PAL Create User (v1.0.2)

Create a user in PAL. This is the basic flow. It can be different from customer specific domains.

Flow

Architecture diagram

Flow description

  1. Auth adapter is called

    The auth adapter (API) is called to create a user POST /users. The endpoint will check and build a AdminCreateUserRequest and send this to Cognito SDK

  2. AWS Cognito

    Cognito will invoke the custom lambda function for PreSignup trigger. This lambda will raise the event User Signup.

  3. AWS Stepfunction

    The stepfunction UserOnboarding will be triggered by the event. This stepfunction handles the signup process.

  4. Verification

    If verification is handled by Cognito, the step function will either raise UserCreatedEvent or UserAborted, without any additional handling. (Is this the authentication using password (auth/v2/verify/password) and by code (auth/v2/verify/code) sent from Cognito? Or is there any other method. Describe.)

    If user verification is not handled by Cognito. The caller of CreateUser is required to invoke a verification process in order for the events to be raised. (Is this the code verification sent from the event AuthUserCodeRequested. Is there a method to automatically verify the user?)

Edit this page