Amazon Cognito | Add User Sign-up & Sign-in to your mobile and web apps Flashcards
Do I have to use the AWS Mobile SDK?
Add User Sign-up & Sign-in to your mobile and web apps
Amazon Cognito | Security, Identity & Compliance
No. Cognito exposes its control and data APIs as web services. You can implement your own client library calling the server-side APIs directly.
Can I have my own identity provider to support user sign-up and sign-in?
Add User Sign-up & Sign-in to your mobile and web apps
Amazon Cognito | Security, Identity & Compliance
Yes, you can easily and securely add sign-up and sign-in functionality to your apps with Cognito Identity. Your users can sign-up and sign-in using email, phone number, or user name. You can also implement enhanced security features, such as email verification, phone number verification, and multi-factor authentication. Cognito Identity also enables you to customize workflows by, for example, adding app-specific logic to user registration for fraud detection and user validation through AWS Lambda. To learn more, visit our docs.
What is a User Pool?
Add User Sign-up & Sign-in to your mobile and web apps
Amazon Cognito | Security, Identity & Compliance
A User Pool is your user directory that you can configure for your web and mobile apps. A User Pool securely stores your users’ profile attributes. You can create and manage a User Pool using the AWS console, AWS CLI, or AWS SDK.
What user profile information is supported by Cognito Identity?
Add User Sign-up & Sign-in to your mobile and web apps
Amazon Cognito | Security, Identity & Compliance
Developers can use either standard OpenID Connect-based user profile attributes (such as user name, phone number, address, time zone, etc.) or customize to add app-specific user attributes.
Can I enable my application’s users to sign up or sign in with an email address or phone number?
Add User Sign-up & Sign-in to your mobile and web apps
Amazon Cognito | Security, Identity & Compliance
Yes, you can use the aliasing feature to enable your users to sign up or sign in with an email address and a password or a phone number and a password. To learn more, visit our docs.
Can I set up password policies?
Add User Sign-up & Sign-in to your mobile and web apps
Amazon Cognito | Security, Identity & Compliance
Yes, you can set up password policies, such as strength of password and character type requirements, when setting up or configuring your user pool.
Can I verify the email addresses and phone numbers of my application’s users?
Add User Sign-up & Sign-in to your mobile and web apps
Amazon Cognito | Security, Identity & Compliance
Yes, with Cognito Identity you can require your users’ email addresses and phone numbers to be verified prior to providing them access to your application. During sign-up, a verification code will be sent to the user’s phone number or email address, and the user must input the verification code to complete sign-up and become confirmed.
Does Cognito Identity support SMS-based multi-factor authentication (MFA)?
Add User Sign-up & Sign-in to your mobile and web apps
Amazon Cognito | Security, Identity & Compliance
Yes, you can enable the end users of your application to sign in with SMS-based MFA. With SMS-based MFA enabled, your users will be prompted for their password (the first factor—what they know), and for a security code that can only be received on their mobile phone via SMS (the second factor—what they have).
Is it possible to customize user sign-up and sign-in workflows?
Add User Sign-up & Sign-in to your mobile and web apps
Amazon Cognito | Security, Identity & Compliance
Yes, you can customize sign-up and sign-in by adding app-specific logic to the user sign-up and sign-in flows using AWS Lambda. For example, you can create AWS Lambda functions to identify fraud or perform additional validations on user data. You are able to trigger developer-provided Lambda functions at pre-registration, at post-confirmation, at pre-authentication, during authentication to customize the challenges, and at post-authentication. You can also use Lambda functions to customize messages sent as part of email or phone number verification and multi-factor authentication.
Can I remember the devices associated with my application’s users in a Cognitio user pool?
Add User Sign-up & Sign-in to your mobile and web apps
Amazon Cognito | Security, Identity & Compliance
Yes, you can opt to remember devices used to access your application, and you associate these remembered devices with your application’s users in a Cognito user pool. You can also opt to use remembered devices to supress second factor challenges for your users when you have set up multi-factor authentication.
