Database Reference
In-Depth Information
Web identity federation
By now, you would have started thinking of how to apply access controls on application
that have a huge number of users. There, it is not possible to create policies for individual
users as and when they are getting created. To solve this issue, AWS offers one unique way
that would allow you to let users use their social media credentials, for example, the ones
used for Facebook, Google, or Amazon to use the application. Here, the identity of the
users would be provided by identity providers such as Google, Facebook, or Amazon, and
authentication and authorization is performed by providing these users with a simple secure
token. AWS supports the growing number of identity providers such as the following:
• Google
• Facebook
• Amazon
Web identity federation is very helpful for an application where the number of users are ex-
pected to be more. A good example would be an online dating or gaming site.
The web identity federation is shown in the following diagram:
