explicitAuthFlows property
The authentication flows that are supported by the user pool clients. Flow
names without the ALLOW_
prefix are deprecated in favor of new
names with the ALLOW_
prefix. Note that values with
ALLOW_
prefix cannot be used along with values without
ALLOW_
prefix.
Valid values include:
-
ALLOW_ADMIN_USER_PASSWORD_AUTH
: Enable admin based user password authentication flowADMIN_USER_PASSWORD_AUTH
. This setting replaces theADMIN_NO_SRP_AUTH
setting. With this authentication flow, Cognito receives the password in the request instead of using the SRP (Secure Remote Password protocol) protocol to verify passwords. -
ALLOW_CUSTOM_AUTH
: Enable Lambda trigger based authentication. -
ALLOW_USER_PASSWORD_AUTH
: Enable user password-based authentication. In this flow, Cognito receives the password in the request instead of using the SRP protocol to verify passwords. -
ALLOW_USER_SRP_AUTH
: Enable SRP based authentication. -
ALLOW_REFRESH_TOKEN_AUTH
: Enable authflow to refresh tokens.
Implementation
final List<ExplicitAuthFlowsType>? explicitAuthFlows;