Skip to content

bolser/cognito-user-manager-backend

BranchesTags
 
 

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

4 Commits
functions
functions
 
 
.gitignore
.gitignore
 
 
Gopkg.lock
Gopkg.lock
 
 
Gopkg.toml
Gopkg.toml
 
 
LICENSE
LICENSE
 
 
Makefile
Makefile
 
 
README.adoc
README.adoc
 
 
serverless.yml
serverless.yml
 
 

Repository files navigation

API used to manage AWS Cognito users inside a user pool

Table of Contents

Intro

This API is used by cognito-user-manager-ui project. API gives a fast way to:

  • Enabled/Disable specific user inside a user pool

  • Update some of the user attributes for a given user

Requirements

IAM User

Policy summary
{
    "Version": "2012-10-17",
    "Statement": [
        {
            "Sid": "VisualEditor0",
            "Effect": "Allow",
            "Action": [
                "cloudwatch:*",
                "s3:*",
                "logs:*",
                "lambda:*",
                "dynamodb:*",
                "events:*",
                "cloudformation:*",
                "cognito-idp:*",
                "cognito-sync:*",
                "cognito-identity:*",
                "tag:GetResources",
                "iam:*"
            ],
            "Resource": "*"
        },
        {
            "Effect": "Allow",
            "Action": [
                "execute-api:Invoke"
            ],
            "Resource": "arn:aws:execute-api:*:*:*"
        },
        {
            "Effect": "Allow",
            "Action": [
                "apigateway:*"
            ],
            "Resource": "arn:aws:apigateway:*::/*"
        }
    ]
}

Setup and run

  • Clone this repo

  • Run make

  • Run sls deploy

By default sls deploy will create a stack in eu-central-1 region with dev stage.

Also, default username/password combination is: admin/secret2018. You can change this is serverless.yml file.

Table 1. Endpoints
Method Endpoint Data Config Description

POST

https://<id>.execute-api.eu-central-1.amazonaws.com/dev/list-pools

none

headers: {Authorization: <token>}

Get all user pools

POST

https://<id>.execute-api.eu-central-1.amazonaws.com/dev/list-users

{"user_pool_id": <userPoolId>}

headers: {Authorization: <token>}

Get all users for a given user pool

POST

https://<id>.execute-api.eu-central-1.amazonaws.com/dev/users/{username}/enabled

{ "user_pool_id": <userPoolId>, }

headers: {Authorization: <token>}

Toggle user enabled status inside given user pool

POST

https://<id>.execute-api.eu-central-1.amazonaws.com/dev/user-details

{ "user_pool_id": <userPoolId>, "username": <username> }

headers: {Authorization: <token>}

Get user details by username for given user pool

POST

https://<id>.execute-api.eu-central-1.amazonaws.com/dev/update-user-attributes

{ "user_pool_id": <userPoolId>, "username": <username>, "user_attributes": [<userAttributes>] }

headers: {Authorization: <token>}

Update user attributes

POST

https://<id>.execute-api.eu-central-1.amazonaws.com/dev/signin

{ "username": <username>, "password": <password> }

none

Get jwt token using username/password

About

API to manage AWS Cognito users inside a user pool

Resources

Readme

License

Apache-2.0 license
Activity
Custom properties

Stars

0 stars

Watchers

1 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages

  • Go 93.3%
  • Makefile 6.7%