The underlying user store is using Amazon Cognito User Pools. It provide a secure user directory that scales to hundreds of millions of users.
Using Cognito out of the box, Amazon Cognito lets you add user sign-up, sign-in, and access control to your web and mobile apps quickly and easily. Amazon Cognito scales to millions of users and supports sign-in with social identity providers, such as Facebook, Google, and Amazon, and enterprise identity providers via SAML 2.0.
That's it. In fact, it's mostly mobile-centric and support single domain for single sign-on.
To support CDSSO, we need more components from the AWS family to come into play - AWS Fargate acting as Session Validator, AWS Lambda acting as Cookie Generator/Destroyer and AWS RDS acting as Session Store.
We demo to a customer yesterday and they were impressed.
To speed up the authentication process, Amazon ElastiCache can be used to replace or complement AWS RDS. That would be our next demo.
.
Hello, interesting solution. Are you able to share the code you used?
ReplyDeleteThis comment has been removed by the author.
ReplyDelete