It would be helpful if you can elaborate the question. Custom attributes will be present in ID token if it is set as readable in the app client attribute permissions. You can refer this documentation for more details docs.aws.amazon.com/cognito/latest/developerguide/user-pool-settings-attributes.html#user-pool-settings-attribute-permissions-and-scopes
Can you do a video on Azure Multi-Tenent with Personal account and AWS Cognito. It seems like cognito doesn't support dynamic issuer which is provided by Azure.
Yes, it is not supported as mentioned in this blog www.thelambdablog.com/azure-ad-multi-tenancy-issue-in-aws-cognito/. It won't work with AzureAD multi-tenant.
It would be helpful if you can elaborate the question. Custom attributes will be present in ID token if it is set as readable in the app client attribute permissions. You can refer this documentation for more details docs.aws.amazon.com/cognito/latest/developerguide/user-pool-settings-attributes.html#user-pool-settings-attribute-permissions-and-scopes
Thanks for the video, i've tried to keep the same steps, but my lambda trigger dont invoke, when i generate the token from postman witth domain-cognito/oauth2/token, I don't know if there's any policy missing
First thing to check is the list of triggers in "User pool properties" tab > Lambda triggers. Next thing to check is the Trigger type "Pre token generation Lambda trigger". If the wrong trigger type is configured, it won't get invoked at the right time. Last thing to check is the policy "Resource based permissions" for the lambda function. I think if you configure the Lambda trigger from AWS console for Cognito user pool, it will automatically add the required permissions.
@@medamazigh I'm not being rude; it's sarcasm. I spent time opening the video only to realize the sound quality is poor. If someone wants their videos to be appreciated, they should work on improving the quality. Otherwise, they should be prepared for various kinds of comments ¯\_(ツ)_/¯
Please subscribe to this channel for regular updates ua-cam.com/channels/EEayyyCrJO94FYlzF0NLTg.html
Thank You for the support.
can we add these two attribute from the attribute present in the cognito user details ??
It would be helpful if you can elaborate the question. Custom attributes will be present in ID token if it is set as readable in the app client attribute permissions. You can refer this documentation for more details docs.aws.amazon.com/cognito/latest/developerguide/user-pool-settings-attributes.html#user-pool-settings-attribute-permissions-and-scopes
Would this be the right approach if I then wanted to map roles from my Azure AD app? (Azure Entra ID)
Yes, you can use this approach to map the roles.
Can you do a video on Azure Multi-Tenent with Personal account and AWS Cognito. It seems like cognito doesn't support dynamic issuer which is provided by Azure.
Yes, it is not supported as mentioned in this blog www.thelambdablog.com/azure-ad-multi-tenancy-issue-in-aws-cognito/. It won't work with AzureAD multi-tenant.
can we add these two attribute direct from the userpool data custom attribute??
It would be helpful if you can elaborate the question. Custom attributes will be present in ID token if it is set as readable in the app client attribute permissions. You can refer this documentation for more details docs.aws.amazon.com/cognito/latest/developerguide/user-pool-settings-attributes.html#user-pool-settings-attribute-permissions-and-scopes
Thanks for the video, i've tried to keep the same steps, but my lambda trigger dont invoke, when i generate the token from postman witth domain-cognito/oauth2/token, I don't know if there's any policy missing
First thing to check is the list of triggers in "User pool properties" tab > Lambda triggers. Next thing to check is the Trigger type "Pre token generation Lambda trigger". If the wrong trigger type is configured, it won't get invoked at the right time. Last thing to check is the policy "Resource based permissions" for the lambda function. I think if you configure the Lambda trigger from AWS console for Cognito user pool, it will automatically add the required permissions.
I think it is better to use a good microphone instead of a radio transmitter. Over.
Thanks for the feedback. I will look into this.
i think it's better to be polite instead of being rude for nothing, no one forced you to watch the video.
@@medamazigh I'm not being rude; it's sarcasm. I spent time opening the video only to realize the sound quality is poor. If someone wants their videos to be appreciated, they should work on improving the quality. Otherwise, they should be prepared for various kinds of comments ¯\_(ツ)_/¯