Streamline your mobile app sign-up experience with Amazon Cognito. In this session, we demonstrate how to use Cognito to build secure mobile apps without storing keys in them. Learn how to apply policies to existing Facebook, Google, or Amazon identities to secure access to AWS resources, such as personnel files stored in Amazon S3. Finally, we show how to handle anonymous access to AWS from mobile apps when there is no user logged in.
9. Manage authenticated and guest users across identity providers
Guest
Identity Management
Synchronize user’s data across devices and platforms via the cloud
Data Synchronization
Securely access AWS services from mobile devices and platforms
Secure AWS Access
Guest
Your own
Auth
MBL301
10. •Identity Pool: Pool of app users. Can be shared across apps.
•Identity: An individual user. Consistent across identity providers. Can be a guest user.
•Login: Identifier in a login provider
AWS Account
Dataset
Identity
Identity
Identity
Dataset
Login
Identity
Pool
1:60
1:n
0:n
11. Sign up for an AWS account and login to the AWS Management Console
Download and integrate the AWS Mobile SDK
Create an identity poolfor authenticated and unauthenticated users in the AWS Management Console
40. Your own Username
And Password
Your own user authentication system
Several apps prefer to have their own username and password instead of public identity providers for authentication.
Manage mappings easily
Cognito manages the mappings across login systems (public or private) using a unique Cognito ID
Easily integrate with existing systems
Implement GetOpenIdTokeForDeveloperIdentity() using our server-side SDKs like Java, Python, Ruby etc.
55. •AWS Mobile Home
http://aws.amazon.com/mobile
•AWS Mobile Blog
http://mobile.awsblog.com
•Twitter
@awsformobile
•Forums
http://forums.aws.amazon.com
•StackOverflowhttp://stackoverflow.com/tags/amazon-cognito
•GitHub
http://github.com/aws/
http://github.com/awslabs/
56. Please give us your feedback on this session.
Complete session evaluations and earn re:Invent swag.
http://bit.ly/awsevals