provides authentication, authorization, and user management for your web and mobile apps. Users can sign in directly with a user name and password, or through a trusted third party.
Question: A company is developing a new mobile version of its popular web application in the AWS Cloud. The mobile app must be accessible to internal and external users. The mobile app must handle authorization, authentication, and user management from one central source.
Which solution meets these requirements? - use Amazon Cognito
AWS STS
AWS STS to create and provide trusted users with temporary security credentials that can control access to your AWS resources. However, AWS STS does not control access to an application.
IAM users and groups
IAM users and groups to control who is authenticated and authorized to use an AWS service. However, users and groups do not control access to an application.