1 Answer
- Newest
- Most votes
- Most comments
1
First, you should not use the ID Token to consume an API but the Access Token.
Second, as you use the Identity Token authentication method, you must has configured the Token validation
field in the Cognito authorizer which should match the aud
claim of the identity token [client id value] issued by the first user pool. As Client id value as unique per user pool, the identity token issued by the second user pool will never have this aud
claim set to the right value and therefore will always fail the check.
answered 2 years ago
Relevant content
- Accepted Answerasked 7 months ago
- Accepted Answerasked 2 years ago
- AWS OFFICIALUpdated 2 years ago
- AWS OFFICIALUpdated 3 months ago
- AWS OFFICIALUpdated 2 years ago
- AWS OFFICIALUpdated 4 months ago