aws-sdk-go-v2 icon indicating copy to clipboard operation
aws-sdk-go-v2 copied to clipboard

Published 20 hours ago verified publisher icon aws

feature/cognito: Add similar customizations as AWS SDK for Javascript

Open alwindoss opened this issue 7 years ago • 6 comments

Please fill out the sections below to help us address your issue.

Version of AWS SDK for Go? LATEST

Version of Go (go version)? 1.9.2

Support for Cognito just the way it is supported in JavaScript SDK and Android SDK to calculate the Auth Challenge to send in RespondToAuthChallenge

Refer: https://github.com/aws/aws-sdk-go/issues/1245

alwindoss avatar Dec 22 '17 03:12 alwindoss

Thanks for brining this feature request over from v1 @alwindoss. We've heard from several users having similar Cognito customizations is important. Initially out the door of the V2 SDK's developer preview we plan to focus on design and refactors of the SDK to improve the base experience. With that said though, pulling in additional features will be a good addition to the SDK. We're also always glad to review and consider PRs.

References for feature to add:

  • http://docs.aws.amazon.com/cognito/latest/developerguide/getting-started-with-cognito-user-pools.html
  • http://docs.aws.amazon.com/cognito/latest/developerguide/amazon-cognito-user-pools-authentication-flow.html#amazon-cognito-user-pools-admin-authentication-flow

jasdel avatar Dec 22 '17 15:12 jasdel

@jasdel I would love to contribute to this feature if you guys could guide me. This is the most important feature request for me at this point in time in was SDK for go.

alwindoss avatar Dec 25 '17 12:12 alwindoss

the AuthFlow ADMIN_NO_SRP_AUTH can be completed already in general we need something like this part of the warrant python-lib to get the USER_SRP_AUTH AuthFlow completed: https://github.com/capless/warrant#cognito-srp-utility

I can get over the second step of the AuthFlow, which is called PASSWORD_VERIFIER, but then don't know how to handle the responded SRP_B and SECRET_BLOCK. I created me a SRP_A with some help of https://github.com/getinsomnia/go-srp, but it looks like I'm missing the knowledge about python, golang and srp to port this functionality

WolfgangMau avatar Dec 27 '17 09:12 WolfgangMau

What is the priority of this request. Would it be implemented anywhere in the near future according to the Roadmap?

alwindoss avatar May 04 '18 23:05 alwindoss

@alwindoss thanks for voting for this feature. This work is still outstanding in the SDK's backlog. Sorry, I don't have a estimate when this work would be completed.

jasdel avatar May 11 '18 21:05 jasdel

@alwindoss @WolfgangMau I created a port of the warrant AWSSRP class to get USER_SRP_AUTH working if you're interested:

https://github.com/AlexRudd/cognito-srp

it's pretty basic but at least it handles all the SRP business.

alexrudd avatar Jul 10 '18 14:07 alexrudd