Reputation: 2039
Authenticate users using AWS Cognito + Azure AD + Facebook
I'm trying to develop a React application that will allow users to login with their Azure AD accounts and their Facebook accounts.
The first thing is that I didn't understand about the 2 tabs "User Pools and Federation Identities". Do I need both to get it done or just the User Pools is enough?
My goal is just the authentications. I don't want to allow users to access any AWS service. I just want the authentication token.
I already got the user logged in via facebook using the Federation Identities and the Facebook SDK, but I don't know how to keep the user data saved after getting the token from facebook auth. Also is it correct to use the facebook SDK or should I use Cognito to take care of all authentication methods for me?
Upvotes: 1
Views: 1281
Answers (1)
Reputation: 3511
Do I need both to get it done or just the User Pools is enough?
No. Userpool is more than enough if you just need authentication and do not need to use AWS services.
I already got the user logged in via facebook using the Federation Identities and the Facebook SDK, but I don't know how to keep the user data saved after getting the token from facebook auth.
What user data do you need to save. If you want User's profile data to be saved in Cognito, you need to use Cognito Userpool & not Federated Identities. Add Facebook directly to Userpool. Upon using Facebook login, a user is auto-created in the userpool based on all user data available in the token. See this doc on how to add Facebook to a userpool directly.
Also is it correct to use the facebook SDK or should I use Cognito to take care of all authentication methods for me?
Depends on your use-case. If you just want to add authentication to an app, the best way would be to Add Facebook to a Userpool directly, create an app client in the userpool for your application; enable Facebook for that app client & use Cognito Userpool's built-in UI to login using Facebook. This feature (built-in UI) is called App Integration. After successful Facebook login, a valid token will be sent to your app. Do note that the token sent to your app would be from Cognito.
Client--> Userpool built-in UI --> Redirect to Facebook --> Login using username +password --> Facebook sends its token to Cognito ( https://your-user-pool-domain/oauth2/idpresponse)-->Userpool vends its own token & redirects to the URL mentioned in the redirect_uri.
Upvotes: 1
Related Questions
- Using Facebook login with AWS Cognito User Pool
- Example for Authenticating using AWS Cognito (boto3)
- Creating cognito Facebook identity provider?
- AWS Cognito login using username and Facebook at the same time?
- How to authenticate API Gateway calls with Facebook?
- Integrate Facebook login with AWS Cognito User Pool
- How do you allow new user registration and sign up through a third party, like Facebook, using AWS Cognito?
- AWS cognito: sign in with usernam/password OR facebook
- How to permanently log in users with aws cognito on app like Facebook app
- Multiple Facebook Applications as Identity Provider for AWS Cognito Federated Identities