Steps to setup Cognito Integrator Addon

Wordpress Cognito Integrator Addon helps you to login from the Wordpress default login form with the AWS cognito login credentials. It is useful when you don't want the users to redirect to the cognito login page.During the login event, WordPress Cognito integrator creates the users in WordPress as per the Attribute and Role Mapping configured in the OAuth Single Sign-On (SSO) plugin and logs them in subsequently.

Pre-requisites : Download And Installation

1. Steps to configure WordPress Cognito Integrator add-on with OAuth Single Sign-On (SSO) plugin

• Activate the Cognito Integration Addon along with the paid version of WP OAuth Client Single Sign-On (SSO) plugin.

• Now go to the OAuth Single Sign-On (SSO) plugin and scroll down to find the Cognito Integrator application listed and click on it.

• We need to configure the AWS Admin Access Key ID and its Secret Key.

• Login to your AWS dashboard as root user and go to the My Security Credentials option form your profile.

• You can use your existing admin keys if you already have them created. Otherwise go to the Access Keys section and click on the Create New Access Key button.
• You will see the keys on your screen. Please download them for future use if any.
• Now configure these keys in the OAuth Single Sign-On (SSO) plugin under the fields AWS Access Key ID and AWS Secret Access Key respectively.
• Now go to your Cognito User pool and copy the Pool Id from the General Settings tab. Save this Id in the Cognito User Pool ID field in the OAuth Single Sign-On (SSO) plugin.

• Go to the App clients tab in your Cognito User Pool and click on Create app client option.

• Enter the App Client name and enable the checkbox for Generate Client Secret.

• Scroll down to the Authentication Flows section and select all the flows as shown in the below image.

• Scroll down to the bottom and click on the Create app client button to save the app

• Now copy the App client Id and App client secret of the app and save to the OAuth Single Sign-On (SSO) plugin.

• Enter your AWS Region in the OAuth Single Sign-On (SSO) plugin and click on Save Settings button.

• In the test configuration section of the OAuth Single Sign-On (SSO) plugin, enter the cognito login username and password and click on the Test Configuration button which will show you the user attributes after the successful configuration.

• Configure the attribute mapping according to the attributes received from Cognito.

• Now you are all set to login from the Wordpress login form with the cognito login credentials.

3. Auto register WordPress new user to Cognito pool

• Select the checkbox if you want your WordPress newly registered user to be added to your AWS Cognito pool automatically.
• Your cognito end users can sign in with an email/username along with the password.
  
  1. User pool configured to email- Select if you have enabled cognito users to use email and password to sign in.
  2. User pool configured to username- Select if you have enabled cognito users to use username and password to signing in.

In this Guide, you have successfully configured WordPress Cognito integrator Addon using Wordpress OAuth Single Sign-On ( OAuth & OpenID Connect Client ) plugin.

Following are the WordPress Cognito Integrator use cases that we support

Additional Resources

• What is OAuth 2.0?
• AWS Cognito Single Sign-On (SSO)
• Frequently Asked Questions (FAQs)