Closed nzoschke closed 6 years ago
Would cognito fit in here for Auth?
I'm not sure...
So far every app I've built uses an OAuth provider (e.g. Okta, Google, GitHub). For these I have an /auth functions that does the OAuth exchange, the gives the client a JWT. Then I add a JWT check to protected functions.
This alone feels like another great example to add to the boilerplate and document.
I've never used Cognito. Would it make the above any easier or more demonstrative?
I do anticipate needing Okta-backed SAML for some APIs someday. Would Cognito help here?
Honestly not sure, it’s one of those services that I’ve been aware of for a while now but haven’t had an opportunity to try out.
The JWT stuff sounds interesting too. 😁
Closed in #45
I plan to port an OAuth / JWT example over.
One question is how to get the OAuth redirect url. Perhaps you can generate it from the Request: