In order to integrate SES in a Cognito User Pool in CDK, we have to use an escape hatch to update the `emailConfiguration` property on the `CfnUserPool` construct.

Add SES Support to a Cognito User Pool in CDK


## Integrating SES with Cognito User Pools in CDK

Every time a user signs up for our application, or requests a password recovery,
AWS Cognito sends them an email. By default Cognito sends emails from
`no-reply@verificationemail.com`.

The default email configuration has many
[restrictions and quotas](https://docs.aws.amazon.com/cognito/latest/developerguide/limits.html#resource-quotas),
for example - **we can only send 50 emails per day and the subject of the email
has to be less than 140 characters long**.

Since the Level 2
[UserPool](https://docs.aws.amazon.com/cdk/api/latest/docs/@aws-cdk_aws-cognito.UserPool.html)
construct doesn't expose a property for integrating with SES, we have to use an
[escape hatch](https://bobbyhadz.com/blog/escape-hatch-aws-cdk) to update the
email configuration.

**In order to configure SES for a Cognito User Pool in CDK, we have to get
access to the
[CfnUserPool](https://docs.aws.amazon.com/cdk/api/latest/docs/@aws-cdk_aws-cognito.CfnUserPool.html)
construct and update its
[emailConfiguration](https://docs.aws.amazon.com/cdk/api/latest/docs/@aws-cdk_aws-cognito.CfnUserPool.html#emailconfiguration)
property**.

```typescript
const userPool = new cognito.UserPool(this, 'user-pool-id', {
  //...rest
});

// 👇 update Email sender for Cognito Emails
const cfnUserPool = userPool.node.defaultChild as cognito.CfnUserPool;
cfnUserPool.emailConfiguration = {
  emailSendingAccount: 'DEVELOPER',
  replyToEmailAddress: 'YOUR_EMAIL@example.com',
  sourceArn: `arn:aws:ses:YOUR_COGNITO_SES_REGION:${
    cdk.Stack.of(this).account
  }:identity/YOUR_FROM_EMAIL@example.com`,
};
```

<InArticleAd />

Let's go over the properties we've set for email configuration:

- [emailSendingAccount](https://docs.aws.amazon.com/cdk/api/latest/docs/@aws-cdk_aws-cognito.CfnUserPool.EmailConfigurationProperty.html#emailsendingaccount)
  specifies whether Cognito should use the default email provider or our custom
  SES configuration. The `DEVELOPER` setting indicates that we'll provide our
  custom SES config.
- [replyToEmailAddress](https://docs.aws.amazon.com/cdk/api/latest/docs/@aws-cdk_aws-cognito.CfnUserPool.EmailConfigurationProperty.html#replytoemailaddress)
  specifies the email address users will be replying to
- [sourceArn](https://docs.aws.amazon.com/cdk/api/latest/docs/@aws-cdk_aws-cognito.CfnUserPool.EmailConfigurationProperty.html#sourcearn)
  specifies the ARN of a verified email address. Note that cognito only
  integrates with SES in 3 regions: `us-east-1`, `us-west-2`, `eu-west-1`. The
  SES `from-email` has to be
  [verified](https://docs.aws.amazon.com/ses/latest/DeveloperGuide/verify-email-addresses.html)
  in the specific region, and your SES account must be
  [out of the sandbox](https://docs.aws.amazon.com/ses/latest/DeveloperGuide/request-production-access.html).

<Alert>
  Cognito only integrates with SES in 3 regions - <code>us-east-1</code>,{' '}
  <code>us-west-2</code> and <code>eu-west-1</code> -{' '}
  <a
    rel="noopener noreferrer"
    target="_blank"
    href="https://docs.aws.amazon.com/cognito/latest/developerguide/user-pool-email.html#user-pool-email-developer"
  >
    Cognito Docs
  </a>
</Alert>

<InArticleAd />

## Further Reading

- [AWS CDK Tutorial for Beginners - Step-by-Step Guide](/blog/aws-cdk-tutorial-typescript)
- [How does AWS CDK work](/blog/how-does-aws-cdk-work)
- [What is a Token in AWS CDK](/blog/what-is-aws-cdk-token)
- [CDK Constructs - Complete Guide](/blog/cdk-constructs-tutorial)
- [What is an identifier (id) in AWS CDK](/blog/aws-cdk-identifiers)
- [How to use Context in AWS CDK](/blog/how-to-use-context-aws-cdk)
- [How to use Parameters in AWS CDK](/blog/aws-cdk-parameters-example)

<InArticleAd />


Add SES Support to a Cognito User Pool in CDK

In order to integrate SES in a Cognito User Pool in CDK, we have to use an escape hatch to update the `emailConfiguration` property on the `CfnUserPool` construct.

Integrating SES with Cognito User Pools in CDK #

Further Reading #

Borislav Hadzhiev

For morearticles, navigate to myHome Page

For questions and suggestions visit my Contacts Page

Add SES Support to a Cognito User Pool in CDK

In order to integrate SES in a Cognito User Pool in CDK, we have to use an escape hatch to update the `emailConfiguration` property on the `CfnUserPool` construct.

Integrating SES with Cognito User Pools in CDK #

Further Reading #

Join my newsletter

Borislav Hadzhiev

For morearticles, navigate to myHome Page

For questions and suggestions visit my Contacts Page