Amazon Cognito
Developer Guide

Amazon Cognito User Pools

Create and maintain a user directory and add sign-up and sign-in to your mobile app or web application using user pools. User pools scale to hundreds of millions of users and are designed to provide simple, secure, and low-cost options for you as a developer.

You can use user pools to add user registration and sign-in features to your apps. Instead of using external identity providers such as Facebook, or Google, you can use user pools to let users register with or sign in to an app using an email address, phone number, or a user name. You can also create custom registration fields and store that metadata in your user directory. You can verify email addresses and phone numbers, recover passwords, and enable multi-factor authentication (MFA) with just a few lines of code.

User pools are for mobile and web app developers who want to handle user registration and sign-in directly in their apps. Previously, you needed to implement your own user directory to create user accounts, store user profiles, and implement password recovery flows to support user registration and sign-in.

User pools integrate easily with the existing Amazon Cognito functionality for anonymous and social identities. In addition, a user can start as an anonymous user and then either sign in using a social identity or using user pools to register and sign in using email, phone number, or user name.

Amazon Cognito User Pools are compliant with SOC 1-3, PCI DSS, ISO 27001, and is HIPAA-BAA eligible.

You can get started with user pools by using the AWS Management Console, the AWS Command Line Interface, or the APIs provided in one of our SDKs. For more information, see Setting up User Pools.

To learn more about user pool settings, such as attributes, policies, multi-factor authentication, and triggers, see Step Through Amazon Cognito User Pool Settings in the AWS Management Console.