Reviews (1-4 of 4)
March 24, 2020
We use Amazon Cognito for authentication purposes for mobile and web applications. It is used locally within our department. Being a service company, when our customers ask for other mechanisms, we adapt to them as well. We solve the sign-up and sign-in of the mobile and web application via Amazon Cognito.
- It is really easy to set up signup and sign-in for mobile and web applications which makes overall development faster, helps focus more on business.
- It supports multi factor authentication and standard encryption algorithm. This helps tighten the security without investing a lot of time.
- It supports access management via Oauth 2.0 which makes authorization job easy.
- User can use Google, Facebook and Microsoft AD services for sign-in purpose helps reducing user efforts to register or signup within the application.
- As such I do not find any major things as cons. However they can improve the documentation.
- Sometimes additional customisation increases complexity. Most of those advanced features are not used frequently.
Read Apurv Doshi's full review
This is a plug and play kind of service for sign-in, signup and access control. As this is a managed service, one need not take care of scale and other infrastructure issues. When the user scale is to a large extent or special compliance like HIPAA required, this one is worth trying. For a smaller user base, I prefer to go with the traditional approach.
January 17, 2019
Score 7 out of 10
The engineering and data science teams at my organization use Amazon Cognito to provide user sign-up and sign-in for some internal tools that need to be accessible to digital freelancers. Amazon Cognito saves us time that we would have spent building user sign-in and is much more fully-featured than what we would have been able to justify building.
- Amazon Cognito allows you to build multi-factor authentication with a few clicks.
- Cognito supports sign-in with social identity providers like Facebook and Google.
- It is easy to manage Cognito users through the Console.
- It is easy to customize sign-up and sign-in workflows by integrating with AWS Lambda.
- Amazon Cognito has a bit of a learning curve. You need to learn its concepts and terminology. The documentation does not describe some topics comprehensively.
- Some Console screens would benefit from improved search and filtering options.
- When another AWS product (e.g., SageMaker) configures Cognito on your behalf, it is not clear what you're getting. For example, the expiration of a temporary password was configured but never communicated.
Read this authenticated review
Amazon Cognito is great for small, internal tools and for integrating with Amazon's serverless products. I would review its features very carefully if I were considering it for a larger, public-facing application because I believe that migrating off of Cognito would be problematic. Cognito is great for internal tools; for example, it has allowed our data scientists to build annotation tools with managed user pools without requiring engineering support.
March 14, 2018
We use cognito to manage user sign in and authentication for our projects built on AWS architecture. Usually our clients need strong and reliable authentication features implying federated entities like Facebook across a software ecosystem.
Read Miguel Angel Merino Vega's full review
If you are working strongly with AWS technologies, Cognito is the way to go. On the other hand, if you work strongly with mobile technologies and federated identities, you could prefer firebase.
In our organization, we help customers who are currently using AWS Cognito. There are many Enterprise clients of ours who use Amazon Cognito. It's an amazing product I would say. The main business problem for us is while integrating the client applications, we need to decide how to integrate our application with other services like Gmail, Linkedin,...etc. For this purpose, Amazon Cognito does a great job with their SDK.
- Can easily manage the users.
- Very good UI design helps manage the users list efficiently.
- Security groups and roles provides very efficient security.
- Maybe they can improve more on the grouping part.
- All the users come under the same Cognito User Pool. If the IAM can be restricted to per group level of User Pools, then that would be really helpful.
Read this authenticated review
It's well suited for quick start of application, which needs to be integrated with multiple other applications. It may be not suited for applications which are already using high security in place, meaning if customers are already using OAuth, then I don't think this would be an effective solution.