By: Thomas McAvoy user 13 Jun 2018 at 5:36 p.m. CDT

3 Responses
Thomas McAvoy gravatar
Hi - I have a CSR off to go daddy but will self signed scert stop openid discovery from working This is a yes no answer

By Sahil Arora staff 13 Jun 2018 at 5:41 p.m. CDT

Sahil Arora gravatar
No, self signed cert shouldn't stop openid discovery from working.

By Michael Schwartz staff 13 Jun 2018 at 6:03 p.m. CDT

Michael Schwartz gravatar
Your client has to trust the cert of course... so if you use "trust all" (i.e. don't verify) or you import the self-signed cert into your client truststore, you'll be fine.

By Thomas McAvoy user 15 Jun 2018 at 11:34 a.m. CDT

Thomas McAvoy gravatar
Yep thats the issue I see nowhere on the AWS console to actually force the TRUST for Cognito user pools identity pools or IAM IDPS