There Was a Problem Creating Your User Pool Please Try Again
AWS Cognito is a service provided by Amazon Web Services, and is bachelor in AppSheet Enterprise subscriptions. It allows you lot to set your own authentication source. You lot tin can provision users with explicit passwords or using one of their existing social sign-in accounts, and you utilize Cognito to control secure access to your AppSheet apps. There are iii reasons to exercise this:
-
You would like to manage user access control at a scale that goes beyond simple permit lists.
-
Y'all desire to be able to provision and manage the users, control password policy, and use other richer characteristics of an hallmark source.
-
You cannot use your corporate domain controller as an auth source, considering your users come from outside your corporate domain.
Using AWS Cognito requires that you ready an AWS business relationship. This is non part of the AppSheet service. This article explains the basics of setting upwardly a Cognito service and configuring it to be accessible from your AppSheet account.
Step ane: Open the Cognito service in AWS
Go to http://aws.amazon.com, sign into the console, and navigate to Cognito past typing it into the Find Services search bar.
Footstep 2: Configure a User Puddle in your Cognito service
Click "Manage User Pools."
Then click "Create a user pool."
In the adjacent few steps, we will create and configure a User Pool. The users in the User Pool will define the people who have admission to your app.
Pace 2a: Requite your app a name
You lot can create as many user pools as you demand. Some app creators choose to make a user puddle for each app. Others choose to utilize a single user pool to multiple apps. Whatever your apply example, choose a name that will help you know what app(s) this user pool applies to. Then click "Pace through settings."
Footstep 2b: Select sign in method
Select how you will let users to sign in. AppSheet recommends having users sign in via e-mail. Since email addresses are unique, they piece of work really well inside apps as unique identifiers. The email each user signs up with will be accessible inside your app using the USEREMAIL() formula.
You can require users to enter additional information nether "Which standard attributes do you want to crave?" These standard attributes will exist visible in the Cognito User Pool. However, the standard attributes are not accessible from inside AppSheet apps.
Step 2c: Gear up countersign requirements
On this screen you tin can choose what requirements to apply to passwords. Too, you tin choose whether users can sign themselves upwardly.
If y'all allow users to sign themselves up, and then new users will see a sign up link the first fourth dimension they access the app. Clicking the link will accept them to a sign up page where they can create a user profile. This would permit anyone with a link to the app to sign upwardly.
If you simply let administrators to create users, then the sign upwards link volition exist hidden. An admin with admission to the AWS Cognito business relationship will need to add the user to the User Pool. This will ship an automatic electronic mail to the user with their temporary password. The user will be prompted to change their password on first login.
Step 2d: Require user verification
Multi-factor authentication and SMS message are both optional.
AppSheet strongly recommends verifying the user data.
Footstep 2e: Email address customization
Yous can customize the e-mail address from which automatic emails will be sent. This is optional, only recommended by AWS equally a best practise
Pace 2f: Email message customization
You can customize the automated email messages. These fields accept standard html tags. If yous want to add a line intermission, you can use the html tag: <br />
Step 2g: Tags
Tags are optional and non used for basic setups. For more than information nigh tags, please run across the Amazon assist physician here.
Stride 2h: Call up user's devices
Remembering a user'south device is also optional. Nosotros recommend that you set up this choice to No. Once sign-in occurs, AppSheet remembers the user even if the app is closed or the device is restarted. It is but if the user explicitly logs off AppSheet that the Cognito authentication is requested again. At this stage, you would normally want to brand sure the sign-in process occurs once more. If you ask Cognito to recall the user's devices, then Cognito will brusque-circuit the sign-in process and automatically sign-in the existing user. This is unremarkably not the desired beliefs.
Step 2i: Add an App Customer
Click to "Add an app customer." When you lot ascertain an app "customer" in Cognito, y'all are telling Cognito to await AppSheet to interact with it to ask users to sign in.
Requite your App Customer a name and bank check the box to generate customer hugger-mugger. Then click "Create app client." Cognito volition create a Customer Id and a Customer Secret, which yous can admission after setup is complete. Y'all will need this information when configuring your app dorsum in AppSheet.
It is of import that you exercise not bank check the 2nd pick ("Only allow ...."). This will prevent the standard OAuth2.0 authentication process from succeeding.
Footstep 2j: Triggers
Triggers are an advanced option that allow you to further customize the authentication process. They are optional and non required for the bones setup.
Step 2k: Review
Review your settings and click "Create pool"
Stride 2l: Set the callback URLs
Navigate to "App client settings" in the lefthand menu. These settings allow us to tell Cognito how to respond when AppSheet interacts with information technology.
Re-create the following callback URLs and paste them in the Callback URL(s) field. They are case sensitive and must be separated by a comma and a space.
https://www.appsheet.com/Account/ELC, http://localhost:53519/Account/ELC
Delight annotation the second callback url is not strictly required --- it is simply necessary if you request AppSheet to debug your application at some point in the hereafter.
Footstep 2m: Ascertain the Domain for your Cognito User Pool
Navigate to "Domain name" in the lefthand menu. You can assign a real domain or a fake domain (eg: 'appsheettest' in the instance below).
You will need the full domain (e.m. https://{yourdomainname}/auth/{AWS region}/amazoncognito.com) when configuring your app back in AppSheet.
Stride 3: Configure your AppSheet business relationship
Now that you accept set up your Cognito User Pool, you need to annals it in your AppSheet business relationship. Do so from the My Account > Integrations > Auth Domains pane.
Step 3a: Add a new auth domain
Click "+ Add Auth Domain," give your auth domain a name, and select AWS Cognito as the provider
Step 3b: Configure it with the Cognito information
The App Customer ID and App Client Secret come from the "App clients" page in the lefthand menu of the Cognito settings dashboard. The Domain Endpoint comes from the "Domain name" page in the lefthand menu of the Cognito settings dashboard.
Step iv: Configure your app
You tin at present use this domain auth source in whatsoever of your apps. To connect your app to the auth source, get to the Security > Domain Authentication page.
Toggle the "Require domain authentication" option on.
Then cull the Authentication domain source. The proper noun y'all see here corresponds to what you setup in stride 3a above.
Delight note that when AppSheet does not currently support the ability to select an Hallmark domain or Authentication grouping when working with Cognito. These options can be left at their default values as seen higher up.
Step 5: Test it out
Navigate to the Users > Links page and catch the Browser Link. Open a new individual session in your browser (incognito in Chrome), and paste the url. You lot volition see the option to authenticate with Cognito!
Additional UI Customization
Cognito allows you to customize the expect and feel of the login page. Admission these settings by going to the "UI customization" page in the lefthand bill of fare of the Cognito settings dashboard.
Source: http://help.appsheet.com/en/articles/2424111-user-access-control-via-aws-cognito
0 Response to "There Was a Problem Creating Your User Pool Please Try Again"
Post a Comment