Basic structure… I have an app launcher, and multiple apps. Each app utilizes the same AWS Cognito pool for user authentication. I have a table of users listing what apps they have access to. So, I only show them the apps they have access to in the app launcher, good.

However, if someone sends them a link, or I set something up wrong, and a user ends up in an app that isn’t in their list of approved apps, what is the best/easiest way to effectively shutdown that app to them?