DEV Community

Dario Djuric
Dario Djuric

Posted on • Originally published at darios.blog

Adding Cognito user via AWS API

#aws #cognito

Cognito is a fully managed identity service provided by AWS. It allows developers to easily add user sign-up, sign-in, and access control to their applications. When it comes to user registration, users can be added through the AWS console, the AWS CLI, or the AWS API. Some services, like AWS Amplify, come with user registration out of the box with an easy to use API.

What if you wanted to add more Cognito users in a bulk? It would make sense to write a script for that, and use the AWS API. This blog post will show you how.

Start off by installing the AWS SDK.

npm install aws-sdk
Enter fullscreen mode Exit fullscreen mode

Then, create a JavaScript file and import the SDK:

const aws = require('aws-sdk');
Enter fullscreen mode Exit fullscreen mode

Before using the API, you need to set up your credentials. If you store your AWS credentials in the AWS config file, create a new instance of SharedIniFileCredentials:

const credentials = new AWS.SharedIniFileCredentials({ profile: 'YOUR_AWS_PROFILE' });
Enter fullscreen mode Exit fullscreen mode

If you use AWS SSO, you will need to npm install @aws-sdk/credential-provider-sso and then use its fromSSO function:

const { fromSSO } = require('@aws-sdk/credential-provider-sso');
const credentials = await fromSSO({ profile: 'YOUR_AWS_PROFILE' })();
Enter fullscreen mode Exit fullscreen mode

Set the credentials and the region, and create and instance of CognitoIdentityServiceProvider:

aws.config.update({
  region: 'us-east-1',
  credentials,
});

const cognito = new aws.CognitoIdentityServiceProvider({
  apiVersion: '2016-04-18',
});
Enter fullscreen mode Exit fullscreen mode

Next, invoke the Cognito API to create the user, set the password, and optionally add the user to a Cognito group:

await cognito
  .adminCreateUser({
    UserPoolId: userPoolId,
    Username: email,
    UserAttributes: [
      {
        Name: 'email',
        Value: email,
      },
      {
        Name: 'email_verified',
        Value: 'true',
      },
    ],
  })
  .promise();

await cognito
  .adminSetUserPassword({
    Password: password,
    UserPoolId: userPoolId,
    Username: email,
    Permanent: true,
  })
  .promise();

if (groupName) {
  await cognito
    .adminAddUserToGroup({
      GroupName: groupName,
      UserPoolId: userPoolId,
      Username: email,
    })
    .promise();
}
Enter fullscreen mode Exit fullscreen mode

That's it. You can wrap the above code into its own function, especially if you want to create many users in bulk. See this GitHub gist for the entire code.

Top comments (0)

Read next

acontreras_mp profile image

AWS EC2 Instances Types (all you need to know)

Armando Contreras -

sagary2j profile image

Create MongoDB Atlas Cluster With Terraform and AWS

Sagar R Ravkhande -

acwwat profile image

How To Implement AWS SSB Controls in Terraform - Part 4

Anthony Wat -

danielcristho profile image

Deploy Laravel API To AWS Lambda

Daniel Pepuho -