AWS cognito documentation change
Summary
Added new lambda trigger events for authentication flows including PostAuthentication and VerifyAuthChallenge
Security assessment
While lambda triggers can be used for security purposes, the changes simply document additional available trigger points without specifying security implementations or vulnerabilities.
Diff
diff --git a/cognito/latest/developerguide/cognito-user-pools-working-with-lambda-triggers.md b/cognito/latest/developerguide/cognito-user-pools-working-with-lambda-triggers.md index c5cbe6f97..b920e6731 100644 --- a//cognito/latest/developerguide/cognito-user-pools-working-with-lambda-triggers.md +++ b//cognito/latest/developerguide/cognito-user-pools-working-with-lambda-triggers.md @@ -386,0 +387 @@ Custom SMS sender | `CustomSMSSender_SignUp` +Post authentication | `PostAuthentication_Authentication` @@ -388,0 +390 @@ Create auth challenge | `CreateAuthChallenge_Authentication` +Verify auth challenge | `VerifyAuthChallenge_Authentication` @@ -393,0 +396,8 @@ Custom SMS sender | `CustomSMSSender_Authentication` +[RespondToAuthChallenge](https://docs.aws.amazon.com/cognito-user-identity-pools/latest/APIReference/API_RespondToAuthChallenge.html) [AdminRespondToAuthChallenge](https://docs.aws.amazon.com/cognito-user-identity-pools/latest/APIReference/API_AdminRespondToAuthChallenge.html) | Post authentication | `PostAuthentication_Authentication` +Define auth challenge | `DefineAuthChallenge_Authentication` +Create auth challenge | `CreateAuthChallenge_Authentication` +Verify auth challenge | `VerifyAuthChallenge_Authentication` +Pre token generation | `TokenGeneration_Authentication` `TokenGeneration_AuthenticateDevice` `TokenGeneration_RefreshTokens` +Custom message | `CustomMessage_Authentication` +Custom email sender | `CustomEmailSender_AccountTakeOverNotification` `CustomEmailSender_Authentication` +Custom SMS sender | `CustomSMSSender_Authentication`