Architecture overview

Deploying this guidance with the default parameters builds the following environment in the AWS Cloud.

Cognito User Profiles Export Reference Architecture architecture on AWS

In the primary AWS Region, an Amazon CloudWatch scheduled event invokes the AWS Step Functions export workflow, which examines the primary Amazon Cognito user pool. It stores user profiles, groups, and group membership information in the global table.

Note: This Guidance does not create the primary user pool.
When the export workflow is complete, Step Functions sends a completion or error message to the Amazon Simple Notification Service (Amazon SNS) topic for logging or troubleshooting.
Amazon DynamoDB asynchronously replicates all data to the backup Region for added resiliency.
In your backup Region, use the same Step Functions import workflow as seen in Step 2 to import data from global table to populate a new, empty Amazon Cognito user pool. This enables you to easily recover user profiles, groups, and group memberships.

Note: This Guidance does not create the new user pool.
A mapping comma-separated values (CSV) file uploads to the guidance’s Amazon Simple Storage Service (Amazon S3) bucket. This CSV file maps the line number reported by Amazon Cognito to the subattribute of the corresponding users for inclusion in the troubleshooting error message.
When the import workflow is complete, Step Functions sends a completion or error message to an Amazon SNS topic for logging or troubleshooting.

Warning Javascript is disabled or is unavailable in your browser.

To use the Amazon Web Services Documentation, Javascript must be enabled. Please refer to your browser's Help pages for instructions.

Cost

Guidance components