SAML IdP - 作为身份提供商的 AWS Cognito/IAM [英] SAML IdP - AWS Cognito/IAM as an Identity Provider

问题描述

我知道 Auth0 等服务既可以充当 SAML IdP，也可以与第三方 IdP 集成.看起来 Cognito 只能作为服务提供商与其他第三方 IdP 集成，它实际上可以扮演 IdP 的角色.

I know services such as Auth0 can act as both SAML IdPs and integrate with third party IdPs. It would seem that Cognito can only integrate with other third party IdPs as a service provider, it can actually perform the role of an IdP.

用例是我们的应用程序在 Cognito 中创建用户.我们希望使用可以与 SAML IdP 集成的第三方应用程序来支持 SSO.Cognito 可以做到这一点，还是我们需要使用 Auth0 之类的东西?

The use case is we have our apps creating users in Cognito. We'd like to use a third party application which can integrate with a SAML IdP to support SSO. Is this possible with Cognito or would we need to use something like Auth0?

推荐答案

目前，Cognito 是 OIDC IdP 而不是 SAML IdP.如果应用程序支持 OIDC，您可以使用 Cognito 连接到该应用程序.

Currenlty, Cognito is an OIDC IdP and not a SAML IdP. If an application supports OIDC, you can use Cognito to connect to that.

我们最近在公共测试版中发布了一项新功能，允许您从另一个 SAML IdP 联合身份.这是博客条目https://aws.amazon.com/blogs/mobile/amazon-cognito-user-pools-supports-federation-with-saml/

We have recently released in public beta a new feature that allows you to federated identity from another SAML IdP. Here's the blog entry https://aws.amazon.com/blogs/mobile/amazon-cognito-user-pools-supports-federation-with-saml/

我们会考虑您对未来版本的要求.

We will consider your request for future releases.

这篇关于SAML IdP - 作为身份提供商的 AWS Cognito/IAM的文章就介绍到这了，希望我们推荐的答案对大家有所帮助，也希望大家多多支持IT屋！