{"id":2315,"date":"2019-08-23T06:22:37","date_gmt":"2019-08-23T06:22:37","guid":{"rendered":"https:\/\/www.testpreptraining.com\/tutorial\/?page_id=2315"},"modified":"2020-05-02T07:42:31","modified_gmt":"2020-05-02T07:42:31","slug":"web-identity-federation","status":"publish","type":"page","link":"https:\/\/www.testpreptraining.ai\/tutorial\/aws-devops-engineer\/web-identity-federation\/","title":{"rendered":"Web Identity Federation"},"content":{"rendered":"\n<ul class=\"wp-block-list\"><li>allows trusted third party to authenticate users<\/li><li>avoids to create and manage users<\/li><li>avoid users having multiple id&#8217;s; simplifies access control via roles.<\/li><\/ul>\n\n\n\n<p><strong>Standard Web Identity Federation<\/strong><\/p>\n\n\n\n<ul class=\"wp-block-list\"><li>Mobile user autheticates with Web Identity provider<\/li><li>WIP authenticates identity<\/li><li>Mobile user AssumeRole with STS via API<\/li><li>STS validates with WIP receives success\/failure notification<\/li><li>success response verifies Role Trust policy<\/li><li>STS provide Temp access credentials to Mobile User<\/li><li>Mobile User use Temp credentials to use service<\/li><\/ul>\n\n\n\n<p><strong>Cognito<\/strong><\/p>\n\n\n\n<ul class=\"wp-block-list\"><li>identity management and sync service<\/li><li>2 product streams<\/li><li>cognito identity pool &#8211; collection of identities<\/li><li>allows 2 roles to be associated one for authenticated user other for unauthenticated users<\/li><li>It can\n<ul>\n<li>orchestrate generation of unauthenticated identity<\/li>\n<\/ul>\n<ul>\n<li>merge unauth identity into auth identity<\/li>\n<\/ul>\n<ul>\n<li>merge multiple entities into one object<\/li>\n<\/ul>\n<\/li><li>Cognito Authenticated flow: Classic or Basic \/ Enhanced<\/li><li>First step to Login to Web Identity provider, rest are same as unauthenticated flow.<\/li><li>Enhanced flow, communicate all time with Cognito.<\/li><li>pre-cognito auth flow, unautheticated or guest flow, simple cognito flow, enhanced cognito flow.<\/li><li>why and when to use web id provider &#8211; when you need to publish app or service to thousands of users.<\/li><\/ul>\n\n\n\n<p>Cognito Unauthenticated flow:<\/p>\n\n\n\n<ul class=\"wp-block-list\"><li>Mobile user create unauthenticated identity<\/li><li>Coginto returns OpenID Token<\/li><li>Mobile User AssumeRole with STS<\/li><li>STS validates with Cognito<\/li><li>STS returns AWS Guest credentials<\/li><li>Mobile users Write data<\/li><\/ul>\n","protected":false},"excerpt":{"rendered":"<p>allows trusted third party to authenticate users avoids to create and manage users avoid users having multiple id&#8217;s; simplifies access control via roles. Standard Web Identity Federation Mobile user autheticates with Web Identity provider WIP authenticates identity Mobile user AssumeRole with STS via API STS validates with WIP receives success\/failure notification success response verifies Role&#8230;<\/p>\n","protected":false},"author":1,"featured_media":0,"parent":2084,"menu_order":37,"comment_status":"closed","ping_status":"closed","template":"","meta":{"_acf_changed":false,"footnotes":""},"categories":[2],"tags":[7,372,380,410],"class_list":["post-2315","page","type-page","status-publish","hentry","category-amazon-aws","tag-aws","tag-devops","tag-devops-engineer","tag-web-identity-federation"],"acf":[],"yoast_head":"<!-- This site is optimized with the Yoast SEO plugin v22.1 - https:\/\/yoast.com\/wordpress\/plugins\/seo\/ -->\n<title>Web Identity Federation - AWS Tutorials (TestPrep)<\/title>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/www.testpreptraining.ai\/tutorial\/aws-devops-engineer\/web-identity-federation\/\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"Web Identity Federation - AWS Tutorials (TestPrep)\" \/>\n<meta property=\"og:description\" content=\"allows trusted third party to authenticate users avoids to create and manage users avoid users having multiple id&#8217;s; simplifies access control via roles. Standard Web Identity Federation Mobile user autheticates with Web Identity provider WIP authenticates identity Mobile user AssumeRole with STS via API STS validates with WIP receives success\/failure notification success response verifies Role...\" \/>\n<meta property=\"og:url\" content=\"https:\/\/www.testpreptraining.ai\/tutorial\/aws-devops-engineer\/web-identity-federation\/\" \/>\n<meta property=\"og:site_name\" content=\"Testprep Training Tutorials\" \/>\n<meta property=\"article:modified_time\" content=\"2020-05-02T07:42:31+00:00\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:label1\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data1\" content=\"1 minute\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\/\/schema.org\",\"@graph\":[{\"@type\":\"WebPage\",\"@id\":\"https:\/\/www.testpreptraining.ai\/tutorial\/aws-devops-engineer\/web-identity-federation\/\",\"url\":\"https:\/\/www.testpreptraining.ai\/tutorial\/aws-devops-engineer\/web-identity-federation\/\",\"name\":\"Web Identity Federation - AWS Tutorials (TestPrep)\",\"isPartOf\":{\"@id\":\"https:\/\/www.testpreptraining.ai\/tutorial\/#website\"},\"datePublished\":\"2019-08-23T06:22:37+00:00\",\"dateModified\":\"2020-05-02T07:42:31+00:00\",\"breadcrumb\":{\"@id\":\"https:\/\/www.testpreptraining.ai\/tutorial\/aws-devops-engineer\/web-identity-federation\/#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\/\/www.testpreptraining.ai\/tutorial\/aws-devops-engineer\/web-identity-federation\/\"]}]},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\/\/www.testpreptraining.ai\/tutorial\/aws-devops-engineer\/web-identity-federation\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\/\/www.testpreptraining.ai\/tutorial\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"AWS Certified DevOps Engineer Professional\",\"item\":\"https:\/\/www.testpreptraining.ai\/tutorial\/aws-devops-engineer\/\"},{\"@type\":\"ListItem\",\"position\":3,\"name\":\"Web Identity Federation\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\/\/www.testpreptraining.ai\/tutorial\/#website\",\"url\":\"https:\/\/www.testpreptraining.ai\/tutorial\/\",\"name\":\"Testprep Training Tutorials\",\"description\":\"\",\"publisher\":{\"@id\":\"https:\/\/www.testpreptraining.ai\/tutorial\/#organization\"},\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\/\/www.testpreptraining.ai\/tutorial\/?s={search_term_string}\"},\"query-input\":\"required name=search_term_string\"}],\"inLanguage\":\"en-US\"},{\"@type\":\"Organization\",\"@id\":\"https:\/\/www.testpreptraining.ai\/tutorial\/#organization\",\"name\":\"Testprep Training\",\"url\":\"https:\/\/www.testpreptraining.ai\/tutorial\/\",\"logo\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/www.testpreptraining.ai\/tutorial\/#\/schema\/logo\/image\/\",\"url\":\"https:\/\/www.testpreptraining.com\/tutorial\/wp-content\/uploads\/2020\/07\/tpt-logo-6.png\",\"contentUrl\":\"https:\/\/www.testpreptraining.com\/tutorial\/wp-content\/uploads\/2020\/07\/tpt-logo-6.png\",\"width\":583,\"height\":153,\"caption\":\"Testprep Training\"},\"image\":{\"@id\":\"https:\/\/www.testpreptraining.ai\/tutorial\/#\/schema\/logo\/image\/\"}}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"Web Identity Federation - AWS Tutorials (TestPrep)","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/www.testpreptraining.ai\/tutorial\/aws-devops-engineer\/web-identity-federation\/","og_locale":"en_US","og_type":"article","og_title":"Web Identity Federation - AWS Tutorials (TestPrep)","og_description":"allows trusted third party to authenticate users avoids to create and manage users avoid users having multiple id&#8217;s; simplifies access control via roles. Standard Web Identity Federation Mobile user autheticates with Web Identity provider WIP authenticates identity Mobile user AssumeRole with STS via API STS validates with WIP receives success\/failure notification success response verifies Role...","og_url":"https:\/\/www.testpreptraining.ai\/tutorial\/aws-devops-engineer\/web-identity-federation\/","og_site_name":"Testprep Training Tutorials","article_modified_time":"2020-05-02T07:42:31+00:00","twitter_card":"summary_large_image","twitter_misc":{"Est. reading time":"1 minute"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"WebPage","@id":"https:\/\/www.testpreptraining.ai\/tutorial\/aws-devops-engineer\/web-identity-federation\/","url":"https:\/\/www.testpreptraining.ai\/tutorial\/aws-devops-engineer\/web-identity-federation\/","name":"Web Identity Federation - AWS Tutorials (TestPrep)","isPartOf":{"@id":"https:\/\/www.testpreptraining.ai\/tutorial\/#website"},"datePublished":"2019-08-23T06:22:37+00:00","dateModified":"2020-05-02T07:42:31+00:00","breadcrumb":{"@id":"https:\/\/www.testpreptraining.ai\/tutorial\/aws-devops-engineer\/web-identity-federation\/#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/www.testpreptraining.ai\/tutorial\/aws-devops-engineer\/web-identity-federation\/"]}]},{"@type":"BreadcrumbList","@id":"https:\/\/www.testpreptraining.ai\/tutorial\/aws-devops-engineer\/web-identity-federation\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/www.testpreptraining.ai\/tutorial\/"},{"@type":"ListItem","position":2,"name":"AWS Certified DevOps Engineer Professional","item":"https:\/\/www.testpreptraining.ai\/tutorial\/aws-devops-engineer\/"},{"@type":"ListItem","position":3,"name":"Web Identity Federation"}]},{"@type":"WebSite","@id":"https:\/\/www.testpreptraining.ai\/tutorial\/#website","url":"https:\/\/www.testpreptraining.ai\/tutorial\/","name":"Testprep Training Tutorials","description":"","publisher":{"@id":"https:\/\/www.testpreptraining.ai\/tutorial\/#organization"},"potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/www.testpreptraining.ai\/tutorial\/?s={search_term_string}"},"query-input":"required name=search_term_string"}],"inLanguage":"en-US"},{"@type":"Organization","@id":"https:\/\/www.testpreptraining.ai\/tutorial\/#organization","name":"Testprep Training","url":"https:\/\/www.testpreptraining.ai\/tutorial\/","logo":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/www.testpreptraining.ai\/tutorial\/#\/schema\/logo\/image\/","url":"https:\/\/www.testpreptraining.com\/tutorial\/wp-content\/uploads\/2020\/07\/tpt-logo-6.png","contentUrl":"https:\/\/www.testpreptraining.com\/tutorial\/wp-content\/uploads\/2020\/07\/tpt-logo-6.png","width":583,"height":153,"caption":"Testprep Training"},"image":{"@id":"https:\/\/www.testpreptraining.ai\/tutorial\/#\/schema\/logo\/image\/"}}]}},"_links":{"self":[{"href":"https:\/\/www.testpreptraining.ai\/tutorial\/wp-json\/wp\/v2\/pages\/2315","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.testpreptraining.ai\/tutorial\/wp-json\/wp\/v2\/pages"}],"about":[{"href":"https:\/\/www.testpreptraining.ai\/tutorial\/wp-json\/wp\/v2\/types\/page"}],"author":[{"embeddable":true,"href":"https:\/\/www.testpreptraining.ai\/tutorial\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/www.testpreptraining.ai\/tutorial\/wp-json\/wp\/v2\/comments?post=2315"}],"version-history":[{"count":6,"href":"https:\/\/www.testpreptraining.ai\/tutorial\/wp-json\/wp\/v2\/pages\/2315\/revisions"}],"predecessor-version":[{"id":5281,"href":"https:\/\/www.testpreptraining.ai\/tutorial\/wp-json\/wp\/v2\/pages\/2315\/revisions\/5281"}],"up":[{"embeddable":true,"href":"https:\/\/www.testpreptraining.ai\/tutorial\/wp-json\/wp\/v2\/pages\/2084"}],"wp:attachment":[{"href":"https:\/\/www.testpreptraining.ai\/tutorial\/wp-json\/wp\/v2\/media?parent=2315"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.testpreptraining.ai\/tutorial\/wp-json\/wp\/v2\/categories?post=2315"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.testpreptraining.ai\/tutorial\/wp-json\/wp\/v2\/tags?post=2315"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}