Amazon Web Services integrates with Google, Facebook for easier logins

Developers can integrate web-based sign-in platforms without having to write any server-side code

By , IDG News Service |  Security

Using a new API announced by Amazon Web Services, developers can use Amazon.com, Facebook, or Google's sign-in systems for their cloud-based apps.

Amazon calls the concept web identity federation, and the new AWS Security Token Service (STS) API (application programming interface) simplifies the development process by letting users integrate web-based sign-in platforms with their apps without having to write any server-side code, according to Amazon.

In addition to Google and Facebook, Amazon Web Services has also integrated the recently announced Login with Amazon, a free service that lets third party apps and websites use the online retail giant's system for authenticating users.

The API -- which is called AssumeRoleWithWebIdentity -- requests temporary security credentials for users that have been authenticated using one of the three public identity providers. An app can then use the temporary credentials to access AWS resources such as Simple Storage Service (S3) objects, DynamoDB tables, or Simple Queue Service queues.

A smartphone app can store player and score information in an Amazon S3 bucket or an Amazon DynamoDB table, according to Amazon. Because the app needs to be able to distinguish individual users, users cannot be anonymous, it said.

When a user signs in, the authentication process for the chosen identity provider is invoked. How this works depends on the identity provider and the underlying platform. For example, an Android app can use a different way to authenticate than an iOS app or a JavaScript-based web app, according to Amazon. In general, the authentication process returns a token to the app that represents the authenticated user. Depending on what the provider shows and the user is willing to share, developers might be able to access more information that can be used by the app, Amazon said.

To help developers get started, Amazon has published an article entitled "Creating temporary security credentials for mobile apps using identity providers" on the AWS documentation website, which includes code examples.

Send news tips and comments to mikael_ricknas@idg.com

Join us:
Facebook

Twitter

Pinterest

Tumblr

LinkedIn

Google+

Answers - Powered by ITworld

ITworld Answers helps you solve problems and share expertise. Ask a question or take a crack at answering the new questions below.

Ask a Question
randomness