# Login using AWS Cognito and Begin Session

This API endpoint allows users to create a session by authenticating via AWS Cognito's Single Sign-On (SSO). 

The endpoint validates an Cognito JWT token and then follows the /sessions flow to establish a user session

Endpoint: POST /sessions/sso/cognito

## Request fields (application/json):

  - `access_token` (string, required)
    JWT token issued by AWS Cognito
    Example: "NEW.COGNITO.AUTH.TOKEN"

## Response 200 fields (application/json):

  - `refresh_token` (string)

  - `token` (string)

  - `user` (object)

  - `user.id` (integer)

  - `user.username` (string)

  - `user.email` (string)

  - `user.first_name` (string)

  - `user.last_name` (string)

  - `user.created_at` (string)

  - `user.updated_at` (string)

  - `user.confirmed_at` (string,null)

  - `user.sub` (string,null)

  - `user.valid_from` (number)

## Response 501 fields (application/json):

  - `error` (string)