Tutorial: How to add security to a REST API using JWT Authorizers and Amazon Cognito | JWT Token

preview_player
Показать описание
A quick tutorial on how to secure your AWS REST APIs using AWS Cognito, JWT Tokens, and JWT Authorizers. We will have the API Gateway setup with JWT Authorizers that will verify each api request has a valid JWT Token. These tokens will be generated from AWS Cognito for an authenticated user.

Topics covered:

1) Simple Lambda Creation using Nodejs
2) Cognito User Pool Creation
3) API Gateway Authorizer - JWT Authorizer
  1. Let's Find Solutions
  2. JWT Token
  3. JWT Authorizer
  4. Amazon Cognito
  5. AWS Cognito
  6. API Security
Рекомендации по теме
Setup a 2FA 0:10:26

Setup a 2FA Key for MAXIMUM Online Security! (Yubikey Tutorial)

How To Setup 0:01:16

How To Setup Security Key On Windows 11 [Tutorial]

How to password 0:02:06

How to password protect files and folders in Windows :Tutorial

Ultimate smartphone security 0:13:17

Ultimate smartphone security guide | How to secure your phone tutorial

Security Setting EVERY 0:07:44

Security Setting EVERY Apple User Needs to Fix (Tutorial)

ME Security Terminal 0:02:32

ME Security Terminal 📀 Minecraft Applied Energistics Tutorial 1.16.5 📀 English 📀 #Minecraft

Spring Security Tutorial 1:31:05

Spring Security Tutorial - [NEW] [2023]

Splunk Tutorial for 0:12:22

Splunk Tutorial for Beginners (Cyber Security Tools)

How to Add 0:02:01

How to Add Solidus Ai Tech (AITECH) to Metamask Wallet

Complete SSH Tutorial: 1:28:00

Complete SSH Tutorial: All-in-One Guide for Secure Connections

V380 Pro Network 0:03:55

V380 Pro Network Setup Simple Tutorial 2024

Auth0 in 100 0:08:24

Auth0 in 100 Seconds // And beyond with a Next.js Authentication Tutorial

How To Use 0:05:20

How To Use PGP Encryption | gpg4win Kleopatra Tutorial

Spring Boot - 0:38:54

Spring Boot - Spring Security + JWT Complete Tutorial With Example | javatechie

Get Started with 0:14:10

Get Started with Parrot Security OS on Your Computer [Tutorial]

5 Common Mistakes 0:05:07

5 Common Mistakes When Installing Video Security System

How to secure 0:16:23

How to secure your GMAIL account like a pro | YubiKey Tutorial

Spring Security Tutorial 0:26:56

Spring Security Tutorial with Login Example (Spring Boot + Spring Security + MySQL)

AWS Security Tutorial 0:08:17

AWS Security Tutorial | AWS Tutorial For Beginners | Simplilearn

Postman Beginner Tutorial 0:11:18

Postman Beginner Tutorial 14 | How to Add Authorization in Postman

Burp Suite Tutorial 0:07:15

Burp Suite Tutorial For Beginners With SQL Injection

Spring Security Tutorial 2:38:19

Spring Security Tutorial | In depth Course

LastPass Tutorial - 0:20:55

LastPass Tutorial - How to Use LastPass Password Manager

Fail2ban Tutorial | 0:11:52

Fail2ban Tutorial | How to Secure Your Server

Комментарии
Автор

Thanks a lot! That's exactly what we need. We want to use Amazon S3 with an existing Keycloak instance and use JWT Token authentification

TPDene
Автор

You saved the day! I had t use oauth 2.0 in postman and not the bearer token dropdown

Notrious
Автор

Thanks a lot! Very concise and to the point! 👌

kouroshbaghaei
Автор

Great video. Great content and well executed and straightforward. Well done.

jumboliah
Автор

Great content, very helpful video. Thanks for your efforts.

PrashantZombade
Автор

The AWS Cognito interface has changed, the setup is very different from what's shown in this video.

nimishgoray
Автор

Great video! So how does it all work on the front end? using JaveScript how does one use the host UI and retrieve the token and store and use it?

ajaygulani
Автор

I have implemented Cognito authentication for my .net web api / react app. It's in .net 4.8 framework and hosted in iis localhost. Also using IIS Url rewrite to configure IIS that react router handlea the app navigations after authentication is completed.
Issue is when we make Cognito logout api endpoint get request, it throws CORs error stating Allow Content Header Origin is not present.
I have the proper app domain, client id and redirect uri.
So what needs to be done in this situation for logout to work.
Cognito login works perfectly

Visgapn
Автор

How can i use this token further in aws lambda to get the email id or username to do some dynamic processing? Are there any cognito sdk or library available to scrap that Information in aws lambda ?

ManishJindalmanisism
Автор

7:53 When you change the password the second time, it says 'localhost has refused to connect'.

How can I solve this?

8:44 I tried it on Postman, but I couldn't get the token's value and it came out the same way

gunyung
Автор

I'm a little lost... perhaps I've jumped in too deep before reading up more, but in essence how or what would you give a third party that you wanted to allow to access your API?

AthelstanEngland
Автор

why implicit grant rather than Authorization code grant? Aws doesn't recommend using Implicit Grant

Ronaldograxa
Автор

AWS UI changed now. Cognito UI looks entirely new and unable to get published the user login page.😥

anandbabu
Автор

how can i use access token here instead of ID token to authenticate our API?

honeykumarsingh