ellaRT
Reputation: 1366
Third party access using AWS Cognito M2M auth flow
We currently use Cognito user pools for traditional web application authentication and considering client credentials grant flow to provide external companies access to our APIs.
My understanding is we will have to create app clients for third parties and provide them with id and secret so they can request access tokens.
I wanted to confirm if this is an appropriate use case? And its not just for internal apps to communicate with each other? Also, is it advisable to share the token endpoints or provide some sort of proxy to that?
Upvotes: 0
Views: 48
Answers (0)
Related Questions
- What is the purpose of the implicit grant authorization type in OAuth 2?
- Amazon Cognito Identity SDK for JavaScript support Authorization Code Grant flow?
- AWS Cognito refresh token fails on secret hash
- What is the REST (or CLI) API for logging in to Amazon Cognito user pools
- Does AWS Cognito Token endpoint origin have to match Auth endpoint origin?
- obtaining AWS credentials using cognito in python boto