Cognito idp sign in with custom challenge ?

0

Is a custom auth challenge (like amplify signinwithredirect) possible when doing federated sign in using an IDP like google or linkedin? (define, create, verify..)

I'm trying it, and when I try google sign in, authentication succeeds without lambda being triggered.

I would like to challenge custom MFA (TOTP) while using signinwithredirect (amplify or others...)

Topics

Serverless Compute Front-End Web & Mobile Security, Identity, & Compliance

Tags

AWS Lambda AWS Amplify Amazon Cognito Amazon Cognito Federated Identities

Language

English

asked 2 months ago104 views

1 Answer

Newest
Most votes
Most comments

0

Cognito Hosted UI IdP Federated Login is aligned with OAuth2.0 spec. The MFA challenge shall be enabled at the IdP side, eg. google, in the case you described.

answered 2 months ago

Relevant content

Custom Auth Flow - Retry Challenge?
nub340
asked 4 years ago
ClientMetadata not present in custom challenge triggers
AWS-User-4676910
asked 2 years ago
Disabling Google login for a Cognito user once they signed-up using another external IdP
Harel Moshe
asked a month ago
Best Approach to use cognito with google federated IDP
Accepted Answer
AWS-User-0550007
asked 2 years ago
How do I set up Google as a federated identity provider in an Amazon Cognito user pool?
AWS OFFICIALUpdated 10 months ago
How do I get IdP-issued OIDC or social identity tokens for Amazon Cognito user pools?
AWS OFFICIALUpdated 2 months ago
How do I set up LinkedIn as a social identity provider in an Amazon Cognito user pool?
AWS OFFICIALUpdated 7 months ago
How do I resolve errors related to OIDC IdP federation in IAM?
AWS OFFICIALUpdated 4 months ago
How to use Amazon Polly to resolve common implementation challenges
EXPERT
Abhishek Soni
published 2 years ago
How to Rotate your External IdP Certificates in AWS IAM Identity Center (successor to AWS Single Sign-On) with Zero Downtime
EXPERT
Matt-B
published a year ago