AWS Cognito User Pool: Restrict users to access specific clients

So I have the following setup

AWS Cognito User Pool: UserPool_1

Under this User Pool I have 3 users defined: Mike, Sarah, John

I have 3 App Clients under thhis user pool:

WebClient_1

WebClient_2

WebClient_3

I want Mike to be able to access: WebClient_1, WebClient_2, and WebClient_3

I want Sarah to have access only to: WebClient_3

And John to have access only to WebClient_2

Currently all users are able to access all 3 web apps defined under this user pool, that's not what I want.

How do I restrict users in the user pool to have access to specific app clients?

So let's say Sarah tries to access WebClient_1, I want her to get a message saying: "User not authorized"

https://stackoverflow.com/questions/65745755/aws-cognito-user-pool-restrict-users-to-access-specific-clients January 16, 2021 at 09:52AM