# Introduction to Amazon Cognito <br> ## Amazon Cognito Workshop <br> **Prerequisites** We will be using the Postman client for some of the lab modules, the software can be downloaded using the link below: https://www.postman.com/downloads/ **Workshop Instructions** Please follow the link below for the workshop instructions. https://catalog.us-east-1.prod.workshops.aws/workshops/baf65b77-f97d-47b0-972d-d676688ac78d/en-US **Event Engine URL:** https://dashboard.eventengine.run **AWS Region:** Sydney (ap-southeast-2) Once logged into the Event Engine dashboard, enter the hash and click **Accept Terms & Login**. Choose **Email One-Time Password (OTP)** and specify either your @landservices.com.au or @relational.com.au email address to receive your temporary password. <br> ### Workshop notes **Lab 1 and Lab 2** If prompted, don't enable the new user interface. While the new interface is cleaner and an improvement over the older version, the lab instructions were created using the old interface and will be easier to follow. **Lab 2 - User Pools SDK** When using JFiddle, click **Run** in the top left hand corner to execute your code (this is needed whenever you make updates as you progress through the lab) **Lab 2 - Making API calls with token** At the end of this section, to view the URLs being called and the HTTP headers flight, use the **Network** tab of the developer tools in the browser you are using. (i.e. CTRL + SHIFT + I in Firefox and Chrome) **Lab 3 - Enrich user token with additional claims** Create your Lambda Function with NodeJS 14.x , other versions may work fine but I have tested against this version and know that it works. **Lab 2 - Adding fine-grained access control** Make sure to make the modifications described in the instructions on the role with **Auth_Role** in the name (for authenticated users) <br> ## Useful information and tools <br> **OAuth 2.0 and OpenID Connect (in plain English)** https://www.youtube.com/watch?v=996OiexHze0&t=2919 <br> **Understanding Amazon Cognito user pool OAuth 2.0 grants** https://aws.amazon.com/blogs/mobile/understanding-amazon-cognito-user-pool-oauth-2-0-grants/ <br> **Adding Google Social Sign-on to your Cognito User Pool** https://www.beabetterdev.com/2021/08/16/how-to-add-google-social-sign-on-to-your-amazon-cognito-user-pool/ <br> **How to implement password-less authentication with Amazon Cognito and WebAuthn** https://aws.amazon.com/blogs/security/how-to-implement-password-less-authentication-with-amazon-cognito-and-webauthn/ <br> **JSFiddle** JSFiddle is an online IDE service and online community for testing and showcasing user-created and collaborational HTML, CSS and JavaScript code snippets, known as 'fiddles'. https://jsfiddle.net <br> **JSON Web Token (JWT) Decoder** https://jwt.io