cognito-idp:*AWS Amazon Cognito User Pools IAM Actions
118 IAM actions for cognito-idp:*
Actions
118 actions available. Filter by access level or search by name.
Filter:
| Action | Access Level |
|---|---|
cognito-idp:AddCustomAttributes | Write |
cognito-idp:AdminAddUserToGroup | Read |
cognito-idp:AdminConfirmSignUp | Read |
cognito-idp:AdminCreateUser | Read |
cognito-idp:AdminDeleteUser | Read |
cognito-idp:AdminDeleteUserAttributes | Read |
cognito-idp:AdminDisableProviderForUser | Read |
cognito-idp:AdminDisableUser | Read |
cognito-idp:AdminEnableUser | Read |
cognito-idp:AdminForgetDevice | Read |
cognito-idp:AdminGetDevice | Read |
cognito-idp:AdminGetUser | Read |
cognito-idp:AdminInitiateAuth | Read |
cognito-idp:AdminLinkProviderForUser | Read |
cognito-idp:AdminListDevices | Read |
cognito-idp:AdminListGroupsForUser | Read |
cognito-idp:AdminListUserAuthEvents | Read |
cognito-idp:AdminRemoveUserFromGroup | Read |
cognito-idp:AdminResetUserPassword | Read |
cognito-idp:AdminRespondToAuthChallenge | Read |
cognito-idp:AdminSetUserMFAPreference | Read |
cognito-idp:AdminSetUserPassword | Read |
cognito-idp:AdminSetUserSettings | Read |
cognito-idp:AdminUpdateAuthEventFeedback | Read |
cognito-idp:AdminUpdateDeviceStatus | Read |
cognito-idp:AdminUpdateUserAttributes | Read |
cognito-idp:AdminUserGlobalSignOut | Read |
cognito-idp:AssociateSoftwareToken | Write |
cognito-idp:AssociateWebACL | Write |
cognito-idp:ChangePassword | Read |
cognito-idp:ConfirmDevice | Read |
cognito-idp:ConfirmForgotPassword | Read |
cognito-idp:ConfirmSignUp | Read |
cognito-idp:CreateGroup | Write |
cognito-idp:CreateIdentityProvider | Write |
cognito-idp:CreateManagedLoginBranding | Write |
cognito-idp:CreateResourceServer | Write |
cognito-idp:CreateTerms | Write |
cognito-idp:CreateUserImportJob | Write |
cognito-idp:CreateUserPool | Write |
cognito-idp:CreateUserPoolClient | Write |
cognito-idp:CreateUserPoolDomain | Write |
cognito-idp:DeleteGroup | Write |
cognito-idp:DeleteIdentityProvider | Write |
cognito-idp:DeleteManagedLoginBranding | Write |
cognito-idp:DeleteResourceServer | Write |
cognito-idp:DeleteTerms | Write |
cognito-idp:DeleteUser | Write |
cognito-idp:DeleteUserAttributes | Write |
cognito-idp:DeleteUserPool | Write |
cognito-idp:DeleteUserPoolClient | Write |
cognito-idp:DeleteUserPoolDomain | Write |
cognito-idp:DescribeIdentityProvider | Read |
cognito-idp:DescribeManagedLoginBranding | Read |
cognito-idp:DescribeManagedLoginBrandingByClient | Read |
cognito-idp:DescribeResourceServer | Read |
cognito-idp:DescribeRiskConfiguration | Read |
cognito-idp:DescribeTerms | Read |
cognito-idp:DescribeUserImportJob | Read |
cognito-idp:DescribeUserPool | Read |
cognito-idp:DescribeUserPoolClient | Read |
cognito-idp:DescribeUserPoolDomain | Read |
cognito-idp:DisassociateWebACL | Write |
cognito-idp:ForgetDevice | Read |
cognito-idp:ForgotPassword | Read |
cognito-idp:GetCSVHeader | Read |
cognito-idp:GetDevice | Read |
cognito-idp:GetGroup | Read |
cognito-idp:GetIdentityProviderByIdentifier | Read |
cognito-idp:GetLogDeliveryConfiguration | Read |
cognito-idp:GetSigningCertificate | Read |
cognito-idp:GetTokensFromRefreshToken | Read |
cognito-idp:GetUICustomization | Read |
cognito-idp:GetUser | Read |
cognito-idp:GetUserAttributeVerificationCode | Read |
cognito-idp:GetUserPoolMfaConfig | Read |
cognito-idp:GetWebACLForResource | Read |
cognito-idp:GlobalSignOut | Read |
cognito-idp:InitiateAuth | Write |
cognito-idp:ListDevices | List |
cognito-idp:ListGroups | List |
cognito-idp:ListIdentityProviders | List |
cognito-idp:ListResourceServers | List |
cognito-idp:ListResourcesForWebACL | List |
cognito-idp:ListTagsForResource | Tagging |
cognito-idp:ListTerms | List |
cognito-idp:ListUserImportJobs | List |
cognito-idp:ListUserPoolClients | List |
cognito-idp:ListUserPools | List |
cognito-idp:ListUsers | List |
cognito-idp:ListUsersInGroup | List |
cognito-idp:ResendConfirmationCode | Read |
cognito-idp:RespondToAuthChallenge | Read |
cognito-idp:RevokeToken | Write |
cognito-idp:SetLogDeliveryConfiguration | Write |
cognito-idp:SetRiskConfiguration | Write |
cognito-idp:SetUICustomization | Write |
cognito-idp:SetUserMFAPreference | Write |
cognito-idp:SetUserPoolMfaConfig | Write |
cognito-idp:SetUserSettings | Write |
cognito-idp:SignUp | Read |
cognito-idp:StartUserImportJob | Write |
cognito-idp:StopUserImportJob | Write |
cognito-idp:TagResource | Tagging |
cognito-idp:UntagResource | Tagging |
cognito-idp:UpdateAuthEventFeedback | Write |
cognito-idp:UpdateDeviceStatus | Write |
cognito-idp:UpdateGroup | Write |
cognito-idp:UpdateIdentityProvider | Write |
cognito-idp:UpdateManagedLoginBranding | Write |
cognito-idp:UpdateResourceServer | Write |
cognito-idp:UpdateTerms | Write |
cognito-idp:UpdateUserAttributes | Write |
cognito-idp:UpdateUserPool | Write |
cognito-idp:UpdateUserPoolClient | Write |
cognito-idp:UpdateUserPoolDomain | Write |
cognito-idp:VerifySoftwareToken | Read |
cognito-idp:VerifyUserAttribute | Read |
Resource Types
ARN patterns for resources in this service.
| Resource | ARN Pattern |
|---|---|
${ResourceType} | arn:aws:cognito-idp:${Region}:${Account}:${ResourceType}/${ResourcePath}: |
Condition Keys
Condition keys you can use in IAM policy conditions for this service.
aws:RequestTag/${TagKey}aws:ResourceTag/${TagKey}aws:TagKeysGet the Amazon Cognito User Pools Cheat Sheet
Everything you need to know about Amazon Cognito User Pools on one page. HD quality, print-friendly.
Download Free InfographicGet the Amazon Cognito User Pools Cheat Sheet
Everything you need to know about Amazon Cognito User Pools on one page. HD quality, print-friendly.
Download Free InfographicQuick Facts
Total Actions118
Prefix
cognito-idpResource Types1
Condition Keys3
Access Level Breakdown
Read60
Write44
List11
Tagging3