Skip to content

feat: add ALB+Cognito authentication and security enhancements #3

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
wants to merge 1 commit into
base: main
Choose a base branch
from
Open

feat: add ALB+Cognito authentication and security enhancements #3

wants to merge 1 commit into from

Conversation

@marcio-rg
Copy link

@marcio-rg marcio-rg commented Sep 17, 2025

  • Add optional ALB+Cognito authentication with enable_authentication flag
  • Implement IP-based access restrictions via allowed_ips parameter
  • Add SSL/TLS support with ACM certificate integration
  • Create Cognito user pool and user pool client for authentication
  • Add create-user.sh script for easy user management
  • Update ECS task definition with authentication environment variables
  • Enhance documentation with security configuration examples
  • Add terraform.tfvars.example template for easy setup
  • Update UI styling and templates for authentication flow
  • Add S3 bucket policy and ALB access logging configuration

TODO

  • Updated architecture documentation (diagram)
  • Update UI screenshot with example of logged-in screen.

Testing

  • Tested with authentication disabled (default behavior)
  • Tested with authentication enabled
  • Verified IP restrictions work correctly
  • Confirmed SSL/TLS integration

Key Features Added

  • Optional ALB+Cognito Authentication: Controlled via `enable_authentication` flag
  • IP-based Access Control: Restrict access via `allowed_ips` parameter
  • SSL/TLS Support: Integration with ACM certificates for HTTPS
  • User Management: Convenient `create-user.sh` script for Cognito user creation
  • Enhanced Security: Proper authentication flow with session management

By submitting this pull request, I confirm that you can use, modify, copy, and redistribute this contribution, under the terms of your choice.

@marcio-rg
feat: add ALB+Cognito authentication and security enhancements
5bf6b0d 
- Add optional ALB+Cognito authentication with enable_authentication flag
- Implement IP-based access restrictions via allowed_ips parameter
- Add SSL/TLS support with ACM certificate integration
- Create Cognito user pool and user pool client for authentication
- Add create-user.sh script for easy user management
- Update ECS task definition with authentication environment variables
- Enhance documentation with security configuration examples
- Add terraform.tfvars.example template for easy setup
- Update UI styling and templates for authentication flow
- Add S3 bucket policy and ALB access logging configuration
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@marcio-rg