Sign In to the Console
AWS CloudFormation
User Guide (API Version 2010-05-15)

AWS Documentation » AWS CloudFormation » User Guide » Template Reference » AWS Resource and Property Types Reference » Amazon Cognito Resource Types Reference » AWS::Cognito::IdentityPool » Amazon Cognito IdentityPool CognitoIdentityProvider

Amazon Cognito IdentityPool CognitoIdentityProvider

CognitoIdentityProvider is a property of the AWS::Cognito::IdentityPool resource that represents an Amazon Cognito user pool and its client ID.

Syntax

JSON

{
  "ClientId" : String,
  "ProviderName" : String,
  "ServerSideTokenCheck" : Boolean
}

YAML

ClientId: String
ProviderName: String
ServerSideTokenCheck: Boolean

Properties

ClientId

The client ID for the Amazon Cognito user pool.

Type: String

Required: No

ProviderName

The provider name for an Amazon Cognito user pool. For example, cognito-idp.us-east-2.amazonaws.com/us-east-2_123456789.

Type: String

Required: No

ServerSideTokenCheck

TRUE if server-side token validation is enabled for the identity provider’s token.

Once you set ServerSideTokenCheck to TRUE for an identity pool, that identity pool will check with the integrated user pools to make sure that the user has not been globally signed out or deleted before the identity pool provides an OIDC token or AWS credentials for the user.

If the user is signed out or deleted, the identity pool will return a 400 Not Authorized error.

Type: Boolean

Required: No

On this page: