Hi there,

I was architecting an enterprise application where AWS Cognito will be used for user authentication. Simple JWT based authentication will be used here for SSO.

So far I didn't find any ready made forge component to integrate and use JWT based authentication (state less).

I am aware of the typical flow of third party SSO integration in OS (gone through Authentication course). Also aware of OS creates user if necessary and login locally to create the session for the user to stay authenticated.

Below is one of use cases:

1. User hits OS application (Reactive app) first time.
2. Redirected to Authentication provider (Cognito) login page.
3. Enter credentials and validate the user by Cognito.
4. On successful login redirected to the OS landing page.
5. Pass JWT information on subsequent internal calls (from source OS app to other OS & non-OS applications / services).
6. Based on expiry of token, source OS application can get renewed token etc.

Can anyone please share some insights if you have any experience with the given scenario OR share your thought? 

Regards,

Abhijit