Reputation: 1362
Create cognito admin user on server
I am using aws cognito for authenticating and on backend side I need something like admin account to connect with cognito and check user attributes. I found that code below should works, but I got user is not authorized to perform not authorized to perform on ...
How can I create user with such privileges ?
`
let cisp = new AWS.CognitoIdentityServiceProvider()
var params = {
AuthFlow: 'ADMIN_NO_SRP_AUTH',
ClientId: appConfig.ClientId,
UserPoolId: appConfig.UserPoolId,
AuthParameters: {
USERNAME: xxxxxxxxxxxxxxxxx,
PASSWORD: yyyyyyyyyyyyyyyyy
}
}
cisp.adminInitiateAuth(params, (err, data) => {
...
}
`
Upvotes: 0
Views: 1753
Answers (1)
Reputation: 19728
You can use the AWS cognito SDK and call the following method to get information about the identity.
describeIdentity(params = {}, callback) ⇒ AWS.Request
If your code runs in AWS EC2, ECS or Lambda, you can attach a IAM role that has access to Cognito so that you code can access the Cognito API through SDK.
Else you need to create a IAM user with Cognito permissions and use AccessKey and Secret to authenticate the SDK API calls impersonating the user.
Upvotes: 1
Related Questions
- Aws cognito create user by admin nodejs
- How to set the password of a cognito user as the admin?
- AWS cognito authorization
- How can I add cognito username/password to authenticate ALB?
- Getting - UserNotFoundException - while calling adminCreateUser - AWS Cognito
- AWS Cognito User Management
- admin-create-user command doesn't work properly
- AWS Cognito - authenticate as a user
- AWS Cognito: unknown error when logging in the admin created user for the first time
- AWS Cognito Admin Control