Story 2.1: AWS Cognito Multi-tenant Setup
| Field | Value |
|---|---|
| Story Points | 8 |
| Sprint | Sprint 3 |
User Story
As a Platform Administrator
I want AWS Cognito configured for multi-tenant authentication
So that each school has isolated user management with secure SSO
Key Features
- Cognito User Pool with custom attributes (schoolId, roles)
- OAuth 2.0 flows (Authorization Code + PKCE)
- MFA support (TOTP + SMS) configurable per school
- Custom domain (auth.edupulse.in)
- Password policies for Indian schools