AWS cognito documentation change
Summary
Updated SAML logout endpoint URL format
Security assessment
Corrects URL structure but no evidence this addresses a security issue.
Diff
diff --git a/cognito/latest/developerguide/cognito-user-pools-identity-provider.md b/cognito/latest/developerguide/cognito-user-pools-identity-provider.md index 26cc1c261..b60ead8ac 100644 --- a/cognito/latest/developerguide/cognito-user-pools-identity-provider.md +++ b/cognito/latest/developerguide/cognito-user-pools-identity-provider.md @@ -169 +169 @@ You can use federation for Amazon Cognito user pools to integrate with a SAML id - 7. Choose **Add sign-out flow** if you want Amazon Cognito to send signed sign-out requests to your provider when a user logs out. Configure your SAML 2.0 identity provider to send sign-out responses to the `https://`mydomain.us-east-1.amazoncognito.com`/saml2/logout` endpoint that Amazon Cognito creates when you configure managed login. The `saml2/logout` endpoint uses POST binding. + 7. Choose **Add sign-out flow** if you want Amazon Cognito to send signed sign-out requests to your provider when a user logs out. Configure your SAML 2.0 identity provider to send sign-out responses to the `https://`mydomain.auth.us-east-1.amazoncognito.com`/saml2/logout` endpoint that Amazon Cognito creates when you configure managed login. The `saml2/logout` endpoint uses POST binding.