I am trying to figure out what is the authentication flow with AWS Cognito (from a golang client for instance, or python with Boto). Basically registered user gets a token from Cognito and uses it to log in to the app server.
What I figured out so far:
- User sign in with SignUp()
- User Code Verification with ConfirmSignUp()
- How does the user get its token?
- How does the user provide it's token to a 3rd party server?
- How does the 3rd party server verify the user token ?
The official documentation is talking about Authentication Challenge but I do not see it in the Golang or Python API libraries. How can I validate steps 3, 4 and 5 please ?
Thank you very much in advance
API Doc: https://docs.aws.amazon.com/sdk-for-go/api/service/cognitoidentityprovider http://boto3.readthedocs.io/en/latest/reference/services/cognito-idp.html