Cognito does not pass 'login_hint' to Federated SAML Identity Provider

On my initial request to https://(my domain).auth.(region).amazoncognito.com/oauth2/authorize I can see that the login_hint parameter is present on the query string. That value is unfortunately not present on the redirect to the SAML2 endpoint.

The result of this is that users must enter their e-mail address first on our site, and then a second time at their identity provider.

How do I specify this value on the /authorize request in such a way that it will be passed through?

Priyank
7 months ago
I have similar situation and facing same issue. Did you find any solution?

Topics

Security, Identity, & Compliance

Relevant content

Cognito - Auth0 SAML request
Accepted Answer
rePost-User-5939308
asked a year ago
Can i Identity/differentiate when a user signs in via a SAML identity providers and social identity providers with cognito user pools Federated identity provider?
David Melendez
asked 5 months ago
Are SAML + OIDC Cognito identity providers supported by Amplify on the web?
robsquires
asked 2 years ago
View SAML assertions passed to Cognito
rePost-User-0384052
asked a year ago
How do I set up Okta as a SAML identity provider in an Amazon Cognito user pool?
AWS OFFICIALUpdated 6 months ago
Does using the IAM Identity Center affect my IAM identities or federation configuration?
AWS OFFICIALUpdated a year ago
How do I set up a third-party SAML identity provider with an Amazon Cognito user pool?
AWS OFFICIALUpdated 5 months ago
How do I set up AD FS as a SAML identity provider with an Amazon Cognito user pool?
AWS OFFICIALUpdated 3 years ago
How to build a unified authorization layer for identity providers with Amazon Verified Permissions
EXPERT
JohnT
published 8 days ago
Use IAM tags to enable fine-grained federated authentication to Redshift Serverless
EXPERT
Poulomi_DG
published 10 months ago