You are currently deploying an application that needs to have a sign-up and sign-in functionality added.
As much as possible, you would want to reduce the coding effort required for these modules.
You also need to ensure that code is executed automatically after the sign-in process is complete.
How can you achieve this? Choose 3 answers from the options below.
Click on the arrows to vote for the correct answer
A. B. C. D.Answer - A, C and D.
This is mentioned in the AWS Documentation.
###############
You can create an AWS Lambda function and then trigger that function during user pool operations such as user sign-up, confirmation, and sign-in (authentication) with a Lambda trigger.
You can add authentication challenges, migrate users, and customize verification messages.
##################
Option B is incorrect since IAM cannot simulate the sign-in and sign-up process that the application would require.
For more information on using Lambda triggers with AWS Cognito, please refer to the below URL-
https://docs.aws.amazon.com/cognito/latest/developerguide/cognito-user-identity-pools-working-with-aws-lambda-triggers.htmlThe best way to add sign-up and sign-in functionality to your application while minimizing coding effort is to use an existing service that provides these features. AWS provides two services that can help you achieve this: Cognito and IAM. Both services provide user authentication and access control mechanisms, but they differ in their intended use cases.
Option A: Use the AWS Cognito service to provide the sign-up and sign-in functionality. Amazon Cognito is a managed service that provides authentication, authorization, and user management for web and mobile applications. It makes it easy to add user sign-up and sign-in functionality to your applications, and also supports social identity providers such as Facebook, Google, and Amazon. With Cognito, you can create user pools to manage your users, and use the provided SDKs and APIs to authenticate your users and authorize access to your resources.
Option B: Use the AWS IAM service to provide the sign-up and sign-in functionality. Amazon IAM (Identity and Access Management) is a service that helps you securely control access to AWS resources. While IAM is primarily intended for controlling access to AWS resources, it can also be used to provide user authentication and authorization for your own applications. IAM allows you to create users and groups, assign policies to control access to resources, and use the provided APIs to authenticate your users.
Option C: Use AWS Cloudwatch events to trigger code that will be run after the user sign-in process is complete. AWS CloudWatch is a monitoring and observability service that provides real-time insights into your application and infrastructure. It also supports events, which can be used to trigger code in response to certain events. You can configure CloudWatch to trigger a Lambda function or other code when a user signs in to your application, allowing you to perform additional actions such as logging or sending notifications.
Option D: Trigger a lambda function to execute the code associated with the post authentication event. AWS Lambda is a serverless compute service that allows you to run code without provisioning or managing servers. You can use Lambda to execute code in response to various events, including user authentication. With Lambda, you can create a function that will be triggered when a user signs in to your application, and then perform additional actions such as logging, sending notifications, or interacting with other AWS services.
In conclusion, the three options that can be used to achieve the required functionality are: