Hey, there is a way to make Client ID and Client Secret optional inside the cognito provider configuration ?
Here :
This topic has been created from a Discord post (1233414381442961418) to give it more visibility.
It will be on Read-Only mode here.
Join the conversation on Discord
You mean you actually got this to work and now you are trying to go one stop further and modify the configuration. 
I’ve always wondered if providers configuration could be set-up using env-vars, that way things could be built programmatically instead of the manual process.
I guess you want to use the same UserPoolClient in the client frontend? If you are hosting the client through CloudFront you may inject the secret into request to Cognito and use the same UserPoolClient. Protect public clients for Amazon Cognito by using an Amazon CloudFront proxy | AWS Security Blog