Hello Mykolas, unfortunately I have not had time to continue or update this boilerplate as I am working full-time at my startup RentHero. I really want to come back and re-make the entire series with a wider scope of AWS + Google Cloud integrations, so hopefully someday soon!
Thank you to everyone who liked/benefited from this series. Sorry if anything is out of date.
Hi Neta. AWS Cognito’s security for login is good enough that we can have reasonable assurance that incoming requests to the backend are coming from a real user (not a malicious source). However, the best practice may be to have Cognito login on the backend and serve up user details to each client request, with jwt verification in the process. In…
No, from my knowledge and looking through the setup options, AWS Cognito does not currently allow you to sign up users without confirmation. You can however manually confirm an unconfirmed user.
Not a problem, I am happy to help! Yes it is normal to get an access token even though you do not save the Facebook user’s email. I assume you are talking about the AWS Cognito — Federated Identities token, not the Facebook access token. To clarify, Federated Identities has a separate “user pool” from Cognito…
Hi Gonzalo, glad you found it useful! You can either save user-specific data as a Cognito custom attribute (like agentName in this tutorial), or simply use the Cognito account’s uid as the foreign key referenced in your database. In this tutorial I used the signup email as the uid, but that uid can be changed to whatever suits your needs.