Authenticate user from AWS Cognito in Azure API Developer Portal

Rav 20 Reputation points
2024-02-05T14:29:51.9466667+00:00

I am trying to authenticate my users from AWS Cognito pool for Azure API Gateway Developer portal. I am able to render "Azure Active Directory B2C" button on Sign In page. When user is clicking on "Azure Active Directory B2C" button, Cognito authenticator popup is opening. After putting the Email Id and Password, it is taking me to "Complete sign up" page. But I want it should take me directly on Dashboard. User's image

I don't want this page. Also after filling the details, when I click on "Sign up", it is showing error like: "Server error. Unable to send request. Please try again later."

Azure API Management
Azure API Management
An Azure service that provides a hybrid, multi-cloud management platform for APIs.
2,447 questions
0 comments No comments
{count} votes

Accepted answer
  1. JananiRamesh-MSFT 29,261 Reputation points
    2024-02-05T17:54:46.8366667+00:00

    @Rav Thanks for reaching out. When you use external auth provider such as AAD or AD B2C, the first time the user authenticates and tries to sign in to the portal, they are presented with a "sign up" page where the user has to complete their first/last name and email address. This is expected behavior no option to modify it. Once the user signs up successfully by filling the details and pressing "Sign Up", the sign in should complete and subsequent login attempts won't show this sign-up page.

    I suggest you use sign-in and sign-up delegation in APIM to delegate user registration. This can be a good option if you already have an existing user database or authentication system that you want to use with APIM.

    please refer: https://learn.microsoft.com/en-us/azure/api-management/api-management-howto-setup-delegation

    Do let me know if you have any queries.

    Please 'Accept as answer' and ‘Upvote’ if it helped so that it can help others in the community looking for help on similar topics.

    1 person found this answer helpful.

1 additional answer

Sort by: Most helpful
  1. Rav 20 Reputation points
    2024-02-06T06:51:22.2633333+00:00

    Hi JananiRamesh, I can understand product have have expected behaviour "external auth provider such as AAD or AD B2C, the first time the user authenticates and tries to sign in to the portal, they are presented with a "sign up" page where the user has to complete their first/last name and email address." Here I am able to do Sign In using the AWS Cognito, I followed this steps https://www.liatrio.com/blog/azure-api-management-okta-integration#cavb8 Here instead of Okta I used AWS Cognito Pool. The problem is, after Sign In with AWS Cognito, it is taking me on Complete Sign Up Page. I entered their Email(Same email I have entered for AWS Cognito Sign In), First Name and Last Name. when I click on "Sign up", it is showing error like: "Server error. Unable to send request. Please try again later." User's image

    Also please elaborate about "delegate" Thanks & Regards, Ravinesh


Your answer

Answers can be marked as Accepted Answers by the question author, which helps users to know the answer solved the author's problem.