As the AWS liaison for a major client, I have the chance to compile a list of improvements for AWS Cognito User Pools. So far, I've mentioned the need for "multi-region support" and the ability to "edit/remove attributes." I'd love to hear your thoughts on other bugs that need fixing or valuable features that should be added. I've heard about a GitHub Issues board with a list of Cognito bugs, but I can't find it. Any suggestions would be great!
5 Answers
I would love to see the migration options improved so we can move users to new pools without hassle. Plus, being able to validate a user’s password without requiring MFA every time would streamline processes so much!
What about the ability to function as an OIDC upstream? That would certainly enhance the utility of Cognito, making it compatible with more tools out there.
Better documentation is a must! Let’s face it, the existing setup guidance is outdated. Also, adding more comprehensive SAML support would improve the whole experience, especially for those who transition from OIDC.
Totally agree on the documentation! Plus, it would help if Cognito could act as a SAML IdP. There are tools that can only communicate via SAML.
One big request is for a backup and restore feature for user pools. It would be ideal if we could do this without losing passwords and MFA settings. That would be a game-changer!
Exactly! An easy user reset flow would be great too, without needing to send plaintext passwords like we currently have to.
Here are some features I think would be super helpful:
- SCIM support
- Cross-pool identity providers
- A straightforward way to export users to S3/CSV, just like we can import them
- Custom SAML identifiers when using custom domains
- Usage statistics that don't require digging through logs manual
My thoughts exactly! Also, being able to pull multiple user IDs at once would save a ton of time!