Amazon Cognito · JSON Structure

User Pools Create Identity Provider Request Structure

CreateIdentityProviderRequest schema from Amazon Cognito API

Type: object Properties: 6 Required: 4
AuthenticationIdentityOAuthOIDCSAMLUser ManagementFederated Identity

CreateIdentityProviderRequest is a JSON Structure definition published by Amazon Cognito, describing 6 properties, of which 4 are required. It conforms to the https://json-structure.org/meta/core/v0/# meta-schema.

Properties

UserPoolId ProviderName ProviderType ProviderDetails AttributeMapping IdpIdentifiers

Meta-schema: https://json-structure.org/meta/core/v0/#

JSON Structure

Raw ↑ 
{
  "$schema": "https://json-structure.org/meta/core/v0/#",
  "$id": "https://raw.githubusercontent.com/api-evangelist/amazon-cognito/refs/heads/main/json-structure/user-pools-create-identity-provider-request-structure.json",
  "name": "CreateIdentityProviderRequest",
  "description": "CreateIdentityProviderRequest schema from Amazon Cognito API",
  "type": "object",
  "properties": {
    "UserPoolId": {
      "allOf": [
        {
          "$ref": "#/components/schemas/UserPoolIdType"
        },
        {
          "description": "The user pool ID."
        }
      ]
    },
    "ProviderName": {
      "allOf": [
        {
          "$ref": "#/components/schemas/ProviderNameTypeV1"
        },
        {
          "description": "The IdP name."
        }
      ]
    },
    "ProviderType": {
      "allOf": [
        {
          "$ref": "#/components/schemas/IdentityProviderTypeType"
        },
        {
          "description": "The IdP type."
        }
      ]
    },
    "ProviderDetails": {
      "allOf": [
        {
          "$ref": "#/components/schemas/ProviderDetailsType"
        },
        {
          "description": "<p>The IdP details. The following list describes the provider detail keys for each IdP type.</p> <ul> <li> <p>For Google and Login with Amazon:</p> <ul> <li> <p>client_id</p> </li> <li> <p>client_secret</p> </li> <li> <p>authorize_scopes</p> </li> </ul> </li> <li> <p>For Facebook:</p> <ul> <li> <p>client_id</p> </li> <li> <p>client_secret</p> </li> <li> <p>authorize_scopes</p> </li> <li> <p>api_version</p> </li> </ul> </li> <li> <p>For Sign in with Apple:</p> <ul> <li> <p>client_id</p> </li> <li> <p>team_id</p> </li> <li> <p>key_id</p> </li> <li> <p>private_key</p> </li> <li> <p>authorize_scopes</p> </li> </ul> </li> <li> <p>For OpenID Connect (OIDC) providers:</p> <ul> <li> <p>client_id</p> </li> <li> <p>client_secret</p> </li> <li> <p>attributes_request_method</p> </li> <li> <p>oidc_issuer</p> </li> <li> <p>authorize_scopes</p> </li> <li> <p>The following keys are only present if Amazon Cognito didn't discover them at the <code>oidc_issuer</code> URL.</p> <ul> <li> <p>authorize_url </p> </li> <li> <p>token_url </p> </li> <li> <p>attributes_url </p> </li> <li> <p>jwks_uri </p> </li> </ul> </li> <li> <p>Amazon Cognito sets the value of the following keys automatically. They are read-only.</p> <ul> <li> <p>attributes_url_add_attributes </p> </li> </ul> </li> </ul> </li> <li> <p>For SAML providers:</p> <ul> <li> <p>MetadataFile or MetadataURL</p> </li> <li> <p>IDPSignout <i>optional</i> </p> </li> </ul> </li> </ul>"
        }
      ]
    },
    "AttributeMapping": {
      "allOf": [
        {
          "$ref": "#/components/schemas/AttributeMappingType"
        },
        {
          "description": "A mapping of IdP attributes to standard and custom user pool attributes."
        }
      ]
    },
    "IdpIdentifiers": {
      "allOf": [
        {
          "$ref": "#/components/schemas/IdpIdentifiersListType"
        },
        {
          "description": "A list of IdP identifiers."
        }
      ]
    }
  },
  "required": [
    "UserPoolId",
    "ProviderName",
    "ProviderType",
    "ProviderDetails"
  ]
}