Web Identity Federation and Cognito Flashcards

1
Q

What is Web Identity Federation?

A

Web Identity Federation lets you give your users access to AWS resources after they have successfully authenticaed with a web-based identity provider like Amazon, Facebook, or Google.

After successfully authenticating, the user gets an authentication code from the WebID provider, which they can trade for temporary AWS security credentials

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
2
Q

What is Amazon Cognito?

A

Amazon Cognito is a Web Identity Federation service from Amazon which handles interactions between your applications and the WebID provider (you don’t need to write the code to do this)

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
3
Q

What is the recommended approach for Web Identity Federation using accounts like Facebook?

A
  1. User authenticates with Facebook
  2. Facebook will send back an authentication token
  3. User send authentication token to Cogntio
  4. Cognito responds, and grants the appropriate access
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
4
Q

What does JWT stand for?

A

JSON Web Token

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
5
Q

What is the key difference between Cognito User Pools and Identity Pools?

A
  • Cognito User Pools are for Authentication
  • Identity Pools are for Authorization
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
6
Q

What does OIDC stand for?

A

OpenID Connect

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
7
Q

Does AWS Cognito support OIDC identity providers?

A

Yes

How well did you know this?
1
Not at all
2
3
4
5
Perfectly