Amazon Cognito logo

Amazon Cognito

Amazon Cognito is a fully managed user identity and authentication service that enables developers to add sign-up, sign-in, and access control to web and mobile applications. It supports OAuth 2.0, SAML 2.0, and OpenID Connect standards, providing secure user directories that scale to millions of users. Cognito offers user pools for authentication and identity pools for authorization, allowing integration with social identity providers and enterprise identity systems.

2 APIs 1 Capabilities 8 Features
AuthenticationAWSIdentityOAuthUser Management

APIs

Cognito User Pools API

Amazon Cognito User Pools API provides user directory management, sign-up, sign-in, and token-based authentication for web and mobile applications. It supports multi-factor auth...

Cognito Identity Pools API

Amazon Cognito Identity Pools (Federated Identities) API enables developers to create unique identities for users and federate them with identity providers. It provides temporar...

Capabilities

Amazon Cognito User Authentication

Workflow capability for managing user authentication, identity federation, and access control using Amazon Cognito User Pools and Identity Pools. Used by application developers ...

Run with Naftiko

Features

User Pools

Fully managed user directories with sign-up, sign-in, and account management supporting millions of users.

Identity Pools (Federated Identities)

Grant temporary AWS credentials to authenticated users from social identity providers, SAML, or user pools.

Multi-Factor Authentication

Add SMS-based, TOTP, or email-based MFA to user pools for enhanced security.

OAuth 2.0 and OpenID Connect

Standards-compliant OAuth 2.0 authorization server with OIDC support for easy integration.

Social Identity Providers

Federate with Google, Facebook, Amazon, Apple, and any OIDC or SAML 2.0 compatible provider.

Advanced Security Features

Risk-based adaptive authentication, compromised credential detection, and IP-based restriction.

Customizable Authentication Flows

Lambda triggers for custom authentication challenges, migration, pre/post sign-up, and token customization.

User Groups

Organize users into groups with associated IAM roles for role-based access control.

Use Cases

Web and Mobile App Authentication

Add user sign-up and sign-in to web and mobile applications without managing authentication infrastructure.

API Authorization

Protect APIs using Cognito-issued JWT tokens validated by API Gateway or application code.

Enterprise SSO

Federate with corporate SAML 2.0 identity providers for single sign-on in enterprise applications.

Social Login

Enable users to sign in with their Google, Facebook, or Apple credentials.

Serverless App Security

Secure serverless applications with temporary AWS credentials dispensed through identity pools.

Multi-Tenant SaaS

Create isolated user pools per tenant for multi-tenant SaaS applications.

Integrations

AWS API Gateway

Authorize API requests using Cognito User Pool authorizers.

AWS Lambda

Customize authentication with Lambda triggers for sign-up, sign-in, and token generation.

AWS IAM

Map Cognito groups and roles to IAM permissions for granular access control.

AWS AppSync

Secure GraphQL APIs with Cognito User Pool authorization.

Amazon ALB

Offload authentication to Cognito from Application Load Balancers.

Google, Facebook, Apple

Social identity provider federation for consumer applications.

SAML 2.0 Providers

Enterprise identity provider federation via SAML for corporate SSO.

Semantic Vocabularies

Amazon Cognito Cognito Context

1 classes · 35 properties

JSON-LD

Amazon Cognito Context

0 classes · 3 properties

JSON-LD

Amazon Cognito Identity Pools Context

50 classes · 55 properties

JSON-LD

Amazon Cognito User Pools Context

269 classes · 308 properties

JSON-LD

API Governance Rules

Amazon Cognito API Rules

24 rules · 10 errors 11 warnings 3 info

SPECTRAL

Resources

🌐
Portal
Portal
🔗
Website
Website
🔗
Documentation
Documentation
📜
TermsOfService
TermsOfService
📜
PrivacyPolicy
PrivacyPolicy
💬
Support
Support
📰
Blog
Blog
👥
GitHubOrganization
GitHubOrganization
🌐
Console
Console
📝
SignUp
SignUp
🔗
Login
Login
🟢
StatusPage
StatusPage
👥
YouTube
YouTube
👥
StackOverflow
StackOverflow
🔗
Contact
Contact
🔗
SpectralRules
SpectralRules
🔗
NaftikoCapability
NaftikoCapability
🔗
Vocabulary
Vocabulary