- Newest
- Most votes
- Most comments
Hello,
Cognito User Pool API uses characters that are typically html-escaped in the temporary passwords creates such as '>' and '&' . Accordingly, when Cognito User Pool sends these temporary passwords over email in invitation emails, it does a html-escape of the temporary password string, If the temporary password contain > or & , they will be replaced by 'gt' and 'amp'. I would like to inform you that the internal team is already aware of this issue and is currently working on this on priority. Thank you for providing your valuable feedback on the service.
Currently, not only the temporary password specified by the customer but also the temporary password automatically generated by Cognito may contain characters escaped by HTML. Therefore, we apologize for any inconvenience this may cause, and we would appreciate it if you could add a process to unescape/decode the HTML of the temporary password in the custom email sender's Lambda trigger.
Wish you an Awesome day ahead and stay safe !
Thank you
Relevant content
- asked 4 years ago
- asked 5 years ago
- AWS OFFICIALUpdated 2 years ago
- AWS OFFICIALUpdated a year ago
- AWS OFFICIALUpdated 3 years ago
- AWS OFFICIALUpdated 2 months ago