Authentication
Overview
All products use AWS Cognito (User Pool: us-east-1_75Rp4zNBg).
Auth Flow
- User signs in via Cognito hosted UI or SDK
- Cognito issues JWT access token
- Token validated by API via JWKS
- User identity extracted from token claims
Token Validation
- Algorithm: RS256
- JWKS endpoint rate-limited (5 req/min)
- Token expiration enforced
- User pool ID verified
Implementation
See API Authentication for code details.