Step 1: Configure AWS Cognito server:

• Sign in to AWS Amaazon. Now enter Cognito in search texbox and select Cognito from dropbox

• In the left-hand navigation pane, click the App registrations service, and click New registration.

• Go to Manage your user pools and click on Create a user pool
• Add pool name and select Review Defaults.
• Click on Add app client & then click on Add an app client.
• Enter App client name & then Click on . Create app client.

• Go to App client” and click on “Show details to get a client ID and client secret.
• Go to domain name and enter a domain name for your app. After adding domain name you can check its availability by clicking on Check availability button. After entering valid domain name click Save changes button.

Step 2: Fetch Access token through POSTMAN:

• Open the Postman Application (Here is the link to download Postman Application).
• Go to Authorization tab.
• From the dropdown select type as OAuth 2.0 and  click on Get access token.
• Add the following information from the table below.
• Postman starts the authentication flow and prompts you to use the access token.
• Select Add token to the header.

• Copy the Access Token or click on Use Token.

e8ec210628306b1df26ff61e6b9b3195814a2d79d38a2c7c1dc5836f6ddd7143

Step 3: Fetch Username through AWS Cognito:

• Choose the method type as "GET".
• Enter the interoception Endpoint from the plugin to fetch the username in the Request URL. For AWS Cognito it is "".
• Go to the Authorization tab select the Bearer Token and enter the access token here.
• Add the header "content-type: application/json" and click on Send.

     curl
                         -X GET
                         -H "Authorization: Bearer <Access Token>"
                         -H "Content-type: application/json" 
     https://discordapp.com/api/users/@me
                    

Step 4: Configure the Rest API plugin:

Step 1: Enable Rest API Authentication:

• After installing the app, navigate to the app configurationsthrough the Manage Apps dropdown.
• Here you will have to Enable Authentication through REST API Authentication.
• In the dropdown provided select AWS Cognito as the OAuth provider.
• Enter the attribute value against which we received the username in the Postman response.
• Save the settings.

Step 2: Disable Basic Authentication:

• Disabling this will restrict all the REST API call made using Basic Authentication.

Step 5: Test REST API using access token:

• Call any REST API of your Atlassian application. Include the access token in the Authorization header. Here’s an example of fetching content from Confluence.
• Go to the Postman application select method type as GET and enter the Request URL. For eg. http://{Confluence_Base_URL}/confluence/rest/api/content/
• In the Authorization tab select type as Bearer Token.

• In the Header tab add the header “content-type: application/json and send the request.

     curl
                             -X GET
                             -H "Authorization: Bearer <Access Token>"
                             -H "Content-type: application/json"
                             http://{confluence_base_url}/confluence/rest/api/content/
                    

• This will show the content in Confluence and will return the status 200.
• If the token is invalid or missing, the call will return a 401 Unauthorized response.

Additional Resources

• Rest API Authentication Methods?
• AWS Cognito as OAuth Provider/OpenID Connect
• Frequently Asked Questions (FAQs)