amazon-web-services amazon-ec2 amazon-cognito amazon-elb aws-alb

500 error trying to authenticate via AWS Application load balancer and Cognito

I am trying to setup Authentication for some certain routes using AWS internet-facing Application load balancer.

I've done all the steps from the official AWS documentation, and also using this one: https://www.thorntech.com/2018/09/user-authentication-alb-cognito/

I was testing via load balancer's DNS name, and it redirects me properly to the login form of Cognito, but after I am logged in it redirects to the load balancer, and it gives 500 Internal Server Error. URL is like so https://xxxxx.eu-west-1.elb.amazonaws.com/oauth2/idpresponse?code=.......

Do you know, which can be the causes of it, and what should I configure else to make it working?

openid is allowed

Solution

To answer my own question - the problem is with the security groups. You have to have a security group with the open port 443 on your load balancer!

Why is my sha256 checksum incompatible with aws glacier checksum response?
How to fix React Native Chime RNVideoView displaying over other RNVideoView
How do I find hostname in AWS?
exports is not defined in ES module scope AWS Lambda
Saving PDF from S3 .pipe is not a function
How to create Amazon DocumentDB Elastic cluster via terraform
Unable to Configure Service ID for Apple Sign In with AWS Cognito due to Existing App ID
Python mock AWS SSM
How to create a size condition using AWS dynamodb-mapper-js
Unable to read text file in Glue job
Lambda Provisioned Concurrency showing 0 available. But I'm not using any
How to use AWS Secret Manger in JavaScript file hosted on ECS container
Creating a schedule expression for eventbridge using terraform
AWS RDS restoring snapshot with upgraded engine version giving error
Error with not existing instance profile while trying to get a django project running on AWS Beanstalk
Timeout when trying to retrieve EC2 instance-id metadata from within it
Connect DBeaver to AWS RDS Postgres
Lease table is not updated when new shards are added causing stale workers in KCL
libsndfile.so.1: cannot open shared object file: No such file or directory
Why does ECS binpack strategy on memory always scale up a new EC2 instance despite available resources?
How to pull every single image (tag or untagged) from AWS ECR?
In CloudFormation how can I link RDS and Secrets Manager so I don't have to hardcode the password?
Renaming AWS GraphQL Schema Types
How to install postgresql-client to Amazon EC2 Linux machine?
PyCharm: Why "Python Console" is not accessing ~\.aws\credentials file? How to set it within "Python Console"
Why is this Lambda function not running more concurrent executions?
Is it possible to run aws s3 sync with boto3?
Python 3 asyncio with aioboto3 seems sequential
Serverless / AWS Lambda - Create the triggers for the published lambda versions
AWS Glue missing permissions