Reputation: 6531
Difference between "Identity providers" and "authentication providers"
I don't get the difference between the User Pools > Identity providers and
Federated Identities > Authentication providers.
Can someone explain?
Upvotes: 0
Views: 821
Answers (1)
Reputation: 2880
Identity pools (Federated identities) allow you to grant users authenticated by third parties (e.g. login with Google) temporary IAM credentials to use you AWS resources in a limited way. Identity pools are free of cost and you only pay for the resources your users use via the IAM credentials.
User pools allow you to store your own users, they can sign up directly to the user pool and not have to use a third party provider like Google or Facebook. Confusingly user pools also have a 'federation' option (Identity providers) but this will actually create externally federated users in the pool. User pools provide OpenID tokens (access, id, refresh), not IAM credentials, which you can use with your own endpoints (ec2, fargate, api-gateway). User pools have costs associated with them based on the active users per month.
Upvotes: 1
Related Questions
- AWS cognito: What's the difference between Access and Identity tokens?
- What's the difference between AWS SSO and AWS Cognito?
- Difference between AWS IAM "Identity" and "Entity"
- aws service difference between cognito user pool and federated identity
- How to detect which Identity Provider used for login?
- Difference between authenticated and unauthenticated access in cognito identity pool?
- AWS Cognito - help understanding authenticated vs. unauthenticated access
- AWS Cognito with and without custom signup and sign in?
- What is a Cognito IdentityId?
- Differences between aws-java-sdk-cognitoidp vs aws-java-sdk-cognitoidentity?