Notes In Identity As A Service

Notes In Identity As A Service

On this post, I will add my notes while using Identity as a Service e.g. AWS Cognito, OKTA, Auth0 etc

ID as a service, you still have to write complete user management by wrapping part of Cognito. this Cognito reduce your token management, MFA and storing user details as ids etc , and help on defining IAM based accessing to the other AWS components

In China AWS doesn’t work, so Okta or Tencent or any other service etc, Another thing, If any enterprise who do not want to use any cloud, just want to keep everything in premises

Do not treat Identity as a service to User Management, Roles etc. IaaS is a part of user account management.

Few screenshots of AWS Cognito :

AWS Cognito
AWS Cognito
AWS Cognito
AWS Cognito
AWS Cognito
AWS Cognito


Github references :

Implements authentication against AWS Cognito the same way as the client browser does (so you don’t need the AWS IAM credentials to call the API).

Go Blob Storage FTP Server
AWS, Go, Docker Blob Storage File Server

How do you expose static files in the cloud? Learn the architecture of containerized FTP Server built in GoLang. The FTP server will feature a Docker container, blob storage API access to AWS S3 and Cognito for OAuth authentication.

CLI Tools to manage servers and secure connections to them, have cognito

Cognito Auth is a Go package for authenticating with AWS Cognito from the command line, retrieving temporary, limited-privilege credentials for AWS Identity and Access Management (IAM).


This function handles exchanging the Auth flow token for valid IDP tokens from AWS Cognito

This application can be used to give users the ability to upload files to non-public buckets in AWS S3 without provisioning IAM credentials.

The application leverages AWS Cognito User and Identiy pools to do so. This means a Cognito User Pool associated with an Identity pool is required and the Ids of said resources should be passed to the parameters of the application.

// AWSCognito methods interface
type AWSCognito interface {
Init() error
SecretHash(string) string
SignUp(string, string, string, string) (*cogIdp.SignUpOutput, error)
SignIn(string, string) (*cogIdp.InitiateAuthOutput, error)
GetUser(string) (*cogIdp.AdminGetUserOutput, error)
ConfirmSignUp(string) (*cogIdp.ConfirmSignUpOutput, error)
ValidateToken(string, map[string]JWKKey) error
ForgotPassword(string) (*cogIdp.ForgotPasswordOutput, error)
ConfirmForgotPassword(string, string, string) (*cogIdp.ConfirmForgotPasswordOutput, error)
ChangePassword(string, string, string) (*cogIdp.ChangePasswordOutput, error)

A language-agnostic Cognito client for doing user authentication in your app with AWS Cognito. This project is a spin-off from one of my personal projects that have Web, iOS, and Android app clients. I thought this would be useful to those who have similar needs as my project.


AWS Cognito + Lambda(golang) + Dynamodb + React based chat application with WebRTC Video Calling support

Golang Authentication With AWS Cognito – Complete

Leave a Reply

Fill in your details below or click an icon to log in: Logo

You are commenting using your account. Log Out /  Change )

Facebook photo

You are commenting using your Facebook account. Log Out /  Change )

Connecting to %s