feat(cognito): add defaultRedirectUri to UserPoolClient #30481
Conversation
github-actions
bot
added
p2
admired-contributor
aws-cdk-automation
added
the
pr/needs-community-review
Co-authored-by: Luca Pizzini <lpizzini7@gmail.com>
Co-authored-by: Luca Pizzini <lpizzini7@gmail.com>
Co-authored-by: Luca Pizzini <lpizzini7@gmail.com>
aws-cdk-automation
removed
the
pr/needs-community-review
|
@lpizzinidev |
aws-cdk-automation
added
the
pr/needs-maintainer-review
paulhcsun
changed the title
| throw new Error('defaultRedirectUri must be included in callbackUrls.'); | ||
| } | ||
|
|
||
| const defaultRedirectUriPattern = /^(?=.{1,1024}$)[\p{L}\p{M}\p{S}\p{N}\p{P}]+$/u; |
There was a problem hiding this comment.
Where is this pattern obtained from and what is it matching against?
There was a problem hiding this comment.
Obtained from CFn document.
Pattern: [\p{L}\p{M}\p{S}\p{N}\p{P}]+
Minimum: 1
Maximum: 1024
In my understanding, Most strings will match the pattern, but strings containing only whitespace characters or only special characters/symbols will not match.
There was a problem hiding this comment.
Thanks for clarifying! Should we also add some validation on the length here?
Edit: Nevermind, I see that this already checks the length.
|
@paulhcsun |
There was a problem hiding this comment.
Looks good, nice work @mazyu36!
And thanks for the review @lpizzinidev!
|
@Mergifyio update |
aws-cdk-automation
removed
the
pr/needs-maintainer-review
✅ Branch has been successfully updated |
|
Thank you for contributing! Your pull request will be updated from main and then merged automatically (do not update manually, and be sure to allow changes to be pushed to your fork). |
|
@Mergifyio update |
✅ Branch has been successfully updated |
AWS CodeBuild CI Report
Powered by github-codebuild-logs, available on the AWS Serverless Application Repository |
|
Thank you for contributing! Your pull request will be updated from main and then merged automatically (do not update manually, and be sure to allow changes to be pushed to your fork). |
### Issue # (if applicable) N/A ### Reason for this change The `defaulrRedirectUri` property missing in the current `UserPoolClient` class, The DefaultRedirectURI setting is essential when using Amazon Cognito Hosted UI because it specifies the primary destination where users will be redirected after successful authentication, ensuring a seamless and secure OAuth 2.0 or OpenID Connect flow. ### Description of changes Add missing property. ### Description of how you validated changes Add unit tests and integ tests. ### Checklist - [x] My code adheres to the [CONTRIBUTING GUIDE](https://github.com/aws/aws-cdk/blob/main/CONTRIBUTING.md) and [DESIGN GUIDELINES](https://github.com/aws/aws-cdk/blob/main/docs/DESIGN_GUIDELINES.md) ---- *By submitting this pull request, I confirm that my contribution is made under the terms of the Apache-2.0 license*
### Issue # (if applicable) N/A ### Reason for this change The `defaulrRedirectUri` property missing in the current `UserPoolClient` class, The DefaultRedirectURI setting is essential when using Amazon Cognito Hosted UI because it specifies the primary destination where users will be redirected after successful authentication, ensuring a seamless and secure OAuth 2.0 or OpenID Connect flow. ### Description of changes Add missing property. ### Description of how you validated changes Add unit tests and integ tests. ### Checklist - [x] My code adheres to the [CONTRIBUTING GUIDE](https://github.com/aws/aws-cdk/blob/main/CONTRIBUTING.md) and [DESIGN GUIDELINES](https://github.com/aws/aws-cdk/blob/main/docs/DESIGN_GUIDELINES.md) ---- *By submitting this pull request, I confirm that my contribution is made under the terms of the Apache-2.0 license*
Issue # (if applicable)
N/A
Reason for this change
The
defaulrRedirectUriproperty missing in the currentUserPoolClientclass,The DefaultRedirectURI setting is essential when using Amazon Cognito Hosted UI because it specifies the primary destination where users will be redirected after successful authentication, ensuring a seamless and secure OAuth 2.0 or OpenID Connect flow.
Description of changes
Add missing property.
Description of how you validated changes
Add unit tests and integ tests.
Checklist
By submitting this pull request, I confirm that my contribution is made under the terms of the Apache-2.0 license