Using the Amazon Cognito domain for the hosted UI
After setting up an app client, you can configure the address for your sign-up and sign-in webpages. You can use the hosted Amazon Cognito domain with your own domain prefix.
Note
To augment the security of your Amazon Cognito applications, the parent domains of user pool
endpoints are registered in the Public Suffix
List (PSL)
User pool endpoint parent domains take the following formats.
auth.
Region
.amazoncognito.com auth-fips.Region
.amazoncognito.com
To add an app client and an Amazon Cognito hosted domain with the Amazon Web Services Management Console, see Creating an app client.
Prerequisites
Before you begin, you need:
-
A user pool with an app client. For more information, see Getting started with user pools.
Step 1: Configure a hosted user pool domain
You can use either the Amazon Web Services Management Console or the Amazon CLI or API to configure a user pool domain.
Step 2: Verify your sign-in page
-
Verify that the sign-in page is available from your Amazon Cognito hosted domain.
https://
<your_domain>
/login?response_type=code&client_id=<your_app_client_id>
&redirect_uri=<your_callback_url>
Your domain is shown on the Domain name page of the Amazon Cognito console. Your app client ID and callback URL are shown on the App client settings page.