Securing API Gateway using AWS Cognito.

Cognito User Pool

Amazon Cognito Account Pools lets users build and manage a profile registry and provides sign-up / sign-in to smartphone or desktop apps. Users can use social or SAML-based identity providers to sign in to a User Pool. It provides millions of users with a secure, easy, low-cost alternative, and scales.

Start with AWS Cognito User Pool:

Step 1: Log in to your AWS console and click on the services option and click on the Cognito then Select the manage user pool option as shown in the below image.

  1. grant_type = client_credentials
  2. client_id ={app client id generated by Cognito}
  3. client_secret ={app client secret generated by Cognito}
  4. scope ={name of Cognito app}/{name of scope}
  5. method = POST