aws cognito用户池域 - Invalid_Request

Question

我创建了一个用户池和设置域,其中包含应用客户端设置()以主持注册并在cognito本身登录页面.当我尝试使用类似于的网址 -

https://myDomain.auth.us-east-1.amazoncognito.com/login?response_type=code&client_id=fkjfkasjfkasjfdweinfskfsfsfnk&redirect_uri=https://google.com

在浏览器中我被重定向到

https://myDomain.auth.us-east-1.amazoncognito.com/error?error=invalid_request#

注意:我尝试使用Cognito用户池和Facebook身份提供商,但未启用OAuth2.

我错过了什么吗？

Answer 1

它适用于我的以下用户池设置.

App integration
    App client settings
        Enabled Identity Providers
            ? Facebook  ? Cognito User Pool
        Callback URL(s)
            https://google.com
        OAuth 2.0
            Allowed OAuth Flows
            ? Authorization code grant  ? Implicit grant  ? Client credentials
        Allowed OAuth Scopes
            ? phone  ? email  ? openid  ? aws.cognito.signin.user.admin  ? profile

Answer 2

You're doing everything correct from what you've describe, but you should check the following,

• Have you added https://google.com in App Client Setting as Callback URL?

• Have you checked your Identity Provider in Enabled Identity Providers?

• In Allowed OAuth Flows, you must have checked "Authorization Code Grant".