Him: "I hate when folks don't give you all the little details that you might need..." Me: Subscribed

This was incredibly helpful! You did a great job explaining everything thoroughly. Great quality content, keep it up man! 🙏💪

Someone else can copy this jwt token from request header and use it. am i correct ?

this was great, thank you! however i have a question. i have this API connected to my lambda function as a trigger, and i have a slack app which in event subscription, takes in an endpoint (in this case it is my newly authorized endpoint configured in my lambda function). however, because the API is protected, slack won't be able to verify it or access it. how can i enable slack to access this? thank you again for the vdeo!

Thanks 🙏. Please make another video where we can learn how to assign role and how to allow users with different roles to access different resources.

Excelente muy buen ejemplo, muy parecido se puede hacer andar con keycloak Aca dejo un ejemplo: kzbin.info/www/bejne/qGPFf2yrqLegjqc&ab_channel=%C5%81ukaszBudnik

Hey can you help implement jwt support plugin with Jenkins

Thank you for this video. Can you make a video on how to do the same with AWS-CDK and Lambda functions? Nice work and Good Health.💖

Thanks for doing this! Really helpful and truly appreciated!

can i use lambda to add user information into a dynamo db also? if i do that then when i am connecting to api gateway can i choose lambda instead of jwt auth?

That was awesome. Some people would have turned that into an hour long video and not covered all the details either. Perfect and to the point in under 14 minutes.

Never thought kanye west would teach me amazon cognito

I just had to subscribe your chennel, because I was looking for some video like your for days and you save me! Thanks a lot!!!

Copying both the access token and id token from the URL is what tripped me as well.

Nice tutorial and well explained. I thought AWS Cognitoruns on the backend, but I see it writes out the tokens in local storage on the client.

Surprised this isn't emphasized more.

You saved me many hours today

lambda serves as a client in this example?

Great video Michael, tracking you man.

Super!! worked for me.

It is supposed to be standard to use the access token instead of the Id token. Why did you use the id token? I am asking because I cannot get it to work with the access token in my own app.

great tutorial thanks

Yeah Michael, way to get it together! Great job

Awesome! Video was short and to the point. Resolved my problem which was accidentally using the API Gateway API ID rather than the User Pool ID as the "audience". How come both the IdToken and AccessToken can be attached to the authorizer header and still have access to the protected resources?

Very knowledge session

This video was super useful for me

nice explanation

Subscribed! Will you cover the new Amplify Studio?

Huge Thank you! Simple, thorough, and spot on!

Is there a way we can just not use the Cognito UI to signup/signin? I want to use Cognito's backend service with my own UI (via login form). It would look a little out of place in, let's say, a mobile app so yeah was just wondering!

Excellent

Amazing Video ! But, I want to know how to do the Sign Up, Login & other MFA in React-Native App, if I already have a existing backend in AWS Cognito . And have the below details of the existing backend :- aws_cognito_identity_pool_id: aws_cognito_region: aws_user_pools_id: aws_user_pools_web_client_id: I hope this question will generate curiosity in you. Please make a separate vdo on this topic

Thanks for this concise and helpful - so many incorrect videos out there that obviously do not understand OAuth and copying from the same incorrect source. Warning - AWS has significantly changed various areas and you need to switch back to the Cognito v1 (on the left side menu) to make this work as expected... Yay AWS!

The UI is a bit outdated now given the new AWS UI. But still, I benefited from this tutorial after watching another one with the new UI.. Also, pls pay attention where you put your selfie video as it covers some of the steps (can be concluded though).

ya, great vid, well explained and visually practical. two thumbs up, you've helped me out a lot + an extra thumbs up for the cool digs, like, you could easily segue into a smooth jazz video.

I immediately wanted to click subscribe just because of your vibe - but I waited til you said there would be flubs and I was like "ok this guy is cool" - and actually kind of inspiring to me, too :)

BRUH . . . Thank you for this

Hi, I wanted to know is this super different from using Lambda Authorizer or do they work in a similar manner ?

Great video, just wondering if you have some examples of client side logic - storing the token, and other best practices?

Thanks

dayum, my man makes it look so ez lol, great video! keep up the great content!

Thanks for the great video. What will happen when the token is expired? Is there a way to automate the token update or each time I have to manually create a token? Please let me know.

I really appreciate your video. It is really helpful.

If you run that exact same postman test 6 months from now, would it work, or why not?

Nice video, good clear speaking voice, thanks!

First time i feel i need to comment on a video - dude, you are amazing!

Dude you earned my sub! Awesome tutorial :D

Thank you man. Good video and very updated!!

thank you! you made it very easy to follow.

really helpful, resolved some real issue for me :D

Awesome video, thanks for this.

Excellent Demo - thanks for that!

the tutorial is awesome!!!!!!!!! thanks alots.

Thank you for this. QQ : The access token expires after a day. Is it possible to extend it for a month or so ? If not what would be good approach if we want some auth value that is applicable for a month or so.

Thank you for making this! 🙂

Sub 👍👍 thanks for the content

how to do with backend api ?

Good job! Thanks!

You are a life saviour

Great video mate.

Very nice content

Thank you!

Well done!

Thanks :) that was useful. Instead of splitting location.href I think you could also parse the hash as url search params: params = new URLSearchParams(window.location.hash.replace('#','?')) Then you can easily access the bit you want by using params.get('access_token') or whatever

A good video on a good subject. I do wish that you'd gone a little more slowly in parts. There were parts where you just sped through a few clicks or screens without much explanation. It's especially easy to miss if you're trying to code along with the video. A little more explanation of how these parts fit together would be nice, too. But still, good video, I learned what I needed to learn.

I got this error from Postman: "the token does not have a valid audience" I did everything you described here, on JWT.io the Signature is Verified...what can be wrong?

This video was not useful. I am not going to ask my user who want to interact with website behind http api gateway to use postman