Amazon Cognito as OIDC Authentication Provider


I’m trying to set up Amazon Cognito as an OpenID Connect authentication provider for the VPN app, via Teams/Cloudflare Apps. I’ve used the guidance in this topic to set it up: Configuring AWS Cognito for OAuth in Apps

But now I’m running into exactly the same error shown in this topic (which is closed): Use AWS Cognito as OIDC provider in Cloudflare

Authentication Error: Failed to fetch user/group information from the identity provider

Anyone have any suggestions on how to troubleshoot? Using the ‘Test’ function goes through the authentication process, but then lands on an Internal Server Error page on the Cloudflare side after authentication.

@swapan any special configuration on the Cognito side you had to set up to make it work?