Add Amazon AWS Cognito for SSO

It doesn't look difficult. Okta uses the same OIDC protocol

And yes. Adding Cognito support will be the main reason for us to switch to your product instead of Bitwarden. We use AWS Cognito and SSO as our main provider for account management.

Hello,

Thank you for your request. The part that is harder is often the group synchronization. That part is often customized for each provider. I assume that if you would like to support AWS Cognito, you would also be able to import groups from that provider to configure your security based on those groups, am I correct? Otherwise, all the security in the application will have to be done with users themselves or create groups in Devolutions Server and maintain those groups manually, something that you probably want to avoid.

Best regards,

Hello,
Thank you for your response. You’re correct that group synchronization can be challenging. For example, Bitwarden currently doesn’t support group synchronization from AWS Cognito, and it is not a big problem for us, as our focus is on maintaining a unified single sign-on system and the ability to quickly revoke access when needed. Managing access groups on the password manager side is not very convenient, but it is not terrible. If there is just the ability to log in via Cognito, that will be enough for us

Hello, yes agree, adding an Cognito support would be a great option