使用 AWS re:Post 即表示您同意 AWS re:Post 使用條款
AWS re:Postre:Post

ALB Authenticate Rule with Cognito error: OAuth flows must be enabled in the user pool client

0

I have a simple Cognito user pool (no federation) with an app client with all 5 available auth flows enabled:

ALLOW_ADMIN_USER_PASSWORD_AUTH
ALLOW_CUSTOM_AUTH
ALLOW_REFRESH_TOKEN_AUTH
ALLOW_USER_PASSWORD_AUTH
ALLOW_USER_SRP_AUTH

The pool already has AWS-provided domain configured.

When I attempt to integrate it into an authenticate rule for my ALB, I got the following error:

OAuth flows must be enabled in the user pool client

How can I make this work?

主題
安全性、身分識別與合規
標籤
Amazon CognitoApplication Load BalancerAmazon Cognito User Pools
語言
English
khuongduybui
已提問 2 年前檢視次數 2618 次
2 個答案
0
已接受的答案

I figured out what's wrong. I did not configure a hosted UI for the app client, which is an unlisted requirement for OAuth.

khuongduybui
已回答 2 年前
profile picture
專家
Giovanni Lauria
已審閱 1 個月前
0

Hi,

Did you create a domain for the user pool? this is required to enable oauth2 endpoints.

AWS
專家
Mahmoud Matouk
已回答 2 年前
  • khuongduybui
    2 年前

    Yes, I already created a domain. Does it have to be a custom-owned domain? Should I expect to see a DIFFERENT auth flow than the 5 listed ones?

您尚未登入。 登入 去張貼答案。

一個好的回答可以清楚地回答問題並提供建設性的意見回饋,同時有助於提問者的專業成長。

回答問題指南

相關內容