How to expire Cognito App credentials

I have created a Cognito pool and an app. I want the ClientID and ClienrSecret to be expired in 10days from the date of creations. How do I do it?

Topics

Security, Identity, & Compliance

Tags

Amazon Cognito

Language

English

Rohit

asked 2 months ago179 views

1 Answer

Newest
Most votes
Most comments

Are these answers helpful? Upvote the correct answer to help the community benefit from your knowledge.

Accepted Answer

Hi,

According to the AWS documentation, you can't change secrets after you create an app, so you will need to create a new app with a new secret if you want to rotate the secret.

A cost effective solution could be to embed this logic into an AWS Lambda function and schedule the execution using EventBridge.

EXPERT

Mikel Del Tio

answered 2 months ago

Relevant content

how to increase expiration time of cognito identity pool credentials
muramasa
asked 2 years ago
How many Cognito user pools should I have in an APP?
Accepted Answer
cao95
asked 5 months ago
How do I get a client ID and Client secret for a user in Cognito
perage
asked 7 months ago
How do I change the expiration time of credential information retrieved from the Cognito ID Pool?
rePost-User-9734845
asked 2 years ago
How do I change the attributes of an Amazon Cognito user pool after creation?
AWS OFFICIALUpdated 2 years ago
How can I decode and verify the signature of an Amazon Cognito JSON Web Token?
AWS OFFICIALUpdated 2 years ago
How do I set up Google as a federated identity provider in an Amazon Cognito user pool?
AWS OFFICIALUpdated 10 months ago
How do I integrate a multi-Region and multi-account Amazon Cognito user pool with an Amazon Cognito identity pool?
AWS OFFICIALUpdated a year ago
How do I create a selection in AWS re:Post?
EXPERT
Gayathri Krishnamoorthy
published 6 months ago
How do I pause a queue and cancel thousands of jobs in that queue?
EXPERT
Bo_L
published 6 months ago