场景简介
During Web or App Development, users' authentication and permission processing are a very important module, including user registration, login authentication, and management corresponding permissions. In addition to the username password login, it is also very important to log in through third-party social account. It is mainly Google, Facebook or Apple Login, etc., which is mainly WeChat, Weibo login, etc.
Identity authentication and authorization implementation are complicated, so the Cognito service is provided on the AWS cloud to help developers are faster and safer to access user registration / login and access control functions. The Cognito service allows companies to spend more energy on the core business, pay attention to innovation, income, not too much attention to identity authentication and authorization-related underlying technical details.
Authing 的价值
AWS Cognito User Pool Service is not online in the domestic area, for companies who want to use Cognito IDaaS services in China, Authing will be better. Authing can solve many problems using Cognito, Using Authing User Pool, you can fully replace Cognito User Pool to build a bridge between domestic users and AWS resources.
Architecture design
Demonstrate the overall structure of the website
The static website is hosted by S3, and the static content acceleration and the HTTPS certificate mount are carried out by CloudFront.
Using Authing to authenticate the login and obtain the token, as an alternative to the user pool.
Access the Rest API provided by API Gateway.
Obtain temporary AWS credentials through Cognito Identity Pool to access AWS resources (here, take Polly service as an example).
How Authing support various scenarios
API 安全
在零信任环境中提高 API 安全性并确保内部和外部合作伙伴用例的合规性可能非常具有挑战性。Authing 基于开放标准的方法提供端到端的 API 安全和管理。
对于用户
通过支持所有 OAuth 2.0 授权流以及细粒度的范围和权限,轻松保护和公开您的 API,从而扩大市场范围并提供更好的用户体验。
对于应用和系统
只需轻按一下开关,即可轻松促进 API 与非交互式外部客户端以及内部 API 之间的安全通信。
对于企业开发者
使第三方应用服务器、API 和系统后端能够向您的 API 发出经过身份验证的请求,同时始终保持对精细范围和权限的控制。
众多合规认证,保障身份安全
毋庸置疑,客户数据安全性和合规性是大多数公司的首要考虑因素。Authing 在产品中内置了先进的安全性,因此您无需为您的用户和业务安全忧虑。
行业标准协议:通过采用支持 OAuth 和 OpenID Connect 等行业认证标准的身份平台,提高业务运营和执行的一致性和连续性。
合规性和认证:Authing 拥有多项国内国际合规认证,包括国家三级等保、SOC 2、GDPR、ISO 9001、CCPA、PCI、HIPAA 和 FERPA 等,誓要保障每一位用户、每一个业务的安全。
公共和私有云:在 Authing 的公共云、我们的私有云或您的 AWS 环境中托管您的应用。我们高度可用的多租户云服务每天可以处理大量交易。
快速集成 五分钟实现
单点登录、认证授权、权限管理等功能
