Advanced Demo - Web Identity Federation

In this advanced demo series you will be implementing a simple serverless application which uses Web Identity Federation.
The application runs using the following technologies

• S3 for front-end application hosting
• Google API Project as an ID Provider
• Cognito and IAM Roles to swap Google Token for AWS credentials

The application runs from a browser, gets the user to login using a Google ID and then loads all images from a private S3 bucket into a browser using presignedURLs.

This advanced demo consists of 6 stages :-

• STAGE 1 : Provision the environment and review tasks
• STAGE 2 : Create Google API Project & Client ID
• STAGE 3 : Create Cognito Identity Pool
• STAGE 4 : Update App Bucket & Test Application
• STAGE 5 : Cleanup the account

Instructions

• Stage1
• Stage2
• Stage3
• Stage4
• Stage5

1-Click Installs

Make sure you are logged into AWS and in us-east-1

• WEBIDF

Video Guides

• STAGE1 - SETUP
• STAGE2 - Google API project
• STAGE3 - Cognito Identity Pool
• STAGE4 - Configure and Test Application
• STAGE5 - Cleanup

Architecture Diagrams

• Overall - PNG

• Overall - PDF

• Stage1 - PNG

• Stage1 - PDF
• Stage2 - PNG
• Stage2 - PDF
• Stage3 - PNG
• Stage3 - PDF
• Stage4 - PNG
• Stage4 - PDF