🔥 3-day streak
AWS Certified Developer - Associate47 / 150
Question 47 of 150

A developer builds a mobile app that authenticates users with an Amazon Cognito user pool. The app receives ID, access, and refresh tokens after login. Users complain that they are forced to log in again every hour, which harms the user experience. The developer wants users to stay signed in for up to 30 days without re-entering credentials, while keeping short-lived access tokens for API calls. What is the correct approach?

Reviewed for accuracy · Report an issueNext question