wikipedia:Amazon Cognito (July 2014)  simplifies the task of authenticating users and storing, managing, and syncing their data across multiple devices, platforms, and applications. It works online or offline, and allows you to securely save user-specific data such as application preferences and game state. Cognito works with multiple existing identity providers (
--provider-type) such as Apple, Google, Facebook, and Amazon and through enterprise identity providers such as SAML and OpenID Connect additionally also supports unauthenticated guest users.
The Cognito Your User Pool feature has a free tier of 50,000 MAUs for users who sign in directly to Cognito User Pools and 50 MAUs for users federated through SAML 2.0 based identity providers. The free tier does not automatically expire at the end of your 12 month AWS Free Tier term, and it is available to both existing and new AWS customers indefinitely.
- Single sign-on
- AWS Cognito user pools, https://docs.aws.amazon.com/cognito/latest/developerguide/getting-started-with-cognito-user-pools.html.
- AWS Single Sign-On
- Federated authentication
- Amazon Cognito:
aws cognito-idp create-identity-provider,
aws cognito-idp admin-set-user-password
- Amazon Cognito,
- SAML, IdP, Assertion, Attribute, SCIM, Amazon Cognito, OpenID Connect (OIDC), SAML response,
SAML:EduPersonOrgDN, Assertion Consumer Service (ACS), SAML examples,
- Authentication, AAA, MFA, OpenID, OAuth, OATH, PAM, Personal access token, CWE: Broken Access Control, PAT, Mutual authentication, Federated authentication, IdP, Amazon Cognito, Phone to sign in, Firebase Authentication, Auth0, WebAuthn, Web3auth