Skip to end of metadata
Go to start of metadata

You are viewing an old version of this content. View the current version.

Compare with Current View Version History

« Previous Version 4 Next »

Amazon Cognito provides authentication, authorization, and user management for web and mobile apps. Users can sign in directly with a user name and password, or through a third party such as Facebook, Amazon, Google or Apple.

The two main components of Amazon Cognito are user pools and identity pools:

  1. A user pool is a user directory in Amazon Cognito. With a user pool, your users can sign in to your web or mobile app through Amazon Cognito, or federate through a third-party identity provider (IdP).

  2. With an identity pool, your users can obtain temporary AWS credentials to access AWS services, such as Amazon S3 and DynamoDB.

ModelOp Center Requirements

ModelOp Center requires the following Amazon Cognito configurations when used with OAuth 2.0:

  1. User pool

  2. Resource server:

    1. rs/modelop_client

  3. App clients:

    1. gateway-service

    2. internal-client

    3. external-integration-client

App Name

App Type

Client Secret Required

Authentication Flows

Allowed Callback URLs

OAuth 2.0 Grant Types

OpenID Connect Scopes

Custom Scopes

gateway-service

Confidential Client

✔️

  • Default

<MOC URL>/login/oauth2/code/gateway-service

  • Authorization Code

  • email

  • openid

  • profile

internal-client

✔️

external-integration-client

  • No labels