Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

'aud' claim check #11

Closed
naseer11 opened this issue Sep 18, 2018 · 2 comments
Closed

'aud' claim check #11

naseer11 opened this issue Sep 18, 2018 · 2 comments

Comments

@naseer11
Copy link

As per AWS Cognito documentation:

"The audience (aud) claim should match the app client ID created in the Amazon Cognito user pool."

The module doesn't seem to verify the 'aud' claim. Am I missing something or is this a bug?
@jclwong
Copy link

jclwong commented May 17, 2019

client_id (access token) === aud (id token) === Client Id (Cognito User Pool)
This library validates the access token (client_id) against Cognito user pool, and not the id token (aud).

@buccfer
Copy link

buccfer commented Aug 5, 2019

@naseer11 Since issues like this one have been open for so long I created a different library aws-cognito-express.

@ghdna ghdna closed this as completed Aug 8, 2019
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
4 participants
@naseer11 @jclwong @ghdna @buccfer