cloudfront-auth VS SuperTokens Community

If you already have existing users in google, github, or something like that, maybe look at this https://github.com/Widen/cloudfront-auth and skip cognito.

This article shows how to deploy your own EventCatalog in AWS CloudFront via Terraform and updates to the Catalog via CI/CD (CircleCi in this case, but can be easily applied to other CI systems). It also shows how to use Lambda@Edge to implement Google SSO / OpenID Connect via the Widen/cloudfront-auth Project.

Using it to allow Google Workspace auth access control to static websites. Leverages https://github.com/Widen/cloudfront-auth

aws.amazon.com Recognition The earlier AWS blog that investigated wiring up Cognito authentication with Lambda@Edge: https://aws.amazon.com/blogs/networking-and-content-delivery/authorizationedge-how-to-use-lambdaedge-and-json-web-tokens-to-enhance-web-application-security/ A gist that shows how to add Basic Authentication using Lambda@Edge: https://gist.github.com/lmakarov/e5984ec16a76548ff2b278c06027f1a4 An open-source project that uses a similar approach to secure CloudFront distributions, but does not yet support Cognito (at the time of this writing): https://github.com/Widen/cloudfront-auth Additional resources Check out the code on GitHub to see how the sample solution is built. You can deploy and run the code yourself: https://github.com/aws-samples/cloudfront-authorization-at-edge. You can deploy the Amazon Cognito resources from the sample solution directly from the AWS Serverless Application Repository. 10

1) Make sure your bucket is private. 2) Set up CloudFront with Origin Access Identity 3) Use Lambda@Edge for authentication.

Checkout https://supertokens.com/ - open source alternative to Auth0. It has a lot of free features and if you self host it, it's free at any scale. For our managed service, it's still far cheaper compared to Auth0.

SuperTokens

Building auth for your SaaS product shouldn't be hard. Try these free solutions for your next project 👇 http://supabase.com/auth free up to 50k users/month http://firebase.google.com/products/auth free up to 50k users/month http://aws.amazon.com/cognito free up to 50k users/month http://clerk.com free up to 10k users/month http://kinde.com free up to 7.5k users/month https://www.descope.com free up to 7.5k users/month https://supertokens.com free up to 5k users/month Save for later! Besides users/month what other features do you look for in auth products?

The Developer-First Security Week event is on August 7-11. The theme is shifting left with a security mindset with top expert speakers from Snyk, BoxyHQ, Microsoft, Google, Gitlab, Bearer, SuperTokens, Cerbos, and more...Come learn with us as the speakers dive into complex topics on Authorization, Authentication, Data Privacy.

Supertokens dont reinvent, just reuse

GitHub: https://github.com/supertokens/supertokens-core Website: https://supertokens.com/

Signing up - You're not actually signing up to anything. Supertokens (open source auth provider) is running locally on your machine. It's just a means for you to be able to have an account (and soon invite others to your project to collaborate together). The data doesn't leave your computer.