Cognito User Pool Groups

  • Cognito User Pool supports "groups" which enables you to create and manage groups, add users to groups, and remove users from groups.

  • Use groups to create collections of users to manage their permissions or to represent different types of users.

  • You can assign an IAM role to a group to define the permissions for members of a group.

  • You can use groups to create a collection of users in a user pool, which is often done to set the permissions for those users.

  • For example, you can create separate groups for users who are readers, contributors, and editors of your website and app. Using the IAM role associated with a group, you can also set different permissions for those different groups so that only contributors can put content into S3 and only editors can publish content through an API in API Gateway.

PreviousActive Directory Trust RelationshipsNextAccess Denied error when uploading an encrypted large file to S3 bucket

Last updated