Add Cognito VPC Endpoint (Private Link) Support for Isolated Network Deployment

## **Description:**

Currently, the privateWebsite: true feature creates private UI and backend components, but authentication still requires internet access to reach Cognito public endpoints. This prevents truly isolated network deployments.

## **Current Behavior:**
• Private website accessible via ALB in VPC ✅
• Backend services use VPC endpoints ✅  
• Authentication requires internet access to cognito-idp.region.amazonaws.com ❌

## **Expected Behavior:**
When privateWebsite: true, the entire application including authentication should work without internet access using Cognito VPC endpoints.

## **References:**
• [Cognito VPC Endpoints Documentation](https://docs.aws.amazon.com/cognito/latest/developerguide/vpc-interface-endpoints.html)

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Add Cognito VPC Endpoint (Private Link) Support for Isolated Network Deployment #703

Description:

Current Behavior:

Expected Behavior:

References:

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

Add Cognito VPC Endpoint (Private Link) Support for Isolated Network Deployment #703

Description

Description:

Current Behavior:

Expected Behavior:

References:

Metadata

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

Issue actions