Amplify "Unable to verify secret hash for client"
We have been using Amplify and Cognito to register our users for an Angular6 application deployed to Lambda. The client wanted to transition from email to username as primary user identification. So we created a new user pool / client. I don't have visibility into the configuration settings, I was simply given new user pool, identity pool, and client id's. Then I changed the code for application signup to look like this:
return from(Auth.signUp({
'username': username, // was email
'password': password,
attributes: { // added these
'email': email,
'phone_number': phone_number,
'family_name': name,
'birthdate': DOB,
'custom:last_4_ssn': SSN // custom attribute
}}));
The response I'm getting with no other changes made is: Unable to verify secret hash for client. Google claims the problem is that secretAccess is currently an unsupported configuration, but the guy who has access to these services swears to me that nowhere is secretAccess configured in our setup.
I apologize for not having access to the configuration, but is there any other possible reason to receive this error?
That error is probably originating from the fact that the app client you are connected to has an associated secret key. When you create a user pool app client, it generates a secret by default:
Right now, with React-Native Amplify you have to use an app client that does not have a secret key generated. So when you create a new app client with your desired attributes, make sure the "Generate client secret" box is unchecked.
- Examples of Ruby on rails + aws congnito
- Vue.js and and amplify for aws
- Unrecognizable Lambda Output Cognito
- AzureAD SAML SSO through AWS Cognito - doesn't match requested authentication method
- AWS Cognito - IAM - Deny all access to public/unauth users - Federated
- AWS Cognito - User pool xxxx does not exist
- How to restrict AWS Cognito users from taking certain actions?
- Invalidate AWS Cognito token at logout
- AWS API Gateway Access vs Id Token
- Get Cognito verification code in lambda to send SMS using local provider
- Cognito: User Pool Client OAuth Scope Limitation
- AWS Amplify Auth with Cognito User Pool not returning nonce or at_hash claim in JWT id_token
- Get user attributes AWS Amplify iOS SDK
- Are the Cognito User pool id and Client Id sensitive?
- AWS-Cognito: Is it possible to edit the User Pool name after creating the User Pool?
- AWS Cognito - Invalid Refresh Token
- Terraform AWS OpenSearch using Cognito module circular problem
- Add AWS IAM users to AWS Cognito Pool
- AWS Cognito: Add custom claim/attribute to JWT access token
- Getting AWS cognito attributes
- How do I access the group for a Cognito User account?
- Persisting login when users open new tab
- AWS Cognito Hosted UI - Internationalization
- Unable to verify secret hash for client in Amazon Cognito Userpools
- AWS Cognito: Reset Expired Temporary Password
- AWS Cognito Post authentication Lambda trigger - return NotAuthorizedException
- Enabling and Configuring Password History on Cognito
- How to link AWS Cognito native user to the federated user
- Add role based authentication using next-auth in NextJS
- Aws Cognito Oauth2: Refresh token rotation