I have a question about the integration of Cognito and API Gateway and I hope that you can help me with that. I am thinking of making an application in which I would like the authentication process with third parties (Facebook, Twitter ...), so I discard Cognito User Pool, then I have Cognito Identity Pool, but this is where my doubts grow.
Thanks for your help
How can I integrate it with API Gateway?
Should I use API Gateway Custom Authorizer to manage the token generated by Cognito?
If I do not use the Custom Authorizer, How can I restrict access to the API Methods based on the user profile (admin, client ...)?
Edit: maybe this will help http://www.slideshare.net/AmazonWebServices/securing-serverless-workloads-with-cognito-and-api-gateway-part-i-aws-security-day
If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!
Donate Us With