SAML IdP-作为身份提供者的AWS Cognito / IAM [英] SAML IdP - AWS Cognito/IAM as an Identity Provider

问题描述

我知道诸如Auth0之类的服务既可以充当SAML IdP，又可以与第三方IdP集成。看来Cognito只能与其他第三方IdP集成为服务提供者，它实际上可以扮演IdP的角色。

I know services such as Auth0 can act as both SAML IdPs and integrate with third party IdPs. It would seem that Cognito can only integrate with other third party IdPs as a service provider, it can actually perform the role of an IdP.

用例是我们的应用在Cognito中创建用户。我们希望使用可以与SAML IdP集成以支持SSO的第三方应用程序。 Cognito是否有可能，还是我们需要使用Auth0之类的东西？

The use case is we have our apps creating users in Cognito. We'd like to use a third party application which can integrate with a SAML IdP to support SSO. Is this possible with Cognito or would we need to use something like Auth0?

推荐答案

Currenlty，Cognito是OIDC IdP，而不是SAML IdP。
如果应用程序支持OIDC，则可以使用Cognito进行连接。

Currenlty, Cognito is an OIDC IdP and not a SAML IdP. If an application supports OIDC, you can use Cognito to connect to that.

我们最近在公开测试版中发布了一个新的允许您从另一个SAML IdP联合身份的功能。这是博客条目
https://aws.amazon.com/blogs/mobile/amazon-cognito-user-pools-supports-federation-with-saml/

We have recently released in public beta a new feature that allows you to federated identity from another SAML IdP. Here's the blog entry https://aws.amazon.com/blogs/mobile/amazon-cognito-user-pools-supports-federation-with-saml/

我们将考虑您对将来版本的要求。

We will consider your request for future releases.

这篇关于SAML IdP-作为身份提供者的AWS Cognito / IAM的文章就介绍到这了，希望我们推荐的答案对大家有所帮助，也希望大家多多支持IT屋！