Hello,

From the description of the issue I understand that you wish to know if 'Password Grant' is one of the supported flows in Cognito or not.

I would like to mention that at the moment Cognito does not support the 'Password Grant' flow. In this flow, the resource owner password credentials (i.e., username and password) can be used directly as an authorization grant to obtain an access token. As in the flow, the credentials are used directly so for security concerns the flow is not currently supported. The flow should only be used when there is a high degree of trust between the resource owner and the client (e.g., the client is part of the device operating system or a highly privileged application), and when other authorization grant types are not available (such as an authorization code). Hence, AWS Cognito does not currently natively support the password grant type in OAuth2. Instead, Cognito uses SRP (Secure Remote Protocol) to authenticate users which is a more secure method.

In addition to that, please keep an eye on the What's New Page[1] and AWS Blogs[2] to know more about future releases.

I hope that the above information helps to address your concerns

Reference links:

[1]. What's New: https://aws.amazon.com/new/

[2]. AWS Blogs: https://aws.amazon.com/blogs/aws/