I'm currently developing a project that requires internal applications to communicate with each other using JWT token authentication. I'm leveraging AWS Cognito in conjunction with IRSA to obtain and exchange tokens for calling one service from another. However, when I consulted an AI tool about this architecture, it suggested that Cognito is primarily intended for end-user authentication and recommended alternatives like IAM with SigV4, which raised some doubts for me. Since I'm not particularly experienced with AWS, I'm wary of relying on AI-generated advice. I've looked online for more information but struggled to find a solid resource addressing when Cognito might not be the best tool for this use case. Does anyone have suggestions on evaluating if my architecture is the right fit?
1 Answer
You should definitely check out a podcast that dives into machine-to-machine authentication using Cognito with OAuth2 and API Gateway. It offers great insights on how to architect for such use cases effectively. Here’s the link: https://developers.podcast.go-aws.com/web/episodes/170/index.html.
Thanks for the recommendation! I'll give that podcast a listen and reach out if I have more questions.