Identity pools third-party identity providers
With Amazon Cognito identity pools, you can integrate with a variety of external identity providers (IdPs) to provide temporary Amazon credentials through federated authentication in your application. By configuring your identity pool to work with these external IdPs, you can authorize access to back-end Amazon resources for your users with authentication by Amazon Cognito user pools, social providers, OIDC providers, or SAML providers. This section covers the steps to set up and integrate IdPs with your Amazon Cognito identity pool.
Using the logins
property, you can set credentials received from an identity
provider (IdP). You can also associate an identity pool with multiple IdPs. For example, you can
set both the Facebook and Google tokens in the logins
property to associate the
unique Amazon Cognito identity with both IdP logins. The user can authenticate with either account, but
Amazon Cognito returns the same user identifier.
The following instructions guide you through authentication with the IdPs that Amazon Cognito identity pools support.