Users unable to authenticate with their email and password with AWS Cognito
I have a test user who has confirmed their email with AWS Cognito. I get a NotAuthorizedException: Incorrect username or password. when I attempt to initiate auth with them using their email and password. Currently, I can only authenticate users with their username.
Here is how I am initiating auth with a user. I supply their email in the USERNAME field.
public initiateAuth(args: WithAuthFlowType<InitiateAuth>): Promise<InitiateAuthCommandOutput> {
//https://docs.aws.amazon.com/cognito/latest/developerguide/amazon-cognito-user-pools-authentication-flow.html
return new CognitoIdentityProviderClient({region: "us-east-1"}).send(
new InitiateAuthCommand({ //https://docs.aws.amazon.com/AWSJavaScriptSDK/v3/latest/clients/client-cognito-identity-provider/classes/initiateauthcommand.html
ClientId: "<some_client_id>",
AuthFlow: AuthFlowType.USER_PASSWORD_AUTH,
AuthParameters: {
USERNAME: "foo@bar.com",
PASSWORD: "1234...",
},
})
);
}
I believe I configured AWS Cognito well. In the console it shows users can sign in with their email. How can I let my users authenticate with their email and password?
Solution
Discovered that this was user error. User had a period in their email like.
f.bar@baz.com
The user was attempting to sign in as
fbar@baz.com
Which is why they were unable to sign in.
- AWS Cognito: Reset Expired Temporary Password
- AWS Cognito Post authentication Lambda trigger - return NotAuthorizedException
- Enabling and Configuring Password History on Cognito
- How to link AWS Cognito native user to the federated user
- Vue.js and and amplify for aws
- Add role based authentication using next-auth in NextJS
- Aws Cognito Oauth2: Refresh token rotation
- Error while doing IdP initiated login using AWS Cognito
- Why is Next.js throwing Error: WEBPACK_IMPORTED_MODULE is not a function?
- 502 Bad Gateway in production with Nextjs next-auth with url '/api/auth/callback/cognito'
- Cognito - Client is not enabled for OAuth2.0 flows
- How to login with cognito in flutter web?
- RestAssured authentication with AWS Signature
- How to get user attributes (username, email, etc.) using cognito identity id
- SpringBoot + AWS cognito, can't resolve issuerUri
- After creating a Cognito user in Java, do I have to change the password? (status: FORCE_CHANGE_PASSWORD)
- How to validate UpdateUserAttributes endpoint?
- How to Avoid Deletion of Manually Created Cognito User Pool During CloudFormation Stack Deployment
- How do I do Secure Remote Password (SRP) based sign in with Amazon Cognito in JavaScript?
- AWS Cognito User Pool - SignInSuccesses CloudWatch Alarm and Metrics in CloudFormation
- AWS Cognito network traffic flow related question
- SSO Integration between 2 webapps using Cognito
- AWS Cognito federated user login not allowing to sign in as different user after log out
- AWS cognito: What's the difference between Access and Identity tokens?
- AWS Cognito: Missing Scopes in Access Token with Custom UI and Device Remember Functionality for MFA
- How to disable Self-Registration for AWS Cognito User Pool from Terraform?
- AWS Amplify: How to map social providers attributes for an email based authentication?
- When I try to login using AWS Cognito I get an AccessDeniedException about my custom Lambda trigger
- AWS Cognito - Prevent Password Reuse
- AccessDeniedException while trying to do dynamodb:PutItem action