AWS cognito documentation change
Summary
Added documentation for custom sender Lambda triggers including account takeover notifications
Security assessment
Documents new security-related trigger (AccountTakeOverNotification) but doesn't address a specific vulnerability
Diff
diff --git a/cognito/latest/developerguide/cognito-user-pools-working-with-lambda-triggers.md b/cognito/latest/developerguide/cognito-user-pools-working-with-lambda-triggers.md index b9efac003..e1663258f 100644 --- a/cognito/latest/developerguide/cognito-user-pools-working-with-lambda-triggers.md +++ b/cognito/latest/developerguide/cognito-user-pools-working-with-lambda-triggers.md @@ -380,0 +381,10 @@ Custom message | `CustomMessage_Authentication` | Custom message when a user who +Custom sender triggers Trigger | triggerSource value | Event +---|---|--- +Custom sender | `CustomEmailSender_SignUp` `CustomSmsSender_SignUp` | When a user signs up in your user pool. +Custom sender | `CustomEmailSender_AdminCreateUser` `CustomSmsSender_AdminCreateUser` | When you create a user as an administrator and Amazon Cognito sends them a temporary password. +Custom sender | `CustomEmailSender_ForgotPassword` `CustomSmsSender_ForgotPassword` | When your user requests a password reset. +Custom sender | `CustomEmailSender_UpdateUserAttribute` `CustomSmsSender_UpdateUserAttribute` | When a user changes their email address or phone number and Amazon Cognito sends a verification code. +Custom sender | `CustomEmailSender_VerifyUserAttribute` `CustomSmsSender_VerifyUserAttribute` | When a user adds an email address or phone number and Amazon Cognito sends a verification code. +Custom sender | `CustomEmailSender_Authentication` `CustomSmsSender_Authentication` | When a user who has configured SMS or email MFA or OTP signs in. +Custom sender | `CustomEmailSender_AccountTakeOverNotification` | When your threat protection settings take an automated action against a user's sign-in attempt and the action for the risk level includes a notification. +