WordPress Cognito Integration
Cognito and WordPress Integration
WordPress Cognito integrator works in conjunction with the WordPress OAuth & OpenId Connect Client Single Sign-On (SSO) Plugin. WordPress Cognito integrator provides functionality to manage all the user operations from your WordPress site. The user operations provided are Login, Registration, Profile update, Password Reset. Using this WordPress AWS Cognito integration, you can provide a seamless user experience on your WordPress site for all the users in your Cognito pool. You don’t need to manage them by yourself at the Cognito site. During the login event, WordPress Cognito integrator creates the users in WordPress as per the Attribute and Role Mapping configured in the OAuth Single Sign-On (SSO) plugin and logs them in subsequently.
Key Features
Cognito login from default WP login form
Registration Form Integration
Cognito user creation from registration form in WP (As the registration form is unique for each site, this needs customization according to the form created and its corresponding fields)
User Update
Cognito user profile update from update form in WP (This feature also needs customization for the same reason)
Cognito Password Reset
Cognito password reset using default WP password reset functionality
Cognito integrator pricing plans
(Included with WP OAuth Client All-inclusive plan)
Contact us
Features Provided
Login with Any WordPress forms
Auto create users on Cognito login
Advanced User Profile Mapping in WordPress
WordPress Role Mapping
Reset Password in Cognito via WordPress
Just in Time user sync from WordPress Registration to Cognito User Pool
Just in Time sync for Wordpress Profile Advanced Attributes to Cognito
Sync WordPress Profile Update to Cognito
$399 *
Contact us
Features Provided
Login with Any WordPress forms
Auto create users on Cognito login
Advanced User Profile Mapping in WordPress
WordPress Role Mapping
Reset Password in Cognito via WordPress
Just in Time user sync from WordPress Registration to Cognito User Pool
(The default account is created in Cognito user pool with username, email and password)
Just in Time sync for Wordpress Profile Advanced Attributes to Cognito
(All the attributes other than username, email password can be considered as Advanced profile attributes)
Sync WordPress Profile Update to Cognito
Upcoming features
- Delete User from Cognito pool on account deletion on WordPress
- Enable user login from multiple Cognito user pools
- Sync user registration to multiple Cognito user pools
2. The Advanced plan is compatible with WP OAuth Client plugin premium and higher plans.
If you have any other requirements apart from the above mentioned features, we can customize the cognito Integration according to your use case and the user flow.
*There is an additional cost associated with customizations. Please contact us at oauthsupport@xecurify.com
Amazon Cognito SSO Scenarios for your WordPress Website
A] Register User in Amazon Cognito pools from the WordPress website
The Registration form on WP site is generally designed using one of the forms’ plugins like gravity forms, elementor, WP forms, Formidable Pro Forms. The registration form contains all the input fields as per the use case. Users then register in that form like any other registrations out there, and they get created in your Cognito user pool seamlessly, all the tedious work is done at the backend by the WordPress Cognito integrator. This use case generally gets extended by adding the email / phone number verification during registration and also adding the Profile Update form and Password Reset form in WordPress which also works seamlessly. This will need customization for adding support for the registration form you are using and profile fields it contains.
B] Login users into WordPress without redirecting them to Cognito
This is useful when you are looking to customize the login form design using the CSS of your own choice. But, Cognito doesn’t provide this option. It would have been possible to create a login form of your choice in WordPress and login users using Password grant which is provided by the Premium version of our OAuth & OpenId Connect Client Single Sign-On (SSO) plugin, but Cognito doesn’t support Password grant either. So, the only option left is to use the WordPress Cognito integrator which solves this problem like a charm.
This is also useful if you don’t want to redirect users to Cognito at all for Single Sign-On (SSO) and instead create a login form in WordPress that would authenticate users from Cognito. The cognito integrator will handle the login from default wp-login form. Please reach out to us if you are using any third party/ custom login form to check if it will be supported with the existing solution or need any customization.
C] Have multiple WordPress sites, choose Cognito to maintain users
If you have multiple WordPress sites and you don’t want to have a headache maintaining separate login / registration for all the applications and are instead looking for a seamless Registration from one site and login with the same credentials to all the sites, WordPress Cognito integrator will be a one stop solution for this. This will need customization based on your registration form and how many sites you are using cognito login for.
D] Register/Create and verify users in Cognito when a user creates an account from the woocommerce checkout page
Suppose you have a woocommerce site, and there is a case such that if a user opens the site anonymously, and adds a product to the cart. After when the user proceeds to purchase the products in the cart, the checkout form is shown to the user where the user needs to input the important information such as First Name, Last Name. Once the user fills in this information, there is also an option to Create an account in woocommerce after the checkout process. If the user enables this option, then woocommerce asks for a Username and Password.
Now, when the user clicks on the Place order option, the user would be automatically created in Cognito if it's not created. Once the user is created, a pop-up is shown to verify the OTP code sent by Cognito for verifying the email address. If the OTP is correct then the user is marked as CONFIRMED in Cognito, and the user can then proceed to the payment process.
In this way, we can create a user in Cognito when the user creates an account in the Woocommerce checkout process.
E] Headless Login
Suppose you have WordPress as a backend application and React as a frontend application. and you have already connected WordPress with Cognito. Now you want to do the SSO into the React application with the Cognito user credentials?
In this case, the end user will hit the login button on your REACT APP, then it will be redirected to the Cognito login page, where the user will log in and we will create a session on WordPress backend using our Premium version of our OAuth & OpenId Connect Client Single Sign-On (SSO) plugin, and then using our Headless SSO Plugin, we will send you a JWT token (Cognito id token) to your REACT application URL, as a GET parameter which you need to handle on your React app to create a user session there.
Recommended Plugins
We support the forms built with below plugins.
Gravity Forms
Formidable Pro Forms
Elementor Forms
WP Forms
Recommended plugin
Download the WP OAuth Client Single Sign-On (SSO) plugin using the following link.:
WordPress SSO Single Sign On with Azure, Azure B2C, Cognito, WHMCS, Okta, Ping, Clever, Keycloak, many OAuth & OpenID Providers [24/7 SUPPORT]
Need Help? We are right here!
