Question #658
A developer is designing a web application that must allow users to sign up and authenticate using their existing social media credentials. The application also needs to securely store user profile information and handle authentication flows. Which AWS service should the developer implement to satisfy these requirements?
IAM roles
Amazon Cognito identity pools
Amazon Cognito user pools
AWS Directory Service
Explanation
Amazon Cognito User Pools (C) is designed to handle user registration, authentication, and profile management. It supports federated identities via social media providers (e.g., Facebook, Google) and securely stores user attributes. Identity Pools (B) grant temporary AWS credentials but do not manage user profiles or authentication flows. IAM roles (A) control AWS resource access, not user authentication. AWS Directory Service (D) integrates with Microsoft AD, which is unrelated to social media authentication. Key points: Cognito User Pools = user directory + social auth + profile storage; Identity Pools = AWS resource access via temporary credentials.
Answer
The correct answer is: C