Web Identity Federation with AWS Cognito
Overview and Definition In this project, I will show you how to implement a serverless application that uses Web Identity Federation. For most scenarios, I recommend that you use Amazon Cognito because it acts as an identity broker and does much of the federation work for you. For details, see the following section, Using Amazon Cognito for mobile apps . The application runs using the following technologies: S3 for front-end application hosting Google API Project as an ID Provider Cognito and IAM Roles to swap Google Token for AWS credentials Cloudfront for Edge Location Cloudformation to setup the Environment Web identity federation enables users of your application to sign in using a well-known external identity provider (IdP), such as Login with Amazon, Facebook, Google, or any other OpenID Connect (OIDC ) compatible IdP without the need to create custom sign-in code or manage your own user identities. They can receive an authentication token, and then exchange that token for te