Auth Stack - how to customize cognito password policy

bebu · July 25, 2022, 10:14am

Hi to all,

I create my auth stack like this:

const auth = new Auth(stack, "Auth", {
  login: ["email"],
});

This sets the cognito password policy to “Cognito defaults” (8 characters minimum length, at least 1 number, 1 special character, …)

Is there a way to customize the password policy?

codenimble · May 10, 2025, 6:09am

Yes, apparently it is different for v2 and v3. For v3:

export const userPool = new sst.aws.CognitoUserPool(
  "UserPool",
  {
    usernames: ["email"],
    verify: {
      emailSubject: "Verify your email for our app",
      emailMessage: "Hello {username}, your verification code is {####}",
    },
    transform: {
      userPool: (args, _opts) => {
        args.passwordPolicy = {
          minimumLength: 10,
          requireUppercase: false,
          requireSymbols: false,
          requireNumbers: false,
          requireLowercase: false,
          temporaryPasswordValidityDays: 7,
        }
      }
   }
}

Topic		Replies	Views
lambdaTriggers on a CognitoStack	4	540	January 3, 2021
How to add JWT authorization with Cognito User Pool to a serverless API Chapter Comments	3	975	July 21, 2023
Problem while creating user pool Seed	6	4917	August 18, 2019
Adding Auth to Our Serverless App Chapter Comments	8	1058	August 21, 2024
Confirm user from User Pool Chapter Comments	3	632	November 19, 2018

Auth Stack - how to customize cognito password policy

Related topics