What is Amazon Cognito?
Amazon Cognito is a service used for authentication, authorization, and user management for web or mobile applications.
Amazon Cognito allows customers to sign in through social identity providers such as Google, Facebook, and Amazon, and through enterprise identity providers such as Microsoft Active Directory.
Amazon Cognito User Pools is a standards-based Identity Provider and supports Oauth 2.0, SAML 2.0, and OpenID Connect. Amazon Cognito identity pools are useful for both authenticated and unauthenticated identities.
Two main components of Amazon Cognito
User pools are user repositories which is used to store user profile details that provide sign-up and sign-in options for your app users.
Identity pools are user repositories of an account, which provide temporary and limited- permission AWS credentials to the users so that they can access other AWS resources without re-entering their credentials.