Testing Professor
Testing ProfessorMulti-Cloud Guidebook · AWS
All services

Security, Identity & Compliance

Amazon Cognito

User sign-up, sign-in, and access control for web/mobile apps.

Official docs

Overview

Cognito provides User Pools (identity directory with MFA, OAuth/OIDC) and Identity Pools (federate to AWS credentials).

When to use it

  • B2C/B2B auth without building from scratch
  • Federated login (Google, SAML, OIDC)

Setup

  1. Create User Pool → app client (no secret for SPA).
  2. Configure password policy, MFA, hosted UI domain.
  3. Optionally create Identity Pool to map users → IAM roles.

How to use

Hosted UI URL

https://<domain>.auth.<region>.amazoncognito.com/login?client_id=…&response_type=code&redirect_uri=…

QA use cases

  • Use the AdminCreateUser API to provision a pool of test users per test run, then delete on teardown.