AWS Security ChangesHomeSearch

AWS cognito documentation change

Service: cognito · 2025-04-16 · Documentation low

File: cognito/latest/developerguide/authentication-flows-selection-managedlogin.md

Summary

Added clarification that managed login pages are a 'web front end for user pool authentication'

Security assessment

Change provides additional descriptive context about managed login pages but does not address security vulnerabilities or document security features

Diff

diff --git a/cognito/latest/developerguide/authentication-flows-selection-managedlogin.md b/cognito/latest/developerguide/authentication-flows-selection-managedlogin.md
index f823828ad..d8893e8b6 100644
--- a//cognito/latest/developerguide/authentication-flows-selection-managedlogin.md
+++ b//cognito/latest/developerguide/authentication-flows-selection-managedlogin.md
@@ -9 +9 @@ User pool settings for managed login
-You can invoke [managed login pages](./cognito-user-pools-managed-login.html) when you want users to sign in, sign out, or reset their password. In this model, your application imports OIDC libraries to process browser-based authentication attempts with user pool managed login pages. The forms of authentication that are available to your users are dependent on the configuration of your user pool and your app client. Implement the `ALLOW_USER_AUTH` flow in your app client, and Amazon Cognito prompts users to select a sign-in method from the available options. Implement `ALLOW_USER_PASSWORD_AUTH` and assign a SAML provider, and your login pages prompt users with the option to enter their username and password or to connect with their IdP.
+You can invoke [managed login pages](./cognito-user-pools-managed-login.html), a web front end for user pool authentication, when you want users to sign in, sign out, or reset their password. In this model, your application imports OIDC libraries to process browser-based authentication attempts with user pool managed login pages. The forms of authentication that are available to your users are dependent on the configuration of your user pool and your app client. Implement the `ALLOW_USER_AUTH` flow in your app client, and Amazon Cognito prompts users to select a sign-in method from the available options. Implement `ALLOW_USER_PASSWORD_AUTH` and assign a SAML provider, and your login pages prompt users with the option to enter their username and password or to connect with their IdP.