Cognito idpresponse: error_description=username+attribute+mapping+required&error=invalid_request

Question

I have added two very similar OIDC id provider to cognito user pool with cdk.
Why is the ..amazoncognito.com/oauth2/idpresponse giving error_description=username+attribute+mapping+required&error=invalid_request ?

I have successfully added two OIDC and one SAML id provider.
username is not one of the attributes you can add - it's provided by default.

Answer

Maybe is something int he configuration of the setting or the register the URL pool Domain. Usually the third party sends the response and ID token.

For instance with Okta we have this example https://repost.aws/knowledge-center/cognito-okta-oidc-identity-provider

For more information can you take a look of https://docs.aws.amazon.com/cognito/latest/developerguide/cognito-user-pools-oidc-idp.html we have the process for OIDC providers as Salesforce, Okta, Microsoft Azure an so on

Cognito idpresponse: error_description=username+attribute+mapping+required&error=invalid_request

相关内容