AWS Security ChangesHomeSearch

AWS cognito documentation change

Service: cognito · 2025-04-16 · Documentation low

File: cognito/latest/developerguide/amazon-cognito-user-pools-using-tokens-with-identity-providers.md

Summary

Updated terminology and link references for token documentation consistency

Security assessment

Changes are editorial improvements (e.g., 'artifacts of authentication' phrasing, link text updates) without addressing specific security vulnerabilities or adding security features.

Diff

diff --git a/cognito/latest/developerguide/amazon-cognito-user-pools-using-tokens-with-identity-providers.md b/cognito/latest/developerguide/amazon-cognito-user-pools-using-tokens-with-identity-providers.md
index f99b8c042..aab256d55 100644
--- a//cognito/latest/developerguide/amazon-cognito-user-pools-using-tokens-with-identity-providers.md
+++ b//cognito/latest/developerguide/amazon-cognito-user-pools-using-tokens-with-identity-providers.md
@@ -7 +7 @@
-Tokens authenticate users and grant access to resources. The _claims_ in tokens are information about your user. The ID token contains claims about their identity, like their username, family name, and email address. The access token contains claims like `scope` that the authenticated user can use to access third-party APIs, Amazon Cognito user self-service API operations, and the [userInfo endpoint](./userinfo-endpoint.html). The access and ID tokens both include a `cognito:groups` claim that contains your user's group membership in your user pool. For more information about user pool groups, see [Adding groups to a user pool](./cognito-user-pools-user-groups.html).
+Tokens are artifacts of authentication that your applications can use as proof of OIDC authentication and to request access to resources. The _claims_ in tokens are information about your user. The ID token contains claims about their identity, like their username, family name, and email address. The access token contains claims like `scope` that the authenticated user can use to access third-party APIs, Amazon Cognito user self-service API operations, and the [userInfo endpoint](./userinfo-endpoint.html). The access and ID tokens both include a `cognito:groups` claim that contains your user's group membership in your user pool. For more information about user pool groups, see [Adding groups to a user pool](./cognito-user-pools-user-groups.html).
@@ -39 +39 @@ Additional costs apply to access token customization with version 2 events. For
-  * [Understanding the refresh token](./amazon-cognito-user-pools-using-the-refresh-token.html)
+  * [Refresh tokens](./amazon-cognito-user-pools-using-the-refresh-token.html)
@@ -43 +43 @@ Additional costs apply to access token customization with version 2 events. For
-  * [Verifying a JSON Web Token](./amazon-cognito-user-pools-using-tokens-verifying-a-jwt.html)
+  * [Verifying JSON web tokens](./amazon-cognito-user-pools-using-tokens-verifying-a-jwt.html)