Cognito

Question 1

What is Amazon Cognito?

Answer 1

Amazon Cognito is the solution for the authentication and authorization needs of applications.

Amazon Cognito provides authentication, authorization, and user management for your web and mobile apps. Your users can sign in directly to your applications with a username and password. Alternatively, they can sign in through a third party such as Facebook, Google, Apple, etc.

Question 2

What are the two main components of Amazon Cognito?

Answer 2

User pools and identity pools.

Question 3

User pools create access to your applications. True or false?

Answer 3

TRUE

Question 4

Identity pools allow access to AWS resources. True or false?

Answer 4

TRUE

Question 5

What is the format and three sections of Amazon Cognito tokens?

Answer 5

JSON Web Token (JWT)

1. Header - algorithm (alg) and keyid (kid)
2. Payload - encoded info
3. Signature - calculated using header and payload

Question 6

Amazon Cognito user pools exchange authentication tokens for AWS credentials. True or false?

Answer 6

FALSE

Identity pools exchange authentication tokens for AWS credentials.

Question 7

To define the permissions for members of a group, you can assign an AWS identity and Access Management (IAM) role to an Amazon Cognito group. True or false?

Answer 7

TRUE

Question 8

The JSON Web Token (JWT) payload section contained encoded information about the claim of the key. True or false?

Answer 8

TRUE

Question 9

When using third-party federation, developers must use identity pools. True or false?

Answer 9

FALSE

Third-party federation is supported for both user pools and identity pools.

Question 10

Amazon Cognito identity pools can provide credentials for unauthenticated users.

Answer 10

TRUE

Guest access is allowed.