How to disable Cognito User Pool login in aws-samples/bedrock-chat and support anonymous users?

[angelinemar]

Hi, we deployed the aws-samples/bedrock-chat application using CDK.
It works, but the frontend always forces the user to authenticate using the Amplify (Cognito Hosted UI).

For our use case (public e-commerce website), we need:

• End-users not to log in
• A single Bedrock Agent/KB is used behind the scenes
• The chat UI of the bedrock web aapp should load immediately without showing the Cognito login

We tried:

• Auto-fill username/password using value="xxx"
• Injecting credentials with JavaScript
• Using Cognito Identity Pool unauthenticated role
• postMessage to iframe
• Embedding the chat UI on another domain (the aws bedrock chat is just inside an iframe)

But the frontend blocks everything because:

• requires User Pool tokens, not Identity Pool tokens
• The Cognito Hosted UI is cross-origin, so we cannot modify inputs
• The Bedrock Chat SPA refuses to render unless authStatus === "authenticated"
• CloudFront domain is different from our website domain, so iframe access is blocked

My questions:

Q1 — Is there an official or supported configuration to run Bedrock Chat WITHOUT Cognito User Pool login?
(i.e., allow anonymous users or use Identity Pool only)

Q2 — Can the frontend be configured to skip entirely, or is login mandatory?

Q3 — If not possible, is AWS’s recommended path to build a custom frontend → API Gateway → Lambda → Bedrock?

Q4 — Is the Bedrock Chat sample intentionally designed only for internal authenticated environments?

Thanks in advance.