> ## Documentation Index
> Fetch the complete documentation index at: https://docs.cognite.com/llms.txt
> Use this file to discover all available pages before exploring further.

# Register a custom web app in Amazon Cognito

> Register a custom web application in Amazon Cognito for user authentication.

<Steps>
  <Step title="Sign in to the Amazon Cognito">
    Sign in to the [Amazon Cognito console](https://console.aws.amazon.com/cognito/home) as an admin. If prompted, enter your AWS credentials.
  </Step>

  <Step title="Select a user pool">
    Select <span class="ui-element">User Pools</span> and select an existing user pool from the list, or create a user pool.
  </Step>

  <Step title="Select App integration">
    Select the **App integration** tab.
  </Step>

  <Step title="Create an app client">
    1. Under **App client list**, select <span class="ui-element">Create app client</span>.

    2. Under **App type**, select **Public client**.

    3. Enter *Cognite Data Fusion* as the **App client name**.

    4. Under **Client secret**, select **Don't generate a client secret**.

    5. Under **Authentication flows**, select **ALLOW\_USER\_SRP\_AUTH** and **ALLOW\_REFRESH\_TOKEN\_AUTH**.

    6. Under **Hosted UI settings**, set the **Allowed callback URLs** to your custom web app.

    7. In **Identity providers**, select **Cognito user pool**.

    8. In **OAuth 2.0 grant types**, select **Authorization code grant**.

    9. In **OpenID Connect scopes**, select **OpenID**.

    10. In **Custom scopes**, select **[https://cognitedata.com/IDENTITY](https://cognitedata.com/IDENTITY)** and **[https://cognitedata.com/user\_impersonation](https://cognitedata.com/user_impersonation)**.

    11. At the bottom of the page, select **Create app client**.
  </Step>
</Steps>