Setup Guide for AWS Cognito App

  • Go to Amazon Console and sign up/log in to your account to Configure AWS Cognito.
    • AWS Cognito SSO - Login to your AWS Cognito Application
  • Search for Cognito in the AWS Services search bar as shown below.
    • AWS Cognito SSO - Search Cognito in App Services
  • Click on Create a User Pool button to create a new User Pool.
    • AWS Cognito SSO - Create User Pool
  • Select the Application type as a Traditional web application. Provide a name for your application and choose the attributes in your user pool to be used during the sign-in process. Select the attributes that you require during the sign-up process from the Required attributes for the sign-up section.
    • AWS Cognito SSO - Provide User Pool Details
  • Add callback URL in the Return URL field under the Add a Return URL section. You will get this callback URL from the plugin. Click on the Create button.
    • AWS Cognito SSO - Paste Callback URL
  • Scroll down and click on the Go to Overview button.
    • AWS Cognito SSO - Click on Go to Overview button
  • To configure how your user pool sends email messages to users, navigate to the Authentication methods under the Authentication tab and click on Edit under the Email section.
    • AWS Cognito SSO - Navigate to Authentication Tab
  • Here you can add email address from which your user pool sends email messages to users. Click on Save Changes.
    • AWS Cognito SSO - Provide Email to Send message
  • Navigate to the App Clients tab under the Applications section, and select your App Client. If you don't have an app client, then click on Create app client button.
    • AWS Cognito SSO - Navigate to App Client Section
  • Copy the Client ID and Client Secret and keep them handy as they will be used in further steps.
    • AWS Cognito SSO - Copy Client ID and Secret
  • Go to the Attribute permissions tab. Click on the Edit and select the attributes that you want during the sign-up process. Click on Save.
    • AWS Cognito SSO - Select Attributes you want in Shopify
  • Now go to the Login pages tab and click on the Edit button as shown in the below image.
    • AWS Cognito SSO - Click on Edit for SSO Configurations
  • Verify that the Callback URL is added to the URL field under the Allowed Callback URLs section and under the Identity Provider section, the Identity Provider selected is the Cognito user pool, and select Authorization code grant under the OAuth 2.0 grant types. Under the OpenID Connect scopes section the scopes selected are Email, OpenID, and Profile. (Please refer to the images below) Click on the Save Changes button.
    • AWS Cognito SSO - Select Authorization Code Grant
    AWS Cognito SSO - OAuth Grant Type and Scopes
  • Go to the Users tab under the User Management section, and click Create user.
    • AWS Cognito SSO - Create New user
  • Enter details such as email address, phone number & password. Click on Create user to save the details.
    • AWS Cognito SSO - provide email, password

You have completed the AWS Cognito side configuration to configure SSO into Atlassian application using AWS Cognito Credentials.