Michael Labieniec

Hi @keithdmoore there are a number of ways you can simplify this, but we are also looking into how we can do this on both the library and service side....

I am having the same issue on AWS as well, anyone able to run this successfully on ec2?

I am receiving this error when starting the server (in v0.10.11) error: Cannot create log directory. Error: Transport already attached: file

Have you tried using Cognito Triggers? Specifically the `CustomMessage_ForgotPassword` trigger. This should allow you to retrieve the code/validate and trigger the UI update/s based on the response.

I am still getting errors from code referenced in language specific code blocks i.e. ```js

We are evaluating this. This argument can be ambiguous as well. For example see thread here: https://www.reddit.com/r/Frontend/comments/cubcpj/local_storage_vs_cookies_for_auth_tokens/ in addition to the comments/discussion in the above thread you referenced. However, it's...

Ah i see, Assuming you are referring to this as to what you are using? https://docs.aws.amazon.com/apigateway/latest/developerguide/apigateway-integrate-with-cognito.html The temporary credentials I am referring to are the ones that are signing all...

Ah ok understood now thanks! So, you are not using federated identities at all and user pools directly. I was actually thinking that potentially the lambda authorizer could be an...

@jacintoArias do you have device tracking turned on in Cognito User Pools? This will actually add additional security to the refresh token which it will only work on the specific...

Great to hear! Yes i think the device tracking is a good solution here. For the authorizer i think the Cognito one is good for what you are doing, i...