I'm quite new at AWS and use mostly the console to build my project.
I have placed a containerized Streamlit web app in an AWS EC2/ECS instance beyond an ALB (https listener with session timeout 3960 secs.) and let users access it through Cognito authentication with Authorization code grant. Everything works fine, users are allowed to the app.
Now, I would like users to be authomatically logged out after 60 minutes and redirected to the signout URL.
I've set the refresh token expiration at 60 min., the access token and ID token expiration at 5 min. However, the backend continues delivering data to logged in users even after 60 minutes, so my idea doesn't work.
Then, I've implemented a Lambda function with admin_user_global_sign_out but it doesn't work either: users do still get data from the backend.
I'm wondering what I shall do and looking for a solution that I can implement using the AWS console so that the procedure is clear to me.
Thank you for any help.