Cognito User Pool Vs Identity Pool

User pools are for authentication identify verification.

Cognito user pool vs identity pool. Identity pools are for authorization access control. You can use identity pools to create unique identities for users and give them access to other aws services. We can definitely use it as an api authorizer but only if it s exposed through aws api gateway. Cognito user pool handles all of this and as a developer you just need to use the sdk to retrieve user related information.

Say you wanted to allow a user to have access to your s3 bucket so that they could upload a file. Your users could also sign in through social identity. A user pool is a user directory in amazon cognito. This gives you the ability to authenticate users with your user pool and assign them an iam role using an identity pool.

Identity pools are used for user authorization. This is where cognito user pools would come in. Since a cognito user pool is itself an identity provider you can configure your identity pool to use your app s own user pool as one of its identity providers. An identity pool is a store of user identity data specific to your account.

User pools provides us with a json web token so we can use it as an authorizer for any existing api while with identity pools we get temporary aws credentials which means that is meant to utilize aws resources. Cognito identity pool or cognito federated identities on the other hand is a way to authorize your users to use the various aws services. To create a new identity pool in the console. With a user pool your users could sign in to your web or mobile app through amazon cognito.

Cognito federated identities or identity pool. Cognito identity pool or cognito federated identities on the other hand is a way to authorize your users to use the various aws services. Amazon cognito identity pools provide temporary aws credentials for users who are guests unauthenticated and for users who have been authenticated and received a token. You can create unique identities for your users and federate them with your identity providers.

With a user pool your app users can sign in through the user pool or federate through a third party identity provider idp.