OpenID Integration with AWS Cognito

Step 1: 

Login to the UniFed Admin portal, navigate to the Application, and then Click Add Application. Then select the OIDC and click Next.



Step 2: In App Integration copy the domain URL available, if not so we can create the domain from the action option


Copy the domain URL from the cognito and replace it here in the user pool domain - {{https://myuserpooldomain}}/oauth2/idpresponse Redirect URL

Note: Replace myUserPoolDomain with your Amazon Cognito user pool domain. You can find the domain in the Amazon Cognito console on the Domain name page for your user pool.

Step 3: 

Enter the OpenID client Name eg..,(AWS), Then enter the Redirect URL.

Step 4:

Once you created the application then click the created application there you can see the ClientID, Client Secret and Well know config copy the Details for Config with AWS Cognito

Step 5:

Login in to the AWS Cognito and Select the User Pool You want to Integrate the OpenID.

Then select the sign-in experience under click the Add Identity provider.



Step 6:

Then Select the OpenID Connect and click Add identity provider

Step 7:

Enter the following information: 

  • Enter the provider Name. Eg.., (UniFed)
  • clientID and client Secret that you copied from UniFed.
  • In the Authorized Scope enter [  OpenID email  ].

Step 8: 

In the Setup Method select Manual input and Enter the following details as shown in the below image. This below Information you can get from the well Known config that you copied from UniFed.

For your reference: 

https://unifed-dev-api.infisign.net/unifed-auth-service/unifed/infisignunifed<YOUR_TENTANT_ID>/openid/idp//.well-known/openid-configuration/ 


Step 9:

After Enter the Following details then click Add Identity Provider.

Still need help? Contact Us Contact Us