Thought leadership from the most innovative tech companies, all in one place.

Postman: Automate Generating Amazon Cognito Token

By Kundan Kumar on 2021-10-02

image

In this article, we'll learn how to use Postman pre-request scripts to fetch Cognito tokens and attach bearer tokens to test REST APIs using. The pre-request script is the starting point for the Postman's request execution. Any script that has been added to the pre-request script is performed first. Let's see the Postman API request workflow:

image

  1. Create variables: Let's begin by creating all of the variables that our pre-request script will require:

image

cognitoClientId: Set the value of App client id from the App client settings of your user pool.

cognitoClientSecret: Set the value of App client secret from the App client settings of your user pool. This is an optional parameter that you should use if you generated the secret hash for your cognito app client.

cognitoUserName: Set the value of the user's username(email or phone number) from your user pool.

cognitoUserPassword: Set the value of the user's password from your user pool.

cognitoAccessToken: After the InitiateAuth success response, use this variable to set the value of the access token.

cognitoIdToken: After the InitiateAuth success response, use this variable to set the value of the id token.

  1. Create the Pre-request Script:

image

Now go to the collection's Pre-request Script tab and copy the following script:

var clientId = pm.environment.get("cognitoClientId");

var clientSecret = pm.environment.get("cognitoClientSecret");

var username = pm.environment.get("cognitoUserName");

var password = pm.environment.get("cognitoUserPassword");

pm.sendRequest({

           url: "https://cognito-idp.{your-region}.amazonaws.com/",

           method: 'POST',

           header: {

                    'X-Amz-Target':   'AWSCognitoIdentityProviderService.InitiateAuth',

                    'Content-Type': 'application/x-amz-json-1.1'

                   },

            body: {

                   mode: 'raw',

                   raw: JSON.stringify({

                   "AuthParameters": {

                   "USERNAME": username,

                   "PASSWORD": password

                   },

                  "AuthFlow": "USER_PASSWORD_AUTH",

                  "ClientId": clientId

  }),

options: {

raw: {

language: 'json'

}

}

}

}, function (error, response) {

console.log(response.json());

pm.environment.set("cognitoAccessToken", response.json().AuthenticationResult.AccessToken);

pm.environment.set("cognitoIdToken", response.json().AuthenticationResult.IdToken);

});

Note: Make sure your app client does not contain app-secret or create a new app without secret. Amazon Cognito JavaScript SDK does not support the app client secret.

  1. Update the Authorization Configuration Let's now update the authorization settings. Switch to the Authorization tab and change the Access Token variable's value with the {{cognitoAccessToken}} or {{cognitoIdToken}} variable.

image

References:

  1. https://www.softwaretestinghelp.com/Postman-request-scripts/

  2. https://vmsdurano.com/automating-access-token-generation-with-Postman/


LinkedIn logo for sharing a link
Twitter logo for sharing a linkReddit logo for sharing a link


Continue Learning

Vulnerability Testing for AWS Deployments

Build a Docker Image and publish it to AWS ECR using Github Actions

CI/CD Cloud Image Build on Github to AWS Registry

Running Databricks on AWS: A Practical Guide

How to Send an Email Notification Using AWS Lambda

A guide to Amazon SNS.

SIEM on AWS: What are the Options?

3 Tier Architecture on AWS using EC2 or Serverless