Following the OAuth 2.0 standard, ModelOp Center requires the following Amazon Cognito configurations for a successful integration:
User pool
Resource server:
rs/modelop_client
App clients:
gateway-service
internal-client
external-integration-client
Proposed | App Type | Client Secret Required | Authentication Flows | Allowed URLs | OAuth 2.0 Grant Types | OpenID Connect Scopes | Custom Scopes |
---|---|---|---|---|---|---|---|
gateway-service | Confidential | ✔️ |
| Allowed callback URLs:
Allowed sign-out URLs:
| Authorization |
| |
internal-client | Confidential | ✔️ |
| Client |
| ||
external-integration-client | Public |
| Allowed callback URLs:
| Implicit |
|
*Default selection includes the following authentication flows:
ALLOW_REFRESH_TOKEN_AUTH
ALLOW_CUSTOM_AUTH
ALLOW_USER_SRP_AUTH
Required User Attributes
Family name
Given name
User name
Email
Group(s)
Amazon Cognito Guide
For detailed instructions on how to setup Amazon Cognito with the required configurations, please follow the Amazon Cognito: How-to guide.