Logo Questions Linux Laravel Mysql Ubuntu Git Menu
HTML CSS JAVASCRIPT SQL PYTHON PHP BOOTSTRAP JAVA JQUERY R React Kotlin
 

Denying a Sign-up request in Cognito User Pools

Tags:

amazon-web-services

aws-lambda

amazon-cognito

The description of a Cognito User Pools Pre Sign-up Lambda Trigger is:

This trigger is invoked when a user submits their information to sign up, allowing you to perform custom validation to accept or deny the sign up request.

I want to deny a sign-up request based on a certain condition in my Lambda. The trigger parameters (reproduced from the docs below) seem to only support auto-verification and auto-confirmation: 

{
    "request": {
        "userAttributes": {
            "string": "string",
            ....
        },
        "validationData": {
            "string": "string",
            "string": "string",
             ....
        }
    },

    "response": {
        "autoConfirmUser": "boolean",
        "autoVerifyPhone": "boolean",
        "autoVerifyEmail": "boolean"
    }
}

How can I accept or deny a sign-up request based on the outcome of the Pre Sign-up Lambda Trigger?

like image 552
sfdz Avatar asked Jun 02 '18 21:06

sfdz

People also ask

What is the main difference between Cognito user pool and Cognito identity pool?

With a user pool, your app users can sign in through the user pool or federate through a third-party identity provider (IdP). Identity pools are for authorization (access control). You can use identity pools to create unique identities for users and give them access to other AWS services.

How do I set up authentication in Cognito?

Go to AWS Cognito service and click “Manage Identity Pools”. 2. Enter “Identity pool name”, expand the “Authentication providers” section and select “Cognito” tab. This is where the Cognito authentication provider will be registered with the Identity pool.

Does Cognito use to manage sign up and sign in functionality for mobile and web applications?

Amazon Cognito is designed for developers who want to add user management and sync functionality to their mobile and web apps. Developers can use Cognito Identity to add sign-up and sign-in to their apps and to enable their users to securely access their app's resources.

2 Answers

You can deny signup by throwing an exception, as shown here.

The exception message will be passed back to Cognito, and on to the client, in the form of a validation error with the message PreSignUp failed with error {exceptionMessage}..

like image 50
Grejdi Avatar answered Oct 12 '22 16:10

Grejdi

You can return a empty dict from the lambda to deny sign up request. Similarly you return the event value itself to accept the sign up request.

def lambda_handler(event, context):
    if denySignUp:
        return {}
    else:
        return event
like image 42
Manoj Acharya Avatar answered Oct 12 '22 15:10

Manoj Acharya
Sign in to Comment

Related questions

How to replace root ebs volume with another root ebs volume? [closed]
405 method not allowed error in AWS Cognito oauth2/token endpoint
Amazon S3 download authentication
AWS Secrets Manager can’t find the specified secret
How to create amazon sandbox account for developer purpose?
Max AWS SQS Queues
Can I add custom log files to the logs captured by elastic beanstalk's 'eb logs' command?
How to make a HTTP call reaching all instances behind amazon AWS load balancer?
Can I use AWS route 53 and Cloudflare at the same time?
How to publish sns to a specific endpoint?
Write R data as csv directly to s3
Using Java to establish a secure connection to MySQL Amazon RDS (SSL/TLS)
What's the difference between AWS SSO and AWS Cognito?
AWS load balancer and maintenance page
aws apigateway import-rest-api returns "Invalid base64" error
Amazon Ec2 FTP Write Permission [closed]
Error registering: NoCredentialProviders: no valid providers in chain ECS agent error
boto3 sessions and aws_session_token management
Determine IP Address of Client Behind Amazon ELB
How do you handle Amazon Kinesis Record duplicates?

Donate For Us

If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!