You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Now, the problem here is that they are referring to the legacy package 'amazon-cognito-identity.js', but we want to use Amplify.
Authentication flow
From the image above, the authentication flow from point 4 to 6: how do we manage the user session and respond with the challenge_answer to authenticate the user?
As it redirects to the 'Duo Authenticator' based on user MFA validation callbacks to the original application URL, does Amplify support managing the user sessions and update previous session user to answer challenge ?
hello @hanoj-budime . Ideally you would need to call the confirmSignIn API on the step 6 from the sequence diagram above. Unfortunately at that point the current sign-in session might be lost due to the redirection from the DUO App to the client.
The good news is that we are currently working on a mechanism to persist the login session. This will allow you to resume the authentication flow.
Thanks, @israx , for the quick response. We're interested in the new feature "persist the login session," and I'm glad to hear that you guys are already working on it. Let's keep this issue open. We'll test your feature and let you know if we encounter any issues.
If possible, could you share your roadmap for this feature and when it will be generally available (GA)?
Before opening, please confirm:
JavaScript Framework
React
Amplify APIs
Authentication
Amplify Version
v6
Amplify Categories
CUSTOM_WITH_SRP
Environment information
Describe the bug
How to configure Duo multi-factor authentication with Amplify ?
I found this article that explains how to set up and integrate Duo Security with Cognito. It's working fine based on the example they showcase here..
https://aws.amazon.com/blogs/security/how-to-configure-duo-multi-factor-authentication-with-amazon-cognito/
Now, the problem here is that they are referring to the legacy package 'amazon-cognito-identity.js', but we want to use Amplify.
Authentication flow
From the image above, the authentication flow from point 4 to 6: how do we manage the user session and respond with the challenge_answer to authenticate the user?
As it redirects to the 'Duo Authenticator' based on user MFA validation callbacks to the original application URL, does Amplify support managing the user sessions and update previous session user to answer challenge ?
Expected behavior
Reproduction steps
https://github.com/aws-samples/duomfa-with-amazon-cognito
Example code, But we have to migrate Amplify v6..
The text was updated successfully, but these errors were encountered: