AWS Cognito OAuth 2.0 Credentials

Description

General

Documentation: https://docs.aws.amazon.com/cognito/index.html
Summary: AWS Cognito is an identity provider with a focus on client authentication for web and mobile. AWS Cognito provides OAuth 2.0 services and machine-to-machine authentication using client secrets, which is what this detector focuses on. This authentication scheme allows a client to create JWT tokens for accessing individual resources.

Note that another detector is available to catch cognito credentials with a complete hostname for checking.

Revoke the secret

Users cannot change secrets after an app has been created. Instead, users must create a new app with a new secret to rotate a secret or delete the app to block access from clients that use that app's client credentials. Changes can be made through the Cognito app in the AWS Management Console.

Details for `AWS Cognito OAuth 2.0 Credentials`

Family: credentials
Category: identity_provider
Company: Amazon Web Services
High recall: False
Validity check available: False
Analyzer available: False
Minimum number of matches: 2
Occurrences found for one million commits: 3.65
Prefixed: False

AWS Cognito OAuth 2.0 Credentials

Description

General

Revoke the secret

Details for `AWS Cognito OAuth 2.0 Credentials`

Was this page helpful?

Something we didn’t cover?

See our Roadmap

Subscribe on GitHub

Submit a request

API status

Description​

General​

Revoke the secret​

Details for AWS Cognito OAuth 2.0 Credentials​

Was this page helpful?

Something we didn’t cover?

See our Roadmap

Subscribe on GitHub

Submit a request

API status

Subscribe to our newsletter

Description

General

Revoke the secret

Details for `AWS Cognito OAuth 2.0 Credentials`