How to respond to AWS Cognito DEVICE_SRP_AUTH for remember/trust device feature?How do I get credentials on AWS? Must I use AWS Cognito SDK or AWS SDK?Amazon Cognito: How to pass credentials to server-side applicationHow to remember & autorefresh login token when using Amazon Web Services Cognito Userpool?AWS Lambda API gateway with Cognito - how to use IdentityId to access and update UserPool attributes?How to implement *Remember me* option using Amazon Cognito sdk?Android Custom Auth with LambdasPasswordless Cognito with SMS MFAHow to get refresh token using amazon cognito in case of Preauthenticated UserAWS Cognito custom auth flow with USER_PASSWORD_AUTHContinue with custom auth flow after NEW_PASSWORD_REQUIRED challenge is answered in AWS Cognito
Why is strlen so complex in C?
Redacting URLs as an email-phishing preventative?
How do I feed my black hole?
Unlock your Lock
What is Spectral Subtraction for noise reduction?
Boot Windows from SAN
If the Shillelagh cantrip is applied to a club with non-standard damage dice, what is the resulting damage dice?
Duplicate instruments in unison in an orchestra
Cost of oil sanctions to world's consumers
"There were either twelve sexes or none."
Cooking Scrambled Eggs
Is first Ubuntu user root?
Changing JPEG to RAW to use on Lightroom?
How do we tell which part of kinetic energy gives rise to temperature?
How many lines of code does the original TeX contain?
Gambler coin problem: fair coin and two-headed coin
Anyone else seeing white rings in the Undead parish?
Is the negative potential of 書く used in this sentence and what is its meaning?
Why is the UK so keen to remove the "backstop" when their leadership seems to think that no border will be needed in Northern Ireland?
Prevent use of CNAME record for untrusted domain
Papers on arXiv solving the same problem at the same time
Can an Arcane Focus be embedded in one's body?
Hangman game in Python - need feedback on the quality of code
How long do you think advanced cybernetic implants would plausibly last?
How to respond to AWS Cognito DEVICE_SRP_AUTH for remember/trust device feature?
How do I get credentials on AWS? Must I use AWS Cognito SDK or AWS SDK?Amazon Cognito: How to pass credentials to server-side applicationHow to remember & autorefresh login token when using Amazon Web Services Cognito Userpool?AWS Lambda API gateway with Cognito - how to use IdentityId to access and update UserPool attributes?How to implement *Remember me* option using Amazon Cognito sdk?Android Custom Auth with LambdasPasswordless Cognito with SMS MFAHow to get refresh token using amazon cognito in case of Preauthenticated UserAWS Cognito custom auth flow with USER_PASSWORD_AUTHContinue with custom auth flow after NEW_PASSWORD_REQUIRED challenge is answered in AWS Cognito
.everyoneloves__top-leaderboard:empty,.everyoneloves__mid-leaderboard:empty,.everyoneloves__bot-mid-leaderboard:empty margin-bottom:0;
I have AWS Cognito based auth implementation on a Node App (Server-side, not using Amplify.
I have been using adminInitiateAuth with AuthFlow ADMIN_NO_SRP_AUTH and it gives SOFTWARE_TOKEN_MFA in ChallengeName for MFA which is working well.
Now I need remember/trust this device functionality.
For that, once I send DEVICE_KEY in adminInitiateAuth, I get DEVICE_SRP_AUTH as challenge.
I have tried using adminRespondToAuthChallenge
adminRespondToAuthChallenge(
ClientId: clientId,
UserPoolId: UserPoolId,
ChallengeName: 'DEVICE_SRP_AUTH',
ChallengeResponses:
PASSWORD_VERIFIER: "PasswordVerifier-used-when-doing-confirmDevice",
USERNAME: "user-id-for-srp",
DEVICE_KEY: "device-key"
)
I get SRP_A is required error message. I am not quite sure how to get SRP_A in there and now I am not sure it it is even right way to do remember this device functionality
I was hoping if I get through this, it will skip MFA and give me auth tokens that I need.
Can anyone guide me through this.
aws-sdk amazon-cognito
asked Mar 27 at 19:41
roxxypoxxyroxxypoxxy
1,9001 gold badge11 silver badges22 bronze badges
add a comment |
I have AWS Cognito based auth implementation on a Node App (Server-side, not using Amplify.
I have been using adminInitiateAuth with AuthFlow ADMIN_NO_SRP_AUTH and it gives SOFTWARE_TOKEN_MFA in ChallengeName for MFA which is working well.
Now I need remember/trust this device functionality.
For that, once I send DEVICE_KEY in adminInitiateAuth, I get DEVICE_SRP_AUTH as challenge.
I have tried using adminRespondToAuthChallenge
adminRespondToAuthChallenge(
ClientId: clientId,
UserPoolId: UserPoolId,
ChallengeName: 'DEVICE_SRP_AUTH',
ChallengeResponses:
PASSWORD_VERIFIER: "PasswordVerifier-used-when-doing-confirmDevice",
USERNAME: "user-id-for-srp",
DEVICE_KEY: "device-key"
)
I get SRP_A is required error message. I am not quite sure how to get SRP_A in there and now I am not sure it it is even right way to do remember this device functionality
I was hoping if I get through this, it will skip MFA and give me auth tokens that I need.
Can anyone guide me through this.
aws-sdk amazon-cognito
asked Mar 27 at 19:41
roxxypoxxyroxxypoxxy
1,9001 gold badge11 silver badges22 bronze badges
add a comment |
I have AWS Cognito based auth implementation on a Node App (Server-side, not using Amplify.
I have been using adminInitiateAuth with AuthFlow ADMIN_NO_SRP_AUTH and it gives SOFTWARE_TOKEN_MFA in ChallengeName for MFA which is working well.
Now I need remember/trust this device functionality.
For that, once I send DEVICE_KEY in adminInitiateAuth, I get DEVICE_SRP_AUTH as challenge.
I have tried using adminRespondToAuthChallenge
adminRespondToAuthChallenge(
ClientId: clientId,
UserPoolId: UserPoolId,
ChallengeName: 'DEVICE_SRP_AUTH',
ChallengeResponses:
PASSWORD_VERIFIER: "PasswordVerifier-used-when-doing-confirmDevice",
USERNAME: "user-id-for-srp",
DEVICE_KEY: "device-key"
)
I get SRP_A is required error message. I am not quite sure how to get SRP_A in there and now I am not sure it it is even right way to do remember this device functionality
I was hoping if I get through this, it will skip MFA and give me auth tokens that I need.
Can anyone guide me through this.
aws-sdk amazon-cognito
asked Mar 27 at 19:41
roxxypoxxyroxxypoxxy
1,9001 gold badge11 silver badges22 bronze badges
I have AWS Cognito based auth implementation on a Node App (Server-side, not using Amplify.
I have been using adminInitiateAuth with AuthFlow ADMIN_NO_SRP_AUTH and it gives SOFTWARE_TOKEN_MFA in ChallengeName for MFA which is working well.
Now I need remember/trust this device functionality.
For that, once I send DEVICE_KEY in adminInitiateAuth, I get DEVICE_SRP_AUTH as challenge.
I have tried using adminRespondToAuthChallenge
adminRespondToAuthChallenge(
ClientId: clientId,
UserPoolId: UserPoolId,
ChallengeName: 'DEVICE_SRP_AUTH',
ChallengeResponses:
PASSWORD_VERIFIER: "PasswordVerifier-used-when-doing-confirmDevice",
USERNAME: "user-id-for-srp",
DEVICE_KEY: "device-key"
)
I get SRP_A is required error message. I am not quite sure how to get SRP_A in there and now I am not sure it it is even right way to do remember this device functionality
I was hoping if I get through this, it will skip MFA and give me auth tokens that I need.
Can anyone guide me through this.
aws-sdk amazon-cognito
aws-sdk amazon-cognito
asked Mar 27 at 19:41
roxxypoxxyroxxypoxxy
1,9001 gold badge11 silver badges22 bronze badges
asked Mar 27 at 19:41
roxxypoxxyroxxypoxxy
1,9001 gold badge11 silver badges22 bronze badges
asked Mar 27 at 19:41
roxxypoxxyroxxypoxxy
1,9001 gold badge11 silver badges22 bronze badges
asked Mar 27 at 19:41
roxxypoxxyroxxypoxxy
1,9001 gold badge11 silver badges22 bronze badges
asked Mar 27 at 19:41
roxxypoxxyroxxypoxxy
1,9001 gold badge11 silver badges22 bronze badges
1,9001 gold badge11 silver badges22 bronze badges
add a comment |
add a comment |
0
active
oldest
votes
Your Answer
StackExchange.ifUsing("editor", function ()
StackExchange.using("externalEditor", function ()
StackExchange.using("snippets", function ()
StackExchange.snippets.init();
);
);
, "code-snippets");
StackExchange.ready(function()
var channelOptions =
tags: "".split(" "),
id: "1"
;
initTagRenderer("".split(" "), "".split(" "), channelOptions);
StackExchange.using("externalEditor", function()
// Have to fire editor after snippets, if snippets enabled
if (StackExchange.settings.snippets.snippetsEnabled)
StackExchange.using("snippets", function()
createEditor();
);
else
createEditor();
);
function createEditor()
StackExchange.prepareEditor(
heartbeatType: 'answer',
autoActivateHeartbeat: false,
convertImagesToLinks: true,
noModals: true,
showLowRepImageUploadWarning: true,
reputationToPostImages: 10,
bindNavPrevention: true,
postfix: "",
imageUploader:
brandingHtml: "Powered by u003ca class="icon-imgur-white" href="https://imgur.com/"u003eu003c/au003e",
contentPolicyHtml: "User contributions licensed under u003ca href="https://creativecommons.org/licenses/by-sa/3.0/"u003ecc by-sa 3.0 with attribution requiredu003c/au003e u003ca href="https://stackoverflow.com/legal/content-policy"u003e(content policy)u003c/au003e",
allowUrls: true
,
onDemand: true,
discardSelector: ".discard-answer"
,immediatelyShowMarkdownHelp:true
);
);
Sign up or log in
StackExchange.ready(function ()
StackExchange.helpers.onClickDraftSave('#login-link');
);
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Required, but never shown
StackExchange.ready(
function ()
StackExchange.openid.initPostLogin('.new-post-login', 'https%3a%2f%2fstackoverflow.com%2fquestions%2f55385274%2fhow-to-respond-to-aws-cognito-device-srp-auth-for-remember-trust-device-feature%23new-answer', 'question_page');
);
Post as a guest
Required, but never shown
0
active
oldest
votes
0
active
oldest
votes
active
oldest
votes
active
oldest
votes
Is this question similar to what you get asked at work? Learn more about asking and sharing private information with your coworkers using Stack Overflow for Teams.
Is this question similar to what you get asked at work? Learn more about asking and sharing private information with your coworkers using Stack Overflow for Teams.
Thanks for contributing an answer to Stack Overflow!
- Please be sure to answer the question. Provide details and share your research!
But avoid …
- Asking for help, clarification, or responding to other answers.
- Making statements based on opinion; back them up with references or personal experience.
To learn more, see our tips on writing great answers.
Sign up or log in
StackExchange.ready(function ()
StackExchange.helpers.onClickDraftSave('#login-link');
);
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Required, but never shown
StackExchange.ready(
function ()
StackExchange.openid.initPostLogin('.new-post-login', 'https%3a%2f%2fstackoverflow.com%2fquestions%2f55385274%2fhow-to-respond-to-aws-cognito-device-srp-auth-for-remember-trust-device-feature%23new-answer', 'question_page');
);
Post as a guest
Required, but never shown
Sign up or log in
StackExchange.ready(function ()
StackExchange.helpers.onClickDraftSave('#login-link');
);
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Required, but never shown
Sign up or log in
StackExchange.ready(function ()
StackExchange.helpers.onClickDraftSave('#login-link');
);
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Required, but never shown
Sign up or log in
StackExchange.ready(function ()
StackExchange.helpers.onClickDraftSave('#login-link');
);
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
