authenticate users from 3 cognito user pools in single url domain

0

We have 3 user personas as mentioned below,

  1. B2B Client
  2. B2C Users
  3. Internal Users.

They have different web application to login with different urls and different set of use cases. So we have created a 3 different user pool and 3 different api gateway which will integrated with respective cognito user pool to validate the user login.

New use case: We have built a use case where all these 3 users needs to get into video conference app. We are planning to host in single domain like video.company.com. All 3 users can login into video app, we need to authorize each user with corresponding user pool.

In backend we can have one api gateway and have 3 cognito user pools attached to it to validate the token.

We use hosted cognito webapp for providing the login page to users. This hosted app will belong to only one cognito user pool.

We are thinking of few ways

  1. Is there a way to use one hosted login page to authenticate and get token from the one of the user pool ?
  2. Assume #1 is not at all possible, then we are forced to build a simple custom login page, is it possible to evaluate the login credentials across all 3 cognito user pools ? Any support from amplify library ?
  3. Assume #2 is not possible, we will show the role of the user in page, when user select the role, we will navigate them to corresponding login page. how do we validate whether the user is logged in or not from different sub domain ? Any code samples here will be helpful ?
  • Couldn't you just have the user indicate which group they belong in at the login page and use that to route the credential check to the appropriate pool?

답변 없음

로그인하지 않았습니다. 로그인해야 답변을 게시할 수 있습니다.

좋은 답변은 질문에 명확하게 답하고 건설적인 피드백을 제공하며 질문자의 전문적인 성장을 장려합니다.

질문 답변하기에 대한 가이드라인

관련 콘텐츠